Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82ed9c-7c13-48b9-a886-cd66ad534812/1/gQmCgIddpK6LB5vEmC32q5QFJ4Q.roa
File: gQmCgIddpK6LB5vEmC32q5QFJ4Q.roa (raw, json)
Hash identifier: IrF4ugSpLuLdn9Yx+Ix5QvyzObFJOqsQa0+/xrhW9d0=
Subject key identifier: 81:09:82:80:87:5D:A4:AE:8B:07:9B:C4:98:2D:F6:AB:94:05:27:84
Certificate issuer: /CN=39247f77a3ae0af71eac03256449f5d292cffd74
Certificate serial: 018DEF51248D3731DE630BD0801A6EA4EF4D
Authority key identifier: 39:24:7F:77:A3:AE:0A:F7:1E:AC:03:25:64:49:F5:D2:92:CF:FD:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OSR_d6OuCvcerAMlZEn10pLP_XQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82ed9c-7c13-48b9-a886-cd66ad534812/1/gQmCgIddpK6LB5vEmC32q5QFJ4Q.roa
Signing time: Wed 28 Feb 2024 10:44:48 +0000
ROA not before: Wed 28 Feb 2024 10:44:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 273413
IP address blocks: 109.70.135.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Apr 2024 11:12:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ef:51:24:8d:37:31:de:63:0b:d0:80:1a:6e:a4:ef:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39247f77a3ae0af71eac03256449f5d292cffd74
Validity
Not Before: Feb 28 10:44:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=81098280875da4ae8b079bc4982df6ab94052784
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:34:e0:d8:45:c2:1b:47:82:fe:b7:a8:ad:d1:
e9:68:a0:53:bb:38:12:70:aa:ba:f6:a5:c1:13:c0:
68:d5:ac:57:28:09:34:3e:15:d3:5b:e1:9d:32:3c:
40:35:1b:f8:ff:a1:66:d9:8c:3a:01:ae:9a:03:38:
9f:93:ce:f0:53:46:2c:08:05:5d:2b:5b:f2:73:13:
3e:ec:96:2b:c7:39:71:70:9e:b4:5a:c7:ce:a7:2e:
c4:0b:41:dc:e2:42:7d:9c:58:02:d1:11:12:8f:82:
d9:99:9b:92:9b:df:2e:ae:c4:b4:84:ce:06:b2:ca:
b1:fe:38:cf:02:ef:2d:4f:44:ba:15:72:86:ea:f0:
89:63:07:22:50:1a:69:75:c2:d6:7a:f9:35:ec:fe:
2f:7f:29:b0:a4:51:ef:91:b9:ae:ae:d5:9c:d0:10:
c2:6a:5b:25:70:ff:2b:51:d0:96:fa:3d:65:27:6f:
f0:ab:58:41:8f:2b:81:20:e3:07:29:7a:21:90:7f:
df:64:d2:ec:83:96:09:57:61:fc:1b:c7:e5:a2:d2:
84:9d:7d:c9:9a:6a:bb:c4:44:20:79:46:1d:86:b3:
30:92:4c:e4:d6:7f:09:f9:ee:26:05:cf:3d:c8:b0:
70:06:40:39:4d:3f:ec:fa:85:e0:8f:57:75:87:78:
f2:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:09:82:80:87:5D:A4:AE:8B:07:9B:C4:98:2D:F6:AB:94:05:27:84
X509v3 Authority Key Identifier:
keyid:39:24:7F:77:A3:AE:0A:F7:1E:AC:03:25:64:49:F5:D2:92:CF:FD:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OSR_d6OuCvcerAMlZEn10pLP_XQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82ed9c-7c13-48b9-a886-cd66ad534812/1/gQmCgIddpK6LB5vEmC32q5QFJ4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82ed9c-7c13-48b9-a886-cd66ad534812/1/OSR_d6OuCvcerAMlZEn10pLP_XQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.70.135.0/24
Signature Algorithm: sha256WithRSAEncryption
64:ab:22:29:22:33:e8:c8:9b:9d:73:53:55:58:86:c2:25:1d:
12:8d:ef:2d:df:a8:81:6e:94:6b:39:91:02:9a:fd:35:4c:43:
65:9a:cd:e4:c2:a5:be:23:7d:04:8c:0d:e0:99:3c:18:04:2b:
23:c0:46:75:33:c8:e8:d4:82:94:3e:10:1c:32:8d:b3:79:83:
f5:9a:2c:dd:57:d6:96:59:0d:0c:17:da:fa:f6:8c:a8:45:86:
9f:7d:e8:72:f0:3e:35:ed:19:41:80:f0:48:13:a3:2c:97:b4:
8c:98:c5:9a:c4:c4:e9:0f:84:23:0b:84:7e:79:2a:0c:2f:a7:
bc:a3:e7:20:6d:51:03:ef:93:b4:7c:a6:4f:04:90:83:88:ab:
78:15:ee:81:04:43:79:f9:16:98:39:87:2a:e1:6a:ec:41:cf:
b0:be:2e:5e:b2:8f:9a:bc:8d:8a:c5:b8:82:29:1f:da:6c:b6:
48:2b:89:15:7b:93:7d:24:d8:ca:2a:9f:6e:d1:1a:89:28:17:
ee:45:3a:05:04:90:e3:84:f8:a9:02:1e:3d:86:c5:63:f1:cb:
b9:5c:43:06:5e:f8:21:2a:8a:c1:fa:f7:b5:3b:c8:f9:0a:df:
3f:c4:80:47:e8:ee:aa:85:7f:3f:58:47:cc:66:7c:04:d8:84:
1d:95:fb:1d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY3vUSSNNzHeYwvQgBpupO9NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5MjQ3Zjc3YTNhZTBhZjcxZWFjMDMyNTY0NDlmNWQyOTJj
ZmZkNzQwHhcNMjQwMjI4MTA0NDQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MTA5ODI4MDg3NWRhNGFlOGIwNzliYzQ5ODJkZjZhYjk0MDUyNzg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAujTg2EXCG0eC/reordHpaKBTuzgS
cKq69qXBE8Bo1axXKAk0PhXTW+GdMjxANRv4/6Fm2Yw6Aa6aAzifk87wU0YsCAVd
K1vycxM+7JYrxzlxcJ60WsfOpy7EC0Hc4kJ9nFgC0RESj4LZmZuSm98ursS0hM4G
ssqx/jjPAu8tT0S6FXKG6vCJYwciUBppdcLWevk17P4vfymwpFHvkbmurtWc0BDC
alslcP8rUdCW+j1lJ2/wq1hBjyuBIOMHKXohkH/fZNLsg5YJV2H8G8flotKEnX3J
mmq7xEQgeUYdhrMwkkzk1n8J+e4mBc89yLBwBkA5TT/s+oXgj1d1h3jyBwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIEJgoCHXaSuiwebxJgt9quUBSeEMB8GA1UdIwQY
MBaAFDkkf3ejrgr3HqwDJWRJ9dKSz/10MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1NSX2Q2T3VDdmNlckFNbFpFbjEwcExQX1hRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi84MmVkOWMtN2MxMy00OGI5LWE4ODYt
Y2Q2NmFkNTM0ODEyLzEvZ1FtQ2dJZGRwSzZMQjV2RW1DMzJxNVFGSjRRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi84MmVkOWMtN2MxMy00OGI5LWE4ODYtY2Q2NmFkNTM0ODEy
LzEvT1NSX2Q2T3VDdmNlckFNbFpFbjEwcExQX1hRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbUaHMA0G
CSqGSIb3DQEBCwUAA4IBAQBkqyIpIjPoyJudc1NVWIbCJR0Sje8t36iBbpRrOZEC
mv01TENlms3kwqW+I30EjA3gmTwYBCsjwEZ1M8jo1IKUPhAcMo2zeYP1mizdV9aW
WQ0MF9r69oyoRYaffehy8D417RlBgPBIE6Msl7SMmMWaxMTpD4QjC4R+eSoML6e8
o+cgbVED75O0fKZPBJCDiKt4Fe6BBEN5+RaYOYcq4WrsQc+wvi5eso+avI2KxbiC
KR/abLZIK4kVe5N9JNjKKp9u0RqJKBfuRToFBJDjhPipAh49hsVj8cu5XEMGXvgh
KorB+ve1O8j5Ct8/xIBH6O6qhX8/WEfMZnwE2IQdlfsd
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:15 2024 by rpki-client on console-fra.rpki-client.org