Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/200366-d881-4030-8280-b5e0e4c3315c/1/plMh7B0SdH8J8Dwm-6nX_i_xqLE.roa
File: plMh7B0SdH8J8Dwm-6nX_i_xqLE.roa (raw, json)
Hash identifier: 9gOjA/MfI2povy/nU8Eakl+TcsaSfSIx3Nzobbn3UM0=
Subject key identifier: A6:53:21:EC:1D:12:74:7F:09:F0:3C:26:FB:A9:D7:FE:2F:F1:A8:B1
Certificate issuer: /CN=bd25f71ba4131483bb9b823dd88651d3afd44e7b
Certificate serial: 018857B7841CBC590BB50BF71324FF080C07
Authority key identifier: BD:25:F7:1B:A4:13:14:83:BB:9B:82:3D:D8:86:51:D3:AF:D4:4E:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vSX3G6QTFIO7m4I92IZR06_UTns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/200366-d881-4030-8280-b5e0e4c3315c/1/plMh7B0SdH8J8Dwm-6nX_i_xqLE.roa
Signing time: Fri 26 May 2023 11:00:24 +0000
ROA not before: Fri 26 May 2023 11:00:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199557
IP address blocks: 194.146.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 31 Dec 2023 18:35:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:57:b7:84:1c:bc:59:0b:b5:0b:f7:13:24:ff:08:0c:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd25f71ba4131483bb9b823dd88651d3afd44e7b
Validity
Not Before: May 26 11:00:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a65321ec1d12747f09f03c26fba9d7fe2ff1a8b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:68:6c:d0:df:ff:e9:2f:fa:a1:9a:de:a9:5c:
80:5a:c5:4a:c8:04:ea:c3:85:de:29:ad:6e:c6:7f:
ea:c5:4f:3d:09:de:7d:b9:cb:18:60:55:10:e3:e2:
d5:c2:1c:69:1e:70:4a:ca:90:61:e3:d3:2e:11:7b:
b4:0b:45:9d:63:db:5f:b7:78:7a:74:e6:42:1a:f5:
a4:42:b7:dd:68:16:4c:4a:c1:cd:95:50:83:87:b5:
b4:2d:90:09:7b:a2:f2:2e:d4:79:d7:c6:53:df:43:
63:17:af:65:b9:79:d5:55:c7:16:71:72:fa:31:ad:
72:6c:62:b8:9f:30:d8:26:cb:33:8a:4d:27:d1:a7:
bf:b4:37:cc:e7:e2:1c:42:9a:ad:45:29:16:02:ab:
e8:d7:39:a1:6b:2d:39:16:e6:e1:b5:c1:b9:31:30:
90:aa:68:14:6a:2e:4d:de:26:f9:52:79:c2:cf:0b:
0f:22:b6:92:bc:56:48:ef:4a:ad:f2:b4:f3:ee:9e:
45:f7:53:22:e2:cc:1a:27:9c:95:d9:ee:2a:83:bc:
23:24:20:22:40:e9:5d:cd:57:c1:24:f8:91:16:da:
58:c0:fa:3a:ef:d7:ed:84:33:95:79:0b:4e:c9:62:
27:b9:b2:5d:6c:a7:7a:2a:19:ca:97:ae:b8:4d:95:
f8:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:53:21:EC:1D:12:74:7F:09:F0:3C:26:FB:A9:D7:FE:2F:F1:A8:B1
X509v3 Authority Key Identifier:
keyid:BD:25:F7:1B:A4:13:14:83:BB:9B:82:3D:D8:86:51:D3:AF:D4:4E:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vSX3G6QTFIO7m4I92IZR06_UTns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/200366-d881-4030-8280-b5e0e4c3315c/1/plMh7B0SdH8J8Dwm-6nX_i_xqLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/200366-d881-4030-8280-b5e0e4c3315c/1/vSX3G6QTFIO7m4I92IZR06_UTns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.146.153.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:8a:0d:58:89:92:8a:0d:c6:50:78:5a:6c:d2:8e:f7:64:fc:
d9:ca:f1:a9:8c:b4:b0:dd:2a:17:c0:32:01:45:ae:a3:fc:5f:
6a:a0:32:2d:38:88:c7:a8:ca:9a:60:86:ea:77:0e:6c:51:b7:
e5:e8:27:44:47:78:4c:bd:30:82:61:f0:cf:ab:db:f9:c0:39:
30:6d:4f:14:bd:52:fb:65:59:0f:56:1c:7d:94:62:d2:fb:66:
1b:1f:b8:e0:96:b8:50:cd:03:8f:48:7c:0c:3e:d9:49:2b:d7:
c5:bd:e6:56:d9:d8:79:ea:de:27:62:ef:f7:bb:08:0d:f7:8b:
0c:27:db:37:17:9d:01:07:f2:28:b4:45:3a:b5:10:6c:44:58:
3d:aa:48:87:61:7d:be:d7:e9:a0:b2:f9:83:10:e9:d5:f9:c3:
2e:d0:2e:07:1b:ad:fb:51:6e:d4:1f:81:ec:e1:13:57:f5:09:
82:71:5c:4d:17:9a:4f:5d:98:46:bd:52:a7:2e:72:71:72:90:
18:10:b1:93:e9:ee:b7:42:10:f4:c0:67:0c:54:0b:d5:02:89:
60:fb:2e:85:18:32:23:8e:b0:43:9e:e3:53:58:32:1f:ee:e1:
b9:78:be:2d:80:26:25:5d:c1:a6:be:b5:f6:91:75:15:e5:41:
e7:6c:e8:92
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYhXt4QcvFkLtQv3EyT/CAwHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkMjVmNzFiYTQxMzE0ODNiYjliODIzZGQ4ODY1MWQzYWZk
NDRlN2IwHhcNMjMwNTI2MTEwMDI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNjUzMjFlYzFkMTI3NDdmMDlmMDNjMjZmYmE5ZDdmZTJmZjFhOGIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl2hs0N//6S/6oZreqVyAWsVKyATq
w4XeKa1uxn/qxU89Cd59ucsYYFUQ4+LVwhxpHnBKypBh49MuEXu0C0WdY9tft3h6
dOZCGvWkQrfdaBZMSsHNlVCDh7W0LZAJe6LyLtR518ZT30NjF69luXnVVccWcXL6
Ma1ybGK4nzDYJsszik0n0ae/tDfM5+IcQpqtRSkWAqvo1zmhay05FubhtcG5MTCQ
qmgUai5N3ib5UnnCzwsPIraSvFZI70qt8rTz7p5F91Mi4swaJ5yV2e4qg7wjJCAi
QOldzVfBJPiRFtpYwPo679fthDOVeQtOyWInubJdbKd6KhnKl664TZX4rQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKZTIewdEnR/CfA8Jvup1/4v8aixMB8GA1UdIwQY
MBaAFL0l9xukExSDu5uCPdiGUdOv1E57MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdlNYM0c2UVRGSU83bTRJOTJJWlIwNl9VVG5zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS8yMDAzNjYtZDg4MS00MDMwLTgyODAt
YjVlMGU0YzMzMTVjLzEvcGxNaDdCMFNkSDhKOER3bS02blhfaV94cUxFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS8yMDAzNjYtZDg4MS00MDMwLTgyODAtYjVlMGU0YzMzMTVj
LzEvdlNYM0c2UVRGSU83bTRJOTJJWlIwNl9VVG5zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwpKZMA0G
CSqGSIb3DQEBCwUAA4IBAQCbig1YiZKKDcZQeFps0o73ZPzZyvGpjLSw3SoXwDIB
Ra6j/F9qoDItOIjHqMqaYIbqdw5sUbfl6CdER3hMvTCCYfDPq9v5wDkwbU8UvVL7
ZVkPVhx9lGLS+2YbH7jglrhQzQOPSHwMPtlJK9fFveZW2dh56t4nYu/3uwgN94sM
J9s3F50BB/IotEU6tRBsRFg9qkiHYX2+1+mgsvmDEOnV+cMu0C4HG637UW7UH4Hs
4RNX9QmCcVxNF5pPXZhGvVKnLnJxcpAYELGT6e63QhD0wGcMVAvVAolg+y6FGDIj
jrBDnuNTWDIf7uG5eL4tgCYlXcGmvrX2kXUV5UHnbOiS
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:02 2024 by rpki-client on console-ams.rpki-client.org