Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/dn_BcqIlQmUnv2sgzg4hzfoOPlY.roa
File: dn_BcqIlQmUnv2sgzg4hzfoOPlY.roa (raw, json)
Hash identifier: i795YgzObY3rX6Ta23MtpNVHZKH+DoZcLfZCSxptjHA=
Subject key identifier: 76:7F:C1:72:A2:25:42:65:27:BF:6B:20:CE:0E:21:CD:FA:0E:3E:56
Certificate issuer: /CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Certificate serial: 01856C2EC5242CBFE83156DC8FDA9D69FD31
Authority key identifier: E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/dn_BcqIlQmUnv2sgzg4hzfoOPlY.roa
Signing time: Sun 01 Jan 2023 07:14:42 +0000
ROA not before: Sun 01 Jan 2023 07:14:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3170
IP address blocks: 5.252.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:2e:c5:24:2c:bf:e8:31:56:dc:8f:da:9d:69:fd:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e14ac611614dd165d94557296ed7ed46c8fc025f
Validity
Not Before: Jan 1 07:14:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=767fc172a225426527bf6b20ce0e21cdfa0e3e56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:da:78:a8:d1:c1:c7:23:e2:63:b1:d9:67:7a:
e9:83:a9:77:93:33:6c:dd:fe:84:b7:13:47:d9:60:
20:14:52:89:c8:6c:89:23:a1:e4:c8:35:3a:e3:a4:
56:2a:76:57:c5:4e:59:3c:59:3a:97:04:53:01:cf:
d1:da:c5:a3:ed:e5:56:31:09:d0:3b:21:7c:c0:2f:
ad:82:64:7d:da:0e:9c:18:4e:62:c3:7c:d0:4d:db:
ac:ba:94:51:b0:f6:80:5d:34:da:55:bf:63:ab:c3:
7c:30:4e:3f:7e:ee:26:0c:65:4a:24:8d:b7:c0:46:
38:35:6e:00:79:51:f3:4a:bd:dc:9d:a1:90:dd:ae:
05:a8:7b:6a:10:e4:88:13:2a:f2:a5:50:19:68:34:
d7:d3:51:92:d9:20:6c:56:91:f5:9a:c1:68:b4:16:
e0:0f:18:f7:9b:ef:97:bd:88:b8:c3:ab:82:a5:72:
63:fe:4f:a2:75:84:8d:d1:e0:a6:52:c9:51:d5:fc:
59:1b:19:55:f0:40:9f:ae:a5:a1:9b:3b:ea:ec:34:
0c:5d:0b:0e:04:b9:4e:95:df:47:a0:84:cf:81:53:
fb:fe:09:c5:d1:6b:ac:12:be:66:b9:a2:b1:fd:bc:
a8:f5:fa:e6:83:b6:c1:7d:28:f0:74:3c:82:74:b8:
d7:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:7F:C1:72:A2:25:42:65:27:BF:6B:20:CE:0E:21:CD:FA:0E:3E:56
X509v3 Authority Key Identifier:
keyid:E1:4A:C6:11:61:4D:D1:65:D9:45:57:29:6E:D7:ED:46:C8:FC:02:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4UrGEWFN0WXZRVcpbtftRsj8Al8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/dn_BcqIlQmUnv2sgzg4hzfoOPlY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/6e79b8-2b8f-4ecc-9a6e-70e898bb38dd/1/4UrGEWFN0WXZRVcpbtftRsj8Al8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.235.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:0d:7b:91:d5:c9:55:04:93:ff:e4:e7:d6:66:c2:1e:6b:a9:
1a:e8:9d:dc:7c:61:e9:14:cc:6d:c2:85:16:aa:ee:70:8a:65:
6f:54:06:1b:18:16:24:15:ca:22:b3:17:44:71:37:dc:71:f5:
c2:bf:24:05:1b:b8:fb:bb:b4:73:58:c4:30:e8:8e:9e:6b:16:
64:1a:cf:f0:c6:92:ff:8b:a4:52:45:85:15:c8:d9:8d:ab:a7:
51:47:db:41:c0:97:04:02:48:93:dd:03:01:f1:a0:ef:2b:3a:
e6:e9:a7:60:84:e4:62:e1:28:b9:4d:f0:4c:a0:23:fa:48:9a:
58:58:54:68:03:9c:85:47:c5:36:1b:63:c3:f9:26:d8:37:a1:
34:38:ab:d5:22:f2:2d:00:00:48:cf:47:2b:50:7f:cc:89:18:
cb:29:86:bf:a6:76:c1:81:91:e3:81:b1:72:ef:d8:c1:f0:1c:
21:d2:96:dc:88:38:a5:cb:d6:cf:02:db:76:9e:b3:0d:12:12:
38:87:d0:4a:59:4c:23:93:ec:86:4c:fe:f5:53:73:08:53:c6:
df:9f:16:2d:4b:a0:d1:b6:ef:c9:43:61:ab:07:40:3f:73:da:
5f:c0:0c:90:b0:7b:3b:11:07:e3:ed:ff:ef:5f:f8:20:e8:e0:
f3:aa:a2:2c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsLsUkLL/oMVbcj9qdaf0xMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUxNGFjNjExNjE0ZGQxNjVkOTQ1NTcyOTZlZDdlZDQ2Yzhm
YzAyNWYwHhcNMjMwMTAxMDcxNDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NjdmYzE3MmEyMjU0MjY1MjdiZjZiMjBjZTBlMjFjZGZhMGUzZTU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAttp4qNHBxyPiY7HZZ3rpg6l3kzNs
3f6EtxNH2WAgFFKJyGyJI6HkyDU646RWKnZXxU5ZPFk6lwRTAc/R2sWj7eVWMQnQ
OyF8wC+tgmR92g6cGE5iw3zQTdusupRRsPaAXTTaVb9jq8N8ME4/fu4mDGVKJI23
wEY4NW4AeVHzSr3cnaGQ3a4FqHtqEOSIEyrypVAZaDTX01GS2SBsVpH1msFotBbg
Dxj3m++XvYi4w6uCpXJj/k+idYSN0eCmUslR1fxZGxlV8ECfrqWhmzvq7DQMXQsO
BLlOld9HoITPgVP7/gnF0WusEr5muaKx/byo9frmg7bBfSjwdDyCdLjXrQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHZ/wXKiJUJlJ79rIM4OIc36Dj5WMB8GA1UdIwQY
MBaAFOFKxhFhTdFl2UVXKW7X7UbI/AJfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNFVyR0VXRk4wV1haUlZjcGJ0ZnRSc2o4QWw4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS82ZTc5YjgtMmI4Zi00ZWNjLTlhNmUt
NzBlODk4YmIzOGRkLzEvZG5fQmNxSWxRbVVudjJzZ3pnNGh6Zm9PUGxZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS82ZTc5YjgtMmI4Zi00ZWNjLTlhNmUtNzBlODk4YmIzOGRk
LzEvNFVyR0VXRk4wV1haUlZjcGJ0ZnRSc2o4QWw4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABfzrMA0G
CSqGSIb3DQEBCwUAA4IBAQA/DXuR1clVBJP/5OfWZsIea6ka6J3cfGHpFMxtwoUW
qu5wimVvVAYbGBYkFcoisxdEcTfccfXCvyQFG7j7u7RzWMQw6I6eaxZkGs/wxpL/
i6RSRYUVyNmNq6dRR9tBwJcEAkiT3QMB8aDvKzrm6adghORi4Si5TfBMoCP6SJpY
WFRoA5yFR8U2G2PD+SbYN6E0OKvVIvItAABIz0crUH/MiRjLKYa/pnbBgZHjgbFy
79jB8Bwh0pbciDily9bPAtt2nrMNEhI4h9BKWUwjk+yGTP71U3MIU8bfnxYtS6DR
tu/JQ2GrB0A/c9pfwAyQsHs7EQfj7f/vX/gg6ODzqqIs
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:59 2024 by rpki-client on console-fra.rpki-client.org