Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/4cc4d8-8091-4581-92f4-196f8f064ee4/1/rIidiWQoRNq29y4S31HrWpfKEkU.roa
File: rIidiWQoRNq29y4S31HrWpfKEkU.roa (raw, json)
Hash identifier: VpaYzY3CAAdz/SOjr0XiXtXMkeSN/QVL7Gk2OORKWZA=
Subject key identifier: AC:88:9D:89:64:28:44:DA:B6:F7:2E:12:DF:51:EB:5A:97:CA:12:45
Certificate issuer: /CN=ba5b651791119f8ebaa3be26f1c756b86309be8e
Certificate serial: 018C109AFBE583FB9A9F42360FBFA7A30AC6
Authority key identifier: BA:5B:65:17:91:11:9F:8E:BA:A3:BE:26:F1:C7:56:B8:63:09:BE:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ultlF5ERn466o74m8cdWuGMJvo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/4cc4d8-8091-4581-92f4-196f8f064ee4/1/rIidiWQoRNq29y4S31HrWpfKEkU.roa
Signing time: Mon 27 Nov 2023 11:47:21 +0000
ROA not before: Mon 27 Nov 2023 11:47:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25111
IP address blocks: 194.0.134.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:10:9a:fb:e5:83:fb:9a:9f:42:36:0f:bf:a7:a3:0a:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba5b651791119f8ebaa3be26f1c756b86309be8e
Validity
Not Before: Nov 27 11:47:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac889d89642844dab6f72e12df51eb5a97ca1245
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:92:21:cc:62:39:7b:e1:39:a5:f5:34:2c:11:
b5:8b:de:2c:3b:99:93:cc:d6:38:23:53:a0:62:52:
9f:31:b0:68:36:e5:32:a1:25:ac:cd:64:65:ac:39:
f6:80:e1:3e:ef:49:41:9a:4b:a4:1b:20:7c:f1:30:
7f:59:a3:0e:76:a7:ed:09:bf:4f:c8:a7:ec:11:4f:
b4:4e:e4:51:b3:14:be:48:cb:b9:dc:98:84:e7:ee:
c3:91:29:9b:45:3e:8b:02:39:62:6e:92:45:da:1f:
14:7d:24:38:88:57:cc:d5:32:11:96:c3:5c:8f:a1:
76:83:38:99:6b:f1:ae:5a:ad:84:2e:c8:78:8c:2a:
83:0d:20:c1:14:85:90:8c:ee:10:c3:2a:54:99:db:
33:5b:22:bc:e7:a7:33:fa:b5:b2:ae:74:db:34:35:
21:ce:0e:bb:20:07:a9:a2:bb:93:0f:80:c8:e2:da:
cf:08:fa:09:d4:0a:21:79:b9:d8:ba:83:10:ca:a5:
5e:e4:89:cb:97:8d:93:08:0e:6e:67:21:df:82:8d:
07:85:e7:73:bb:00:69:41:c8:40:54:33:26:2f:0e:
71:77:ec:a6:9c:ad:16:0e:d3:0f:65:24:ef:62:aa:
9d:40:29:55:58:8c:a0:0f:08:48:36:44:d3:42:7e:
14:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:88:9D:89:64:28:44:DA:B6:F7:2E:12:DF:51:EB:5A:97:CA:12:45
X509v3 Authority Key Identifier:
keyid:BA:5B:65:17:91:11:9F:8E:BA:A3:BE:26:F1:C7:56:B8:63:09:BE:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ultlF5ERn466o74m8cdWuGMJvo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/4cc4d8-8091-4581-92f4-196f8f064ee4/1/rIidiWQoRNq29y4S31HrWpfKEkU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/4cc4d8-8091-4581-92f4-196f8f064ee4/1/ultlF5ERn466o74m8cdWuGMJvo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.134.0/24
Signature Algorithm: sha256WithRSAEncryption
11:44:5b:8b:4a:55:30:dc:7f:45:93:c0:08:b6:2a:4f:78:59:
4c:3d:fc:73:0c:d9:18:a5:b9:d2:e2:ca:ba:9d:f7:5e:ef:9f:
0c:58:4d:7b:64:5a:1b:fc:7f:ee:98:39:90:67:34:6f:ca:9e:
4c:25:58:cd:62:8a:47:c6:63:a5:98:d4:4d:f3:35:44:76:17:
f6:e6:7d:58:be:9d:8b:9b:4b:cd:24:5c:ee:57:e3:af:5d:54:
e4:e3:0a:d5:75:c5:61:b8:1c:ec:16:85:e5:15:dd:e4:3c:cb:
28:88:4a:f4:0e:47:e5:57:7a:5d:8a:30:46:55:f6:e2:24:76:
7a:b2:53:a6:a8:39:e6:75:a1:55:6d:a7:8c:f6:4a:3e:1e:8c:
b0:78:65:3f:78:f0:83:6d:b4:d1:4d:b3:6f:8f:7c:f6:8a:9c:
0f:1d:a4:ef:2d:62:44:a5:40:b3:b0:d2:a3:f1:7c:da:1c:b8:
4b:e2:b9:50:54:71:e4:a0:f9:6d:87:df:1d:29:4e:86:1d:16:
0f:37:96:7e:16:e2:5c:42:d0:9f:cc:a8:9d:b7:95:9c:da:d5:
45:72:01:97:7b:9c:8a:75:26:09:5b:c0:28:20:ef:74:8a:13:
b7:63:6d:b9:43:d4:8d:41:13:44:0d:e6:6f:88:06:bc:9f:9b:
ef:eb:81:b2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYwQmvvlg/uan0I2D7+nowrGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhNWI2NTE3OTExMTlmOGViYWEzYmUyNmYxYzc1NmI4NjMw
OWJlOGUwHhcNMjMxMTI3MTE0NzIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYzg4OWQ4OTY0Mjg0NGRhYjZmNzJlMTJkZjUxZWI1YTk3Y2ExMjQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA55IhzGI5e+E5pfU0LBG1i94sO5mT
zNY4I1OgYlKfMbBoNuUyoSWszWRlrDn2gOE+70lBmkukGyB88TB/WaMOdqftCb9P
yKfsEU+0TuRRsxS+SMu53JiE5+7DkSmbRT6LAjlibpJF2h8UfSQ4iFfM1TIRlsNc
j6F2gziZa/GuWq2ELsh4jCqDDSDBFIWQjO4QwypUmdszWyK856cz+rWyrnTbNDUh
zg67IAeporuTD4DI4trPCPoJ1AohebnYuoMQyqVe5InLl42TCA5uZyHfgo0Hhedz
uwBpQchAVDMmLw5xd+ymnK0WDtMPZSTvYqqdQClVWIygDwhINkTTQn4U5QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKyInYlkKETatvcuEt9R61qXyhJFMB8GA1UdIwQY
MBaAFLpbZReREZ+OuqO+JvHHVrhjCb6OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWx0bEY1RVJuNDY2bzc0bThjZFd1R01Kdm80LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS80Y2M0ZDgtODA5MS00NTgxLTkyZjQt
MTk2ZjhmMDY0ZWU0LzEvcklpZGlXUW9STnEyOXk0UzMxSHJXcGZLRWtVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS80Y2M0ZDgtODA5MS00NTgxLTkyZjQtMTk2ZjhmMDY0ZWU0
LzEvdWx0bEY1RVJuNDY2bzc0bThjZFd1R01Kdm80LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwgCGMA0G
CSqGSIb3DQEBCwUAA4IBAQARRFuLSlUw3H9Fk8AItipPeFlMPfxzDNkYpbnS4sq6
nfde758MWE17ZFob/H/umDmQZzRvyp5MJVjNYopHxmOlmNRN8zVEdhf25n1Yvp2L
m0vNJFzuV+OvXVTk4wrVdcVhuBzsFoXlFd3kPMsoiEr0DkflV3pdijBGVfbiJHZ6
slOmqDnmdaFVbaeM9ko+HoyweGU/ePCDbbTRTbNvj3z2ipwPHaTvLWJEpUCzsNKj
8XzaHLhL4rlQVHHkoPlth98dKU6GHRYPN5Z+FuJcQtCfzKidt5Wc2tVFcgGXe5yK
dSYJW8AoIO90ihO3Y225Q9SNQRNEDeZviAa8n5vv64Gy
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:50 2024 by rpki-client on console-ams.rpki-client.org