Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/652267-ea13-4892-9ffa-09c1b7336a51/1/5VlCx3ZGt1FvEp73hE3uDesezL8.roa
File: 5VlCx3ZGt1FvEp73hE3uDesezL8.roa (raw, json)
Hash identifier: W5FxpJHbhbbBP23xqMAJriSDf8HYKZucl31w0MAoOEQ=
Subject key identifier: E5:59:42:C7:76:46:B7:51:6F:12:9E:F7:84:4D:EE:0D:EB:1E:CC:BF
Certificate issuer: /CN=92205f5a64ea1fb090ad26dcfdb18cefb9aabd8d
Certificate serial: 01856F022375E2EF2A404F3EB7018163AF9C
Authority key identifier: 92:20:5F:5A:64:EA:1F:B0:90:AD:26:DC:FD:B1:8C:EF:B9:AA:BD:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kiBfWmTqH7CQrSbc_bGM77mqvY0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/652267-ea13-4892-9ffa-09c1b7336a51/1/5VlCx3ZGt1FvEp73hE3uDesezL8.roa
Signing time: Sun 01 Jan 2023 20:24:49 +0000
ROA not before: Sun 01 Jan 2023 20:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41320
IP address blocks: 195.26.94.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:23:75:e2:ef:2a:40:4f:3e:b7:01:81:63:af:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92205f5a64ea1fb090ad26dcfdb18cefb9aabd8d
Validity
Not Before: Jan 1 20:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e55942c77646b7516f129ef7844dee0deb1eccbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:cd:fa:78:11:2e:38:a2:00:11:fa:63:f0:ed:
5c:90:5d:34:06:32:d8:3f:a0:cd:ae:7b:c9:dc:68:
f7:12:e7:d5:4d:b9:ba:93:bb:a4:fd:32:9d:2d:17:
b5:57:63:1e:36:6e:f2:08:02:f6:aa:93:f8:41:5b:
a5:7d:0d:32:f8:ea:d0:6c:d7:1d:e2:43:99:e5:9e:
89:e1:f9:4e:ca:5b:be:b6:b3:7e:8b:13:a8:17:98:
4a:e6:d5:e2:f6:8e:83:be:b1:e8:c6:5c:a6:a9:ad:
4a:2c:01:a5:cc:7e:8e:f6:96:dd:85:1d:a1:96:3c:
2c:cb:3d:15:b6:e4:f6:5a:2c:a2:f8:9c:1b:aa:e0:
7d:d6:21:37:82:4b:a8:45:d9:3d:20:8e:bc:48:10:
76:29:6a:0b:18:31:0d:07:e2:0d:91:44:00:41:dc:
0b:f0:d3:d7:5f:d4:7b:a3:96:c9:37:a8:a1:a6:b5:
7e:ce:bc:41:42:a3:a7:dd:81:0d:32:3c:46:c6:d2:
85:63:49:be:21:95:07:61:23:88:c6:f5:1f:b7:5c:
15:23:ab:2e:8a:75:fd:68:3c:40:9f:9f:af:03:38:
a4:ce:b5:0a:6f:df:80:6c:3e:38:9b:c7:7c:73:1d:
bc:77:cd:92:4c:8a:b9:d6:b8:8c:29:e8:a8:f1:5b:
68:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:59:42:C7:76:46:B7:51:6F:12:9E:F7:84:4D:EE:0D:EB:1E:CC:BF
X509v3 Authority Key Identifier:
keyid:92:20:5F:5A:64:EA:1F:B0:90:AD:26:DC:FD:B1:8C:EF:B9:AA:BD:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kiBfWmTqH7CQrSbc_bGM77mqvY0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/652267-ea13-4892-9ffa-09c1b7336a51/1/5VlCx3ZGt1FvEp73hE3uDesezL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/652267-ea13-4892-9ffa-09c1b7336a51/1/kiBfWmTqH7CQrSbc_bGM77mqvY0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.26.94.0/23
Signature Algorithm: sha256WithRSAEncryption
16:c0:2e:0c:9e:9b:64:ea:c0:42:47:8b:00:22:17:28:0b:c1:
64:10:05:16:30:3e:d8:44:62:4c:39:21:db:8a:18:da:e8:2d:
60:74:56:15:02:f3:34:0c:74:33:75:fb:c7:ad:2c:73:ca:b6:
76:86:96:ae:e4:3b:ed:73:03:dd:74:b5:d2:19:54:dc:c3:ef:
46:f6:15:2f:91:95:f9:e3:b9:cd:a1:3c:fc:05:b4:d2:50:d0:
c3:3d:5f:bb:06:bd:9f:85:c2:6e:6d:01:37:57:70:f0:e5:90:
bb:dd:f6:71:70:cf:c0:07:2c:f0:8b:18:3c:71:c6:f8:7f:b7:
77:d3:51:53:6a:22:25:ac:27:4c:64:a8:dd:67:1b:89:48:9b:
e4:7d:d9:e7:79:f3:9c:9a:51:d6:da:03:6b:5e:7d:ea:7f:e2:
ee:d7:d0:32:a2:2c:a3:f8:82:63:4c:80:40:e6:61:93:11:51:
2d:fc:5e:8f:5c:72:8c:2c:23:b7:35:db:f6:a9:ea:22:40:8e:
e3:52:59:06:fa:f4:a0:a0:d0:fe:8d:c2:d1:ef:88:9f:7a:78:
af:83:e1:48:e3:0d:c8:af:2c:b8:0c:5e:8a:64:c7:99:df:3a:
73:d8:d8:12:84:68:2e:4b:56:1b:24:fb:60:26:d8:83:3d:81:
bd:3b:1f:59
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvAiN14u8qQE8+twGBY6+cMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMjA1ZjVhNjRlYTFmYjA5MGFkMjZkY2ZkYjE4Y2VmYjlh
YWJkOGQwHhcNMjMwMTAxMjAyNDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNTU5NDJjNzc2NDZiNzUxNmYxMjllZjc4NDRkZWUwZGViMWVjY2JmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApM36eBEuOKIAEfpj8O1ckF00BjLY
P6DNrnvJ3Gj3EufVTbm6k7uk/TKdLRe1V2MeNm7yCAL2qpP4QVulfQ0y+OrQbNcd
4kOZ5Z6J4flOylu+trN+ixOoF5hK5tXi9o6DvrHoxlymqa1KLAGlzH6O9pbdhR2h
ljwsyz0VtuT2Wiyi+JwbquB91iE3gkuoRdk9II68SBB2KWoLGDENB+INkUQAQdwL
8NPXX9R7o5bJN6ihprV+zrxBQqOn3YENMjxGxtKFY0m+IZUHYSOIxvUft1wVI6su
inX9aDxAn5+vAzikzrUKb9+AbD44m8d8cx28d82STIq51riMKeio8VtonwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOVZQsd2RrdRbxKe94RN7g3rHsy/MB8GA1UdIwQY
MBaAFJIgX1pk6h+wkK0m3P2xjO+5qr2NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2lCZldtVHFIN0NRclNiY19iR003N21xdlkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS82NTIyNjctZWExMy00ODkyLTlmZmEt
MDljMWI3MzM2YTUxLzEvNVZsQ3gzWkd0MUZ2RXA3M2hFM3VEZXNlekw4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNS82NTIyNjctZWExMy00ODkyLTlmZmEtMDljMWI3MzM2YTUx
LzEva2lCZldtVHFIN0NRclNiY19iR003N21xdlkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwxpeMA0G
CSqGSIb3DQEBCwUAA4IBAQAWwC4Mnptk6sBCR4sAIhcoC8FkEAUWMD7YRGJMOSHb
ihja6C1gdFYVAvM0DHQzdfvHrSxzyrZ2hpau5DvtcwPddLXSGVTcw+9G9hUvkZX5
47nNoTz8BbTSUNDDPV+7Br2fhcJubQE3V3Dw5ZC73fZxcM/AByzwixg8ccb4f7d3
01FTaiIlrCdMZKjdZxuJSJvkfdnnefOcmlHW2gNrXn3qf+Lu19Ayoiyj+IJjTIBA
5mGTEVEt/F6PXHKMLCO3Ndv2qeoiQI7jUlkG+vSgoND+jcLR74ifenivg+FI4w3I
ryy4DF6KZMeZ3zpz2NgShGguS1YbJPtgJtiDPYG9Ox9Z
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:48 2024 by rpki-client on console-fra.rpki-client.org