Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/5NdAVm7guDOe0yFhM81m0bljvtU.roa
File: 5NdAVm7guDOe0yFhM81m0bljvtU.roa (raw, json)
Hash identifier: jZxZMYHudhCFs51yDzMthBf3LRy4kI17CbiGGJvtgvI=
Subject key identifier: E4:D7:40:56:6E:E0:B8:33:9E:D3:21:61:33:CD:66:D1:B9:63:BE:D5
Certificate issuer: /CN=ca290db2f72905f0db626b005bacf08878d17bac
Certificate serial: 01856EA6A871D026A0D1085EFBC1AA3DFA0B
Authority key identifier: CA:29:0D:B2:F7:29:05:F0:DB:62:6B:00:5B:AC:F0:88:78:D1:7B:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/5NdAVm7guDOe0yFhM81m0bljvtU.roa
Signing time: Sun 01 Jan 2023 18:44:53 +0000
ROA not before: Sun 01 Jan 2023 18:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43578
IP address blocks: 188.241.60.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 May 2023 09:22:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:a8:71:d0:26:a0:d1:08:5e:fb:c1:aa:3d:fa:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca290db2f72905f0db626b005bacf08878d17bac
Validity
Not Before: Jan 1 18:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4d740566ee0b8339ed3216133cd66d1b963bed5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d6:74:65:6f:b2:38:d7:53:5a:23:37:27:74:
50:8b:0d:5c:9f:4d:99:ab:a4:87:46:df:e6:7e:16:
a6:15:b5:6d:35:3a:28:81:73:a7:99:a6:03:99:a4:
c7:14:50:4a:d5:59:59:e7:29:15:d6:7f:77:9b:68:
23:a4:3b:71:5f:54:56:b8:0e:fc:06:76:cf:87:3f:
b7:35:ce:36:7d:01:40:f2:36:eb:f6:33:9d:5b:e2:
e8:88:a2:6e:ac:00:a0:24:a2:34:21:84:13:c5:28:
af:e4:1f:59:29:94:ef:1f:07:99:ee:73:92:70:29:
46:39:17:f4:18:4d:ff:d9:88:f8:9c:8d:05:c4:de:
b1:90:10:39:c8:f5:ca:a9:31:3f:8f:4b:4a:54:b8:
2a:dc:f6:e9:d8:ba:9f:1e:1f:5b:39:17:2c:58:27:
4f:c4:f7:db:47:57:44:6c:48:2b:8a:74:62:26:38:
55:2d:c3:91:77:63:c8:d5:bf:e8:59:12:83:0e:e5:
c2:76:81:bc:3a:c5:96:e4:48:c5:17:83:dd:c1:b0:
16:7e:86:fb:72:61:71:c7:52:23:8b:2c:8d:3d:51:
53:ce:0c:17:e6:e1:b9:ab:82:d6:50:4b:7a:22:c4:
ea:97:1a:38:b2:8e:5f:71:aa:dd:bb:13:65:10:90:
c7:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:D7:40:56:6E:E0:B8:33:9E:D3:21:61:33:CD:66:D1:B9:63:BE:D5
X509v3 Authority Key Identifier:
keyid:CA:29:0D:B2:F7:29:05:F0:DB:62:6B:00:5B:AC:F0:88:78:D1:7B:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/5NdAVm7guDOe0yFhM81m0bljvtU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.241.60.0/23
Signature Algorithm: sha256WithRSAEncryption
5e:cc:26:20:e5:e5:a8:64:a1:83:d1:ad:55:20:b1:9f:62:40:
a0:1a:ea:00:60:94:d7:5f:d6:fd:a6:5c:b9:01:fa:d4:62:93:
9b:d0:55:79:1b:16:56:d0:31:c2:89:7d:49:7c:2f:ea:e8:54:
ec:f5:24:bd:38:ea:7a:f9:74:14:b5:5d:1a:b5:f7:58:9e:a5:
a4:cf:33:d5:fa:3c:33:f2:27:6c:e3:78:3c:35:b6:0f:d3:20:
b0:d2:f2:a7:87:27:18:40:4f:38:03:5f:58:ab:b5:3e:40:95:
e9:e8:e8:f0:8f:8a:97:ec:98:8a:36:8c:ec:28:f9:8f:9c:2a:
09:81:65:e3:bc:81:5e:d0:10:0a:83:23:01:56:ce:3b:92:0f:
1f:a1:a3:fe:46:ea:cf:fc:ce:1d:6c:89:c7:78:0b:77:dc:a8:
9c:f0:6f:72:3b:71:f3:a7:3a:96:4d:67:20:8f:8f:93:ee:f4:
07:ef:0b:87:1d:fe:1b:0a:e4:e9:15:58:f7:1a:8f:8f:28:d4:
1e:37:55:26:b6:e7:fb:97:b6:d0:28:e4:3e:85:2f:98:2b:68:
5f:8b:f7:45:0a:cc:9f:0a:95:19:9c:ed:f7:9d:8d:35:fa:ef:
e4:9d:17:ef:82:d3:d7:43:b6:07:70:59:83:4b:9f:b4:4e:86:
19:4f:88:69
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVupqhx0Cag0Qhe+8GqPfoLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhMjkwZGIyZjcyOTA1ZjBkYjYyNmIwMDViYWNmMDg4Nzhk
MTdiYWMwHhcNMjMwMTAxMTg0NDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNGQ3NDA1NjZlZTBiODMzOWVkMzIxNjEzM2NkNjZkMWI5NjNiZWQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqNZ0ZW+yONdTWiM3J3RQiw1cn02Z
q6SHRt/mfhamFbVtNToogXOnmaYDmaTHFFBK1VlZ5ykV1n93m2gjpDtxX1RWuA78
BnbPhz+3Nc42fQFA8jbr9jOdW+LoiKJurACgJKI0IYQTxSiv5B9ZKZTvHweZ7nOS
cClGORf0GE3/2Yj4nI0FxN6xkBA5yPXKqTE/j0tKVLgq3Pbp2LqfHh9bORcsWCdP
xPfbR1dEbEgrinRiJjhVLcORd2PI1b/oWRKDDuXCdoG8OsWW5EjFF4PdwbAWfob7
cmFxx1IjiyyNPVFTzgwX5uG5q4LWUEt6IsTqlxo4so5fcarduxNlEJDHTQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOTXQFZu4LgzntMhYTPNZtG5Y77VMB8GA1UdIwQY
MBaAFMopDbL3KQXw22JrAFus8Ih40XusMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWlrTnN2Y3BCZkRiWW1zQVc2endpSGpSZTZ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8yMTY5NzMtNTE2Zi00NTAxLTkxNjQt
N2Y0MzViZjU1MDFjLzEvNU5kQVZtN2d1RE9lMHlGaE04MW0wYmxqdnRVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZS8yMTY5NzMtNTE2Zi00NTAxLTkxNjQtN2Y0MzViZjU1MDFj
LzEveWlrTnN2Y3BCZkRiWW1zQVc2endpSGpSZTZ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBvPE8MA0G
CSqGSIb3DQEBCwUAA4IBAQBezCYg5eWoZKGD0a1VILGfYkCgGuoAYJTXX9b9ply5
AfrUYpOb0FV5GxZW0DHCiX1JfC/q6FTs9SS9OOp6+XQUtV0atfdYnqWkzzPV+jwz
8ids43g8NbYP0yCw0vKnhycYQE84A19Yq7U+QJXp6Ojwj4qX7JiKNozsKPmPnCoJ
gWXjvIFe0BAKgyMBVs47kg8foaP+RurP/M4dbInHeAt33Kic8G9yO3HzpzqWTWcg
j4+T7vQH7wuHHf4bCuTpFVj3Go+PKNQeN1Umtuf7l7bQKOQ+hS+YK2hfi/dFCsyf
CpUZnO33nY01+u/knRfvgtPXQ7YHcFmDS5+0ToYZT4hp
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:32 2024 by rpki-client on console-ams.rpki-client.org