Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/aeb8bc-884c-404f-bcb2-fcd37f26047f/1/XV7hDPM_eZUAblozIRVDAbi3gUQ.roa
File: XV7hDPM_eZUAblozIRVDAbi3gUQ.roa (raw, json)
Hash identifier: ckoPwc5HC/NFg8wVFLBJ1+C3N1450yNpESkTI2NeLpQ=
Subject key identifier: 5D:5E:E1:0C:F3:3F:79:95:00:6E:5A:33:21:15:43:01:B8:B7:81:44
Certificate issuer: /CN=b653166a6f1f33e4720e67d24dd32e44580352f0
Certificate serial: 018800DF8827FBE5E7DD2B991AA67BA92D28
Authority key identifier: B6:53:16:6A:6F:1F:33:E4:72:0E:67:D2:4D:D3:2E:44:58:03:52:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tlMWam8fM-RyDmfSTdMuRFgDUvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/aeb8bc-884c-404f-bcb2-fcd37f26047f/1/XV7hDPM_eZUAblozIRVDAbi3gUQ.roa
Signing time: Tue 09 May 2023 14:17:09 +0000
ROA not before: Tue 09 May 2023 14:17:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52012
IP address blocks: 192.109.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:00:df:88:27:fb:e5:e7:dd:2b:99:1a:a6:7b:a9:2d:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b653166a6f1f33e4720e67d24dd32e44580352f0
Validity
Not Before: May 9 14:17:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5d5ee10cf33f7995006e5a3321154301b8b78144
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:02:2d:a6:4d:40:0e:e7:18:a9:e6:47:d1:cd:
e9:de:4a:2a:08:ab:3a:79:94:ec:83:70:3a:1d:e7:
9e:48:a7:c8:80:b9:a2:28:41:96:d2:c0:9d:eb:b3:
4f:9a:82:f8:76:01:f2:43:14:b7:50:53:32:16:90:
e1:3c:7e:95:6e:80:24:1c:73:8c:ff:53:38:6c:0f:
ee:c7:64:1d:f6:a1:5b:98:f2:e0:fc:86:dc:42:b1:
33:77:1e:df:84:da:76:7f:36:08:ae:cf:ae:76:44:
ca:dd:88:23:c0:27:99:dd:e6:fd:f2:1e:cb:df:0b:
da:a2:35:3b:1b:3d:a0:a4:80:39:73:92:6f:9e:81:
75:22:bb:5b:aa:6b:84:0a:10:03:2d:c7:d0:94:43:
ff:bd:6a:5f:96:9c:12:ab:e1:d3:df:39:09:f4:23:
7a:be:62:14:95:90:78:62:1a:ce:bd:69:16:52:43:
2e:ec:45:02:1a:67:0f:c5:b4:63:b5:cc:d5:b6:11:
9d:24:af:30:77:e7:0d:ab:3c:02:0f:f3:97:ee:07:
d2:c7:f7:e9:ba:d9:bc:15:63:48:27:5a:cd:86:83:
a1:b7:d1:6b:2f:c1:ff:cd:df:96:fd:82:9d:f3:d6:
b4:ba:4d:43:11:dc:2b:5e:93:8f:1e:6b:b2:35:0b:
a7:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:5E:E1:0C:F3:3F:79:95:00:6E:5A:33:21:15:43:01:B8:B7:81:44
X509v3 Authority Key Identifier:
keyid:B6:53:16:6A:6F:1F:33:E4:72:0E:67:D2:4D:D3:2E:44:58:03:52:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tlMWam8fM-RyDmfSTdMuRFgDUvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/aeb8bc-884c-404f-bcb2-fcd37f26047f/1/XV7hDPM_eZUAblozIRVDAbi3gUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/aeb8bc-884c-404f-bcb2-fcd37f26047f/1/tlMWam8fM-RyDmfSTdMuRFgDUvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.109.195.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:4e:09:e6:f4:e8:5a:a4:39:40:5a:6f:e9:e4:58:f5:a8:f0:
eb:0c:bc:ba:f5:67:8d:dd:59:14:5b:fe:a8:53:a9:8a:dd:eb:
38:cf:81:71:95:bb:43:cf:2a:b6:ad:af:44:14:3b:b8:14:9f:
a4:5c:f7:2f:e2:ae:ce:d3:8c:55:3a:bf:6a:4c:00:87:7e:8f:
1b:d4:75:1a:a8:a9:da:78:65:a2:4a:17:6a:d0:d2:cf:1d:b1:
20:05:dc:9d:3e:01:37:32:99:44:81:01:61:1f:e5:72:d7:57:
39:17:9f:dd:77:29:ee:48:7e:92:76:0d:7e:d3:a5:89:0a:cd:
92:74:9e:90:9a:9d:30:ce:3f:c9:4d:55:ae:23:f5:79:8c:21:
ca:bb:b5:a3:2e:c1:65:14:b2:86:ca:74:c4:bf:76:ef:86:00:
4c:16:db:0d:ed:e4:b7:91:0c:8e:56:76:3d:80:b8:a1:6f:bf:
73:58:63:dd:27:70:43:65:2b:99:1d:1c:61:d9:6a:c0:35:a6:
7d:71:b4:3a:c7:bd:ab:00:eb:2e:9f:f7:4e:2c:bd:1c:92:5f:
79:e8:78:20:45:02:7d:4d:09:45:4b:c2:18:65:99:ec:36:b2:
2d:4a:87:58:5e:61:21:81:cf:8f:47:2b:a7:f8:23:ae:c4:c6:
30:09:46:27
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYgA34gn++Xn3SuZGqZ7qS0oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2NTMxNjZhNmYxZjMzZTQ3MjBlNjdkMjRkZDMyZTQ0NTgw
MzUyZjAwHhcNMjMwNTA5MTQxNzA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZDVlZTEwY2YzM2Y3OTk1MDA2ZTVhMzMyMTE1NDMwMWI4Yjc4MTQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjgItpk1ADucYqeZH0c3p3koqCKs6
eZTsg3A6HeeeSKfIgLmiKEGW0sCd67NPmoL4dgHyQxS3UFMyFpDhPH6VboAkHHOM
/1M4bA/ux2Qd9qFbmPLg/IbcQrEzdx7fhNp2fzYIrs+udkTK3YgjwCeZ3eb98h7L
3wvaojU7Gz2gpIA5c5JvnoF1IrtbqmuEChADLcfQlEP/vWpflpwSq+HT3zkJ9CN6
vmIUlZB4YhrOvWkWUkMu7EUCGmcPxbRjtczVthGdJK8wd+cNqzwCD/OX7gfSx/fp
utm8FWNIJ1rNhoOht9FrL8H/zd+W/YKd89a0uk1DEdwrXpOPHmuyNQun1wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF1e4QzzP3mVAG5aMyEVQwG4t4FEMB8GA1UdIwQY
MBaAFLZTFmpvHzPkcg5n0k3TLkRYA1LwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdGxNV2FtOGZNLVJ5RG1mU1RkTXVSRmdEVXZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC9hZWI4YmMtODg0Yy00MDRmLWJjYjIt
ZmNkMzdmMjYwNDdmLzEvWFY3aERQTV9lWlVBYmxveklSVkRBYmkzZ1VRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC9hZWI4YmMtODg0Yy00MDRmLWJjYjItZmNkMzdmMjYwNDdm
LzEvdGxNV2FtOGZNLVJ5RG1mU1RkTXVSRmdEVXZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwG3DMA0G
CSqGSIb3DQEBCwUAA4IBAQCwTgnm9OhapDlAWm/p5Fj1qPDrDLy69WeN3VkUW/6o
U6mK3es4z4FxlbtDzyq2ra9EFDu4FJ+kXPcv4q7O04xVOr9qTACHfo8b1HUaqKna
eGWiShdq0NLPHbEgBdydPgE3MplEgQFhH+Vy11c5F5/ddynuSH6Sdg1+06WJCs2S
dJ6Qmp0wzj/JTVWuI/V5jCHKu7WjLsFlFLKGynTEv3bvhgBMFtsN7eS3kQyOVnY9
gLihb79zWGPdJ3BDZSuZHRxh2WrANaZ9cbQ6x72rAOsun/dOLL0ckl956HggRQJ9
TQlFS8IYZZnsNrItSodYXmEhgc+PRyun+COuxMYwCUYn
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:48 2024 by rpki-client on console-fra.rpki-client.org