Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f58e8a-6227-4d07-ac59-76ed5cb0e022/1/bgQPK5SyDwRmrbix3ZZv-ycjpLQ.roa
File: bgQPK5SyDwRmrbix3ZZv-ycjpLQ.roa (raw, json)
Hash identifier: s82wSGyiEpIKk5S70ZvMS1hp5LACFmoogLw96YHEMfw=
Subject key identifier: 6E:04:0F:2B:94:B2:0F:04:66:AD:B8:B1:DD:96:6F:FB:27:23:A4:B4
Certificate issuer: /CN=5e231df87bdfe227a7e5e419340370bab301e279
Certificate serial: 018ADA9B53A32860400AF7E80456E0271F27
Authority key identifier: 5E:23:1D:F8:7B:DF:E2:27:A7:E5:E4:19:34:03:70:BA:B3:01:E2:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XiMd-Hvf4ien5eQZNANwurMB4nk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f58e8a-6227-4d07-ac59-76ed5cb0e022/1/bgQPK5SyDwRmrbix3ZZv-ycjpLQ.roa
Signing time: Thu 28 Sep 2023 07:05:27 +0000
ROA not before: Thu 28 Sep 2023 07:05:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 5.23.34.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:da:9b:53:a3:28:60:40:0a:f7:e8:04:56:e0:27:1f:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e231df87bdfe227a7e5e419340370bab301e279
Validity
Not Before: Sep 28 07:05:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6e040f2b94b20f0466adb8b1dd966ffb2723a4b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:aa:03:b5:34:7b:4e:b9:63:c6:b4:c5:50:e8:
9d:17:25:54:a1:5d:c0:93:55:44:23:27:a1:23:01:
ca:c1:14:95:ba:03:25:98:4d:6a:ee:76:3d:51:16:
c9:a8:00:3e:ea:51:48:20:65:05:87:6b:d1:9a:e4:
8d:28:8a:c7:51:4d:90:45:18:76:07:9c:e2:14:98:
bf:fc:e0:81:d6:c4:b6:1c:91:5c:27:f3:ec:1e:d6:
14:eb:3e:9e:2e:f8:75:94:42:b0:16:63:23:0a:c1:
da:ca:eb:b5:d7:57:0d:ad:f4:7b:44:a7:9a:6f:4a:
33:d3:cd:b0:17:c0:92:2e:c6:ec:65:21:c5:03:8e:
c2:21:8d:77:6d:cd:ce:43:a8:9f:04:f3:6b:8e:53:
d4:31:78:ce:fe:76:88:c3:ca:b2:2b:ee:37:11:9e:
42:dc:22:1f:83:2d:62:9b:2b:56:e1:60:98:b4:eb:
4e:22:43:69:12:0b:35:2b:bf:23:26:b0:bf:59:0b:
fd:99:2d:d0:2b:84:ba:13:27:c9:0c:ec:77:bc:04:
93:10:81:d4:af:ad:dd:c3:1a:e5:05:6d:cd:40:05:
0a:27:60:dc:9e:25:a0:96:51:ee:0c:e0:b7:64:14:
95:3a:65:d7:f5:a1:a6:a7:22:e2:0a:d7:a4:24:34:
27:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:04:0F:2B:94:B2:0F:04:66:AD:B8:B1:DD:96:6F:FB:27:23:A4:B4
X509v3 Authority Key Identifier:
keyid:5E:23:1D:F8:7B:DF:E2:27:A7:E5:E4:19:34:03:70:BA:B3:01:E2:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XiMd-Hvf4ien5eQZNANwurMB4nk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f58e8a-6227-4d07-ac59-76ed5cb0e022/1/bgQPK5SyDwRmrbix3ZZv-ycjpLQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f58e8a-6227-4d07-ac59-76ed5cb0e022/1/XiMd-Hvf4ien5eQZNANwurMB4nk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.23.34.0/24
Signature Algorithm: sha256WithRSAEncryption
57:ed:ed:11:92:75:3f:4e:a8:4d:66:ae:45:d8:5a:19:83:02:
5b:50:8c:8c:ef:50:74:9d:45:f7:8a:47:2e:fa:32:f8:3e:63:
e0:18:69:55:41:6e:5d:b8:80:4f:45:f9:a3:ac:7a:2e:3a:ae:
df:2a:33:ed:9f:15:09:d8:04:0a:50:e2:90:b5:c7:45:a8:86:
c5:49:51:40:26:45:8a:e0:c2:59:8f:93:54:3e:6a:84:b5:2f:
c2:03:09:f6:b0:95:bf:ac:fb:6d:17:8e:ad:1e:9e:93:6e:17:
ae:dd:cf:0e:af:1d:47:ff:df:80:b3:a7:55:9b:29:9c:6d:f8:
0e:d3:01:2c:f1:34:dd:cf:d3:b7:7e:4f:2d:0f:30:3e:f6:f1:
41:6b:b3:f2:1b:70:b3:c1:79:87:9e:db:56:86:88:e0:75:31:
96:ff:73:4d:1d:15:b0:f6:37:ce:7f:c3:c5:c9:da:d1:ba:cc:
67:97:5f:9e:fb:c0:fe:b5:f0:13:00:ac:df:2f:24:5d:a6:67:
a4:2f:ed:ed:46:98:1f:4e:81:ff:21:1c:b2:f2:73:c8:fd:73:
33:86:f8:53:e0:54:02:98:da:42:30:a1:36:10:69:f4:6b:84:
e5:a8:89:ce:ae:2d:cd:13:5f:06:67:04:7e:73:99:8b:72:1a:
73:c0:76:de
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYram1OjKGBACvfoBFbgJx8nMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlMjMxZGY4N2JkZmUyMjdhN2U1ZTQxOTM0MDM3MGJhYjMw
MWUyNzkwHhcNMjMwOTI4MDcwNTI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZTA0MGYyYjk0YjIwZjA0NjZhZGI4YjFkZDk2NmZmYjI3MjNhNGI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmaoDtTR7TrljxrTFUOidFyVUoV3A
k1VEIyehIwHKwRSVugMlmE1q7nY9URbJqAA+6lFIIGUFh2vRmuSNKIrHUU2QRRh2
B5ziFJi//OCB1sS2HJFcJ/PsHtYU6z6eLvh1lEKwFmMjCsHayuu111cNrfR7RKea
b0oz082wF8CSLsbsZSHFA47CIY13bc3OQ6ifBPNrjlPUMXjO/naIw8qyK+43EZ5C
3CIfgy1imytW4WCYtOtOIkNpEgs1K78jJrC/WQv9mS3QK4S6EyfJDOx3vASTEIHU
r63dwxrlBW3NQAUKJ2DcniWgllHuDOC3ZBSVOmXX9aGmpyLiCtekJDQn7wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG4EDyuUsg8EZq24sd2Wb/snI6S0MB8GA1UdIwQY
MBaAFF4jHfh73+Inp+XkGTQDcLqzAeJ5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGlNZC1IdmY0aWVuNWVRWk5BTnd1ck1CNG5rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy9mNThlOGEtNjIyNy00ZDA3LWFjNTkt
NzZlZDVjYjBlMDIyLzEvYmdRUEs1U3lEd1JtcmJpeDNaWnYteWNqcExRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy9mNThlOGEtNjIyNy00ZDA3LWFjNTktNzZlZDVjYjBlMDIy
LzEvWGlNZC1IdmY0aWVuNWVRWk5BTnd1ck1CNG5rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABRciMA0G
CSqGSIb3DQEBCwUAA4IBAQBX7e0RknU/TqhNZq5F2FoZgwJbUIyM71B0nUX3ikcu
+jL4PmPgGGlVQW5duIBPRfmjrHouOq7fKjPtnxUJ2AQKUOKQtcdFqIbFSVFAJkWK
4MJZj5NUPmqEtS/CAwn2sJW/rPttF46tHp6Tbheu3c8Orx1H/9+As6dVmymcbfgO
0wEs8TTdz9O3fk8tDzA+9vFBa7PyG3CzwXmHnttWhojgdTGW/3NNHRWw9jfOf8PF
ydrRusxnl1+e+8D+tfATAKzfLyRdpmekL+3tRpgfToH/IRyy8nPI/XMzhvhT4FQC
mNpCMKE2EGn0a4TlqInOri3NE18GZwR+c5mLchpzwHbe
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:10 2024 by rpki-client on console-fra.rpki-client.org