Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/W8xjAl2I2MF78yV1tjJU794h0qo.roa
File: W8xjAl2I2MF78yV1tjJU794h0qo.roa (raw, json)
Hash identifier: ZuJsg9FjRRM2NICKwKPj4Y4DiDx9PdZ5NfJjpKziXjw=
Subject key identifier: 5B:CC:63:02:5D:88:D8:C1:7B:F3:25:75:B6:32:54:EF:DE:21:D2:AA
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0190ADFD9111A05A2A8D41F4638BF536C555
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/W8xjAl2I2MF78yV1tjJU794h0qo.roa
Signing time: Sat 13 Jul 2024 21:26:34 +0000
ROA not before: Sat 13 Jul 2024 21:26:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215232
IP address blocks: 194.87.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 14 Jul 2024 09:03:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ad:fd:91:11:a0:5a:2a:8d:41:f4:63:8b:f5:36:c5:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 13 21:26:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5bcc63025d88d8c17bf32575b63254efde21d2aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:37:20:b5:89:c6:fb:1a:12:9c:14:4c:41:c8:
6b:82:1e:3b:d4:59:f8:9f:f1:99:88:1d:ab:f7:09:
e2:7d:ab:f2:f3:0a:ef:a7:8e:52:77:0a:e3:9d:99:
51:59:96:3e:d2:b7:78:07:75:17:f3:15:b9:28:ac:
ed:42:8e:fc:a0:e7:8e:45:f0:0b:2a:3f:8e:30:39:
69:44:31:fb:ee:1d:f2:00:d8:d7:2b:72:a4:86:7a:
3c:a6:c0:7b:0a:bd:33:7b:76:b7:5c:c1:7e:05:9f:
c1:aa:c1:c7:e6:44:80:97:93:6e:a6:a6:65:c4:4f:
aa:f9:b3:fd:8c:51:bb:80:c4:76:51:de:0a:c6:18:
f2:b1:a6:93:ed:2a:ac:63:22:06:aa:e0:8c:a3:df:
32:1f:75:9f:3a:d2:91:ee:c5:d4:58:6f:b3:de:4d:
80:02:4c:67:80:72:14:0f:bb:ee:e4:3c:20:ae:c2:
34:a3:1b:f4:3c:4e:d1:10:1c:f3:07:9f:f9:67:92:
6d:93:2b:c7:dd:5e:2f:cb:bf:d3:bf:0a:02:ac:c5:
cc:8f:c0:89:9c:f6:79:58:ef:d3:f3:47:73:b5:ca:
6f:b9:80:03:75:fb:65:0b:52:1a:97:c3:5d:62:2f:
08:2e:44:da:73:67:a1:b5:d9:0b:b8:59:f8:58:6e:
2c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:CC:63:02:5D:88:D8:C1:7B:F3:25:75:B6:32:54:EF:DE:21:D2:AA
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/W8xjAl2I2MF78yV1tjJU794h0qo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.77.0/24
Signature Algorithm: sha256WithRSAEncryption
82:93:27:4e:9c:2e:7b:69:39:1f:82:12:40:6c:5a:43:47:8d:
be:8e:86:0d:5e:4e:25:dd:08:c0:df:19:cc:0c:9c:f9:90:d5:
f2:a4:c8:b2:0d:9a:f0:ba:af:0d:2e:3e:21:1a:d3:71:13:91:
0a:a3:57:fe:61:3f:86:8c:28:3b:1d:94:1b:50:db:43:73:7a:
bf:ed:af:8f:d2:00:65:de:a1:91:34:9c:63:e3:c5:89:1d:5f:
88:24:32:03:87:be:dc:b5:02:32:8b:d7:f2:94:b0:d4:7e:dc:
0e:db:1c:80:6b:59:1e:0b:59:8a:8d:6a:a8:c9:bf:2c:fe:75:
1f:13:e2:e0:45:48:2c:5d:5d:9e:a8:7c:7b:20:c1:2f:bc:f7:
ec:0f:db:35:e1:93:30:c8:ec:bd:90:d0:74:fc:ea:54:ad:f6:
9e:3a:e5:ae:02:eb:31:da:cd:fd:04:aa:05:07:58:6f:1b:f3:
67:b5:17:e7:99:5f:a8:e2:98:f4:96:76:e2:63:bf:39:a7:9d:
87:e5:59:d4:78:36:6f:45:9e:74:f3:f1:5e:92:2a:e6:3f:5d:
65:7e:41:60:09:08:f9:61:c2:34:2d:0c:63:53:25:50:5a:32:
dc:91:09:e3:19:b4:bb:a7:ae:c5:e5:4d:f9:ea:b0:6e:88:e7:
81:79:b9:65
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZCt/ZERoFoqjUH0Y4v1NsVVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjQwNzEzMjEyNjM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YmNjNjMwMjVkODhkOGMxN2JmMzI1NzViNjMyNTRlZmRlMjFkMmFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsTcgtYnG+xoSnBRMQchrgh471Fn4
n/GZiB2r9wnifavy8wrvp45SdwrjnZlRWZY+0rd4B3UX8xW5KKztQo78oOeORfAL
Kj+OMDlpRDH77h3yANjXK3Kkhno8psB7Cr0ze3a3XMF+BZ/BqsHH5kSAl5NupqZl
xE+q+bP9jFG7gMR2Ud4KxhjysaaT7SqsYyIGquCMo98yH3WfOtKR7sXUWG+z3k2A
AkxngHIUD7vu5DwgrsI0oxv0PE7REBzzB5/5Z5JtkyvH3V4vy7/TvwoCrMXMj8CJ
nPZ5WO/T80dztcpvuYADdftlC1Ial8NdYi8ILkTac2ehtdkLuFn4WG4sVQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFvMYwJdiNjBe/MldbYyVO/eIdKqMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvVzh4akFsMkkyTUY3OHlWMXRqSlU3OTRoMHFvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwldNMA0G
CSqGSIb3DQEBCwUAA4IBAQCCkydOnC57aTkfghJAbFpDR42+joYNXk4l3QjA3xnM
DJz5kNXypMiyDZrwuq8NLj4hGtNxE5EKo1f+YT+GjCg7HZQbUNtDc3q/7a+P0gBl
3qGRNJxj48WJHV+IJDIDh77ctQIyi9fylLDUftwO2xyAa1keC1mKjWqoyb8s/nUf
E+LgRUgsXV2eqHx7IMEvvPfsD9s14ZMwyOy9kNB0/OpUrfaeOuWuAusx2s39BKoF
B1hvG/NntRfnmV+o4pj0lnbiY785p52H5VnUeDZvRZ508/FekirmP11lfkFgCQj5
YcI0LQxjUyVQWjLckQnjGbS7p67F5U356rBuiOeBebll
-----END CERTIFICATE-----
Generated at Sun Jul 14 10:18:11 2024 by rpki-client on console-fra.rpki-client.org