Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/iZYu5H81asSh4JedJgvfmft9RBo.roa
File: iZYu5H81asSh4JedJgvfmft9RBo.roa (raw, json)
Hash identifier: qVw+5AN5Qw6T5g0e0iNV8FwajxizI/ThLCby0AIIhlM=
Subject key identifier: 89:96:2E:E4:7F:35:6A:C4:A1:E0:97:9D:26:0B:DF:99:FB:7D:44:1A
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018862C2AAD421750A0418EE9B208A05D794
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/iZYu5H81asSh4JedJgvfmft9RBo.roa
Signing time: Sun 28 May 2023 14:28:24 +0000
ROA not before: Sun 28 May 2023 14:28:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44547
IP address blocks: 212.192.5.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:62:c2:aa:d4:21:75:0a:04:18:ee:9b:20:8a:05:d7:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: May 28 14:28:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=89962ee47f356ac4a1e0979d260bdf99fb7d441a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:52:5a:60:7a:f6:6c:12:59:20:e5:bb:8d:2a:
09:6b:5a:e6:8f:94:8b:6b:33:fb:61:3a:58:8c:ad:
32:57:d0:26:50:22:08:26:c9:66:f4:89:05:26:1d:
9f:58:f1:6a:9c:b9:5b:62:99:fd:c7:ea:4a:df:4c:
b1:b9:2d:f1:fe:05:51:55:b3:49:27:87:94:85:c4:
0b:95:81:5e:b0:eb:14:60:f7:99:d1:65:ef:eb:28:
84:da:25:12:00:ab:02:95:2c:4e:cd:40:18:96:e4:
00:b9:58:32:64:22:62:f3:b5:b7:f7:b6:01:f8:6d:
79:21:de:43:43:38:b8:c2:50:d3:7c:e1:91:92:0d:
e6:01:3a:54:67:53:56:ef:ea:0d:12:a0:bb:b6:12:
c9:7a:d3:61:62:9d:e5:bb:a4:c2:95:d4:58:60:92:
33:b1:c3:76:2f:f6:3f:e3:a7:6e:66:44:fc:a3:5b:
c3:a3:4d:a0:58:c4:a7:12:86:8a:c1:66:50:ef:34:
37:70:ab:d4:dc:c2:6a:fb:0a:1d:b6:0e:00:36:e7:
60:86:f5:a9:d3:b2:2e:4b:80:4d:c7:47:88:ea:62:
cf:d5:b0:bb:75:f0:a6:2b:0c:6d:34:18:56:c4:17:
ed:6b:93:69:5f:ba:18:34:25:1e:59:5a:dd:b4:26:
f4:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:96:2E:E4:7F:35:6A:C4:A1:E0:97:9D:26:0B:DF:99:FB:7D:44:1A
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/iZYu5H81asSh4JedJgvfmft9RBo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.192.5.0/24
Signature Algorithm: sha256WithRSAEncryption
84:3e:b2:ce:52:e9:bc:72:b6:11:bb:72:fd:81:53:96:4a:4e:
64:dd:f8:3b:c3:ea:d6:f7:d6:b0:7d:0e:f9:c7:3d:18:13:98:
57:b7:f9:1f:d7:fe:d1:09:4b:7b:13:0e:38:87:83:d3:ce:83:
52:0a:a7:3c:bd:61:43:14:3e:34:12:a4:02:4c:72:dd:05:f3:
b1:f9:14:1d:53:66:fc:37:b4:ed:e7:14:0a:f4:81:c1:4c:1d:
b5:b6:17:da:00:5c:7e:0d:2b:0c:13:ed:10:53:13:05:2c:5d:
64:b0:e8:d1:cd:f9:5a:38:21:3c:df:25:76:6e:80:ca:65:46:
a6:20:c1:bf:05:6b:45:00:38:8e:af:1f:cc:82:eb:ad:63:4b:
53:d3:5c:a2:a3:96:0e:49:7b:54:92:fe:2f:8c:69:db:ab:9d:
90:b0:19:d5:e5:50:8d:4c:53:16:ba:af:b9:ed:b4:a3:6d:9b:
60:9e:8a:d1:8e:16:61:df:56:66:a6:05:2d:68:48:c8:48:43:
ce:e1:46:e4:3c:42:e0:3d:5e:28:5a:21:a9:09:d4:83:8b:3e:
d3:1d:61:82:38:cb:10:d7:99:9b:70:51:9c:75:10:3e:a7:3e:
55:ba:4a:5b:b0:5d:3f:fa:44:66:d0:18:96:8a:58:86:11:32:
aa:c1:2c:f3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYhiwqrUIXUKBBjumyCKBdeUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1NjkwZjVlMzJkNWM4NmFmMWUxMzQ5ZGZkNGU4Y2VlYjcw
ZTFhYzcwHhcNMjMwNTI4MTQyODI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OTk2MmVlNDdmMzU2YWM0YTFlMDk3OWQyNjBiZGY5OWZiN2Q0NDFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiFJaYHr2bBJZIOW7jSoJa1rmj5SL
azP7YTpYjK0yV9AmUCIIJslm9IkFJh2fWPFqnLlbYpn9x+pK30yxuS3x/gVRVbNJ
J4eUhcQLlYFesOsUYPeZ0WXv6yiE2iUSAKsClSxOzUAYluQAuVgyZCJi87W397YB
+G15Id5DQzi4wlDTfOGRkg3mATpUZ1NW7+oNEqC7thLJetNhYp3lu6TCldRYYJIz
scN2L/Y/46duZkT8o1vDo02gWMSnEoaKwWZQ7zQ3cKvU3MJq+wodtg4ANudghvWp
07IuS4BNx0eI6mLP1bC7dfCmKwxtNBhWxBfta5NpX7oYNCUeWVrdtCb0CwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFImWLuR/NWrEoeCXnSYL35n7fUQaMB8GA1UdIwQY
MBaAFDVpD14y1chq8eE0nf1OjO63DhrHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjIt
NWE0MjQyOGYxMTQzLzEvaVpZdTVIODFhc1NoNEplZEpndmZtZnQ5UkJvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9lMTQ0N2EtOGYxOC00YTgwLWE0MjItNWE0MjQyOGYxMTQz
LzEvTldrUFhqTFZ5R3J4NFRTZF9VNk03cmNPR3NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1MAFMA0G
CSqGSIb3DQEBCwUAA4IBAQCEPrLOUum8crYRu3L9gVOWSk5k3fg7w+rW99awfQ75
xz0YE5hXt/kf1/7RCUt7Ew44h4PTzoNSCqc8vWFDFD40EqQCTHLdBfOx+RQdU2b8
N7Tt5xQK9IHBTB21thfaAFx+DSsME+0QUxMFLF1ksOjRzflaOCE83yV2boDKZUam
IMG/BWtFADiOrx/MguutY0tT01yio5YOSXtUkv4vjGnbq52QsBnV5VCNTFMWuq+5
7bSjbZtgnorRjhZh31ZmpgUtaEjISEPO4UbkPELgPV4oWiGpCdSDiz7THWGCOMsQ
15mbcFGcdRA+pz5VukpbsF0/+kRm0BiWiliGETKqwSzz
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:04 2023 by rpki-client on console-ams.rpki-client.org