Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/tWJN8UkbwKxaYsaLvLwNj-MuBIY.roa
File: tWJN8UkbwKxaYsaLvLwNj-MuBIY.roa (raw, json)
Hash identifier: PdeLjVVtntuunh3Xunv6YjWLeds8h5XQ/wM3qWnvBAg=
Subject key identifier: B5:62:4D:F1:49:1B:C0:AC:5A:62:C6:8B:BC:BC:0D:8F:E3:2E:04:86
Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Certificate serial: 018798319DEC9FAB53B1510AB89B8E591D23
Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/tWJN8UkbwKxaYsaLvLwNj-MuBIY.roa
Signing time: Wed 19 Apr 2023 06:26:41 +0000
ROA not before: Wed 19 Apr 2023 06:26:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60912
IP address blocks: 139.28.72.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 19 Apr 2023 08:25:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:98:31:9d:ec:9f:ab:53:b1:51:0a:b8:9b:8e:59:1d:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Validity
Not Before: Apr 19 06:26:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b5624df1491bc0ac5a62c68bbcbc0d8fe32e0486
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a2:05:fa:c4:a5:99:6a:03:9a:ee:e6:0f:5f:
52:c2:e8:62:5c:fc:2d:ab:cf:a3:58:22:4e:c8:93:
ba:5c:b6:a1:c9:91:49:9f:bb:31:c2:4e:0e:ee:1b:
8e:94:7e:24:55:aa:cc:c4:4d:b5:57:b9:22:3d:b2:
c4:8b:bf:35:68:35:d5:13:95:51:63:41:09:af:f5:
d8:97:b5:58:5a:8c:10:da:6f:ff:15:e1:4c:b4:fb:
eb:33:19:82:63:45:78:28:32:aa:18:b7:57:21:92:
c0:f2:26:e2:6b:68:03:e0:1a:0d:3d:31:f8:d8:07:
fd:c1:7d:23:6a:70:36:8a:9e:11:0f:8e:e5:54:da:
1b:cb:42:c9:49:bc:b6:07:ae:0c:cb:d3:b4:7b:ad:
9b:2b:d0:bc:3a:ee:ee:5c:c0:e7:80:f7:0f:ff:d2:
45:56:97:74:f0:03:73:53:63:58:9e:bc:3f:2c:b9:
ba:0a:44:9c:fa:2b:cb:74:c9:15:9e:59:e4:b5:e8:
8e:36:71:d0:d6:ba:e6:0e:34:7f:7e:4c:40:57:d9:
8b:bc:2f:6e:ec:a5:0a:11:d9:b8:6a:75:7f:e6:a9:
46:87:f5:ec:17:12:df:25:6b:0a:32:30:17:05:12:
2d:8e:25:bf:bc:7e:81:84:23:d5:c7:44:67:7d:ed:
ca:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:62:4D:F1:49:1B:C0:AC:5A:62:C6:8B:BC:BC:0D:8F:E3:2E:04:86
X509v3 Authority Key Identifier:
keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/tWJN8UkbwKxaYsaLvLwNj-MuBIY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.72.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:9e:c6:77:ea:51:58:c9:b4:77:d0:a8:f9:1d:0c:8a:22:95:
40:d6:4a:40:a8:0e:a2:03:95:03:96:3d:3d:66:e4:f7:1f:24:
b6:0f:36:15:20:b0:e7:45:f3:4b:be:7b:6b:4b:10:2d:72:2e:
3a:58:32:dd:b8:7a:f3:11:15:8a:f4:58:2c:c8:a8:45:74:66:
73:3c:47:df:0d:00:37:2f:7a:1d:62:67:91:c1:e4:a9:94:00:
87:3a:8b:60:d5:1b:a2:d7:e0:e7:6f:45:aa:f2:4f:79:18:ed:
d8:98:c5:45:f4:7c:ad:81:e2:88:44:f0:ed:ad:46:90:98:0d:
c5:14:94:9d:e6:75:23:9c:80:28:73:45:67:b6:0d:82:84:88:
44:c1:a2:e1:ee:34:b6:3a:7c:61:6d:64:d7:54:f8:25:33:10:
0f:4c:54:48:7b:5c:3f:8c:cc:00:b7:5c:06:a3:c5:7e:d8:82:
4a:0b:b3:43:d9:db:5b:49:d0:f9:bb:0c:c3:7b:22:a0:21:67:
9f:ed:a5:86:dc:19:d5:5a:ff:52:2a:02:cb:37:8d:17:0e:6a:
d8:91:5b:c7:b0:28:48:74:7d:d8:59:b1:82:1a:67:cc:d1:33:
d6:00:2c:79:49:83:ca:99:f1:11:af:c8:da:91:a8:f6:cb:84:
bc:52:4c:16
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYeYMZ3sn6tTsVEKuJuOWR0jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkMjBkZGQzOThkYWM4ZjYyY2MxMjUyNjMyNWYxODIxZmI3
MjRmNzUwHhcNMjMwNDE5MDYyNjQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNTYyNGRmMTQ5MWJjMGFjNWE2MmM2OGJiY2JjMGQ4ZmUzMmUwNDg2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuqIF+sSlmWoDmu7mD19SwuhiXPwt
q8+jWCJOyJO6XLahyZFJn7sxwk4O7huOlH4kVarMxE21V7kiPbLEi781aDXVE5VR
Y0EJr/XYl7VYWowQ2m//FeFMtPvrMxmCY0V4KDKqGLdXIZLA8ibia2gD4BoNPTH4
2Af9wX0janA2ip4RD47lVNoby0LJSby2B64My9O0e62bK9C8Ou7uXMDngPcP/9JF
Vpd08ANzU2NYnrw/LLm6CkSc+ivLdMkVnlnkteiONnHQ1rrmDjR/fkxAV9mLvC9u
7KUKEdm4anV/5qlGh/XsFxLfJWsKMjAXBRItjiW/vH6BhCPVx0Rnfe3KHQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLViTfFJG8CsWmLGi7y8DY/jLgSGMB8GA1UdIwQY
MBaAFG0g3dOY2sj2LMElJjJfGCH7ck91MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmIt
MzZkZTY1NzIzMmJlLzEvdFdKTjhVa2J3S3hhWXNhTHZMd05qLU11QklZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmItMzZkZTY1NzIzMmJl
LzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCixxIMA0G
CSqGSIb3DQEBCwUAA4IBAQBNnsZ36lFYybR30Kj5HQyKIpVA1kpAqA6iA5UDlj09
ZuT3HyS2DzYVILDnRfNLvntrSxAtci46WDLduHrzERWK9FgsyKhFdGZzPEffDQA3
L3odYmeRweSplACHOotg1Rui1+Dnb0Wq8k95GO3YmMVF9HytgeKIRPDtrUaQmA3F
FJSd5nUjnIAoc0Vntg2ChIhEwaLh7jS2OnxhbWTXVPglMxAPTFRIe1w/jMwAt1wG
o8V+2IJKC7ND2dtbSdD5uwzDeyKgIWef7aWG3BnVWv9SKgLLN40XDmrYkVvHsChI
dH3YWbGCGmfM0TPWACx5SYPKmfERr8jakaj2y4S8UkwW
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:37 2024 by rpki-client on console-fra.rpki-client.org