Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/5bcea5-8e45-458a-b031-b78ff80a8027/1/5HxCiq3nNFFEciQb5VO-x0oR8fU.roa
File: 5HxCiq3nNFFEciQb5VO-x0oR8fU.roa (raw, json)
Hash identifier: LPhQzEe1qTjtakA9/it0BKlMhmdYQH+YNBliMxaKX+c=
Subject key identifier: E4:7C:42:8A:AD:E7:34:51:44:72:24:1B:E5:53:BE:C7:4A:11:F1:F5
Certificate issuer: /CN=552c9a1c9c4ff793e888bd583dca9815cc4574c0
Certificate serial: 01856F3907A93A75B9F7AF96C7752AA1ACE6
Authority key identifier: 55:2C:9A:1C:9C:4F:F7:93:E8:88:BD:58:3D:CA:98:15:CC:45:74:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VSyaHJxP95PoiL1YPcqYFcxFdMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/5bcea5-8e45-458a-b031-b78ff80a8027/1/5HxCiq3nNFFEciQb5VO-x0oR8fU.roa
Signing time: Sun 01 Jan 2023 21:24:46 +0000
ROA not before: Sun 01 Jan 2023 21:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49234
IP address blocks: 193.24.128.0/18 maxlen: 18
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:39:07:a9:3a:75:b9:f7:af:96:c7:75:2a:a1:ac:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=552c9a1c9c4ff793e888bd583dca9815cc4574c0
Validity
Not Before: Jan 1 21:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e47c428aade734514472241be553bec74a11f1f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:4c:97:85:c4:a1:2e:61:59:ba:7f:d1:36:54:
42:02:5a:73:c0:76:18:a1:64:b5:74:c2:fa:5d:04:
1b:a0:bc:52:7c:61:84:51:fb:c5:e7:13:1e:93:a9:
a9:f6:0d:26:f6:54:88:80:d3:30:f7:2c:71:0f:a6:
47:39:a3:54:67:f5:ca:f7:ff:9c:e0:3f:f6:d8:66:
24:7f:74:12:a9:15:70:b3:a6:04:d5:11:09:1e:2d:
80:bf:55:ac:db:c8:32:0e:fc:e5:f5:ac:23:16:2b:
d5:50:8b:4d:bc:70:51:f3:ac:0e:60:45:38:f8:84:
2a:70:e6:52:da:c2:c2:58:44:81:e3:af:51:5e:1c:
37:a6:95:37:af:7a:8b:a9:e0:4b:74:c2:7d:59:78:
0c:55:37:07:d3:f2:30:03:2d:87:5c:d5:e1:3a:03:
e9:35:e5:a6:f5:66:c1:2d:d0:77:ed:96:a3:28:1a:
87:b3:ed:f7:fa:39:c1:9e:ab:1c:9a:a7:86:b1:27:
aa:fe:a8:0d:f2:93:8c:19:1a:9c:71:47:08:11:a2:
fe:4d:a3:96:f1:a1:ad:ec:65:8a:a1:21:62:a8:5b:
f2:16:71:76:fe:13:8d:d5:68:59:b9:96:43:a6:a6:
a5:58:dd:ad:e1:15:5b:91:09:c4:20:dc:f3:80:72:
f2:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:7C:42:8A:AD:E7:34:51:44:72:24:1B:E5:53:BE:C7:4A:11:F1:F5
X509v3 Authority Key Identifier:
keyid:55:2C:9A:1C:9C:4F:F7:93:E8:88:BD:58:3D:CA:98:15:CC:45:74:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VSyaHJxP95PoiL1YPcqYFcxFdMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5bcea5-8e45-458a-b031-b78ff80a8027/1/5HxCiq3nNFFEciQb5VO-x0oR8fU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5bcea5-8e45-458a-b031-b78ff80a8027/1/VSyaHJxP95PoiL1YPcqYFcxFdMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.24.128.0/18
Signature Algorithm: sha256WithRSAEncryption
a1:a1:49:83:2a:5d:42:18:25:5e:22:ce:e0:9f:e4:87:74:07:
9a:c0:c7:ca:51:3a:cc:7f:e9:47:ab:14:4c:01:04:8d:13:a2:
02:55:6b:70:7c:f7:b3:7f:d9:38:14:08:8b:64:f3:69:50:e0:
7a:81:96:97:9f:9d:94:7a:ea:ea:6f:d7:10:68:50:ae:2b:57:
50:76:fc:31:ff:d9:90:75:2d:4a:3d:99:81:fd:69:c6:8a:99:
4d:8c:d0:0c:57:07:26:e7:73:36:5a:a6:df:f4:aa:34:d7:e4:
86:a1:82:25:a4:38:22:a3:e9:75:30:fc:55:53:06:4b:49:b4:
35:a5:88:a6:ec:5e:eb:3b:cd:e7:d2:c2:20:82:47:dc:65:2b:
22:39:ee:7e:46:6d:60:93:ae:e9:f3:38:e4:e2:a9:9f:38:d4:
fc:d0:a6:ce:6c:38:c0:f4:92:f3:c2:3f:b0:e4:e9:a9:a0:59:
9b:7b:1b:b4:67:19:4a:5c:62:db:3b:fc:da:e2:6d:61:1b:aa:
55:ff:f0:9f:dd:0a:d6:ee:a9:5e:29:b7:59:f1:72:8c:7f:e6:
09:6d:bf:57:13:de:db:56:a7:66:6b:6a:5d:ec:63:39:06:97:
42:ba:ec:cd:51:2a:58:ef:88:04:7f:d2:e2:f9:8b:9d:1c:43:
e6:c0:1e:b6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvOQepOnW596+Wx3UqoazmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU1MmM5YTFjOWM0ZmY3OTNlODg4YmQ1ODNkY2E5ODE1Y2M0
NTc0YzAwHhcNMjMwMTAxMjEyNDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNDdjNDI4YWFkZTczNDUxNDQ3MjI0MWJlNTUzYmVjNzRhMTFmMWY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiEyXhcShLmFZun/RNlRCAlpzwHYY
oWS1dML6XQQboLxSfGGEUfvF5xMek6mp9g0m9lSIgNMw9yxxD6ZHOaNUZ/XK9/+c
4D/22GYkf3QSqRVws6YE1REJHi2Av1Ws28gyDvzl9awjFivVUItNvHBR86wOYEU4
+IQqcOZS2sLCWESB469RXhw3ppU3r3qLqeBLdMJ9WXgMVTcH0/IwAy2HXNXhOgPp
NeWm9WbBLdB37ZajKBqHs+33+jnBnqscmqeGsSeq/qgN8pOMGRqccUcIEaL+TaOW
8aGt7GWKoSFiqFvyFnF2/hON1WhZuZZDpqalWN2t4RVbkQnEINzzgHLyrQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOR8Qoqt5zRRRHIkG+VTvsdKEfH1MB8GA1UdIwQY
MBaAFFUsmhycT/eT6Ii9WD3KmBXMRXTAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVlN5YUhKeFA5NVBvaUwxWVBjcVlGY3hGZE1BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi81YmNlYTUtOGU0NS00NThhLWIwMzEt
Yjc4ZmY4MGE4MDI3LzEvNUh4Q2lxM25ORkZFY2lRYjVWTy14MG9SOGZVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi81YmNlYTUtOGU0NS00NThhLWIwMzEtYjc4ZmY4MGE4MDI3
LzEvVlN5YUhKeFA5NVBvaUwxWVBjcVlGY3hGZE1BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGwRiAMA0G
CSqGSIb3DQEBCwUAA4IBAQChoUmDKl1CGCVeIs7gn+SHdAeawMfKUTrMf+lHqxRM
AQSNE6ICVWtwfPezf9k4FAiLZPNpUOB6gZaXn52Ueurqb9cQaFCuK1dQdvwx/9mQ
dS1KPZmB/WnGiplNjNAMVwcm53M2Wqbf9Ko01+SGoYIlpDgio+l1MPxVUwZLSbQ1
pYim7F7rO83n0sIggkfcZSsiOe5+Rm1gk67p8zjk4qmfONT80KbObDjA9JLzwj+w
5OmpoFmbexu0ZxlKXGLbO/za4m1hG6pV//Cf3QrW7qleKbdZ8XKMf+YJbb9XE97b
Vqdma2pd7GM5BpdCuuzNUSpY74gEf9Li+YudHEPmwB62
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:44 2024 by rpki-client on console-fra.rpki-client.org