Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/BRDtXmqY_FtMdSalt6UwAZ8wfgU.roa
File: BRDtXmqY_FtMdSalt6UwAZ8wfgU.roa (raw, json)
Hash identifier: lSJ3y+j4NilA+vY5/O4P1weHMcl+eFb6S9h7oKuGwkY=
Subject key identifier: 05:10:ED:5E:6A:98:FC:5B:4C:75:26:A5:B7:A5:30:01:9F:30:7E:05
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01933249B0D7883F77DE113B060323988D43
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/BRDtXmqY_FtMdSalt6UwAZ8wfgU.roa
Signing time: Sat 16 Nov 2024 00:05:10 +0000
ROA not before: Sat 16 Nov 2024 00:05:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211975
IP address blocks: 5.253.65.0/24 maxlen: 24
164.40.185.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Nov 2024 00:19:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:32:49:b0:d7:88:3f:77:de:11:3b:06:03:23:98:8d:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Nov 16 00:05:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0510ed5e6a98fc5b4c7526a5b7a530019f307e05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:fe:94:26:64:44:02:af:d7:53:9a:51:d3:c6:
1f:34:e6:0e:92:f5:96:99:89:bc:f4:3b:39:29:5d:
bf:bd:f8:23:e1:ef:0c:76:99:22:b5:56:67:0e:1d:
49:1e:e1:31:48:6f:23:9b:7c:e5:ea:36:6c:f3:e5:
22:53:c1:88:35:be:e2:c4:99:c8:d6:cf:26:e8:16:
1f:10:97:08:fe:81:fc:85:ad:45:0b:0a:d8:90:f8:
b0:2c:19:7f:f1:64:72:4f:39:97:e7:0b:01:bc:63:
1b:d6:09:a4:3d:9a:b5:73:84:bd:69:17:00:b3:eb:
fc:f8:c2:0c:e1:7a:9c:3f:4e:fa:30:a2:1f:1b:2a:
e0:64:af:7b:65:31:2b:a9:89:b5:c7:77:85:d5:54:
87:bf:22:ec:4b:ac:6f:84:f4:fd:db:81:71:66:6b:
48:77:53:04:99:61:14:46:b5:9a:f0:3c:3a:d5:52:
92:67:0c:a3:0e:51:d4:2e:f2:90:dd:17:49:10:14:
fb:9a:a1:a0:47:0b:48:73:0d:a9:dd:d3:5f:d5:a2:
bb:85:de:3a:51:8b:71:5c:1b:11:e7:b9:7e:7a:4a:
a4:69:6c:e9:49:2c:9b:29:98:eb:73:77:c5:d3:ea:
a3:c6:14:4e:a7:06:25:0e:65:6a:e1:f9:45:eb:ef:
ec:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:10:ED:5E:6A:98:FC:5B:4C:75:26:A5:B7:A5:30:01:9F:30:7E:05
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/BRDtXmqY_FtMdSalt6UwAZ8wfgU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.65.0/24
164.40.185.0/24
Signature Algorithm: sha256WithRSAEncryption
72:51:98:00:f1:e4:71:bc:b5:b4:5c:95:4a:ac:d1:6f:40:cc:
cc:25:69:f3:a0:3b:92:5d:22:54:6a:86:12:85:21:70:95:07:
c1:4a:e8:a3:66:76:70:f7:a0:3f:ed:8a:e2:34:4a:6a:c3:4a:
dd:fb:b3:2e:7f:e9:3f:88:30:3a:c1:6c:bb:a5:48:af:9c:56:
07:e7:d1:55:a9:10:0f:98:29:96:81:d0:24:da:5a:3e:03:bf:
93:f9:01:09:ec:5c:8c:c6:85:1c:66:ac:53:e0:f3:da:e6:bf:
17:45:57:58:ca:91:7e:cb:6a:64:f3:35:f7:97:46:b6:1a:a5:
d7:b7:d3:30:9e:86:e8:80:d1:cd:5d:69:8a:ed:c8:e7:a6:09:
6d:94:4a:2f:d9:9a:e0:66:82:8b:f6:b3:27:2e:c7:2a:ac:6f:
75:ab:2f:db:5e:0e:0f:c3:5b:70:ed:46:70:e6:70:f2:6b:30:
0a:0c:93:f7:a1:fe:2a:1d:20:c9:13:ea:6a:35:68:b3:a2:9a:
38:88:3a:16:21:b4:27:46:05:bd:b4:ba:7a:d7:eb:2e:c2:bb:
b0:b5:e4:5d:63:36:a1:6f:aa:89:47:0c:43:45:8f:d9:e2:32:
21:2a:fd:8b:13:dc:a2:81:b3:c8:2c:6a:7d:78:22:b1:15:bc:
97:9d:bf:bb
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZMySbDXiD933hE7BgMjmI1DMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjQxMTE2MDAwNTEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNTEwZWQ1ZTZhOThmYzViNGM3NTI2YTViN2E1MzAwMTlmMzA3ZTA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0P6UJmREAq/XU5pR08YfNOYOkvWW
mYm89Ds5KV2/vfgj4e8MdpkitVZnDh1JHuExSG8jm3zl6jZs8+UiU8GINb7ixJnI
1s8m6BYfEJcI/oH8ha1FCwrYkPiwLBl/8WRyTzmX5wsBvGMb1gmkPZq1c4S9aRcA
s+v8+MIM4XqcP076MKIfGyrgZK97ZTErqYm1x3eF1VSHvyLsS6xvhPT924FxZmtI
d1MEmWEURrWa8Dw61VKSZwyjDlHULvKQ3RdJEBT7mqGgRwtIcw2p3dNf1aK7hd46
UYtxXBsR57l+ekqkaWzpSSybKZjrc3fF0+qjxhROpwYlDmVq4flF6+/sHwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFAUQ7V5qmPxbTHUmpbelMAGfMH4FMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvQlJEdFhtcVlfRnRNZFNhbHQ2VXdBWjh3ZmdVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQABf1BAwQA
pCi5MA0GCSqGSIb3DQEBCwUAA4IBAQByUZgA8eRxvLW0XJVKrNFvQMzMJWnzoDuS
XSJUaoYShSFwlQfBSuijZnZw96A/7YriNEpqw0rd+7Muf+k/iDA6wWy7pUivnFYH
59FVqRAPmCmWgdAk2lo+A7+T+QEJ7FyMxoUcZqxT4PPa5r8XRVdYypF+y2pk8zX3
l0a2GqXXt9MwnobogNHNXWmK7cjnpgltlEov2ZrgZoKL9rMnLscqrG91qy/bXg4P
w1tw7UZw5nDyazAKDJP3of4qHSDJE+pqNWizopo4iDoWIbQnRgW9tLp61+suwruw
teRdYzahb6qJRwxDRY/Z4jIhKv2LE9yigbPILGp9eCKxFbyXnb+7
Generated at Thu Nov 21 02:04:52 2024 by rpki-client on console-fra.rpki-client.org