Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/kg61WUy-Y6qUCpOCqf8RjgIH5rQ.roa
File: kg61WUy-Y6qUCpOCqf8RjgIH5rQ.roa (raw, json)
Hash identifier: CHwJ3fwmsLwaM6CAvw1BDTp+wxZcW+8JgKQzkM4MMiI=
Subject key identifier: 92:0E:B5:59:4C:BE:63:AA:94:0A:93:82:A9:FF:11:8E:02:07:E6:B4
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018D83C2286B7139D1CF9B5FFC306A34042D
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/kg61WUy-Y6qUCpOCqf8RjgIH5rQ.roa
Signing time: Wed 07 Feb 2024 13:29:15 +0000
ROA not before: Wed 07 Feb 2024 13:29:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 26042
IP address blocks: 5.253.65.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Feb 2024 00:54:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:83:c2:28:6b:71:39:d1:cf:9b:5f:fc:30:6a:34:04:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Feb 7 13:29:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=920eb5594cbe63aa940a9382a9ff118e0207e6b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:13:5f:bb:f2:29:75:be:1f:86:6a:d5:a1:36:
3f:a8:21:67:d4:83:5e:69:fa:22:10:a6:ca:cb:7d:
8e:b7:83:3a:45:6f:7a:67:2f:34:4f:c3:d4:c2:bf:
ac:3e:1c:b2:73:14:e7:88:71:33:f3:d0:f4:0a:bb:
e1:00:4c:85:31:b8:88:7a:51:aa:b3:0e:d6:80:ce:
eb:b3:1c:11:ba:a5:ad:e8:b3:10:bf:49:09:5f:0c:
a2:ca:8f:b5:de:60:12:93:74:f9:42:d0:50:af:d6:
cf:14:4d:6a:df:f9:2e:ea:e1:2c:c0:c4:4f:42:8f:
b1:a5:0d:8e:ee:0c:21:21:d2:f6:7d:ff:aa:40:f6:
50:a0:da:ca:14:cf:02:6a:1f:20:b6:05:db:99:40:
09:50:f2:d2:09:ec:4a:76:be:18:5c:59:0f:25:e2:
c4:19:bb:78:36:27:cd:2e:f1:8c:d7:61:98:18:64:
0f:dd:60:7f:97:83:d4:be:b2:09:92:54:05:39:d0:
08:c1:ca:7f:6b:1d:68:f3:a3:c0:51:6b:b2:3f:77:
74:4a:d3:15:61:0d:49:4f:24:34:cd:ae:d9:79:52:
0d:5c:ef:cf:94:65:d3:8f:a4:d6:dd:79:b6:c1:b7:
77:04:20:ff:f4:68:0f:12:b7:59:56:41:da:03:18:
0b:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:0E:B5:59:4C:BE:63:AA:94:0A:93:82:A9:FF:11:8E:02:07:E6:B4
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/kg61WUy-Y6qUCpOCqf8RjgIH5rQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.65.0/24
Signature Algorithm: sha256WithRSAEncryption
47:bb:b9:b3:f0:9d:b1:fe:1f:99:9b:4c:e4:01:0b:2b:d7:9e:
4b:63:b7:1c:19:8e:f2:54:8a:cb:b6:59:5c:f3:07:72:ce:15:
18:54:93:ad:92:33:89:58:f8:21:f7:c7:dc:ad:0c:c4:e3:fc:
ef:c2:d0:80:14:44:22:d8:b2:2b:fa:ef:86:59:cd:56:11:ab:
9d:78:42:ce:5f:21:af:cf:91:63:a0:61:90:55:43:6f:39:0b:
cf:12:41:39:f1:b1:ca:8e:15:1a:5e:e8:51:50:0e:50:7a:d6:
31:b9:b1:8e:51:38:1e:15:95:00:15:0f:e3:6d:1a:82:33:cc:
b7:f5:4f:69:92:4a:68:9d:5a:2c:00:b0:88:77:3b:f6:12:68:
c0:22:68:72:c6:3e:11:fe:c5:78:21:90:c6:91:de:12:f5:1d:
a4:aa:d4:59:4d:3a:46:fb:3c:28:c8:c4:ff:d1:a3:55:80:be:
ee:58:a5:ff:eb:b6:dd:72:8b:75:87:dd:04:4c:ba:13:c7:51:
35:1e:c0:05:5e:f8:22:d7:62:ad:d4:6d:28:e8:db:0e:95:2d:
e2:c1:a5:ba:43:50:87:38:0e:a8:d8:79:a5:5e:f6:4f:78:b8:
02:43:44:da:7c:3e:06:10:8e:5b:2f:38:e5:6c:d6:22:02:c1:
5a:d0:61:06
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY2DwihrcTnRz5tf/DBqNAQtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjQwMjA3MTMyOTE1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MjBlYjU1OTRjYmU2M2FhOTQwYTkzODJhOWZmMTE4ZTAyMDdlNmI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjxNfu/Ipdb4fhmrVoTY/qCFn1INe
afoiEKbKy32Ot4M6RW96Zy80T8PUwr+sPhyycxTniHEz89D0CrvhAEyFMbiIelGq
sw7WgM7rsxwRuqWt6LMQv0kJXwyiyo+13mASk3T5QtBQr9bPFE1q3/ku6uEswMRP
Qo+xpQ2O7gwhIdL2ff+qQPZQoNrKFM8Cah8gtgXbmUAJUPLSCexKdr4YXFkPJeLE
Gbt4NifNLvGM12GYGGQP3WB/l4PUvrIJklQFOdAIwcp/ax1o86PAUWuyP3d0StMV
YQ1JTyQ0za7ZeVINXO/PlGXTj6TW3Xm2wbd3BCD/9GgPErdZVkHaAxgLswIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJIOtVlMvmOqlAqTgqn/EY4CB+a0MB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEva2c2MVdVeS1ZNnFVQ3BPQ3FmOFJqZ0lINXJRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABf1BMA0G
CSqGSIb3DQEBCwUAA4IBAQBHu7mz8J2x/h+Zm0zkAQsr155LY7ccGY7yVIrLtllc
8wdyzhUYVJOtkjOJWPgh98fcrQzE4/zvwtCAFEQi2LIr+u+GWc1WEaudeELOXyGv
z5FjoGGQVUNvOQvPEkE58bHKjhUaXuhRUA5QetYxubGOUTgeFZUAFQ/jbRqCM8y3
9U9pkkponVosALCIdzv2EmjAImhyxj4R/sV4IZDGkd4S9R2kqtRZTTpG+zwoyMT/
0aNVgL7uWKX/67bdcot1h90ETLoTx1E1HsAFXvgi12Kt1G0o6NsOlS3iwaW6Q1CH
OA6o2HmlXvZPeLgCQ0TafD4GEI5bLzjlbNYiAsFa0GEG
-----END CERTIFICATE-----
Generated at Mon Feb 26 02:08:02 2024 by rpki-client on console-ams.rpki-client.org