Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/4_ATWMauX40NlfX_r9M0O9-Ql00.roa
File: 4_ATWMauX40NlfX_r9M0O9-Ql00.roa (raw, json)
Hash identifier: leJ10Wu5PE+OBSo0QoBfkgcXnVLjqmniLNCjVrIC9+M=
Subject key identifier: E3:F0:13:58:C6:AE:5F:8D:0D:95:F5:FF:AF:D3:34:3B:DF:90:97:4D
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 01856FF96C3E2D76BD2CCB91E4F08DE532E2
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/4_ATWMauX40NlfX_r9M0O9-Ql00.roa
Signing time: Mon 02 Jan 2023 00:54:55 +0000
ROA not before: Mon 02 Jan 2023 00:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 36224
IP address blocks: 151.251.72.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:6c:3e:2d:76:bd:2c:cb:91:e4:f0:8d:e5:32:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Jan 2 00:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3f01358c6ae5f8d0d95f5ffafd3343bdf90974d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:44:98:ec:5f:d0:c4:bd:fc:b4:78:d2:9b:f9:
2c:a8:3f:33:08:30:dd:d4:d4:e6:b0:16:d7:90:23:
57:ee:59:6b:d2:84:de:13:83:66:c5:83:cb:85:50:
c4:d3:7e:c8:59:00:dd:c8:85:0b:16:7d:61:d2:e0:
81:09:de:9a:b6:a2:45:f3:48:f5:0e:28:6b:96:ca:
f3:4b:62:5a:e0:78:be:06:b3:9a:71:75:9b:15:d7:
d3:af:f4:df:c5:48:a4:8c:33:30:b8:32:d0:ce:97:
21:71:0f:42:05:5e:8b:aa:f9:b2:cf:d8:57:21:ac:
e7:b2:5b:33:dd:03:da:24:04:65:99:b8:30:1a:2c:
4a:95:31:75:8d:f3:a9:53:c1:b5:83:38:8f:63:22:
79:43:69:a5:38:fd:ef:ab:f9:db:f1:89:00:06:7f:
5d:10:97:33:6a:5e:35:7c:84:3b:cf:cd:64:8b:0a:
32:b5:34:a3:5f:5b:25:81:8a:b4:f0:25:25:7c:dc:
65:5d:d2:77:1c:58:88:aa:a0:5b:4a:50:11:a2:04:
e6:62:0a:01:21:ca:fd:86:ec:57:2b:9c:73:d7:2c:
5e:54:28:ea:d3:81:c6:d1:bd:9a:d8:15:6e:40:c6:
de:fc:fd:cf:f7:4a:28:02:08:45:27:7c:0d:79:50:
09:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:F0:13:58:C6:AE:5F:8D:0D:95:F5:FF:AF:D3:34:3B:DF:90:97:4D
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/4_ATWMauX40NlfX_r9M0O9-Ql00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.251.72.0/24
Signature Algorithm: sha256WithRSAEncryption
49:88:19:03:dd:e8:c6:49:0c:57:27:a4:0b:5b:90:f1:c7:5f:
74:91:61:0c:c5:68:6b:75:a3:e6:a3:80:8f:a3:b5:f9:b7:7e:
c4:d9:3c:8a:30:7c:89:a6:f8:d4:f3:4e:2b:2f:fa:7a:56:ea:
bf:1d:e7:4f:74:84:9f:68:1b:82:f7:e4:1e:db:c2:79:29:02:
20:6d:f6:fa:39:44:01:9c:b4:1f:71:43:ff:a6:cb:50:4e:f0:
91:9e:db:22:aa:a7:59:2a:f9:f5:f0:32:ea:01:a9:1b:ab:b0:
04:44:79:63:72:eb:30:f8:a1:64:d4:28:dd:1e:e1:0b:b6:8e:
1e:1e:4a:10:4d:fd:38:35:b6:8e:00:fe:80:1f:24:04:fb:8b:
f9:77:2d:8b:50:36:41:6d:61:ef:63:0d:35:a7:5f:97:06:44:
02:0d:a2:fd:f2:e5:ec:77:81:35:f7:2b:2a:08:90:c0:98:e0:
85:a8:85:45:7a:7e:83:0b:38:2e:f0:d5:bf:0c:24:de:05:00:
b8:44:3d:8b:ed:49:13:73:72:4f:29:b0:8f:49:97:e9:81:5d:
ba:cd:47:f5:db:c7:a9:40:28:ee:95:45:38:ef:76:4f:47:88:
5d:e1:4e:3c:2a:f1:93:c5:a3:d0:16:54:09:a5:25:c6:4a:e4:
ea:29:91:e0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVv+Ww+LXa9LMuR5PCN5TLiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1NDhjZWRmMTcwMjllZDk4YTEwODExM2M2YzEwOWVjYWNj
ZDgyZWMwHhcNMjMwMTAyMDA1NDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlM2YwMTM1OGM2YWU1ZjhkMGQ5NWY1ZmZhZmQzMzQzYmRmOTA5NzRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkUSY7F/QxL38tHjSm/ksqD8zCDDd
1NTmsBbXkCNX7llr0oTeE4NmxYPLhVDE037IWQDdyIULFn1h0uCBCd6atqJF80j1
DihrlsrzS2Ja4Hi+BrOacXWbFdfTr/TfxUikjDMwuDLQzpchcQ9CBV6Lqvmyz9hX
Iaznslsz3QPaJARlmbgwGixKlTF1jfOpU8G1gziPYyJ5Q2mlOP3vq/nb8YkABn9d
EJczal41fIQ7z81kiwoytTSjX1slgYq08CUlfNxlXdJ3HFiIqqBbSlARogTmYgoB
Icr9huxXK5xz1yxeVCjq04HG0b2a2BVuQMbe/P3P90ooAghFJ3wNeVAJ2wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOPwE1jGrl+NDZX1/6/TNDvfkJdNMB8GA1UdIwQY
MBaAFAVIzt8XAp7ZihCBE8bBCeyszYLsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAt
N2ZiYmFlNmY5NDM3LzEvNF9BVFdNYXVYNDBObGZYX3I5TTBPOS1RbDAwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAtN2ZiYmFlNmY5NDM3
LzEvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAl/tIMA0G
CSqGSIb3DQEBCwUAA4IBAQBJiBkD3ejGSQxXJ6QLW5Dxx190kWEMxWhrdaPmo4CP
o7X5t37E2TyKMHyJpvjU804rL/p6Vuq/HedPdISfaBuC9+Qe28J5KQIgbfb6OUQB
nLQfcUP/pstQTvCRntsiqqdZKvn18DLqAakbq7AERHljcusw+KFk1CjdHuELto4e
HkoQTf04NbaOAP6AHyQE+4v5dy2LUDZBbWHvYw01p1+XBkQCDaL98uXsd4E19ysq
CJDAmOCFqIVFen6DCzgu8NW/DCTeBQC4RD2L7UkTc3JPKbCPSZfpgV26zUf128ep
QCjulUU473ZPR4hd4U48KvGTxaPQFlQJpSXGSuTqKZHg
-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:00 2024 by rpki-client on console-fra.rpki-client.org