Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/id6Fy2oTPPcjKXZyTi6jjOYCzo0.roa
File: id6Fy2oTPPcjKXZyTi6jjOYCzo0.roa (raw, json)
Hash identifier: sZGyf+k0Y1d9lDeoEFK/WwNmKYvnPtADYhNuXazNuaU=
Subject key identifier: 89:DE:85:CB:6A:13:3C:F7:23:29:76:72:4E:2E:A3:8C:E6:02:CE:8D
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 018CC8012D7830BD6CB4AB9E3810041C6CA5
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/id6Fy2oTPPcjKXZyTi6jjOYCzo0.roa
Signing time: Tue 02 Jan 2024 02:29:29 +0000
ROA not before: Tue 02 Jan 2024 02:29:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56560
IP address blocks: 159.148.124.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 Apr 2024 01:24:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:2d:78:30:bd:6c:b4:ab:9e:38:10:04:1c:6c:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 2 02:29:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=89de85cb6a133cf7232976724e2ea38ce602ce8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:8b:d3:61:bf:b0:d7:71:9c:d3:e1:08:da:b3:
fc:8a:bd:70:e0:14:cd:9a:dd:a6:1f:3a:d0:14:9e:
eb:f0:18:2e:42:aa:55:da:74:43:63:71:77:79:89:
65:bf:8c:f0:95:19:01:b1:73:8c:8e:43:a6:68:c7:
62:87:06:ca:6e:1c:c3:18:6f:bf:b5:e7:17:ae:be:
40:c3:19:32:0e:be:06:b9:2c:f4:01:55:ac:94:2f:
87:76:7d:af:84:42:d9:d1:a5:d4:35:ad:da:8c:af:
a9:d9:35:9e:a9:9f:ab:e3:94:b6:96:ce:14:7a:e2:
84:f4:14:86:53:9c:21:7f:38:53:1b:1d:1a:31:84:
dc:55:e5:7c:b8:b1:fb:2a:e8:1e:0b:0d:9a:d4:2b:
25:ab:7d:9a:da:01:60:ee:aa:37:a2:13:24:46:f0:
68:77:6a:52:d7:95:4b:7d:37:5e:0d:15:5d:87:a3:
29:73:06:7e:96:32:f4:97:30:00:5a:9f:c6:6c:7b:
39:62:43:aa:6a:3d:68:d6:49:ba:3c:ab:a1:ae:2f:
e2:58:7b:64:01:fa:0f:47:1e:3d:a4:6b:92:46:93:
ac:84:42:46:50:90:eb:0d:71:a7:8c:fc:a7:9f:db:
50:7d:7a:57:b3:bd:34:88:e8:46:2b:e3:43:89:49:
02:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:DE:85:CB:6A:13:3C:F7:23:29:76:72:4E:2E:A3:8C:E6:02:CE:8D
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/id6Fy2oTPPcjKXZyTi6jjOYCzo0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.148.124.0/24
Signature Algorithm: sha256WithRSAEncryption
77:5d:ab:1e:92:2e:54:a9:ca:0e:67:a3:eb:4e:b0:e0:28:c1:
fc:81:c8:ef:e5:94:d0:00:a6:6f:cc:60:f0:5b:18:c3:c5:fe:
e3:ad:d2:56:fc:2e:ae:75:ad:f2:dc:71:17:14:9b:e7:96:d9:
a7:85:5b:9e:e6:f2:49:18:c9:3c:42:8a:33:20:6d:02:31:3a:
a9:f3:1f:b2:2e:81:11:a4:ea:09:1f:12:e8:ac:ef:c8:18:3f:
54:da:1a:1b:40:44:b6:0e:21:03:b7:8d:c3:c5:86:e5:a3:bd:
f4:6f:50:66:17:39:c3:09:d2:50:a7:4c:70:5f:02:97:2e:bd:
53:a4:a4:7d:63:6b:26:aa:60:c4:a0:0d:7c:b3:fb:c0:eb:cb:
1d:94:23:f1:ae:30:10:6d:52:ab:06:e7:ad:75:41:ec:34:12:
25:b8:aa:71:99:35:51:6b:d4:b1:cc:f2:b8:6f:c7:f8:27:6a:
ff:9e:02:2c:a0:d1:98:83:b1:a1:78:9e:7c:c2:0c:46:7a:9c:
83:1f:62:4d:8c:1b:48:de:ae:5e:34:f0:fa:a0:40:d7:5f:74:
7e:18:62:3c:a1:66:81:23:d0:af:b9:82:39:f7:d5:e2:81:a0:
e3:10:f9:80:82:62:8f:cc:f4:c5:c5:6d:d2:8f:f3:b6:74:a5:
5b:d0:92:ec
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzIAS14ML1stKueOBAEHGylMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiMDk1MmM4YmE4ZGFkYjFkMzRkZTZjNmE5Mzg2NGE2MDlm
YzQxZWMwHhcNMjQwMTAyMDIyOTI5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OWRlODVjYjZhMTMzY2Y3MjMyOTc2NzI0ZTJlYTM4Y2U2MDJjZThkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjovTYb+w13Gc0+EI2rP8ir1w4BTN
mt2mHzrQFJ7r8BguQqpV2nRDY3F3eYllv4zwlRkBsXOMjkOmaMdihwbKbhzDGG+/
tecXrr5AwxkyDr4GuSz0AVWslC+Hdn2vhELZ0aXUNa3ajK+p2TWeqZ+r45S2ls4U
euKE9BSGU5whfzhTGx0aMYTcVeV8uLH7KugeCw2a1Cslq32a2gFg7qo3ohMkRvBo
d2pS15VLfTdeDRVdh6MpcwZ+ljL0lzAAWp/GbHs5YkOqaj1o1km6PKuhri/iWHtk
AfoPRx49pGuSRpOshEJGUJDrDXGnjPynn9tQfXpXs700iOhGK+NDiUkC+wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFInehctqEzz3Iyl2ck4uo4zmAs6NMB8GA1UdIwQY
MBaAFKsJUsi6ja2x003mxqk4ZKYJ/EHsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAt
NTU1NGQ2ZTE2ODZmLzEvaWQ2Rnkyb1RQUGNqS1haeVRpNmpqT1lDem8wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS8zNTU1ZmUtMTJjZC00MDJhLWE4MTAtNTU1NGQ2ZTE2ODZm
LzEvcXdsU3lMcU5yYkhUVGViR3FUaGtwZ244UWV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAn5R8MA0G
CSqGSIb3DQEBCwUAA4IBAQB3Xaseki5UqcoOZ6PrTrDgKMH8gcjv5ZTQAKZvzGDw
WxjDxf7jrdJW/C6uda3y3HEXFJvnltmnhVue5vJJGMk8QoozIG0CMTqp8x+yLoER
pOoJHxLorO/IGD9U2hobQES2DiEDt43DxYblo730b1BmFznDCdJQp0xwXwKXLr1T
pKR9Y2smqmDEoA18s/vA68sdlCPxrjAQbVKrBuetdUHsNBIluKpxmTVRa9SxzPK4
b8f4J2r/ngIsoNGYg7GheJ58wgxGepyDH2JNjBtI3q5eNPD6oEDXX3R+GGI8oWaB
I9CvuYI599XigaDjEPmAgmKPzPTFxW3Sj/O2dKVb0JLs
-----END CERTIFICATE-----
Generated at Thu Apr 4 02:56:16 2024 by rpki-client on console-fra.rpki-client.org