Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/rtQynwWnB5ZG1huteAB_9bR8Dpg.roa
File: rtQynwWnB5ZG1huteAB_9bR8Dpg.roa (raw, json)
Hash identifier: ip/RGzoNexh2wytl75DgbeKRr6/0HStvYBP1RX1QckI=
Subject key identifier: AE:D4:32:9F:05:A7:07:96:46:D6:1B:AD:78:00:7F:F5:B4:7C:0E:98
Certificate issuer: /CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc
Certificate serial: 018570674E53D2D1BF641E905C923B947999
Authority key identifier: E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/rtQynwWnB5ZG1huteAB_9bR8Dpg.roa
Signing time: Mon 02 Jan 2023 02:54:56 +0000
ROA not before: Mon 02 Jan 2023 02:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6461
IP address blocks: 5.182.120.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:4e:53:d2:d1:bf:64:1e:90:5c:92:3b:94:79:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc
Validity
Not Before: Jan 2 02:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aed4329f05a7079646d61bad78007ff5b47c0e98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:f0:ad:32:dc:df:27:72:c1:8c:12:a6:59:22:
99:ae:29:7d:8e:88:4c:69:7d:3d:f1:19:50:10:c2:
8e:df:29:a1:42:02:3b:c2:86:e9:17:b2:46:29:01:
16:3b:e4:21:e7:67:d7:de:d2:b3:4a:0c:6e:b9:67:
0a:a0:35:4f:56:b6:0f:ab:fe:0b:08:9b:e4:62:f3:
14:14:57:d5:a1:f5:f2:1c:b2:82:c5:36:fd:04:d5:
8c:84:f3:6c:83:6b:2b:b3:e0:0c:17:e1:65:72:eb:
c3:93:db:3d:15:f9:72:f5:c8:98:ef:39:32:ca:40:
da:51:10:ad:69:89:1b:70:90:4a:41:bd:23:38:b5:
06:ec:bc:09:ea:b9:ca:57:e1:fb:e2:0a:96:07:20:
d2:40:7c:bd:dd:6f:22:98:62:d9:a8:ee:96:9b:ae:
9f:78:01:61:ef:e8:9a:27:4b:99:53:74:db:c7:04:
1d:a9:15:4e:e0:9c:d7:9a:c3:70:7a:0a:b9:dd:fb:
bb:5d:7f:6c:02:92:bc:cb:e9:64:67:5c:40:10:cf:
1f:56:68:e1:a7:35:f7:b4:e7:86:84:2e:5a:0a:f8:
58:e8:4d:e3:9d:2c:3e:c7:88:2f:46:80:5c:ee:a7:
1d:98:a3:6f:41:2a:39:60:fb:31:32:b8:c8:9f:e9:
d4:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:D4:32:9F:05:A7:07:96:46:D6:1B:AD:78:00:7F:F5:B4:7C:0E:98
X509v3 Authority Key Identifier:
keyid:E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/rtQynwWnB5ZG1huteAB_9bR8Dpg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.120.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:8f:e2:f0:04:58:c6:ea:e7:ec:2e:be:ec:3a:a0:10:d2:f8:
6f:68:36:2f:5d:69:cd:e1:6c:5b:8e:2e:29:56:5f:1e:34:8d:
3f:f0:f3:5b:4e:c6:2a:68:5f:c0:90:ff:aa:93:4b:7b:94:78:
8a:b5:7a:da:8a:5f:68:b9:b5:76:3e:3d:b7:0a:ad:bf:74:16:
99:79:c2:bb:9f:39:79:b3:73:93:d8:13:d7:87:3a:23:9d:80:
af:e2:81:f4:19:07:51:a0:9b:cf:c0:ba:9f:89:30:39:e5:d2:
4a:ff:da:7b:90:f9:53:d3:dd:b4:9b:ff:aa:54:49:9c:2b:91:
df:0e:f5:a9:8e:8c:89:60:be:af:90:76:1b:4c:a5:b3:04:eb:
10:43:97:fc:5a:4e:5f:1e:58:d4:d4:a1:a9:d1:fa:b3:f6:fb:
b4:ab:d8:33:6a:76:f2:56:76:6e:d7:78:57:7f:56:c0:4a:53:
2d:34:81:e5:f6:ce:c1:3d:a3:cb:0a:24:e4:4d:30:d2:4f:c5:
e8:c2:25:1c:1c:90:59:aa:9e:c4:ba:83:c4:0e:30:09:c5:7a:
f3:22:2a:60:a2:5e:ff:99:af:22:fe:2d:3e:48:43:e3:b1:5b:
a6:5e:a9:81:af:af:da:ca:1c:ac:7b:bb:77:21:1c:ac:09:86:
cc:43:34:e1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwZ05T0tG/ZB6QXJI7lHmZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3NmQwZGFiMzQ3YTM4ZTJiODdiNWEyMmEyZjdjOWUyMWMx
OGM5YmMwHhcNMjMwMTAyMDI1NDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZWQ0MzI5ZjA1YTcwNzk2NDZkNjFiYWQ3ODAwN2ZmNWI0N2MwZTk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgPCtMtzfJ3LBjBKmWSKZril9johM
aX098RlQEMKO3ymhQgI7wobpF7JGKQEWO+Qh52fX3tKzSgxuuWcKoDVPVrYPq/4L
CJvkYvMUFFfVofXyHLKCxTb9BNWMhPNsg2srs+AMF+FlcuvDk9s9Ffly9ciY7zky
ykDaURCtaYkbcJBKQb0jOLUG7LwJ6rnKV+H74gqWByDSQHy93W8imGLZqO6Wm66f
eAFh7+iaJ0uZU3TbxwQdqRVO4JzXmsNwegq53fu7XX9sApK8y+lkZ1xAEM8fVmjh
pzX3tOeGhC5aCvhY6E3jnSw+x4gvRoBc7qcdmKNvQSo5YPsxMrjIn+nU6QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK7UMp8FpweWRtYbrXgAf/W0fA6YMB8GA1UdIwQY
MBaAFOdtDas0ejjiuHtaIqL3yeIcGMm8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDkt
YmQzYmZjOTliZGE5LzEvcnRReW53V25CNVpHMWh1dGVBQl85YlI4RHBnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDktYmQzYmZjOTliZGE5
LzEvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCBbZ4MA0G
CSqGSIb3DQEBCwUAA4IBAQB+j+LwBFjG6ufsLr7sOqAQ0vhvaDYvXWnN4Wxbji4p
Vl8eNI0/8PNbTsYqaF/AkP+qk0t7lHiKtXrail9oubV2Pj23Cq2/dBaZecK7nzl5
s3OT2BPXhzojnYCv4oH0GQdRoJvPwLqfiTA55dJK/9p7kPlT0920m/+qVEmcK5Hf
DvWpjoyJYL6vkHYbTKWzBOsQQ5f8Wk5fHljU1KGp0fqz9vu0q9gzanbyVnZu13hX
f1bASlMtNIHl9s7BPaPLCiTkTTDST8XowiUcHJBZqp7EuoPEDjAJxXrzIipgol7/
ma8i/i0+SEPjsVumXqmBr6/ayhyse7t3IRysCYbMQzTh
-----END CERTIFICATE-----
Generated at Mon Jan 1 17:13:43 2024 by rpki-client on console-ams.rpki-client.org