Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/DyjJGwwyL7LlWFvQd1yLgJDg8_w.roa
File: DyjJGwwyL7LlWFvQd1yLgJDg8_w.roa (raw, json)
Hash identifier: ZVjp+S5rDX8VQT22T+u8IZsOOrNjq8DoqEgpYoYdyvE=
Subject key identifier: 0F:28:C9:1B:0C:32:2F:B2:E5:58:5B:D0:77:5C:8B:80:90:E0:F3:FC
Certificate issuer: /CN=06c3b8b5f37e21068250571f4db83b4714468a2c
Certificate serial: 01856F4293F638676A53238182E5BAF766F5
Authority key identifier: 06:C3:B8:B5:F3:7E:21:06:82:50:57:1F:4D:B8:3B:47:14:46:8A:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BsO4tfN-IQaCUFcfTbg7RxRGiiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/DyjJGwwyL7LlWFvQd1yLgJDg8_w.roa
Signing time: Sun 01 Jan 2023 21:35:12 +0000
ROA not before: Sun 01 Jan 2023 21:35:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59695
IP address blocks: 5.152.248.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:93:f6:38:67:6a:53:23:81:82:e5:ba:f7:66:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06c3b8b5f37e21068250571f4db83b4714468a2c
Validity
Not Before: Jan 1 21:35:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f28c91b0c322fb2e5585bd0775c8b8090e0f3fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:65:ed:9a:0e:08:d4:1d:39:1a:e8:43:b4:36:
4f:bf:ef:5d:36:4d:f9:62:06:17:ff:81:30:1e:d5:
d2:79:b6:22:ee:4d:40:9a:88:20:b5:a0:5d:d2:ff:
69:09:67:65:c6:75:6c:1e:64:8c:e4:dc:14:62:92:
26:94:e9:6f:61:9b:14:e5:54:15:57:19:04:c2:fb:
68:10:ab:b5:1f:cf:55:0b:de:e3:58:e7:b1:90:04:
c4:b2:cc:0d:d1:7c:2b:cd:b1:a1:c2:9b:20:02:62:
be:a2:66:f5:38:e3:4d:99:56:14:0b:7f:32:34:48:
68:cb:fc:c2:ba:71:64:d2:11:b1:c7:25:e0:d1:4c:
cb:95:4f:8d:67:c4:6d:47:ed:c2:f6:24:b4:25:3a:
28:b2:4b:d9:97:5b:dd:d1:b3:c6:0c:af:37:f8:c8:
95:a1:07:6b:a3:58:72:a2:29:c3:b3:58:39:cc:b5:
0b:28:dd:47:97:84:bb:d4:43:fd:46:61:e8:90:80:
5a:e0:e3:d3:f6:6a:da:0d:8e:3e:76:ca:41:ad:75:
6e:82:a7:8e:c7:8d:af:a6:8f:6e:ce:eb:30:95:4e:
11:eb:62:1d:29:27:c2:59:b5:ea:b8:19:3c:4b:75:
46:0d:e1:de:09:2a:cc:d4:7f:ae:30:94:b5:5d:e0:
71:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:28:C9:1B:0C:32:2F:B2:E5:58:5B:D0:77:5C:8B:80:90:E0:F3:FC
X509v3 Authority Key Identifier:
keyid:06:C3:B8:B5:F3:7E:21:06:82:50:57:1F:4D:B8:3B:47:14:46:8A:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BsO4tfN-IQaCUFcfTbg7RxRGiiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/DyjJGwwyL7LlWFvQd1yLgJDg8_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/e243d0-19fe-4da3-a20a-e6effd3cef32/1/BsO4tfN-IQaCUFcfTbg7RxRGiiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.152.248.0/21
Signature Algorithm: sha256WithRSAEncryption
68:f9:29:05:35:49:f3:f9:f1:11:e0:a6:40:b1:cf:94:f7:74:
15:c2:30:d2:43:7a:7c:39:51:f9:ae:e5:bb:c7:63:36:96:02:
8c:28:62:53:e3:f3:1b:7b:4b:15:89:bf:71:ce:69:60:30:3c:
9e:63:fa:3f:88:51:29:e3:2b:28:da:dd:c8:dd:75:43:dd:2a:
38:16:4f:f5:74:7d:cd:6a:2d:11:6e:b1:7f:1b:ac:f7:01:fc:
a6:0d:b3:f7:0d:1d:e0:42:92:cc:ed:59:da:bf:65:64:b8:46:
89:f1:ba:b6:25:a9:01:bb:6b:a2:3c:0c:a8:23:f7:0b:7e:47:
34:2b:b0:a5:59:e1:cc:af:73:00:56:00:5b:88:73:55:81:6d:
43:4d:62:c6:fa:a2:ca:bd:5f:34:06:be:f3:92:ce:a2:7c:27:
67:b8:d7:2f:c0:bb:15:5b:6e:b6:71:87:2c:12:74:f1:56:00:
04:34:e4:99:ed:5f:e3:b5:03:cc:2f:a4:86:28:7b:fa:9d:e7:
af:1b:8f:81:71:aa:ac:24:4e:11:c6:61:38:af:13:60:0e:fd:
e8:6b:54:2d:3b:90:00:4c:af:6f:61:b2:d9:81:f5:00:35:a3:
2a:15:60:f8:d8:d9:1c:11:18:95:00:43:2e:91:59:76:de:58:
c6:7e:c5:22
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvQpP2OGdqUyOBguW692b1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2YzNiOGI1ZjM3ZTIxMDY4MjUwNTcxZjRkYjgzYjQ3MTQ0
NjhhMmMwHhcNMjMwMTAxMjEzNTEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZjI4YzkxYjBjMzIyZmIyZTU1ODViZDA3NzVjOGI4MDkwZTBmM2ZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6WXtmg4I1B05GuhDtDZPv+9dNk35
YgYX/4EwHtXSebYi7k1AmoggtaBd0v9pCWdlxnVsHmSM5NwUYpImlOlvYZsU5VQV
VxkEwvtoEKu1H89VC97jWOexkATEsswN0XwrzbGhwpsgAmK+omb1OONNmVYUC38y
NEhoy/zCunFk0hGxxyXg0UzLlU+NZ8RtR+3C9iS0JTooskvZl1vd0bPGDK83+MiV
oQdro1hyoinDs1g5zLULKN1Hl4S71EP9RmHokIBa4OPT9mraDY4+dspBrXVugqeO
x42vpo9uzuswlU4R62IdKSfCWbXquBk8S3VGDeHeCSrM1H+uMJS1XeBxPQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA8oyRsMMi+y5Vhb0Hdci4CQ4PP8MB8GA1UdIwQY
MBaAFAbDuLXzfiEGglBXH024O0cURoosMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQnNPNHRmTi1JUWFDVUZjZlRiZzdSeFJHaWl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy9lMjQzZDAtMTlmZS00ZGEzLWEyMGEt
ZTZlZmZkM2NlZjMyLzEvRHlqSkd3d3lMN0xsV0Z2UWQxeUxnSkRnOF93LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy9lMjQzZDAtMTlmZS00ZGEzLWEyMGEtZTZlZmZkM2NlZjMy
LzEvQnNPNHRmTi1JUWFDVUZjZlRiZzdSeFJHaWl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDBZj4MA0G
CSqGSIb3DQEBCwUAA4IBAQBo+SkFNUnz+fER4KZAsc+U93QVwjDSQ3p8OVH5ruW7
x2M2lgKMKGJT4/Mbe0sVib9xzmlgMDyeY/o/iFEp4yso2t3I3XVD3So4Fk/1dH3N
ai0RbrF/G6z3AfymDbP3DR3gQpLM7Vnav2VkuEaJ8bq2JakBu2uiPAyoI/cLfkc0
K7ClWeHMr3MAVgBbiHNVgW1DTWLG+qLKvV80Br7zks6ifCdnuNcvwLsVW262cYcs
EnTxVgAENOSZ7V/jtQPML6SGKHv6neevG4+BcaqsJE4RxmE4rxNgDv3oa1QtO5AA
TK9vYbLZgfUANaMqFWD42NkcERiVAEMukVl23ljGfsUi
-----END CERTIFICATE-----
Generated at Mon Jan 1 23:37:05 2024 by rpki-client on console-fra.rpki-client.org