Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/5iuFBOgf4IL7zw6iFoujVvgONhk.roa
File: 5iuFBOgf4IL7zw6iFoujVvgONhk.roa (raw, json)
Hash identifier: ImXua4gL5KRErz9lilzFB23Pylv+U6gPTolH2L6cQwA=
Subject key identifier: E6:2B:85:04:E8:1F:E0:82:FB:CF:0E:A2:16:8B:A3:56:F8:0E:36:19
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 018CC425675B87F094CFD401F96BB21A0216
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/5iuFBOgf4IL7zw6iFoujVvgONhk.roa
Signing time: Mon 01 Jan 2024 08:30:34 +0000
ROA not before: Mon 01 Jan 2024 08:30:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204914
IP address blocks: 2.56.165.0/24 maxlen: 24
77.83.242.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Mar 2024 18:01:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:67:5b:87:f0:94:cf:d4:01:f9:6b:b2:1a:02:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 1 08:30:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e62b8504e81fe082fbcf0ea2168ba356f80e3619
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:db:4d:4a:d3:81:ec:f1:01:9b:7d:1a:be:63:
ef:28:33:68:6c:f4:73:5d:c6:4b:01:7c:ed:79:40:
6a:c2:30:1f:c7:fa:ae:ee:34:22:19:0b:4f:8a:34:
52:e6:8d:96:d2:6e:88:95:05:93:00:9a:db:94:f0:
ef:a3:25:28:66:fe:5a:b6:0d:3c:32:be:21:24:16:
1c:ff:2d:78:31:7f:73:8f:8f:a0:67:7e:4d:59:4e:
d8:21:7c:8c:74:dd:2f:c7:ab:32:3a:1a:2d:e9:b2:
07:6f:92:cc:65:18:cc:12:c3:f9:27:8a:c5:f1:4d:
33:b3:3f:09:36:83:22:2a:bb:be:5e:0d:07:b9:b7:
a0:19:20:50:e7:da:4d:0b:25:d5:0b:ff:35:43:28:
f6:80:99:24:54:b1:3d:03:50:9c:73:b2:70:66:90:
ad:bc:0a:fb:22:f8:19:72:ba:a8:a1:b6:06:74:d8:
1e:d4:33:5c:d6:10:2b:ed:e3:a1:4c:bd:6c:32:24:
03:db:eb:fc:b7:d5:6d:c7:33:4b:66:f0:87:72:f6:
37:bc:f8:60:d8:8e:cd:ab:92:2d:88:50:b5:a0:a8:
8e:2b:67:ea:b0:cf:fa:30:39:97:d0:01:9c:7c:3e:
56:28:87:80:21:3f:13:ca:be:5d:25:da:b9:4c:8c:
69:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:2B:85:04:E8:1F:E0:82:FB:CF:0E:A2:16:8B:A3:56:F8:0E:36:19
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/5iuFBOgf4IL7zw6iFoujVvgONhk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.165.0/24
77.83.242.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:21:d4:d9:87:dc:66:ba:ab:d2:de:0c:fa:ff:ec:58:23:e1:
77:fc:86:30:0b:67:60:86:7e:20:b4:1e:47:f8:a9:b5:70:34:
89:45:4f:a9:8c:5a:9e:5d:ac:01:09:f0:b1:8e:f7:11:e8:91:
95:cc:fe:42:22:07:f7:7a:99:0e:dd:71:c0:e4:af:5c:94:58:
66:85:24:ac:4b:bd:c3:9c:62:fa:5d:61:8f:8d:b5:96:15:cb:
16:e1:94:a0:48:32:7c:71:0e:ee:2c:db:13:8c:4f:e5:84:eb:
9e:0e:e7:e1:92:41:07:7e:9f:5d:9c:c5:b9:a7:a0:d3:18:25:
07:62:47:d4:42:0f:20:54:01:6b:0b:40:f0:00:d4:cb:b5:39:
77:28:35:17:14:c4:af:c6:a0:bb:fa:ad:0e:4e:02:f0:0f:22:
6d:97:eb:66:fc:c5:a2:71:46:66:92:cd:5f:58:43:cf:13:61:
08:9a:71:2a:ed:89:d0:a8:0f:db:ed:71:08:06:fb:e7:f5:18:
25:22:39:f0:e1:76:b2:d3:07:c1:a7:eb:33:9b:52:6c:9e:99:
c7:3f:68:bd:27:ab:fe:af:d2:92:ef:94:bb:67:85:96:1d:33:
42:d7:52:30:3c:24:a2:01:26:cd:e9:55:32:2e:92:c4:06:08:
87:dc:5d:a4
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzEJWdbh/CUz9QB+WuyGgIWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxYTdiMGQ4ZGU4MjUxZDM2ZDdjODNmYWY2YmM3ZWZlYzcz
YjUwMzQwHhcNMjQwMTAxMDgzMDM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNjJiODUwNGU4MWZlMDgyZmJjZjBlYTIxNjhiYTM1NmY4MGUzNjE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqttNStOB7PEBm30avmPvKDNobPRz
XcZLAXzteUBqwjAfx/qu7jQiGQtPijRS5o2W0m6IlQWTAJrblPDvoyUoZv5atg08
Mr4hJBYc/y14MX9zj4+gZ35NWU7YIXyMdN0vx6syOhot6bIHb5LMZRjMEsP5J4rF
8U0zsz8JNoMiKru+Xg0HubegGSBQ59pNCyXVC/81Qyj2gJkkVLE9A1Ccc7JwZpCt
vAr7IvgZcrqoobYGdNge1DNc1hAr7eOhTL1sMiQD2+v8t9VtxzNLZvCHcvY3vPhg
2I7Nq5ItiFC1oKiOK2fqsM/6MDmX0AGcfD5WKIeAIT8Tyr5dJdq5TIxpIQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFOYrhQToH+CC+88OohaLo1b4DjYZMB8GA1UdIwQY
MBaAFLGnsNjeglHTbXyD+va8fv7HO1A0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2It
Mzk0YWNkMjFmMzliLzEvNWl1RkJPZ2Y0SUw3enc2aUZvdWpWdmdPTmhrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2ItMzk0YWNkMjFmMzli
LzEvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAAjilAwQA
TVPyMA0GCSqGSIb3DQEBCwUAA4IBAQDEIdTZh9xmuqvS3gz6/+xYI+F3/IYwC2dg
hn4gtB5H+Km1cDSJRU+pjFqeXawBCfCxjvcR6JGVzP5CIgf3epkO3XHA5K9clFhm
hSSsS73DnGL6XWGPjbWWFcsW4ZSgSDJ8cQ7uLNsTjE/lhOueDufhkkEHfp9dnMW5
p6DTGCUHYkfUQg8gVAFrC0DwANTLtTl3KDUXFMSvxqC7+q0OTgLwDyJtl+tm/MWi
cUZmks1fWEPPE2EImnEq7YnQqA/b7XEIBvvn9RglIjnw4Xay0wfBp+szm1JsnpnH
P2i9J6v+r9KS75S7Z4WWHTNC11IwPCSiASbN6VUyLpLEBgiH3F2k
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:39 2024 by rpki-client on console-ams.rpki-client.org