Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/zAaEl77dst2gS-NMIYrMbpTaTJw.roa
File: zAaEl77dst2gS-NMIYrMbpTaTJw.roa (raw, json)
Hash identifier: 3AZKlazj15RLv9AqQoyBApTS8/vuJvszhTqwHwjuK3g=
Subject key identifier: CC:06:84:97:BE:DD:B2:DD:A0:4B:E3:4C:21:8A:CC:6E:94:DA:4C:9C
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 0185738FDDBE7D7735E95A3D7351AF04A6E6
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/zAaEl77dst2gS-NMIYrMbpTaTJw.roa
Signing time: Mon 02 Jan 2023 17:38:06 +0000
ROA not before: Mon 02 Jan 2023 17:38:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21177
IP address blocks: 5.182.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:8f:dd:be:7d:77:35:e9:5a:3d:73:51:af:04:a6:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 2 17:38:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cc068497beddb2dda04be34c218acc6e94da4c9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:01:a5:2e:31:0f:e4:d2:d3:74:6d:c0:77:c4:
14:a1:fe:58:35:10:1b:b2:7b:a7:6b:f8:dc:6b:df:
9f:fc:d4:9e:14:0d:07:2d:0b:fe:0e:6c:53:8f:73:
7c:e1:dc:4e:81:ad:fb:45:a4:93:10:e3:a4:6a:e5:
cc:e5:47:ef:be:96:b7:01:e4:d6:4f:37:3b:07:ae:
72:cb:bc:0f:69:93:30:38:ca:3b:5c:7d:a8:df:5a:
51:3e:65:5e:5a:03:f1:88:77:69:23:ee:47:ba:b0:
42:89:34:e6:04:c9:b6:bf:c6:03:21:9b:25:df:95:
bb:bc:a6:61:b2:7c:ea:d3:9e:fc:6b:f1:96:86:ed:
69:2b:51:07:83:fb:6a:f1:8e:69:8d:8f:ac:e2:4e:
b3:3b:5f:33:b4:c9:9c:ee:61:cf:93:21:56:29:5f:
ce:b3:01:d5:f8:d7:b0:9e:df:9d:5e:ce:f6:21:2b:
90:59:82:23:cc:f1:4c:e8:ec:d0:a2:f7:0a:df:19:
ce:c3:5f:7b:7b:cc:74:a2:03:dc:cb:0e:75:c0:ae:
65:a5:50:4a:48:eb:12:63:be:87:12:ef:37:21:cc:
5d:02:b8:7f:6b:78:56:59:9c:1c:f7:9b:17:37:2a:
1d:2d:ea:b1:ae:fc:d3:9b:60:36:e9:57:fd:67:3b:
d3:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:06:84:97:BE:DD:B2:DD:A0:4B:E3:4C:21:8A:CC:6E:94:DA:4C:9C
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/zAaEl77dst2gS-NMIYrMbpTaTJw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.48.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:cf:46:44:85:5c:e1:dc:6e:83:6c:1a:da:8b:37:63:62:d0:
b0:f1:b3:9a:dd:29:37:f5:24:b6:ce:42:c9:89:59:60:91:c9:
a6:c6:11:1e:5d:3f:f9:e1:0a:60:7b:54:0b:4b:3a:46:13:bb:
d6:cc:ed:56:31:a4:49:c5:c3:5e:ca:72:35:aa:a5:d1:e0:9f:
65:99:3e:71:50:16:07:b9:fe:93:36:3b:b1:b1:7a:8e:e7:ca:
85:fd:b2:f3:ff:7f:4f:7b:a4:9c:57:57:ed:22:c3:8d:8f:26:
a8:2b:06:9b:0b:8d:c0:6d:82:72:27:c5:a9:5c:d3:5a:09:71:
21:30:38:12:64:98:93:c8:86:2d:52:ee:da:b0:d8:61:a8:fc:
4c:b5:00:a1:3b:4c:08:09:c5:1d:4f:f9:3a:4d:67:fe:31:30:
d6:7b:19:f5:cd:52:0f:4f:ba:0d:a9:f3:33:48:fd:42:71:e2:
0f:67:33:f4:23:6c:f1:95:f9:97:31:4f:01:42:c7:b0:54:9d:
85:fa:8b:b0:e3:18:56:73:68:e3:24:05:90:80:74:17:ef:96:
34:0a:65:2c:ba:07:f7:f7:4a:94:88:be:6f:6d:bf:9c:00:82:
01:db:43:2f:93:71:d4:cc:56:9f:c5:98:7e:5c:a4:9a:a3:27:
0c:6a:4b:09
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzj92+fXc16Vo9c1GvBKbmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxYTdiMGQ4ZGU4MjUxZDM2ZDdjODNmYWY2YmM3ZWZlYzcz
YjUwMzQwHhcNMjMwMTAyMTczODA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYzA2ODQ5N2JlZGRiMmRkYTA0YmUzNGMyMThhY2M2ZTk0ZGE0YzljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArQGlLjEP5NLTdG3Ad8QUof5YNRAb
snuna/jca9+f/NSeFA0HLQv+DmxTj3N84dxOga37RaSTEOOkauXM5Ufvvpa3AeTW
Tzc7B65yy7wPaZMwOMo7XH2o31pRPmVeWgPxiHdpI+5HurBCiTTmBMm2v8YDIZsl
35W7vKZhsnzq0578a/GWhu1pK1EHg/tq8Y5pjY+s4k6zO18ztMmc7mHPkyFWKV/O
swHV+Newnt+dXs72ISuQWYIjzPFM6OzQovcK3xnOw197e8x0ogPcyw51wK5lpVBK
SOsSY76HEu83IcxdArh/a3hWWZwc95sXNyodLeqxrvzTm2A26Vf9ZzvTMwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMwGhJe+3bLdoEvjTCGKzG6U2kycMB8GA1UdIwQY
MBaAFLGnsNjeglHTbXyD+va8fv7HO1A0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2It
Mzk0YWNkMjFmMzliLzEvekFhRWw3N2RzdDJnUy1OTUlZck1icFRhVEp3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2ItMzk0YWNkMjFmMzli
LzEvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABbYwMA0G
CSqGSIb3DQEBCwUAA4IBAQDHz0ZEhVzh3G6DbBraizdjYtCw8bOa3Sk39SS2zkLJ
iVlgkcmmxhEeXT/54Qpge1QLSzpGE7vWzO1WMaRJxcNeynI1qqXR4J9lmT5xUBYH
uf6TNjuxsXqO58qF/bLz/39Pe6ScV1ftIsONjyaoKwabC43AbYJyJ8WpXNNaCXEh
MDgSZJiTyIYtUu7asNhhqPxMtQChO0wICcUdT/k6TWf+MTDWexn1zVIPT7oNqfMz
SP1CceIPZzP0I2zxlfmXMU8BQsewVJ2F+ouw4xhWc2jjJAWQgHQX75Y0CmUsugf3
90qUiL5vbb+cAIIB20Mvk3HUzFafxZh+XKSaoycMaksJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:40 2024 by rpki-client on console-ams.rpki-client.org