Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/RNyfrzt8yojkFmwuYX5jiVmO-l8.roa
File: RNyfrzt8yojkFmwuYX5jiVmO-l8.roa (raw, json)
Hash identifier: aiRZrl3oVi2loQBcK0qs8LQ62YXQV/N8u0lfv8paQPQ=
Subject key identifier: 44:DC:9F:AF:3B:7C:CA:88:E4:16:6C:2E:61:7E:63:89:59:8E:FA:5F
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 018B1DCCB248BCF3255AE38BA77A0399DC5C
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/RNyfrzt8yojkFmwuYX5jiVmO-l8.roa
Signing time: Wed 11 Oct 2023 08:13:56 +0000
ROA not before: Wed 11 Oct 2023 08:13:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216185
IP address blocks: 5.8.62.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1d:cc:b2:48:bc:f3:25:5a:e3:8b:a7:7a:03:99:dc:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Oct 11 08:13:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=44dc9faf3b7cca88e4166c2e617e6389598efa5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f4:0e:1f:32:71:42:1d:7a:28:fd:a9:80:47:
0f:71:61:94:7d:c7:0c:77:06:a3:ed:48:dc:0b:80:
29:15:38:a5:c3:5c:99:a8:cb:23:ee:3e:d4:7a:d1:
55:28:ab:ba:81:48:62:cf:ca:27:f6:b6:8c:d2:e6:
39:40:e3:ae:a6:4e:88:f9:9c:d2:bc:6f:f9:b5:b7:
54:b0:a9:4f:5a:58:18:cb:22:8f:52:f0:7e:05:3d:
22:ed:17:c6:d6:8c:09:d2:6e:bf:43:d0:38:9a:86:
77:4a:de:2f:d9:fb:0c:8b:eb:a1:46:f8:87:8e:c9:
e2:00:73:17:c2:eb:18:6a:65:27:16:0f:15:9c:1e:
29:3e:41:c2:91:9a:1d:f8:e5:93:84:95:c5:10:d5:
58:b7:a9:fb:93:02:3f:04:d3:76:0f:00:19:9d:f3:
3b:2e:2d:c3:82:3b:db:0c:71:1e:df:18:a9:b1:93:
7d:1d:bb:da:ab:6b:83:be:13:b3:eb:e5:34:ef:54:
77:46:b7:ff:b3:08:09:89:fc:0a:cf:c6:d6:52:de:
72:e8:2c:74:20:d5:b4:01:6b:96:ff:02:d9:6a:cb:
22:1d:35:91:da:0b:33:c3:f8:a6:d0:2d:ce:35:9d:
4d:ab:a6:c1:2e:24:a4:11:22:70:e0:a6:4e:2f:dd:
30:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:DC:9F:AF:3B:7C:CA:88:E4:16:6C:2E:61:7E:63:89:59:8E:FA:5F
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/RNyfrzt8yojkFmwuYX5jiVmO-l8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.62.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:55:28:06:d5:f7:78:5e:5b:36:ca:a2:a2:74:39:47:47:38:
a2:cd:b0:b6:d4:c9:0f:24:19:e2:25:28:d7:83:aa:a5:79:14:
5f:df:7d:7c:7b:cf:ba:7d:90:47:2d:c7:e4:99:3c:c6:62:a8:
d9:cf:21:e7:ab:d6:37:26:69:1b:90:a7:3f:87:d4:f6:1b:f1:
d8:56:32:dd:a2:d8:56:43:02:8b:9a:e5:c1:07:92:3c:be:39:
59:3e:42:80:0c:3d:ec:9f:39:4d:f8:3f:9b:1d:3f:24:83:84:
1d:9e:ed:3b:82:51:46:1b:1f:aa:99:e4:e7:dc:b4:44:2b:85:
fb:17:28:bc:88:c4:22:74:8f:5c:ce:41:7b:96:de:6e:19:2b:
f0:17:84:3a:7a:db:96:b3:19:e9:b5:bb:a7:97:1c:96:61:66:
e0:cf:51:1a:af:f9:c6:f8:e7:df:2c:52:3b:21:01:70:09:b6:
7d:db:91:3d:51:f5:cc:74:49:14:7f:62:9b:5b:03:c1:96:18:
66:1c:9c:e2:fe:09:64:86:e1:60:dc:49:ed:87:d6:c3:d7:ed:
ba:1a:58:fe:a1:1f:de:61:b6:25:f1:aa:4f:a6:df:0e:3e:07:
a8:3c:6d:22:18:05:f8:ae:56:a0:ae:df:c2:52:80:83:3f:b7:
33:28:c3:03
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYsdzLJIvPMlWuOLp3oDmdxcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVhYWE4YTBhNWZkZmQ2OThlMTA0YmUzNmEyYWVlYzgxM2Fl
Y2EwNzEwHhcNMjMxMDExMDgxMzU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NGRjOWZhZjNiN2NjYTg4ZTQxNjZjMmU2MTdlNjM4OTU5OGVmYTVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArfQOHzJxQh16KP2pgEcPcWGUfccM
dwaj7UjcC4ApFTilw1yZqMsj7j7UetFVKKu6gUhiz8on9raM0uY5QOOupk6I+ZzS
vG/5tbdUsKlPWlgYyyKPUvB+BT0i7RfG1owJ0m6/Q9A4moZ3St4v2fsMi+uhRviH
jsniAHMXwusYamUnFg8VnB4pPkHCkZod+OWThJXFENVYt6n7kwI/BNN2DwAZnfM7
Li3DgjvbDHEe3xipsZN9Hbvaq2uDvhOz6+U071R3Rrf/swgJifwKz8bWUt5y6Cx0
INW0AWuW/wLZassiHTWR2gszw/im0C3ONZ1Nq6bBLiSkESJw4KZOL90w5wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFETcn687fMqI5BZsLmF+Y4lZjvpfMB8GA1UdIwQY
MBaAFOqqigpf39aY4QS+NqKu7IE67KBxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNnFxS0NsX2YxcGpoQkw0Mm9xN3NnVHJzb0hFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy8yOTMyZGYtYTRiZC00YWY1LWE0ZDQt
ODlkMDkyNDBjNDNiLzEvUk55ZnJ6dDh5b2prRm13dVlYNWppVm1PLWw4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy8yOTMyZGYtYTRiZC00YWY1LWE0ZDQtODlkMDkyNDBjNDNi
LzEvNnFxS0NsX2YxcGpoQkw0Mm9xN3NnVHJzb0hFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABQg+MA0G
CSqGSIb3DQEBCwUAA4IBAQB+VSgG1fd4Xls2yqKidDlHRziizbC21MkPJBniJSjX
g6qleRRf3318e8+6fZBHLcfkmTzGYqjZzyHnq9Y3JmkbkKc/h9T2G/HYVjLdothW
QwKLmuXBB5I8vjlZPkKADD3snzlN+D+bHT8kg4Qdnu07glFGGx+qmeTn3LREK4X7
Fyi8iMQidI9czkF7lt5uGSvwF4Q6etuWsxnptbunlxyWYWbgz1Ear/nG+OffLFI7
IQFwCbZ925E9UfXMdEkUf2KbWwPBlhhmHJzi/glkhuFg3Enth9bD1+26Glj+oR/e
YbYl8apPpt8OPgeoPG0iGAX4rlagrt/CUoCDP7czKMMD
-----END CERTIFICATE-----
Generated at Mon Jan 1 17:13:47 2024 by rpki-client on console-ams.rpki-client.org