Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/SNqNLQvQGQcglZoUKYP9HBSO_xU.roa
File: SNqNLQvQGQcglZoUKYP9HBSO_xU.roa (raw, json)
Hash identifier: CF9baYJAi+iy11cb7H4kKGxiQ3D3wpyMw+glEDmq61g=
Subject key identifier: 48:DA:8D:2D:0B:D0:19:07:20:95:9A:14:29:83:FD:1C:14:8E:FF:15
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 018E3BAAAED3766BAA76407AF0EF09718D55
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/SNqNLQvQGQcglZoUKYP9HBSO_xU.roa
Signing time: Thu 14 Mar 2024 06:33:45 +0000
ROA not before: Thu 14 Mar 2024 06:33:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44881
IP address blocks: 5.8.56.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 10 Apr 2024 10:50:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:3b:aa:ae:d3:76:6b:aa:76:40:7a:f0:ef:09:71:8d:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Mar 14 06:33:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=48da8d2d0bd0190720959a142983fd1c148eff15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b1:2e:e6:f7:01:32:5b:f0:d2:e6:0c:36:e8:
85:af:de:eb:b8:ac:fd:be:03:df:c9:b8:e4:f9:99:
df:a0:7f:2f:c5:cb:31:83:94:b9:95:df:08:92:cc:
93:b9:bb:7e:43:86:d0:f2:14:21:14:a0:24:79:e9:
6b:f7:50:2f:2c:18:eb:ed:da:03:e7:49:9d:22:53:
1d:23:23:81:95:6e:08:c1:6a:e2:64:20:bd:be:38:
95:b9:3c:be:0f:0e:5e:5a:51:ce:50:9e:62:75:fe:
de:99:32:f1:7d:33:f7:13:f7:14:f6:7e:9e:fa:ad:
99:2c:0d:74:54:9c:eb:4e:1b:c4:f5:db:3e:41:71:
0b:3d:4d:1e:cb:0c:be:9a:5f:61:4d:e9:62:ad:5b:
1c:3d:7e:06:65:b1:70:75:04:fc:26:54:5a:28:52:
03:5f:d6:45:51:f5:71:ab:e0:fb:e8:ee:ec:37:99:
59:31:d8:29:48:7c:aa:3a:26:39:6b:19:72:eb:ca:
d1:b1:cc:0d:cb:95:5f:62:eb:56:2c:da:a7:f1:1b:
14:3e:3e:4b:40:5f:92:47:d2:12:e0:35:7f:2e:e6:
f6:bb:f2:1f:58:ed:4b:05:44:38:a7:8e:ac:a7:6c:
ed:6c:e6:06:ce:a6:ba:82:15:5f:3c:45:6a:b2:1a:
41:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:DA:8D:2D:0B:D0:19:07:20:95:9A:14:29:83:FD:1C:14:8E:FF:15
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/SNqNLQvQGQcglZoUKYP9HBSO_xU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.56.0/23
Signature Algorithm: sha256WithRSAEncryption
c1:95:7f:42:d9:21:ec:81:9c:f7:91:9d:70:15:33:1b:e4:2e:
06:28:f4:33:db:12:fc:fc:34:01:ef:0d:55:b5:82:df:9d:01:
e1:cf:f1:98:51:f7:b8:fa:93:5f:9e:96:4c:75:aa:45:9e:d4:
18:63:91:2d:d3:3f:02:26:04:d7:89:9a:7c:24:dc:a5:d2:73:
ce:4a:b1:2f:2b:b4:0e:97:8d:6c:a6:38:67:f2:fa:58:db:cf:
98:05:ce:8d:fe:04:49:fb:87:a6:71:1a:ff:1a:2a:72:90:aa:
05:83:d6:8d:3a:b6:4b:6b:fe:c5:4d:b3:f5:33:be:5c:f4:45:
23:34:6c:36:fd:73:20:a9:27:60:cc:a0:89:34:da:86:f0:36:
e6:fa:37:e6:f5:3d:b1:82:33:41:c5:27:e9:ce:b1:86:e3:30:
4c:3b:45:41:a7:bd:90:8f:19:72:ee:fc:00:35:e6:89:e2:0d:
ec:b7:24:fa:5f:b6:c7:6f:bc:01:81:d3:02:38:0e:ee:57:9f:
37:cb:66:12:25:49:80:3e:e2:2d:c0:35:95:c2:fc:eb:6e:c2:
93:1d:20:f5:54:03:e3:2b:d4:b4:d4:07:83:f1:25:53:a0:5b:
f4:8b:3a:95:c7:85:ff:1a:e0:b5:df:48:1d:f6:1e:b2:73:94:
92:57:54:cd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY47qq7TdmuqdkB68O8JcY1VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVhYWE4YTBhNWZkZmQ2OThlMTA0YmUzNmEyYWVlYzgxM2Fl
Y2EwNzEwHhcNMjQwMzE0MDYzMzQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OGRhOGQyZDBiZDAxOTA3MjA5NTlhMTQyOTgzZmQxYzE0OGVmZjE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAorEu5vcBMlvw0uYMNuiFr97ruKz9
vgPfybjk+ZnfoH8vxcsxg5S5ld8IksyTubt+Q4bQ8hQhFKAkeelr91AvLBjr7doD
50mdIlMdIyOBlW4IwWriZCC9vjiVuTy+Dw5eWlHOUJ5idf7emTLxfTP3E/cU9n6e
+q2ZLA10VJzrThvE9ds+QXELPU0eywy+ml9hTelirVscPX4GZbFwdQT8JlRaKFID
X9ZFUfVxq+D76O7sN5lZMdgpSHyqOiY5axly68rRscwNy5VfYutWLNqn8RsUPj5L
QF+SR9IS4DV/Lub2u/IfWO1LBUQ4p46sp2ztbOYGzqa6ghVfPEVqshpBIQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEjajS0L0BkHIJWaFCmD/RwUjv8VMB8GA1UdIwQY
MBaAFOqqigpf39aY4QS+NqKu7IE67KBxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNnFxS0NsX2YxcGpoQkw0Mm9xN3NnVHJzb0hFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy8yOTMyZGYtYTRiZC00YWY1LWE0ZDQt
ODlkMDkyNDBjNDNiLzEvU05xTkxRdlFHUWNnbFpvVUtZUDlIQlNPX3hVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy8yOTMyZGYtYTRiZC00YWY1LWE0ZDQtODlkMDkyNDBjNDNi
LzEvNnFxS0NsX2YxcGpoQkw0Mm9xN3NnVHJzb0hFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBBQg4MA0G
CSqGSIb3DQEBCwUAA4IBAQDBlX9C2SHsgZz3kZ1wFTMb5C4GKPQz2xL8/DQB7w1V
tYLfnQHhz/GYUfe4+pNfnpZMdapFntQYY5Et0z8CJgTXiZp8JNyl0nPOSrEvK7QO
l41spjhn8vpY28+YBc6N/gRJ+4emcRr/GipykKoFg9aNOrZLa/7FTbP1M75c9EUj
NGw2/XMgqSdgzKCJNNqG8Dbm+jfm9T2xgjNBxSfpzrGG4zBMO0VBp72Qjxly7vwA
NeaJ4g3styT6X7bHb7wBgdMCOA7uV583y2YSJUmAPuItwDWVwvzrbsKTHSD1VAPj
K9S01AeD8SVToFv0izqVx4X/GuC130gd9h6yc5SSV1TN
-----END CERTIFICATE-----
Generated at Wed Apr 10 14:01:33 2024 by rpki-client on console-fra.rpki-client.org