Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/Y-Zoj5auaWJk0yoG3YZ1nJ-0-Uw.roa
File: Y-Zoj5auaWJk0yoG3YZ1nJ-0-Uw.roa (raw, json)
Hash identifier: kGjtcXNfykcIN5Ef5GWzLCT76a6FnYQlHa2VNgEuxKI=
Subject key identifier: 63:E6:68:8F:96:AE:69:62:64:D3:2A:06:DD:86:75:9C:9F:B4:F9:4C
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 0189FF1A0EA5E51A04D320CC851279471174
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/Y-Zoj5auaWJk0yoG3YZ1nJ-0-Uw.roa
Signing time: Wed 16 Aug 2023 16:07:25 +0000
ROA not before: Wed 16 Aug 2023 16:07:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 45027
IP address blocks: 5.188.164.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ff:1a:0e:a5:e5:1a:04:d3:20:cc:85:12:79:47:11:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Aug 16 16:07:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=63e6688f96ae696264d32a06dd86759c9fb4f94c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:ef:c3:7f:43:61:23:c6:37:9b:c5:c3:92:ec:
88:c3:33:77:06:ce:de:ee:74:f0:15:54:37:f8:9a:
f4:03:2a:52:7b:13:04:d9:0a:69:be:a2:44:69:3d:
9f:19:b4:b1:be:16:ad:40:68:1c:d4:e9:f1:18:44:
5b:6e:f4:23:1e:dd:50:b9:c4:20:0f:0f:eb:06:e6:
81:57:e3:61:f6:c5:e9:75:28:21:d8:4b:aa:e6:f7:
66:0a:37:92:2c:b1:d4:01:9f:6e:0c:c9:a9:b6:00:
98:6f:83:b0:ca:f1:01:25:5d:9d:17:d5:38:56:c1:
3c:67:7e:f3:7b:f6:e7:5e:eb:81:ae:89:fa:79:0d:
a2:1d:bc:2d:44:b3:04:f2:85:9b:dc:e3:9c:66:35:
46:7c:b9:a1:c4:07:19:2b:8e:b4:42:15:76:b5:b4:
c1:e2:22:c9:3e:c8:d9:2b:4e:8b:da:53:2b:ca:ee:
e2:f4:6e:0d:73:cf:eb:0e:2a:8d:95:eb:29:e3:d9:
22:15:d6:71:04:f6:f3:62:52:61:47:f7:45:ac:43:
61:48:89:f4:be:82:c5:b6:8b:3a:ec:77:99:80:20:
14:a6:bb:d2:20:20:35:bd:83:5a:df:b4:ca:bf:71:
1d:e7:fe:6c:e5:81:53:d1:63:0f:e9:6f:21:14:ef:
7c:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:E6:68:8F:96:AE:69:62:64:D3:2A:06:DD:86:75:9C:9F:B4:F9:4C
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/Y-Zoj5auaWJk0yoG3YZ1nJ-0-Uw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.188.164.0/23
Signature Algorithm: sha256WithRSAEncryption
16:27:9c:2c:43:60:b3:f4:43:07:93:a6:9c:e6:d8:55:c5:5b:
18:d3:cd:ab:09:a4:3e:d0:d4:69:b4:aa:d8:e6:83:8e:51:58:
86:d3:3d:38:ca:8e:a1:23:ba:65:f5:a0:3b:5f:2b:d8:1f:40:
8d:9a:b1:e3:d9:dc:c6:17:e0:6a:23:43:6f:b7:ac:5c:1f:e1:
37:2e:ba:54:94:8e:d5:29:e7:5a:ac:0a:f7:ae:4a:39:2e:4b:
9a:a6:b0:03:42:21:ef:b3:bb:88:35:13:63:4d:83:6a:a2:73:
9e:f7:d0:09:52:ef:c3:25:b2:6b:e3:7e:51:fe:51:a7:88:ae:
df:c7:71:55:cc:a7:c6:69:6c:bd:d8:88:02:dd:9d:ab:24:d7:
81:b8:5f:10:df:b2:9d:1b:56:ec:8c:46:ba:8f:21:4e:f1:24:
ba:1f:9e:b4:5f:7e:d0:36:ee:6a:c5:ee:05:9f:fd:fe:f8:e9:
fc:66:6e:f7:06:b9:bf:1a:8b:ee:b0:49:f2:b4:40:81:a0:07:
9f:cc:14:b6:e3:ec:31:bf:a5:71:76:95:81:94:7d:eb:44:ff:
34:6c:25:ac:8c:ae:58:82:ff:ae:c1:eb:59:fd:0a:93:50:8f:
50:62:4f:ae:22:e5:f5:1c:71:56:0e:bb:5c:b1:88:56:03:f9:
f7:05:38:3b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYn/Gg6l5RoE0yDMhRJ5RxF0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVhYWE4YTBhNWZkZmQ2OThlMTA0YmUzNmEyYWVlYzgxM2Fl
Y2EwNzEwHhcNMjMwODE2MTYwNzI1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2M2U2Njg4Zjk2YWU2OTYyNjRkMzJhMDZkZDg2NzU5YzlmYjRmOTRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAju/Df0NhI8Y3m8XDkuyIwzN3Bs7e
7nTwFVQ3+Jr0AypSexME2QppvqJEaT2fGbSxvhatQGgc1OnxGERbbvQjHt1QucQg
Dw/rBuaBV+Nh9sXpdSgh2Euq5vdmCjeSLLHUAZ9uDMmptgCYb4OwyvEBJV2dF9U4
VsE8Z37ze/bnXuuBron6eQ2iHbwtRLME8oWb3OOcZjVGfLmhxAcZK460QhV2tbTB
4iLJPsjZK06L2lMryu7i9G4Nc8/rDiqNlesp49kiFdZxBPbzYlJhR/dFrENhSIn0
voLFtos67HeZgCAUprvSICA1vYNa37TKv3Ed5/5s5YFT0WMP6W8hFO98XQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGPmaI+WrmliZNMqBt2GdZyftPlMMB8GA1UdIwQY
MBaAFOqqigpf39aY4QS+NqKu7IE67KBxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNnFxS0NsX2YxcGpoQkw0Mm9xN3NnVHJzb0hFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy8yOTMyZGYtYTRiZC00YWY1LWE0ZDQt
ODlkMDkyNDBjNDNiLzEvWS1ab2o1YXVhV0prMHlvRzNZWjFuSi0wLVV3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy8yOTMyZGYtYTRiZC00YWY1LWE0ZDQtODlkMDkyNDBjNDNi
LzEvNnFxS0NsX2YxcGpoQkw0Mm9xN3NnVHJzb0hFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBBbykMA0G
CSqGSIb3DQEBCwUAA4IBAQAWJ5wsQ2Cz9EMHk6ac5thVxVsY082rCaQ+0NRptKrY
5oOOUViG0z04yo6hI7pl9aA7XyvYH0CNmrHj2dzGF+BqI0Nvt6xcH+E3LrpUlI7V
KedarAr3rko5LkuaprADQiHvs7uINRNjTYNqonOe99AJUu/DJbJr435R/lGniK7f
x3FVzKfGaWy92IgC3Z2rJNeBuF8Q37KdG1bsjEa6jyFO8SS6H560X37QNu5qxe4F
n/3++On8Zm73Brm/GovusEnytECBoAefzBS24+wxv6VxdpWBlH3rRP80bCWsjK5Y
gv+uwetZ/QqTUI9QYk+uIuX1HHFWDrtcsYhWA/n3BTg7
-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:25 2024 by rpki-client on console-fra.rpki-client.org