Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/c392d7-0a99-41c9-a2cd-f0d2b943cb53/1/W_kIlTvRO2oABu4dJBU8oq-EbkU.roa
File: W_kIlTvRO2oABu4dJBU8oq-EbkU.roa (raw, json)
Hash identifier: KudX0dE8AHyyf7FbmhzPa4/WSFCQiE7iEn1HNNAU6Rg=
Subject key identifier: 5B:F9:08:95:3B:D1:3B:6A:00:06:EE:1D:24:15:3C:A2:AF:84:6E:45
Certificate issuer: /CN=a5a42d260d5ecdc2fa2b0b5dbf603b90d715444d
Certificate serial: 01857082B829290A38EB6A949C90EF7724BA
Authority key identifier: A5:A4:2D:26:0D:5E:CD:C2:FA:2B:0B:5D:BF:60:3B:90:D7:15:44:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/paQtJg1ezcL6Kwtdv2A7kNcVRE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/c392d7-0a99-41c9-a2cd-f0d2b943cb53/1/W_kIlTvRO2oABu4dJBU8oq-EbkU.roa
Signing time: Mon 02 Jan 2023 03:24:53 +0000
ROA not before: Mon 02 Jan 2023 03:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34019
IP address blocks: 193.27.0.0/24 maxlen: 24
193.222.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:b8:29:29:0a:38:eb:6a:94:9c:90:ef:77:24:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5a42d260d5ecdc2fa2b0b5dbf603b90d715444d
Validity
Not Before: Jan 2 03:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5bf908953bd13b6a0006ee1d24153ca2af846e45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ed:5f:ee:e8:01:6c:c5:59:69:ee:4b:ce:0a:
10:9a:77:15:99:ff:a2:c4:f8:6a:da:e8:e3:bb:da:
d2:a7:a8:de:3e:06:2d:57:f3:92:32:34:a0:5e:48:
2c:cb:9c:7b:bc:3a:55:0e:e2:24:94:6d:70:f6:5d:
63:9e:ce:58:97:cb:76:c8:b0:f4:2d:be:53:47:79:
06:42:fe:b5:d2:cb:df:59:b4:08:12:b3:50:1f:2c:
32:e9:e5:f7:f8:cb:6f:c9:2b:f7:f4:22:19:0b:87:
ac:c0:9c:70:a5:aa:04:9a:e3:b6:25:12:0f:33:95:
53:d1:44:16:10:1d:33:9c:da:ed:53:4e:d1:4d:b4:
ed:6d:89:c4:09:02:33:a9:7f:82:32:7e:32:4c:ab:
f6:a4:db:a0:cb:27:46:22:df:a8:56:d6:07:4e:e8:
5b:f3:ab:51:1f:06:37:b9:b1:5f:23:4b:49:59:03:
0f:dd:e3:79:7d:80:87:36:79:5d:17:a1:bd:6a:fb:
a4:54:c9:8d:85:34:db:30:28:c1:d6:d4:9d:13:18:
a7:81:bc:7e:a3:39:08:e0:0b:d8:a4:0b:e6:1f:25:
87:9d:40:02:ec:16:14:50:a3:d0:3c:6f:17:a3:32:
27:75:4e:dc:72:42:66:a5:18:39:1a:ab:6a:db:dc:
e6:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:F9:08:95:3B:D1:3B:6A:00:06:EE:1D:24:15:3C:A2:AF:84:6E:45
X509v3 Authority Key Identifier:
keyid:A5:A4:2D:26:0D:5E:CD:C2:FA:2B:0B:5D:BF:60:3B:90:D7:15:44:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/paQtJg1ezcL6Kwtdv2A7kNcVRE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/c392d7-0a99-41c9-a2cd-f0d2b943cb53/1/W_kIlTvRO2oABu4dJBU8oq-EbkU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/c392d7-0a99-41c9-a2cd-f0d2b943cb53/1/paQtJg1ezcL6Kwtdv2A7kNcVRE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.27.0.0/24
193.222.128.0/24
Signature Algorithm: sha256WithRSAEncryption
00:30:0f:e7:ef:b9:f9:07:47:e3:ac:9d:ec:89:29:f6:f6:0e:
f5:a8:b7:b6:42:26:b7:b4:82:aa:67:48:3b:68:2c:11:df:5d:
8c:46:0e:73:25:f5:0d:22:5f:2d:e7:9f:c8:1e:a4:84:18:c8:
ea:ab:5f:b2:46:b9:11:d2:7e:4f:14:78:85:e5:99:78:f8:23:
5b:02:69:31:50:96:d7:02:2f:bf:10:84:b5:ab:64:3a:eb:ae:
08:e1:75:20:e9:fc:a5:56:97:81:90:2e:bb:8f:c3:2d:b0:12:
d5:79:a8:3e:0e:25:32:49:0f:3b:6a:53:f8:6c:61:5c:a9:5c:
a3:12:90:29:c2:f8:d4:7b:7a:d7:83:a2:a2:dc:76:19:cc:9e:
8a:30:a4:1b:80:62:c4:f2:0d:36:62:f4:bd:a6:1b:31:e1:fe:
93:99:26:02:51:84:05:2d:b8:1e:aa:ad:09:cc:56:67:7b:d8:
c7:eb:4d:8c:d4:ca:4f:2a:ba:14:1d:29:7e:5a:44:1f:bd:7b:
5f:ec:42:3e:e2:0a:89:75:73:b2:61:7f:37:15:e1:b3:02:91:
c4:6c:1c:3f:5c:ff:9e:e0:27:63:22:a6:ea:a3:1f:bf:c8:d4:
0f:ab:2c:fd:3c:35:8f:cc:c7:ed:5f:95:a8:ae:31:24:48:f8:
10:05:f8:d7
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVwgrgpKQo462qUnJDvdyS6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1YTQyZDI2MGQ1ZWNkYzJmYTJiMGI1ZGJmNjAzYjkwZDcx
NTQ0NGQwHhcNMjMwMTAyMDMyNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YmY5MDg5NTNiZDEzYjZhMDAwNmVlMWQyNDE1M2NhMmFmODQ2ZTQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwu1f7ugBbMVZae5LzgoQmncVmf+i
xPhq2ujju9rSp6jePgYtV/OSMjSgXkgsy5x7vDpVDuIklG1w9l1jns5Yl8t2yLD0
Lb5TR3kGQv610svfWbQIErNQHywy6eX3+MtvySv39CIZC4eswJxwpaoEmuO2JRIP
M5VT0UQWEB0znNrtU07RTbTtbYnECQIzqX+CMn4yTKv2pNugyydGIt+oVtYHTuhb
86tRHwY3ubFfI0tJWQMP3eN5fYCHNnldF6G9avukVMmNhTTbMCjB1tSdExingbx+
ozkI4AvYpAvmHyWHnUAC7BYUUKPQPG8XozIndU7cckJmpRg5Gqtq29zmlQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFFv5CJU70TtqAAbuHSQVPKKvhG5FMB8GA1UdIwQY
MBaAFKWkLSYNXs3C+isLXb9gO5DXFURNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcGFRdEpnMWV6Y0w2S3d0ZHYyQTdrTmNWUkUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC9jMzkyZDctMGE5OS00MWM5LWEyY2Qt
ZjBkMmI5NDNjYjUzLzEvV19rSWxUdlJPMm9BQnU0ZEpCVThvcS1FYmtVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC9jMzkyZDctMGE5OS00MWM5LWEyY2QtZjBkMmI5NDNjYjUz
LzEvcGFRdEpnMWV6Y0w2S3d0ZHYyQTdrTmNWUkUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwRsAAwQA
wd6AMA0GCSqGSIb3DQEBCwUAA4IBAQAAMA/n77n5B0fjrJ3siSn29g71qLe2Qia3
tIKqZ0g7aCwR312MRg5zJfUNIl8t55/IHqSEGMjqq1+yRrkR0n5PFHiF5Zl4+CNb
AmkxUJbXAi+/EIS1q2Q6664I4XUg6fylVpeBkC67j8MtsBLVeag+DiUySQ87alP4
bGFcqVyjEpApwvjUe3rXg6Ki3HYZzJ6KMKQbgGLE8g02YvS9phsx4f6TmSYCUYQF
Lbgeqq0JzFZne9jH602M1MpPKroUHSl+WkQfvXtf7EI+4gqJdXOyYX83FeGzApHE
bBw/XP+e4CdjIqbqox+/yNQPqyz9PDWPzMftX5WorjEkSPgQBfjX
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:45 2024 by rpki-client on console-ams.rpki-client.org