Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/1-O8zYNVBLzGDAbLHJJl0ByHPcdQ.roa
File: 1-O8zYNVBLzGDAbLHJJl0ByHPcdQ.roa (raw, json)
Hash identifier: up7izzfcYMmO/q1nZ1q6sWril3AE+So6PYGP2ZhIdp8=
Subject key identifier: F8:EF:33:60:D5:41:2F:31:83:01:B2:C7:24:99:74:07:21:CF:71:D4
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 01856F42E9DF01F22E4BB8634A8751364DA0
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/1-O8zYNVBLzGDAbLHJJl0ByHPcdQ.roa
Signing time: Sun 01 Jan 2023 21:35:34 +0000
ROA not before: Sun 01 Jan 2023 21:35:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64413
IP address blocks: 5.160.224.0/20 maxlen: 20
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:e9:df:01:f2:2e:4b:b8:63:4a:87:51:36:4d:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 21:35:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f8ef3360d5412f318301b2c72499740721cf71d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:5b:18:c0:9d:a6:52:72:77:06:ce:2c:8b:37:
af:df:16:85:eb:cf:1e:14:77:7e:36:ed:12:f2:b9:
b1:95:39:12:77:ed:91:33:27:97:c5:a8:c3:b4:5f:
5f:ad:a1:50:8e:09:16:14:10:df:08:d6:84:1b:63:
45:e0:3e:71:22:6d:2b:d4:3f:88:2d:7f:97:07:f7:
53:d1:7f:c1:90:89:d0:fd:f0:43:19:db:f4:1b:43:
fa:bf:15:f7:90:9c:88:fd:5c:2b:aa:03:c2:87:f5:
cc:1e:3d:0b:eb:6f:43:ba:d0:3f:23:7e:9c:df:3d:
2e:81:62:b0:56:ac:72:87:89:2b:3a:55:44:0c:d4:
eb:a9:e2:9c:d8:64:06:01:9b:ca:46:69:1c:54:50:
8c:8e:76:b3:ac:68:26:cc:3a:f6:2b:1f:f9:39:a0:
b8:e9:b2:06:fc:1b:a8:02:74:a6:30:d5:22:50:ca:
07:be:f2:0c:ab:e8:ae:43:2a:62:ba:ce:c9:c3:65:
85:65:2a:cf:07:1e:92:ca:0e:48:b5:f1:82:f0:11:
ef:4e:b5:4a:b3:7d:6a:7d:dc:7b:bf:c2:7a:a6:e4:
d6:cb:4c:80:19:6c:03:8b:05:6c:73:53:4e:d8:61:
45:df:e4:53:7c:ee:c9:b1:6e:c9:7e:87:1d:63:5a:
8c:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:EF:33:60:D5:41:2F:31:83:01:B2:C7:24:99:74:07:21:CF:71:D4
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/1-O8zYNVBLzGDAbLHJJl0ByHPcdQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.224.0/20
Signature Algorithm: sha256WithRSAEncryption
29:b8:0f:cb:97:2a:2d:c9:c1:fa:14:aa:2b:b5:1a:a4:d3:5a:
8b:c1:4d:b2:5c:44:bc:ce:5f:4b:97:9e:93:d7:0a:b7:e8:7f:
08:e3:d9:96:09:f9:03:ff:e6:16:b0:0b:55:30:29:79:9f:e4:
d3:68:c9:51:15:31:15:8d:2f:3b:70:95:b9:1a:ff:9c:26:c9:
b5:2d:b0:49:74:81:af:a0:e2:50:12:de:37:1e:32:30:09:13:
dd:e7:cf:f4:d3:c9:60:b3:bd:91:b5:db:1c:03:fd:75:06:28:
97:1f:7c:49:3e:2c:88:84:7c:ab:ff:33:e2:ae:43:d7:bc:60:
37:37:7e:de:6a:57:ae:07:79:08:db:6e:86:5c:54:c4:02:2e:
b6:4d:af:5e:1e:fa:68:51:39:81:0e:3b:72:3c:4c:9e:c5:20:
98:b4:6f:bb:78:a3:cf:dd:e2:ba:1c:57:d8:f2:2e:4a:af:65:
a7:04:0b:12:a3:c3:39:fa:df:e6:d5:49:fd:05:4b:fe:3f:9b:
bf:8b:e0:d8:b4:2d:fb:14:19:5d:e3:0c:7f:1a:5b:3a:a0:df:
57:33:9a:0e:e8:a9:e6:73:b4:ff:72:7b:a0:73:30:25:ed:f8:
5b:dd:a2:44:a8:33:10:70:cd:0a:b4:5e:41:8a:71:7f:d5:e8:
e2:e7:39:4b
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVvQunfAfIuS7hjSodRNk2gMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxY2NhOWYxNWUxOTIxOTUzYTYyOGM4YWQyYWM0YmU5Nzdi
NmMzMDMwHhcNMjMwMTAxMjEzNTM0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOGVmMzM2MGQ1NDEyZjMxODMwMWIyYzcyNDk5NzQwNzIxY2Y3MWQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1FsYwJ2mUnJ3Bs4sizev3xaF688e
FHd+Nu0S8rmxlTkSd+2RMyeXxajDtF9fraFQjgkWFBDfCNaEG2NF4D5xIm0r1D+I
LX+XB/dT0X/BkInQ/fBDGdv0G0P6vxX3kJyI/VwrqgPCh/XMHj0L629DutA/I36c
3z0ugWKwVqxyh4krOlVEDNTrqeKc2GQGAZvKRmkcVFCMjnazrGgmzDr2Kx/5OaC4
6bIG/BuoAnSmMNUiUMoHvvIMq+iuQypius7Jw2WFZSrPBx6Syg5ItfGC8BHvTrVK
s31qfdx7v8J6puTWy0yAGWwDiwVsc1NO2GFF3+RTfO7JsW7JfocdY1qMTQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPjvM2DVQS8xgwGyxySZdAchz3HUMB8GA1UdIwQY
MBaAFIHMqfFeGSGVOmKMitKsS+l3tsMDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2N5cDhWNFpJWlU2WW95SzBxeEw2WGUyd3dNLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC8xZWEyYjAtNmI5YS00NGQ3LWEyZTUt
MjIwNmNjMmU2OTFjLzEvMS1POHpZTlZCTHpHREFiTEhKSmwwQnlIUGNkUS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvMjQvMWVhMmIwLTZiOWEtNDRkNy1hMmU1LTIyMDZjYzJlNjkx
Yy8xL2djeXA4VjRaSVpVNllveUswcXhMNlhlMnd3TS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBAWg4DAN
BgkqhkiG9w0BAQsFAAOCAQEAKbgPy5cqLcnB+hSqK7UapNNai8FNslxEvM5fS5ee
k9cKt+h/COPZlgn5A//mFrALVTApeZ/k02jJURUxFY0vO3CVuRr/nCbJtS2wSXSB
r6DiUBLeNx4yMAkT3efP9NPJYLO9kbXbHAP9dQYolx98ST4siIR8q/8z4q5D17xg
Nzd+3mpXrgd5CNtuhlxUxAIutk2vXh76aFE5gQ47cjxMnsUgmLRvu3ijz93iuhxX
2PIuSq9lpwQLEqPDOfrf5tVJ/QVL/j+bv4vg2LQt+xQZXeMMfxpbOqDfVzOaDuip
5nO0/3J7oHMwJe34W92iRKgzEHDNCrReQYpxf9Xo4uc5Sw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:31 2024 by rpki-client on console-fra.rpki-client.org