Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/8BqIzLWNh7QAcc0-VlmQUvkOyj4.roa
File: 8BqIzLWNh7QAcc0-VlmQUvkOyj4.roa (raw, json)
Hash identifier: CnorzHs7qh7wfNfmmaP7mU0lfBr1cvMDxMKsH15LBR0=
Subject key identifier: F0:1A:88:CC:B5:8D:87:B4:00:71:CD:3E:56:59:90:52:F9:0E:CA:3E
Certificate issuer: /CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Certificate serial: 01856F42E38B8FD81D45A6F42A0DE157107E
Authority key identifier: 81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/8BqIzLWNh7QAcc0-VlmQUvkOyj4.roa
Signing time: Sun 01 Jan 2023 21:35:32 +0000
ROA not before: Sun 01 Jan 2023 21:35:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60345
IP address blocks: 5.160.10.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 07 Jan 2023 06:51:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:e3:8b:8f:d8:1d:45:a6:f4:2a:0d:e1:57:10:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cca9f15e1921953a628c8ad2ac4be977b6c303
Validity
Not Before: Jan 1 21:35:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f01a88ccb58d87b40071cd3e56599052f90eca3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:73:5c:43:02:13:c8:1e:df:a5:68:79:6a:02:
c3:d7:5f:6a:3e:c9:72:06:e9:00:05:24:6d:82:20:
8c:1b:81:e9:6e:49:0d:31:c3:98:c6:f1:52:3c:9e:
fd:ec:12:7f:20:77:4b:0e:af:03:bd:a9:94:4d:b0:
45:02:ce:2a:eb:ee:a7:2c:63:1d:7f:e0:18:25:94:
47:b9:c4:39:45:2b:5f:58:9f:0c:c4:11:93:6a:ba:
c2:78:a5:e6:99:b1:9e:47:cd:46:5e:39:12:ac:02:
86:f0:58:b4:18:1f:29:81:21:88:a7:a9:ac:2b:fb:
72:ff:80:c7:a5:71:2e:71:78:05:34:4b:8c:aa:0f:
a3:11:94:58:81:a7:76:94:de:84:3d:f0:9a:d3:2a:
99:80:77:de:fd:75:57:1e:f0:0b:19:3d:60:e3:eb:
b7:51:8a:c5:72:61:12:8e:0c:89:75:24:27:7f:63:
46:7a:c4:91:8a:87:b9:bc:cf:3e:9f:9e:b2:6b:ad:
70:6a:a2:42:52:42:5f:8a:b2:f6:c1:53:26:25:8d:
17:68:ec:c9:e7:58:1f:48:28:f5:b2:af:03:ba:c0:
18:68:dd:73:02:bd:75:a1:f5:dc:33:5b:28:0e:2a:
7b:72:1f:e4:67:7e:a9:58:74:7d:03:d9:06:e8:d5:
a1:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:1A:88:CC:B5:8D:87:B4:00:71:CD:3E:56:59:90:52:F9:0E:CA:3E
X509v3 Authority Key Identifier:
keyid:81:CC:A9:F1:5E:19:21:95:3A:62:8C:8A:D2:AC:4B:E9:77:B6:C3:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/8BqIzLWNh7QAcc0-VlmQUvkOyj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/1ea2b0-6b9a-44d7-a2e5-2206cc2e691c/1/gcyp8V4ZIZU6YoyK0qxL6Xe2wwM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.160.10.0/24
Signature Algorithm: sha256WithRSAEncryption
61:fe:5b:b3:ea:de:d9:67:b1:d1:63:c5:e9:07:f7:36:36:64:
47:62:ae:7a:31:44:af:45:e6:7f:a5:59:42:93:21:84:23:f2:
e4:3c:8f:1f:ba:70:34:ac:28:04:78:6d:a7:a7:3c:4d:a1:74:
2c:ed:22:01:fb:38:83:ec:50:7a:18:1e:c1:21:f5:7c:f4:ac:
5f:54:78:ef:db:62:ba:94:37:a0:61:a3:1b:27:6e:1a:c5:83:
ae:b7:c9:32:0b:cb:1b:22:71:cc:55:ad:36:8c:93:1c:4d:bf:
c2:f7:74:da:74:7a:1a:1d:52:23:45:84:15:5a:a6:a2:a9:74:
0b:1f:74:ac:76:c0:d4:af:bb:ac:6c:2c:b9:c6:9d:9f:1f:94:
dd:83:66:a6:09:48:2b:49:f1:74:dd:50:ce:15:e1:c8:5f:b4:
68:42:19:67:a9:46:0d:40:be:21:7f:34:23:26:fb:2a:44:65:
3b:a4:b0:84:7d:6c:1c:e8:7f:dc:3a:1c:16:63:d9:c5:56:d4:
0e:52:27:e9:60:18:68:c7:32:9f:78:f4:67:f6:af:d8:3f:db:
89:c8:ad:94:1f:c6:e5:95:ed:bd:83:89:0c:1a:13:5c:15:ae:
b3:4d:6c:ca:f1:45:b3:a3:bf:99:d1:9a:10:d7:d3:94:9a:a5:
46:73:5a:01
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvQuOLj9gdRab0Kg3hVxB+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxY2NhOWYxNWUxOTIxOTUzYTYyOGM4YWQyYWM0YmU5Nzdi
NmMzMDMwHhcNMjMwMTAxMjEzNTMyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMDFhODhjY2I1OGQ4N2I0MDA3MWNkM2U1NjU5OTA1MmY5MGVjYTNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgHNcQwITyB7fpWh5agLD119qPsly
BukABSRtgiCMG4HpbkkNMcOYxvFSPJ797BJ/IHdLDq8DvamUTbBFAs4q6+6nLGMd
f+AYJZRHucQ5RStfWJ8MxBGTarrCeKXmmbGeR81GXjkSrAKG8Fi0GB8pgSGIp6ms
K/ty/4DHpXEucXgFNEuMqg+jEZRYgad2lN6EPfCa0yqZgHfe/XVXHvALGT1g4+u3
UYrFcmESjgyJdSQnf2NGesSRioe5vM8+n56ya61waqJCUkJfirL2wVMmJY0XaOzJ
51gfSCj1sq8DusAYaN1zAr11ofXcM1soDip7ch/kZ36pWHR9A9kG6NWhlQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPAaiMy1jYe0AHHNPlZZkFL5Dso+MB8GA1UdIwQY
MBaAFIHMqfFeGSGVOmKMitKsS+l3tsMDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2N5cDhWNFpJWlU2WW95SzBxeEw2WGUyd3dNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC8xZWEyYjAtNmI5YS00NGQ3LWEyZTUt
MjIwNmNjMmU2OTFjLzEvOEJxSXpMV05oN1FBY2MwLVZsbVFVdmtPeWo0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC8xZWEyYjAtNmI5YS00NGQ3LWEyZTUtMjIwNmNjMmU2OTFj
LzEvZ2N5cDhWNFpJWlU2WW95SzBxeEw2WGUyd3dNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABaAKMA0G
CSqGSIb3DQEBCwUAA4IBAQBh/luz6t7ZZ7HRY8XpB/c2NmRHYq56MUSvReZ/pVlC
kyGEI/LkPI8funA0rCgEeG2npzxNoXQs7SIB+ziD7FB6GB7BIfV89KxfVHjv22K6
lDegYaMbJ24axYOut8kyC8sbInHMVa02jJMcTb/C93TadHoaHVIjRYQVWqaiqXQL
H3SsdsDUr7usbCy5xp2fH5Tdg2amCUgrSfF03VDOFeHIX7RoQhlnqUYNQL4hfzQj
JvsqRGU7pLCEfWwc6H/cOhwWY9nFVtQOUifpYBhoxzKfePRn9q/YP9uJyK2UH8bl
le29g4kMGhNcFa6zTWzK8UWzo7+Z0ZoQ19OUmqVGc1oB
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:31 2024 by rpki-client on console-fra.rpki-client.org