Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/WnSABVs73D86g_N-KAZt3-zUS7c.roa
File: WnSABVs73D86g_N-KAZt3-zUS7c.roa (raw, json)
Hash identifier: 4+gidv2tBa8ylHLjIIVtE5wkXmAHGQ2gLLLmZUre2DM=
Subject key identifier: 5A:74:80:05:5B:3B:DC:3F:3A:83:F3:7E:28:06:6D:DF:EC:D4:4B:B7
Certificate issuer: /CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e
Certificate serial: 019097662EB5E23C8BB743B917D16D15A5B9
Authority key identifier: 2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/WnSABVs73D86g_N-KAZt3-zUS7c.roa
Signing time: Tue 09 Jul 2024 12:09:34 +0000
ROA not before: Tue 09 Jul 2024 12:09:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204958
IP address blocks: 152.89.171.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 01 Oct 2024 13:40:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:97:66:2e:b5:e2:3c:8b:b7:43:b9:17:d1:6d:15:a5:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e
Validity
Not Before: Jul 9 12:09:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a7480055b3bdc3f3a83f37e28066ddfecd44bb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b9:fa:ae:87:4e:0f:84:5a:ca:62:1b:a4:bd:
73:75:a1:db:b7:ee:50:63:7f:c3:51:66:4e:68:94:
ec:22:4d:65:44:5f:30:e8:82:c0:f2:01:7f:b9:cd:
51:36:e5:c8:fc:f9:71:6d:f0:f4:32:31:83:dd:ea:
45:c0:50:77:5a:fa:3b:1f:85:88:89:fe:ef:36:cf:
e5:76:8f:76:3c:ff:b1:c2:9e:f7:4a:8d:65:ff:a6:
da:0f:d0:44:9f:5c:fe:d7:94:57:c8:68:df:02:7a:
46:c7:a9:c5:c5:c3:e4:65:93:50:3d:44:9e:a6:2e:
23:3a:64:ef:30:43:f2:cf:f5:3d:98:8c:ee:a4:b5:
c3:4f:97:7b:53:ed:f2:48:43:fa:8c:dd:29:96:b6:
1a:a4:1f:ae:d2:b3:59:bf:55:1c:79:d9:3b:7b:b3:
f6:51:2e:4b:f2:e2:3c:07:3a:8a:10:44:f9:52:a3:
58:67:3c:1f:91:37:00:86:fc:75:aa:14:fe:90:3c:
0d:8f:03:ff:7a:cd:1e:84:a2:0e:d8:a8:42:6e:10:
f6:4f:41:85:1c:c6:55:79:7f:b0:b0:20:2f:0c:37:
a9:3a:b8:c0:3f:0b:de:9d:18:70:2b:42:9a:07:8d:
c9:91:30:e2:90:00:0a:c4:36:11:b7:ba:fc:03:a8:
cd:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:74:80:05:5B:3B:DC:3F:3A:83:F3:7E:28:06:6D:DF:EC:D4:4B:B7
X509v3 Authority Key Identifier:
keyid:2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/WnSABVs73D86g_N-KAZt3-zUS7c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.89.171.0/24
Signature Algorithm: sha256WithRSAEncryption
59:0c:78:94:85:38:78:9a:ba:02:89:67:71:0c:63:1f:18:3e:
c3:c3:10:bb:8d:65:c5:87:02:32:a6:a1:eb:4e:6f:af:ab:8f:
76:16:ab:1e:ba:68:83:f1:9f:74:31:e4:e0:51:c1:46:70:c3:
cd:ec:7c:ee:5e:ed:44:2e:86:2f:fb:27:e4:b5:63:14:d3:82:
b3:58:46:8d:e1:aa:b8:49:6d:e2:e3:f6:34:d2:17:02:5f:fa:
70:35:9c:10:58:e2:88:86:40:a5:94:d7:5e:36:c5:65:55:63:
b4:d4:5e:9c:69:1b:35:32:a3:ef:ba:3c:aa:a7:e0:fa:2a:cd:
5c:75:41:66:32:bb:61:26:15:d7:c4:d9:2d:b7:b7:e6:11:a2:
50:68:7c:65:24:3a:72:7c:b0:fb:30:f8:00:b8:46:42:bb:6c:
fb:bb:ae:20:c5:70:b8:60:48:50:67:a0:8d:5e:0b:ad:1e:bc:
0e:3c:92:d7:ed:d9:34:0c:e8:73:94:5c:5d:95:4c:40:40:24:
95:78:75:e0:88:cd:10:9d:b8:b4:3a:7e:89:b3:70:8a:41:41:
72:0a:dd:dc:8e:8e:0b:7d:69:71:45:81:19:b9:dd:e4:57:c6:
df:08:81:e2:d6:61:fd:8b:3e:d7:6c:b0:25:81:5a:07:1e:df:
55:ad:c3:13
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZCXZi614jyLt0O5F9FtFaW5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmOTNkM2JhMTk3ZjVjZTMwOThiZmE3NzAwYjQzODU0ZWFh
ODBlOWUwHhcNMjQwNzA5MTIwOTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YTc0ODAwNTViM2JkYzNmM2E4M2YzN2UyODA2NmRkZmVjZDQ0YmI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqbn6rodOD4RaymIbpL1zdaHbt+5Q
Y3/DUWZOaJTsIk1lRF8w6ILA8gF/uc1RNuXI/PlxbfD0MjGD3epFwFB3Wvo7H4WI
if7vNs/ldo92PP+xwp73So1l/6baD9BEn1z+15RXyGjfAnpGx6nFxcPkZZNQPUSe
pi4jOmTvMEPyz/U9mIzupLXDT5d7U+3ySEP6jN0plrYapB+u0rNZv1Ucedk7e7P2
US5L8uI8BzqKEET5UqNYZzwfkTcAhvx1qhT+kDwNjwP/es0ehKIO2KhCbhD2T0GF
HMZVeX+wsCAvDDepOrjAPwvenRhwK0KaB43JkTDikAAKxDYRt7r8A6jNtwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFp0gAVbO9w/OoPzfigGbd/s1Eu3MB8GA1UdIwQY
MBaAFC+T07oZf1zjCYv6dwC0OFTqqA6eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTDVQVHVobF9YT01KaV9wM0FMUTRWT3FvRHA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC83YTg3YTAtODAxNC00NjA1LTlmYjUt
OWU3MWRjMjRhNjgzLzEvV25TQUJWczczRDg2Z19OLUtBWnQzLXpVUzdjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC83YTg3YTAtODAxNC00NjA1LTlmYjUtOWU3MWRjMjRhNjgz
LzEvTDVQVHVobF9YT01KaV9wM0FMUTRWT3FvRHA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmFmrMA0G
CSqGSIb3DQEBCwUAA4IBAQBZDHiUhTh4mroCiWdxDGMfGD7DwxC7jWXFhwIypqHr
Tm+vq492FqseumiD8Z90MeTgUcFGcMPN7HzuXu1ELoYv+yfktWMU04KzWEaN4aq4
SW3i4/Y00hcCX/pwNZwQWOKIhkCllNdeNsVlVWO01F6caRs1MqPvujyqp+D6Ks1c
dUFmMrthJhXXxNktt7fmEaJQaHxlJDpyfLD7MPgAuEZCu2z7u64gxXC4YEhQZ6CN
XgutHrwOPJLX7dk0DOhzlFxdlUxAQCSVeHXgiM0Qnbi0On6Js3CKQUFyCt3cjo4L
fWlxRYEZud3kV8bfCIHi1mH9iz7XbLAlgVoHHt9VrcMT
-----END CERTIFICATE-----
Generated at Tue Oct 1 17:51:30 2024 by rpki-client on console-ams.rpki-client.org