Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/U1Lr3gBMuhBzQGRpW-Dt8nixdY8.roa
File: U1Lr3gBMuhBzQGRpW-Dt8nixdY8.roa (raw, json)
Hash identifier: xKrX6cV/bgwVZeHV89RxcR1MyClVnI2Jcyrtcn7jMqM=
Subject key identifier: 53:52:EB:DE:00:4C:BA:10:73:40:64:69:5B:E0:ED:F2:78:B1:75:8F
Certificate issuer: /CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Certificate serial: 01856E14229D7D8BB8E15BB7D90F8583079A
Authority key identifier: 4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/U1Lr3gBMuhBzQGRpW-Dt8nixdY8.roa
Signing time: Sun 01 Jan 2023 16:04:51 +0000
ROA not before: Sun 01 Jan 2023 16:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201079
IP address blocks: 185.254.53.0/24 maxlen: 24
185.254.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:22:9d:7d:8b:b8:e1:5b:b7:d9:0f:85:83:07:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Validity
Not Before: Jan 1 16:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5352ebde004cba10734064695be0edf278b1758f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:8b:d0:24:d6:65:86:eb:dc:02:eb:71:62:d9:
33:59:76:68:13:73:91:90:23:cc:4e:a1:5e:7a:4b:
7d:0f:29:ae:ec:4e:f8:bc:38:e2:eb:cb:cf:ba:68:
80:7a:bb:ba:d5:20:47:9e:65:00:22:95:d8:0e:91:
dd:65:97:bc:c0:57:0c:2b:fe:88:05:ac:23:53:cd:
af:96:b6:78:de:fc:8d:06:c2:df:8a:15:fb:eb:7c:
94:15:36:00:05:78:b9:6a:d4:a2:79:2d:97:6e:54:
9d:4d:ca:a1:d5:1c:f3:45:fa:56:83:18:0a:9b:f7:
af:4b:2a:51:4b:9b:5d:6e:a5:13:8f:81:40:f3:c6:
26:08:95:2c:af:24:19:3e:f6:fd:33:f1:d7:d0:22:
9d:f1:0d:4a:45:4d:93:94:9e:2b:26:e0:0c:c8:54:
20:bf:42:91:e3:7a:40:09:70:e6:98:be:cf:57:f8:
2e:7e:e7:dd:46:c9:ae:e4:bf:95:9c:26:e2:79:62:
6f:c5:bc:24:dd:f7:85:64:71:84:13:a1:23:f8:90:
4c:58:74:10:40:10:20:3e:24:0a:8a:05:68:23:c4:
ee:4f:57:44:20:f8:a1:81:d0:e3:1d:4b:de:66:e8:
9c:b8:f5:5c:99:20:61:24:5a:b0:fc:09:bc:b9:c1:
f3:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:52:EB:DE:00:4C:BA:10:73:40:64:69:5B:E0:ED:F2:78:B1:75:8F
X509v3 Authority Key Identifier:
keyid:4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/U1Lr3gBMuhBzQGRpW-Dt8nixdY8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.254.53.0/24
185.254.55.0/24
Signature Algorithm: sha256WithRSAEncryption
46:a6:62:5f:52:67:e6:b3:c7:23:a7:17:ec:b1:40:0c:c8:9f:
7f:e3:70:34:1f:45:c1:71:cf:e5:a3:69:3d:7c:2a:21:ad:1e:
31:85:fa:e8:d6:ff:42:c5:c6:6d:8b:b9:5a:9d:c9:0f:5e:e1:
75:37:ef:0c:a8:e3:ea:95:5e:9d:d4:a7:50:6f:18:f6:a8:6f:
b6:4f:c0:ae:82:b4:ec:03:7d:d6:b9:4a:92:b9:bb:69:66:ec:
32:70:47:c1:3f:cf:f3:86:ea:68:73:f4:e1:94:66:0f:d7:66:
24:b7:eb:d1:07:f1:51:f8:2e:1d:cf:2d:7c:37:58:ad:30:df:
25:50:bc:0c:e8:d7:f5:c3:37:0c:e0:9a:5a:37:37:1c:95:ff:
0e:af:f4:62:e6:36:76:e6:c3:ac:4f:80:01:f2:5b:61:9b:67:
af:76:70:81:bc:7b:01:40:d1:29:ac:4b:a4:37:e9:b6:2f:70:
3e:9c:5f:7b:34:04:fd:5d:00:ed:62:cd:c6:7a:bc:38:8c:a5:
36:a1:57:2c:a0:92:88:61:9f:50:18:6f:b8:be:ab:09:be:0b:
bf:86:8f:d6:f7:f9:e2:b4:97:2e:88:72:ac:54:f2:38:16:b3:
b5:95:70:ce:10:8c:7e:4b:b5:e8:f1:1d:bb:7d:a4:4d:98:4c:
64:db:a2:0b
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVuFCKdfYu44Vu32Q+FgweaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmOTUwOWIzM2RhNTVmM2U1ZDUyODNlYjYyMWQwZDM1ZDdh
ZWVkNWMwHhcNMjMwMTAxMTYwNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MzUyZWJkZTAwNGNiYTEwNzM0MDY0Njk1YmUwZWRmMjc4YjE3NThmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxovQJNZlhuvcAutxYtkzWXZoE3OR
kCPMTqFeekt9Dymu7E74vDji68vPumiAeru61SBHnmUAIpXYDpHdZZe8wFcMK/6I
BawjU82vlrZ43vyNBsLfihX763yUFTYABXi5atSieS2XblSdTcqh1RzzRfpWgxgK
m/evSypRS5tdbqUTj4FA88YmCJUsryQZPvb9M/HX0CKd8Q1KRU2TlJ4rJuAMyFQg
v0KR43pACXDmmL7PV/gufufdRsmu5L+VnCbieWJvxbwk3feFZHGEE6Ej+JBMWHQQ
QBAgPiQKigVoI8TuT1dEIPihgdDjHUveZuicuPVcmSBhJFqw/Am8ucHzEwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFFNS694ATLoQc0BkaVvg7fJ4sXWPMB8GA1UdIwQY
MBaAFE+VCbM9pV8+XVKD62IdDTXXru1cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDVVSnN6MmxYejVkVW9QclloME5OZGV1N1Z3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi82ZmMxYmMtYTVmOC00MmE4LTk1ZTQt
NjAxMDdlMmI1MTA5LzEvVTFMcjNnQk11aEJ6UUdScFctRHQ4bml4ZFk4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi82ZmMxYmMtYTVmOC00MmE4LTk1ZTQtNjAxMDdlMmI1MTA5
LzEvVDVVSnN6MmxYejVkVW9QclloME5OZGV1N1Z3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuf41AwQA
uf43MA0GCSqGSIb3DQEBCwUAA4IBAQBGpmJfUmfms8cjpxfssUAMyJ9/43A0H0XB
cc/lo2k9fCohrR4xhfro1v9CxcZti7lanckPXuF1N+8MqOPqlV6d1KdQbxj2qG+2
T8CugrTsA33WuUqSubtpZuwycEfBP8/zhupoc/ThlGYP12Ykt+vRB/FR+C4dzy18
N1itMN8lULwM6Nf1wzcM4JpaNzcclf8Or/Ri5jZ25sOsT4AB8lthm2evdnCBvHsB
QNEprEukN+m2L3A+nF97NAT9XQDtYs3Gerw4jKU2oVcsoJKIYZ9QGG+4vqsJvgu/
ho/W9/nitJcuiHKsVPI4FrO1lXDOEIx+S7Xo8R27faRNmExk26IL
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:50 2024 by rpki-client on console-fra.rpki-client.org