Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/cZM5pv6EN5tjTQjK7e5S-QlVU9s.roa
File: cZM5pv6EN5tjTQjK7e5S-QlVU9s.roa (raw, json)
Hash identifier: hiWUHNtK16GgkS2utht8xGC8O7oq7gZeh0xA2ukG1Js=
Subject key identifier: 71:93:39:A6:FE:84:37:9B:63:4D:08:CA:ED:EE:52:F9:09:55:53:DB
Certificate issuer: /CN=b414b09beeab905ff41e6813256054b182294297
Certificate serial: 0187754CF202607A85C9DAD1469696DD2143
Authority key identifier: B4:14:B0:9B:EE:AB:90:5F:F4:1E:68:13:25:60:54:B1:82:29:42:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tBSwm-6rkF_0HmgTJWBUsYIpQpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/cZM5pv6EN5tjTQjK7e5S-QlVU9s.roa
Signing time: Wed 12 Apr 2023 11:49:49 +0000
ROA not before: Wed 12 Apr 2023 11:49:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48871
IP address blocks: 185.30.152.0/24 maxlen: 24
2a04:4240::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:75:4c:f2:02:60:7a:85:c9:da:d1:46:96:96:dd:21:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b414b09beeab905ff41e6813256054b182294297
Validity
Not Before: Apr 12 11:49:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=719339a6fe84379b634d08caedee52f9095553db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:14:35:de:34:67:65:bc:4b:e9:21:a8:bc:94:
6b:4e:53:c5:1d:85:ca:33:a0:40:db:28:42:fb:b5:
a9:dc:ba:6c:1d:b2:b0:84:43:51:1c:72:0c:a6:d1:
dc:10:9a:01:7f:97:1b:5f:d8:8d:7d:d0:27:2f:5a:
f1:01:23:73:b8:42:0a:91:f3:91:4e:1b:47:15:8a:
59:78:80:58:76:78:c6:9f:4b:db:8c:ee:18:fa:1f:
f0:86:35:0e:a7:50:c8:62:e8:4c:df:b4:06:29:05:
c6:a4:db:35:df:4b:a8:ab:f4:ef:e4:7e:11:cf:17:
f9:28:36:49:6d:68:4c:69:ed:c3:de:1b:a9:16:b1:
07:0a:a3:1a:62:db:0f:9d:e4:ca:f0:e9:a2:9f:02:
9b:6e:9e:3f:cb:4b:67:b2:2f:20:45:54:70:23:3c:
fc:4e:89:e0:38:2e:e9:cb:1b:4d:6d:c0:52:a8:0b:
5c:df:52:e3:7c:b5:44:f1:3b:28:76:7f:7e:d1:41:
69:43:7d:d5:4b:4f:0e:45:64:d9:70:03:74:b7:19:
30:80:18:7d:ee:de:ff:5b:01:18:f4:44:03:9e:85:
01:b7:b6:df:8b:57:ee:c0:30:b9:a1:b7:43:f4:79:
9f:47:18:d8:63:b1:e3:f5:df:9d:40:0d:98:b8:5d:
05:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:93:39:A6:FE:84:37:9B:63:4D:08:CA:ED:EE:52:F9:09:55:53:DB
X509v3 Authority Key Identifier:
keyid:B4:14:B0:9B:EE:AB:90:5F:F4:1E:68:13:25:60:54:B1:82:29:42:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tBSwm-6rkF_0HmgTJWBUsYIpQpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/cZM5pv6EN5tjTQjK7e5S-QlVU9s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.30.152.0/24
IPv6:
2a04:4240::/32
Signature Algorithm: sha256WithRSAEncryption
b8:73:7d:c5:77:f7:34:41:51:9f:2c:d5:8f:24:ec:a6:0e:77:
c0:e9:76:b1:a6:89:3e:c5:f1:28:e1:a3:90:11:84:9e:8b:0e:
a1:99:5f:4c:54:6f:75:54:fd:9b:e0:a6:d4:ae:68:8e:d4:76:
9a:fe:d7:9f:92:c7:cd:b5:d9:c6:04:d8:25:a9:37:09:a1:7f:
92:2a:5f:2a:37:b3:0a:6b:01:33:83:73:2a:4c:76:da:ad:a7:
85:38:b3:51:05:25:1d:76:f7:6e:6f:09:31:b1:ff:df:22:ec:
16:8d:0c:a6:dc:5f:f5:a1:f9:09:fc:cc:97:79:9b:de:38:51:
a8:82:f4:6c:09:30:0f:67:61:c3:6a:ab:4e:16:f2:52:65:f3:
8f:b9:e9:a8:b3:db:4f:f3:1d:0b:3d:ea:01:68:10:ba:14:8a:
43:d6:03:94:cb:e7:72:b0:44:0a:f1:42:34:5f:57:37:00:58:
d3:f0:85:13:cd:e5:ff:57:23:47:a7:f0:5a:f9:b0:be:31:1e:
17:b9:88:9b:4c:38:cf:48:13:6c:1b:91:b7:f8:aa:18:24:ea:
db:d1:f9:58:db:42:37:18:d7:bf:0c:ac:cf:a7:5e:34:37:b9:
97:25:77:1c:66:07:cb:69:3c:f1:9f:ed:eb:58:42:fe:2c:e1:
08:39:80:f4
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYd1TPICYHqFydrRRpaW3SFDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0MTRiMDliZWVhYjkwNWZmNDFlNjgxMzI1NjA1NGIxODIy
OTQyOTcwHhcNMjMwNDEyMTE0OTQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MTkzMzlhNmZlODQzNzliNjM0ZDA4Y2FlZGVlNTJmOTA5NTU1M2RiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgBQ13jRnZbxL6SGovJRrTlPFHYXK
M6BA2yhC+7Wp3LpsHbKwhENRHHIMptHcEJoBf5cbX9iNfdAnL1rxASNzuEIKkfOR
ThtHFYpZeIBYdnjGn0vbjO4Y+h/whjUOp1DIYuhM37QGKQXGpNs130uoq/Tv5H4R
zxf5KDZJbWhMae3D3hupFrEHCqMaYtsPneTK8OminwKbbp4/y0tnsi8gRVRwIzz8
TongOC7pyxtNbcBSqAtc31LjfLVE8Tsodn9+0UFpQ33VS08ORWTZcAN0txkwgBh9
7t7/WwEY9EQDnoUBt7bfi1fuwDC5obdD9HmfRxjYY7Hj9d+dQA2YuF0FuwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFHGTOab+hDebY00Iyu3uUvkJVVPbMB8GA1UdIwQY
MBaAFLQUsJvuq5Bf9B5oEyVgVLGCKUKXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdEJTd20tNnJrRl8wSG1nVEpXQlVzWUlwUXBjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS84MDBlYjYtODY4Yi00YTMwLWI0MDIt
NGJjZTQyNDcyM2Q5LzEvY1pNNXB2NkVONXRqVFFqSzdlNVMtUWxWVTlzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS84MDBlYjYtODY4Yi00YTMwLWI0MDItNGJjZTQyNDcyM2Q5
LzEvdEJTd20tNnJrRl8wSG1nVEpXQlVzWUlwUXBjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuR6YMA0E
AgACMAcDBQAqBEJAMA0GCSqGSIb3DQEBCwUAA4IBAQC4c33Fd/c0QVGfLNWPJOym
DnfA6Xaxpok+xfEo4aOQEYSeiw6hmV9MVG91VP2b4KbUrmiO1Haa/tefksfNtdnG
BNglqTcJoX+SKl8qN7MKawEzg3MqTHbaraeFOLNRBSUddvdubwkxsf/fIuwWjQym
3F/1ofkJ/MyXeZveOFGogvRsCTAPZ2HDaqtOFvJSZfOPuemos9tP8x0LPeoBaBC6
FIpD1gOUy+dysEQK8UI0X1c3AFjT8IUTzeX/VyNHp/Ba+bC+MR4XuYibTDjPSBNs
G5G3+KoYJOrb0flY20I3GNe/DKzPp140N7mXJXccZgfLaTzxn+3rWEL+LOEIOYD0
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:14 2024 by rpki-client on console-ams.rpki-client.org