Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/gDPqsL2409eiK85sEOs16CHLPuo.roa
File: gDPqsL2409eiK85sEOs16CHLPuo.roa (raw, json)
Hash identifier: FM1VckpG3gvnOHCEJDEk7yBohjiVuLH7APVE2DRDGvs=
Subject key identifier: 80:33:EA:B0:BD:B8:D3:D7:A2:2B:CE:6C:10:EB:35:E8:21:CB:3E:EA
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018BB835855389B40667481EE4F4BAE24FAC
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/gDPqsL2409eiK85sEOs16CHLPuo.roa
Signing time: Fri 10 Nov 2023 07:49:57 +0000
ROA not before: Fri 10 Nov 2023 07:49:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399471
IP address blocks: 5.144.179.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b8:35:85:53:89:b4:06:67:48:1e:e4:f4:ba:e2:4f:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Nov 10 07:49:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8033eab0bdb8d3d7a22bce6c10eb35e821cb3eea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:24:b3:16:83:3b:ef:36:f2:95:80:6d:1f:d5:
f7:51:f4:90:35:38:38:cf:f4:be:c0:e8:89:b8:51:
9a:0d:67:f8:22:24:66:d1:1c:a5:c5:db:78:5a:4f:
62:36:47:df:5d:e2:05:3a:0f:bb:43:06:a6:6e:40:
56:2d:79:f7:b1:66:4e:4e:a4:51:99:7b:de:be:bc:
1b:79:93:c2:ea:04:0a:77:39:7c:c0:30:0a:64:0a:
73:9a:b6:7f:9a:e4:cf:df:7c:ce:45:b2:b2:fa:e2:
15:92:5b:6b:86:b2:46:35:c9:9a:c4:97:eb:cc:1d:
07:a4:d1:26:da:52:28:76:2e:f8:f2:78:60:ff:b5:
43:91:b1:f7:37:1b:cc:78:d6:b8:57:6a:f1:82:79:
6a:e7:4a:4f:f0:ab:dc:ce:71:47:6d:f8:23:17:0e:
14:55:e9:7b:b9:4d:25:76:f3:9a:ea:52:a5:9a:fe:
de:3e:5a:8c:14:04:4b:25:c0:c0:52:6f:ca:28:2d:
05:dc:cb:67:89:70:57:4b:3e:b9:39:77:06:98:38:
7a:83:bd:8d:cc:fd:81:7a:78:5b:2c:f8:01:81:d5:
82:3e:48:7d:b1:b1:07:26:6e:66:75:a4:8d:5a:54:
69:71:5e:53:8b:fa:30:ee:f7:a8:85:8f:32:04:87:
26:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:33:EA:B0:BD:B8:D3:D7:A2:2B:CE:6C:10:EB:35:E8:21:CB:3E:EA
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/gDPqsL2409eiK85sEOs16CHLPuo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.179.0/24
Signature Algorithm: sha256WithRSAEncryption
27:1c:90:de:0d:a9:e4:de:75:ce:3e:87:8f:f1:91:26:ab:5d:
65:f5:f3:96:47:33:2d:80:40:00:65:08:17:78:f6:90:09:7f:
d5:31:11:6d:41:14:ac:46:d1:97:89:57:69:fc:6d:32:b0:23:
77:93:d1:b9:f2:4c:97:b8:8d:cb:55:03:1c:2e:22:15:ed:29:
49:0e:f8:c5:61:97:f4:e5:43:08:4f:a3:50:60:06:45:8c:ae:
d3:90:46:2d:99:a9:0d:96:4d:e8:1e:45:47:43:3f:b5:ae:72:
ac:69:74:24:e9:41:e4:78:ce:79:ab:ef:d9:da:2c:96:60:40:
11:d9:18:6e:0d:30:61:49:7b:50:c1:56:23:a5:17:f7:c7:9f:
42:af:0b:fd:e2:5f:6d:e4:e6:ef:a4:b5:a7:81:45:3a:bc:df:
30:17:1d:24:40:b8:62:31:41:fe:98:e5:04:dc:f4:ca:1b:d6:
20:89:0e:46:2e:aa:3b:c2:c5:fa:90:c0:c5:4f:de:1f:18:af:
37:6b:71:51:98:fc:c3:c9:b3:c7:71:6f:97:81:63:f0:8d:30:
e3:05:68:ae:80:43:f6:59:d2:1f:9d:73:f9:d7:18:1f:81:97:
6d:26:b2:8f:80:b4:b3:0a:bf:7f:b1:b3:35:7f:1b:f9:b2:99:
75:9f:0b:a5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYu4NYVTibQGZ0ge5PS64k+sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEzMTg4MTczMmEzZTI0NWE5NTliYzY3OWUwNDU4YzM5Zjg5
M2U0NmIwHhcNMjMxMTEwMDc0OTU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MDMzZWFiMGJkYjhkM2Q3YTIyYmNlNmMxMGViMzVlODIxY2IzZWVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArCSzFoM77zbylYBtH9X3UfSQNTg4
z/S+wOiJuFGaDWf4IiRm0Rylxdt4Wk9iNkffXeIFOg+7QwambkBWLXn3sWZOTqRR
mXvevrwbeZPC6gQKdzl8wDAKZApzmrZ/muTP33zORbKy+uIVkltrhrJGNcmaxJfr
zB0HpNEm2lIodi748nhg/7VDkbH3NxvMeNa4V2rxgnlq50pP8KvcznFHbfgjFw4U
Vel7uU0ldvOa6lKlmv7ePlqMFARLJcDAUm/KKC0F3MtniXBXSz65OXcGmDh6g72N
zP2BenhbLPgBgdWCPkh9sbEHJm5mdaSNWlRpcV5Ti/ow7veohY8yBIcmMQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIAz6rC9uNPXoivObBDrNeghyz7qMB8GA1UdIwQY
MBaAFBMYgXMqPiRalZvGeeBFjDn4k+RrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRXhpQmN5by1KRnFWbThaNTRFV01PZmlUNUdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS84OWYwNzEtNTYzMS00NWRiLWE3ZTUt
Y2Q2MTUyMjYxYzZmLzEvZ0RQcXNMMjQwOWVpSzg1c0VPczE2Q0hMUHVvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS84OWYwNzEtNTYzMS00NWRiLWE3ZTUtY2Q2MTUyMjYxYzZm
LzEvRXhpQmN5by1KRnFWbThaNTRFV01PZmlUNUdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABZCzMA0G
CSqGSIb3DQEBCwUAA4IBAQAnHJDeDank3nXOPoeP8ZEmq11l9fOWRzMtgEAAZQgX
ePaQCX/VMRFtQRSsRtGXiVdp/G0ysCN3k9G58kyXuI3LVQMcLiIV7SlJDvjFYZf0
5UMIT6NQYAZFjK7TkEYtmakNlk3oHkVHQz+1rnKsaXQk6UHkeM55q+/Z2iyWYEAR
2RhuDTBhSXtQwVYjpRf3x59Crwv94l9t5ObvpLWngUU6vN8wFx0kQLhiMUH+mOUE
3PTKG9YgiQ5GLqo7wsX6kMDFT94fGK83a3FRmPzDybPHcW+XgWPwjTDjBWiugEP2
WdIfnXP51xgfgZdtJrKPgLSzCr9/sbM1fxv5spl1nwul
-----END CERTIFICATE-----
Generated at Mon Jan 1 21:18:56 2024 by rpki-client on console-ams.rpki-client.org