Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/hpYkTn-kidzWIWIpTtJyZXn-IU8.roa
File: hpYkTn-kidzWIWIpTtJyZXn-IU8.roa (raw, json)
Hash identifier: xNQogSp3IKyUNJfjRWggLwsJ4W/5bgNJmZLLSXUuH7Q=
Subject key identifier: 86:96:24:4E:7F:A4:89:DC:D6:21:62:29:4E:D2:72:65:79:FE:21:4F
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 01910426E9ACA376AA930B1E7BE31776FFA7
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/hpYkTn-kidzWIWIpTtJyZXn-IU8.roa
Signing time: Tue 30 Jul 2024 14:59:04 +0000
ROA not before: Tue 30 Jul 2024 14:59:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61335
IP address blocks: 5.144.182.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Sep 2024 17:05:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:04:26:e9:ac:a3:76:aa:93:0b:1e:7b:e3:17:76:ff:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Jul 30 14:59:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8696244e7fa489dcd62162294ed2726579fe214f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:be:7f:35:72:35:d8:64:97:b2:23:c9:2f:3e:
5d:f7:59:f4:5e:ca:98:18:f9:1d:bf:5c:a7:58:37:
3c:85:73:62:61:36:c6:c2:1b:65:1a:7b:f3:e6:53:
80:4c:2d:61:b1:04:a6:09:0f:cd:91:ee:1d:32:77:
30:5b:92:e0:60:a1:30:1c:6b:20:a9:e1:ee:61:03:
28:28:7c:41:00:2b:6e:3a:7b:1a:2b:3b:57:8d:70:
79:f4:e4:1e:9b:95:02:45:f2:ef:ea:8c:40:c8:3b:
3a:e1:ec:84:36:3a:d8:4b:b3:f2:6f:e0:a2:c7:cc:
08:7e:22:c2:5a:0a:a0:a3:12:7f:bf:c5:96:50:cf:
5b:63:eb:01:30:92:36:a0:5a:19:d6:be:17:ff:ab:
2f:b9:5e:0f:6e:5b:d4:a3:75:1e:6a:b1:aa:70:7c:
83:fe:4b:fe:41:ab:9d:0f:88:2c:e5:fe:16:68:8a:
89:69:2b:0d:a8:ce:9c:fe:2e:d9:b7:7f:2a:40:5c:
c2:00:4f:64:66:50:02:27:50:b0:ae:f4:59:85:18:
b6:c0:a6:c3:c6:23:99:b4:7d:57:00:73:bc:3d:c9:
99:41:b2:0f:09:1b:2f:72:b1:79:d4:dd:5f:f7:1f:
aa:7a:61:93:b3:29:ac:4f:0c:29:e2:50:0e:c3:25:
b8:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:96:24:4E:7F:A4:89:DC:D6:21:62:29:4E:D2:72:65:79:FE:21:4F
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/hpYkTn-kidzWIWIpTtJyZXn-IU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.182.0/24
Signature Algorithm: sha256WithRSAEncryption
61:35:fa:18:cf:59:13:74:a6:ab:c0:a0:29:f9:fb:5d:fc:cc:
11:a1:d5:7f:7d:43:48:d4:eb:9a:d9:0b:f7:30:db:2f:f0:6c:
8d:0c:42:80:e3:db:e0:19:9b:fc:5b:1e:65:ae:ff:c6:11:97:
86:7a:93:ab:ec:b9:fb:53:77:39:c3:2a:35:9d:71:85:db:40:
d9:1a:71:34:84:28:20:cc:80:73:3b:34:b0:49:c5:0d:af:11:
99:6e:48:70:5b:e0:f0:1f:00:13:7a:95:e9:91:88:0e:c7:66:
9c:0a:8c:d4:c4:23:17:92:8b:33:d2:9a:bd:62:43:87:b0:a7:
1f:3f:ab:a3:ba:84:7c:1c:9d:fb:88:07:e6:ef:ce:de:13:96:
de:fd:66:95:5a:64:a5:26:ec:51:3c:b2:0f:ce:b8:a0:00:7c:
87:ad:fc:fc:86:0b:b5:0f:4c:6a:fd:e9:05:ef:90:a1:2f:07:
6c:f1:0b:7b:74:f3:5c:56:12:bd:ee:11:94:a8:60:59:ce:e9:
d1:67:ab:fb:9c:84:ef:6b:40:da:ad:89:57:49:91:32:a3:ba:
57:d8:80:21:bf:21:91:12:1a:ef:0d:c9:b0:cf:02:ef:ca:b7:
82:3a:ff:28:45:5a:1c:fa:1e:a6:ce:f5:76:07:a1:ce:16:6b:
d6:8b:20:b5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZEEJumso3aqkwsee+MXdv+nMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEzMTg4MTczMmEzZTI0NWE5NTliYzY3OWUwNDU4YzM5Zjg5
M2U0NmIwHhcNMjQwNzMwMTQ1OTA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4Njk2MjQ0ZTdmYTQ4OWRjZDYyMTYyMjk0ZWQyNzI2NTc5ZmUyMTRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2b5/NXI12GSXsiPJLz5d91n0XsqY
GPkdv1ynWDc8hXNiYTbGwhtlGnvz5lOATC1hsQSmCQ/Nke4dMncwW5LgYKEwHGsg
qeHuYQMoKHxBACtuOnsaKztXjXB59OQem5UCRfLv6oxAyDs64eyENjrYS7Pyb+Ci
x8wIfiLCWgqgoxJ/v8WWUM9bY+sBMJI2oFoZ1r4X/6svuV4PblvUo3UearGqcHyD
/kv+QaudD4gs5f4WaIqJaSsNqM6c/i7Zt38qQFzCAE9kZlACJ1CwrvRZhRi2wKbD
xiOZtH1XAHO8PcmZQbIPCRsvcrF51N1f9x+qemGTsymsTwwp4lAOwyW4VQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIaWJE5/pInc1iFiKU7ScmV5/iFPMB8GA1UdIwQY
MBaAFBMYgXMqPiRalZvGeeBFjDn4k+RrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRXhpQmN5by1KRnFWbThaNTRFV01PZmlUNUdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS84OWYwNzEtNTYzMS00NWRiLWE3ZTUt
Y2Q2MTUyMjYxYzZmLzEvaHBZa1RuLWtpZHpXSVdJcFR0SnlaWG4tSVU4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS84OWYwNzEtNTYzMS00NWRiLWE3ZTUtY2Q2MTUyMjYxYzZm
LzEvRXhpQmN5by1KRnFWbThaNTRFV01PZmlUNUdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABZC2MA0G
CSqGSIb3DQEBCwUAA4IBAQBhNfoYz1kTdKarwKAp+ftd/MwRodV/fUNI1Oua2Qv3
MNsv8GyNDEKA49vgGZv8Wx5lrv/GEZeGepOr7Ln7U3c5wyo1nXGF20DZGnE0hCgg
zIBzOzSwScUNrxGZbkhwW+DwHwATepXpkYgOx2acCozUxCMXkosz0pq9YkOHsKcf
P6ujuoR8HJ37iAfm787eE5be/WaVWmSlJuxRPLIPzrigAHyHrfz8hgu1D0xq/ekF
75ChLwds8Qt7dPNcVhK97hGUqGBZzunRZ6v7nITva0DarYlXSZEyo7pX2IAhvyGR
EhrvDcmwzwLvyreCOv8oRVoc+h6mzvV2B6HOFmvWiyC1
-----END CERTIFICATE-----
Generated at Mon Sep 2 18:41:21 2024 by rpki-client on console-fra.rpki-client.org