Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/8w5ZLwwJqy67vu_28gGwVfnumhQ.roa
File: 8w5ZLwwJqy67vu_28gGwVfnumhQ.roa (raw, json)
Hash identifier: Ch+qiKXxH09UPD+s3ya7UoUWujd0d4Wk7KPqHg7yVkM=
Subject key identifier: F3:0E:59:2F:0C:09:AB:2E:BB:BE:EF:F6:F2:01:B0:55:F9:EE:9A:14
Certificate issuer: /CN=aca66a5938af567a9e29b4f76f115607c2b8aa20
Certificate serial: 018D1F32F962D08A09670E518AA576005AEB
Authority key identifier: AC:A6:6A:59:38:AF:56:7A:9E:29:B4:F7:6F:11:56:07:C2:B8:AA:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/8w5ZLwwJqy67vu_28gGwVfnumhQ.roa
Signing time: Fri 19 Jan 2024 00:50:50 +0000
ROA not before: Fri 19 Jan 2024 00:50:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 194.9.116.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Mar 2024 21:06:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:1f:32:f9:62:d0:8a:09:67:0e:51:8a:a5:76:00:5a:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca66a5938af567a9e29b4f76f115607c2b8aa20
Validity
Not Before: Jan 19 00:50:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f30e592f0c09ab2ebbbeeff6f201b055f9ee9a14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:52:23:27:1d:13:28:dd:8b:c3:bc:a3:33:5c:
f2:2f:bb:48:c8:ff:f6:77:f5:ca:db:ba:14:bc:de:
e8:57:17:76:58:49:35:1d:f4:04:19:a9:a8:6c:8f:
18:6b:fa:b6:b9:ee:76:c2:cd:be:39:bd:a2:79:68:
f8:20:35:7a:ee:a1:e5:f9:f9:41:20:8a:6a:c3:9a:
5d:7a:48:83:1f:38:12:4a:e1:ff:a3:db:f6:bf:38:
2b:de:e1:de:6c:68:7e:17:c0:5c:8f:1c:7e:92:c7:
3d:75:fd:8c:35:a7:ac:d6:fd:21:fc:f5:45:eb:1a:
da:33:4a:33:d0:73:96:ba:64:ce:8b:62:0a:16:45:
55:77:7a:b2:a3:d9:46:cd:d0:56:f9:ae:f0:b8:29:
aa:16:a7:53:dc:fa:c2:e6:50:f4:55:ff:cf:8a:41:
ad:b0:dd:c9:0d:c0:7e:45:a9:c5:dd:8b:00:6c:7e:
91:33:0a:7c:3e:0a:cb:64:1f:ee:a7:c3:8c:b3:e5:
27:4a:e1:2c:ef:89:31:c8:ea:a1:13:40:04:0a:bf:
66:f5:e9:6c:b0:bf:83:82:2a:42:79:26:9d:03:b3:
41:6e:b2:1d:25:54:60:88:6c:18:4c:2f:f5:61:ba:
88:af:ad:c8:43:ce:e8:18:be:f5:10:c9:37:9b:f4:
5c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:0E:59:2F:0C:09:AB:2E:BB:BE:EF:F6:F2:01:B0:55:F9:EE:9A:14
X509v3 Authority Key Identifier:
keyid:AC:A6:6A:59:38:AF:56:7A:9E:29:B4:F7:6F:11:56:07:C2:B8:AA:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/8w5ZLwwJqy67vu_28gGwVfnumhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.9.116.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:69:f0:7a:30:c7:59:3c:c2:57:4a:79:9c:55:88:5c:17:6a:
a3:9c:40:08:4b:e8:21:8d:c6:d3:46:ae:3a:69:9c:9b:5e:68:
c5:4f:23:c7:c7:e4:7f:a1:53:9c:f5:d0:1f:22:c0:b2:b8:65:
3f:77:f7:e7:60:91:8e:14:3a:86:33:5a:93:db:d9:fe:e2:52:
f8:9f:6e:d1:6d:97:2e:4b:0f:ed:c8:f7:01:ff:50:c5:6e:b8:
15:47:a0:b2:8e:32:c0:14:97:02:83:a2:a2:bb:2e:56:43:6b:
88:37:4c:61:0a:a2:79:5f:0f:dc:af:bb:68:06:1b:ab:6b:6d:
e2:2a:b1:dd:0d:02:80:4f:ec:f5:0b:d8:0f:0a:91:1d:60:40:
4a:9b:78:4f:f4:e0:2a:71:bf:b0:bc:d7:d8:61:3e:ea:23:47:
b3:dc:30:23:eb:ed:65:96:f8:b7:93:2d:f0:c3:b8:e7:f8:e3:
7d:ce:d5:62:7b:43:b4:57:5b:d6:b9:df:66:2b:25:9c:86:2c:
bc:d9:a1:44:23:d2:a4:88:b2:ea:39:a8:99:cb:2f:47:3d:00:
94:43:41:c8:ff:b6:8b:68:80:7f:a0:ff:a9:ec:8f:82:4f:7d:
d1:e8:eb:31:ff:a3:90:f5:0d:af:0b:eb:1b:e3:99:fc:3e:d4:
d1:33:2f:49
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY0fMvli0IoJZw5RiqV2AFrrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjYTY2YTU5MzhhZjU2N2E5ZTI5YjRmNzZmMTE1NjA3YzJi
OGFhMjAwHhcNMjQwMTE5MDA1MDUwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMzBlNTkyZjBjMDlhYjJlYmJiZWVmZjZmMjAxYjA1NWY5ZWU5YTE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj1IjJx0TKN2Lw7yjM1zyL7tIyP/2
d/XK27oUvN7oVxd2WEk1HfQEGamobI8Ya/q2ue52ws2+Ob2ieWj4IDV67qHl+flB
IIpqw5pdekiDHzgSSuH/o9v2vzgr3uHebGh+F8Bcjxx+ksc9df2MNaes1v0h/PVF
6xraM0oz0HOWumTOi2IKFkVVd3qyo9lGzdBW+a7wuCmqFqdT3PrC5lD0Vf/PikGt
sN3JDcB+RanF3YsAbH6RMwp8PgrLZB/up8OMs+UnSuEs74kxyOqhE0AECr9m9els
sL+DgipCeSadA7NBbrIdJVRgiGwYTC/1YbqIr63IQ87oGL71EMk3m/RcjQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPMOWS8MCasuu77v9vIBsFX57poUMB8GA1UdIwQY
MBaAFKymalk4r1Z6nim0928RVgfCuKogMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcktacVdUaXZWbnFlS2JUM2J4RldCOEs0cWlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi8xNTA4OWItMThkNy00ZmYwLTlkMjgt
YjliNjU0MDJiOTI4LzEvOHc1Wkx3d0pxeTY3dnVfMjhnR3dWZm51bWhRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi8xNTA4OWItMThkNy00ZmYwLTlkMjgtYjliNjU0MDJiOTI4
LzEvcktacVdUaXZWbnFlS2JUM2J4RldCOEs0cWlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwgl0MA0G
CSqGSIb3DQEBCwUAA4IBAQB+afB6MMdZPMJXSnmcVYhcF2qjnEAIS+ghjcbTRq46
aZybXmjFTyPHx+R/oVOc9dAfIsCyuGU/d/fnYJGOFDqGM1qT29n+4lL4n27RbZcu
Sw/tyPcB/1DFbrgVR6CyjjLAFJcCg6Kiuy5WQ2uIN0xhCqJ5Xw/cr7toBhura23i
KrHdDQKAT+z1C9gPCpEdYEBKm3hP9OAqcb+wvNfYYT7qI0ez3DAj6+1llvi3ky3w
w7jn+ON9ztVie0O0V1vWud9mKyWchiy82aFEI9KkiLLqOaiZyy9HPQCUQ0HI/7aL
aIB/oP+p7I+CT33R6Osx/6OQ9Q2vC+sb45n8PtTRMy9J
-----END CERTIFICATE-----
Generated at Wed Mar 27 01:46:10 2024 by rpki-client on console-fra.rpki-client.org