Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/5qew0ri6q5EW-hLUJe0XdWrGgDQ.roa
File: 5qew0ri6q5EW-hLUJe0XdWrGgDQ.roa (raw, json)
Hash identifier: pTXBtE7LW7w1H8eRuvu0yHI61wI17PTEpqr7iiJFre4=
Subject key identifier: E6:A7:B0:D2:B8:BA:AB:91:16:FA:12:D4:25:ED:17:75:6A:C6:80:34
Certificate issuer: /CN=8a5a3417fbe25c2e467c18485c181a7776f96ff4
Certificate serial: 018F194D14788E9712E036889C439E5C572C
Authority key identifier: 8A:5A:34:17:FB:E2:5C:2E:46:7C:18:48:5C:18:1A:77:76:F9:6F:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ilo0F_viXC5GfBhIXBgad3b5b_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/5qew0ri6q5EW-hLUJe0XdWrGgDQ.roa
Signing time: Fri 26 Apr 2024 07:27:12 +0000
ROA not before: Fri 26 Apr 2024 07:27:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 77.93.140.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Apr 2024 07:53:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:19:4d:14:78:8e:97:12:e0:36:88:9c:43:9e:5c:57:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a5a3417fbe25c2e467c18485c181a7776f96ff4
Validity
Not Before: Apr 26 07:27:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e6a7b0d2b8baab9116fa12d425ed17756ac68034
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:23:81:85:d8:81:0c:0e:04:bf:74:ee:55:e4:
42:b8:fc:e2:a9:19:23:94:4c:53:df:3f:74:fb:60:
74:a3:71:80:34:ec:6f:84:a2:45:cd:9b:b6:e7:f5:
f8:66:5d:f7:32:87:82:c1:08:a3:97:30:17:78:59:
23:57:53:f1:fd:3c:61:4a:7d:81:53:80:a4:b5:36:
02:4b:23:e6:d7:fe:99:80:68:09:e9:46:97:f1:a3:
f9:e6:24:8a:93:ee:d4:09:76:e2:2f:97:99:7f:ca:
24:5f:e1:73:a5:e2:67:01:f8:a5:3f:e8:e9:fa:a6:
24:ac:ec:bf:52:b0:3f:4e:50:3f:25:6a:68:1f:43:
92:21:b9:a7:1a:11:64:4b:c4:14:13:ce:f9:81:a7:
07:85:56:33:14:e4:61:ed:46:ee:30:3d:33:78:f0:
05:e4:4f:8e:d5:5e:db:e9:91:1e:78:fd:4a:7d:0a:
da:3b:e4:c2:50:59:7b:a9:5b:a6:da:2e:dc:b7:5f:
db:e6:96:62:a0:0e:bf:a0:d1:13:62:09:c0:c9:49:
97:df:f3:c6:ad:51:9d:42:58:e1:7a:8b:a8:08:80:
97:f3:95:6d:4d:f6:ca:bc:4e:d4:93:44:b6:02:bc:
ab:b1:f9:35:6e:85:57:99:23:70:3f:bf:9b:ae:d6:
5c:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:A7:B0:D2:B8:BA:AB:91:16:FA:12:D4:25:ED:17:75:6A:C6:80:34
X509v3 Authority Key Identifier:
keyid:8A:5A:34:17:FB:E2:5C:2E:46:7C:18:48:5C:18:1A:77:76:F9:6F:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ilo0F_viXC5GfBhIXBgad3b5b_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/5qew0ri6q5EW-hLUJe0XdWrGgDQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/ilo0F_viXC5GfBhIXBgad3b5b_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.93.140.0/22
Signature Algorithm: sha256WithRSAEncryption
59:b5:cf:d7:2a:c4:53:c5:e8:e1:c3:5b:38:2c:15:fa:d7:69:
1e:7e:4f:b8:50:77:2c:f5:98:a3:4b:a6:fa:8a:31:5d:47:9c:
19:b2:de:89:e4:bd:f7:95:2e:d4:14:09:51:95:f8:a5:9b:4f:
83:36:b4:a5:c5:da:9f:6c:a2:e2:52:ea:99:37:a8:2c:64:1a:
20:d3:4f:5f:e6:a2:84:52:7e:78:7b:02:78:53:41:aa:71:df:
c3:7e:27:b0:3b:6a:36:ff:3b:7e:87:0a:e6:ad:53:72:eb:f7:
22:77:10:f6:21:9d:1e:18:8f:80:c4:10:2e:41:50:39:d3:5a:
8b:d5:bc:90:51:3f:3c:d0:50:55:17:87:52:b4:db:9a:76:1a:
ca:d9:a5:ea:cf:69:c6:f4:af:8a:76:6b:5e:71:1c:ed:a9:5b:
74:04:aa:c8:60:08:ef:7b:c0:35:8d:1c:67:68:b9:f7:ff:b3:
9c:6b:c8:53:ca:b7:92:54:cc:08:52:c5:83:fa:b2:30:d4:e2:
ae:b1:2b:53:e0:0a:f8:48:85:e7:94:f0:33:a7:00:8c:12:4b:
08:62:9d:62:d4:8d:32:22:ff:d1:58:ec:ad:85:a7:c4:b9:ae:
54:0d:59:37:2b:2c:a6:57:ef:70:62:1e:80:51:08:98:db:50:
a3:3c:63:c8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY8ZTRR4jpcS4DaInEOeXFcsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhNWEzNDE3ZmJlMjVjMmU0NjdjMTg0ODVjMTgxYTc3NzZm
OTZmZjQwHhcNMjQwNDI2MDcyNzEyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNmE3YjBkMmI4YmFhYjkxMTZmYTEyZDQyNWVkMTc3NTZhYzY4MDM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAliOBhdiBDA4Ev3TuVeRCuPziqRkj
lExT3z90+2B0o3GANOxvhKJFzZu25/X4Zl33MoeCwQijlzAXeFkjV1Px/TxhSn2B
U4CktTYCSyPm1/6ZgGgJ6UaX8aP55iSKk+7UCXbiL5eZf8okX+FzpeJnAfilP+jp
+qYkrOy/UrA/TlA/JWpoH0OSIbmnGhFkS8QUE875gacHhVYzFORh7UbuMD0zePAF
5E+O1V7b6ZEeeP1KfQraO+TCUFl7qVum2i7ct1/b5pZioA6/oNETYgnAyUmX3/PG
rVGdQljheouoCICX85VtTfbKvE7Uk0S2Aryrsfk1boVXmSNwP7+brtZc2wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOansNK4uquRFvoS1CXtF3VqxoA0MB8GA1UdIwQY
MBaAFIpaNBf74lwuRnwYSFwYGnd2+W/0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWxvMEZfdmlYQzVHZkJoSVhCZ2FkM2I1Yl9RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC85YzZlMDctNjkzZi00NmNlLTg2NDYt
ZDdhYmNkMGVmNjRhLzEvNXFldzByaTZxNUVXLWhMVUplMFhkV3JHZ0RRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC85YzZlMDctNjkzZi00NmNlLTg2NDYtZDdhYmNkMGVmNjRh
LzEvaWxvMEZfdmlYQzVHZkJoSVhCZ2FkM2I1Yl9RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCTV2MMA0G
CSqGSIb3DQEBCwUAA4IBAQBZtc/XKsRTxejhw1s4LBX612kefk+4UHcs9ZijS6b6
ijFdR5wZst6J5L33lS7UFAlRlfilm0+DNrSlxdqfbKLiUuqZN6gsZBog009f5qKE
Un54ewJ4U0Gqcd/DfiewO2o2/zt+hwrmrVNy6/cidxD2IZ0eGI+AxBAuQVA501qL
1byQUT880FBVF4dStNuadhrK2aXqz2nG9K+KdmtecRztqVt0BKrIYAjve8A1jRxn
aLn3/7Oca8hTyreSVMwIUsWD+rIw1OKusStT4Ar4SIXnlPAzpwCMEksIYp1i1I0y
Iv/RWOythafEua5UDVk3KyymV+9wYh6AUQiY21CjPGPI
-----END CERTIFICATE-----
Generated at Tue Apr 30 12:15:43 2024 by rpki-client on console-fra.rpki-client.org