Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/db912f-bf6d-4f24-96ae-cc7b28990b81/1/H0QWUdnWFPzlIqDJUIwCqZUWEeo.roa
File: H0QWUdnWFPzlIqDJUIwCqZUWEeo.roa (raw, json)
Hash identifier: DBVihDWSwU+E7D2T7bh7CLjOIVEND3y7zOEBQRTpoww=
Subject key identifier: 1F:44:16:51:D9:D6:14:FC:E5:22:A0:C9:50:8C:02:A9:95:16:11:EA
Certificate issuer: /CN=fc195bd682a8e9a124d5853dc5e908aae7339bae
Certificate serial: 018C58B1F304E9A0AFDE3C70CF9CB92A2AC6
Authority key identifier: FC:19:5B:D6:82:A8:E9:A1:24:D5:85:3D:C5:E9:08:AA:E7:33:9B:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_Blb1oKo6aEk1YU9xekIquczm64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/db912f-bf6d-4f24-96ae-cc7b28990b81/1/H0QWUdnWFPzlIqDJUIwCqZUWEeo.roa
Signing time: Mon 11 Dec 2023 11:45:06 +0000
ROA not before: Mon 11 Dec 2023 11:45:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5650
IP address blocks: 139.28.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:58:b1:f3:04:e9:a0:af:de:3c:70:cf:9c:b9:2a:2a:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc195bd682a8e9a124d5853dc5e908aae7339bae
Validity
Not Before: Dec 11 11:45:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f441651d9d614fce522a0c9508c02a9951611ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:5c:ba:0e:a6:67:e1:bf:be:05:71:c2:d3:eb:
a2:dc:0d:70:14:cb:eb:ff:a2:c3:ee:a2:4d:c4:a1:
dd:04:fc:c3:47:f3:bc:d7:da:75:80:bb:8e:d0:93:
e9:fd:0a:1b:a5:c6:04:f7:41:d3:74:ec:22:c1:1b:
a9:47:2c:ce:2f:5d:50:88:16:03:f3:de:f7:bb:28:
34:b1:8e:98:7b:3b:af:12:88:af:44:fb:b3:6e:a6:
4a:f8:82:bc:d1:3d:40:b1:8a:51:2e:f2:4e:e6:79:
f8:3a:49:64:4b:c5:60:fa:2c:de:77:7b:d4:b4:9e:
14:60:89:78:24:37:fb:a6:a9:1b:91:a0:30:3a:98:
c6:11:51:b2:01:cd:5d:9a:8c:fd:74:a7:0f:2a:01:
7f:22:58:33:c1:5f:5a:bc:d6:5c:b7:73:e3:41:10:
62:f6:4c:01:6d:c3:ce:84:52:e4:5b:08:9b:e4:0c:
96:44:c9:f1:99:6a:2d:79:f7:7d:d3:b5:52:ba:f7:
61:c2:23:35:23:21:65:78:b5:54:c2:83:fd:db:52:
a2:b3:3e:74:9b:44:b9:85:0a:d3:e6:cb:11:28:e8:
45:4f:1f:eb:51:f4:56:b3:1e:c7:8f:f8:eb:88:1a:
e9:d8:c0:79:1d:72:aa:a3:f1:14:92:95:2b:00:5e:
12:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:44:16:51:D9:D6:14:FC:E5:22:A0:C9:50:8C:02:A9:95:16:11:EA
X509v3 Authority Key Identifier:
keyid:FC:19:5B:D6:82:A8:E9:A1:24:D5:85:3D:C5:E9:08:AA:E7:33:9B:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_Blb1oKo6aEk1YU9xekIquczm64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/db912f-bf6d-4f24-96ae-cc7b28990b81/1/H0QWUdnWFPzlIqDJUIwCqZUWEeo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/db912f-bf6d-4f24-96ae-cc7b28990b81/1/_Blb1oKo6aEk1YU9xekIquczm64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.227.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:0e:2b:e0:53:01:d9:0e:77:e8:48:88:af:2b:61:3d:b1:65:
99:66:45:fc:0f:b8:c2:dd:60:b3:34:69:f9:d9:59:07:14:5e:
6b:13:15:a3:53:49:93:76:ef:4f:5d:1f:eb:c8:97:07:9f:d3:
48:98:69:04:30:54:c4:83:a3:d0:9d:7f:04:ca:3d:8f:1b:9b:
67:d0:40:8b:71:13:03:26:16:1e:51:b3:22:d3:6a:e1:96:22:
c1:73:1b:11:4e:56:66:59:c8:0a:47:9e:47:38:9e:1d:6e:d1:
41:59:8e:98:64:5d:10:97:4c:fe:6a:48:27:03:f2:fa:de:92:
50:97:8a:cd:6e:0f:b8:3e:61:b4:31:9f:d2:b9:86:04:13:b1:
42:b2:68:5e:0c:da:b0:2c:dd:8b:0b:4c:47:2f:65:79:76:f8:
0d:ba:5a:f6:f4:a2:b2:1a:fe:16:3b:b9:61:8c:e3:dc:8a:98:
09:cf:58:98:80:d6:b5:a2:d3:0c:e3:d5:2f:6b:8f:d2:d1:77:
2d:34:40:36:32:9f:1f:7e:d8:8e:10:96:ec:f6:f3:c2:74:01:
56:c0:6a:7a:e6:57:a5:c5:c9:b6:d7:1b:31:02:21:a3:ed:b1:
64:5e:03:c1:b3:92:78:3d:63:d7:df:f4:6b:a9:dc:ea:b9:9e:
84:9b:6d:ca
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYxYsfME6aCv3jxwz5y5KirGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZjMTk1YmQ2ODJhOGU5YTEyNGQ1ODUzZGM1ZTkwOGFhZTcz
MzliYWUwHhcNMjMxMjExMTE0NTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZjQ0MTY1MWQ5ZDYxNGZjZTUyMmEwYzk1MDhjMDJhOTk1MTYxMWVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmVy6DqZn4b++BXHC0+ui3A1wFMvr
/6LD7qJNxKHdBPzDR/O819p1gLuO0JPp/QobpcYE90HTdOwiwRupRyzOL11QiBYD
8973uyg0sY6YezuvEoivRPuzbqZK+IK80T1AsYpRLvJO5nn4OklkS8Vg+ized3vU
tJ4UYIl4JDf7pqkbkaAwOpjGEVGyAc1dmoz9dKcPKgF/IlgzwV9avNZct3PjQRBi
9kwBbcPOhFLkWwib5AyWRMnxmWotefd907VSuvdhwiM1IyFleLVUwoP921Kisz50
m0S5hQrT5ssRKOhFTx/rUfRWsx7Hj/jriBrp2MB5HXKqo/EUkpUrAF4SMQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB9EFlHZ1hT85SKgyVCMAqmVFhHqMB8GA1UdIwQY
MBaAFPwZW9aCqOmhJNWFPcXpCKrnM5uuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX0JsYjFvS282YUVrMVlVOXhla0lxdWN6bTY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC9kYjkxMmYtYmY2ZC00ZjI0LTk2YWUt
Y2M3YjI4OTkwYjgxLzEvSDBRV1VkbldGUHpsSXFESlVJd0NxWlVXRWVvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC9kYjkxMmYtYmY2ZC00ZjI0LTk2YWUtY2M3YjI4OTkwYjgx
LzEvX0JsYjFvS282YUVrMVlVOXhla0lxdWN6bTY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAixzjMA0G
CSqGSIb3DQEBCwUAA4IBAQAODivgUwHZDnfoSIivK2E9sWWZZkX8D7jC3WCzNGn5
2VkHFF5rExWjU0mTdu9PXR/ryJcHn9NImGkEMFTEg6PQnX8Eyj2PG5tn0ECLcRMD
JhYeUbMi02rhliLBcxsRTlZmWcgKR55HOJ4dbtFBWY6YZF0Ql0z+akgnA/L63pJQ
l4rNbg+4PmG0MZ/SuYYEE7FCsmheDNqwLN2LC0xHL2V5dvgNulr29KKyGv4WO7lh
jOPcipgJz1iYgNa1otMM49Uva4/S0XctNEA2Mp8fftiOEJbs9vPCdAFWwGp65lel
xcm21xsxAiGj7bFkXgPBs5J4PWPX3/RrqdzquZ6Em23K
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:39 2024 by rpki-client on console-ams.rpki-client.org