Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/fe131d-aa10-4c6b-8128-f55bc8af1506/1/5T3kOV4ehTetxJFYg45FP5T_f5E.roa
File: 5T3kOV4ehTetxJFYg45FP5T_f5E.roa (raw, json)
Hash identifier: 1I8u7wvpmVqH/Hm2ViKhouw5EXqz4EyjcYTPVvEgsQA=
Subject key identifier: E5:3D:E4:39:5E:1E:85:37:AD:C4:91:58:83:8E:45:3F:94:FF:7F:91
Certificate issuer: /CN=a8d52cc870606a3f3f32c0fff97cf6931fa65ca3
Certificate serial: 01856ED4CD6598D74E9408BBF67E40F2097B
Authority key identifier: A8:D5:2C:C8:70:60:6A:3F:3F:32:C0:FF:F9:7C:F6:93:1F:A6:5C:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qNUsyHBgaj8_MsD_-Xz2kx-mXKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/fe131d-aa10-4c6b-8128-f55bc8af1506/1/5T3kOV4ehTetxJFYg45FP5T_f5E.roa
Signing time: Sun 01 Jan 2023 19:35:18 +0000
ROA not before: Sun 01 Jan 2023 19:35:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57091
IP address blocks: 185.185.120.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:cd:65:98:d7:4e:94:08:bb:f6:7e:40:f2:09:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8d52cc870606a3f3f32c0fff97cf6931fa65ca3
Validity
Not Before: Jan 1 19:35:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e53de4395e1e8537adc49158838e453f94ff7f91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:af:bb:42:0a:42:f2:4a:16:e7:e7:57:dc:d4:
f6:2e:4a:80:be:af:5e:fa:9d:e2:7a:76:c8:28:ca:
6e:97:cf:d0:97:0e:14:eb:2c:64:ce:29:94:5f:ee:
6d:2e:73:4e:1e:bc:d3:91:d3:c5:89:ee:bd:12:a9:
25:c9:75:98:33:cf:0b:2e:a0:8f:9b:f1:dd:9d:52:
e1:53:f0:21:3b:7e:19:2b:fc:ae:82:44:e3:3d:ab:
6f:32:90:72:d5:2d:85:63:4b:fa:7c:94:3f:aa:b9:
06:93:04:ce:92:f3:62:db:eb:9b:24:9a:a8:c4:01:
f3:ed:fc:62:f5:83:bc:f4:af:32:c6:37:8b:f1:e6:
22:37:74:17:39:4a:db:0f:af:7a:1d:5a:a1:0f:ef:
83:cc:aa:b1:12:42:16:b5:91:f2:16:1b:d1:d5:54:
0d:fd:73:b2:54:9e:37:f4:53:f5:a1:eb:3c:c8:ef:
67:1a:4a:71:a6:47:1f:d9:19:13:8e:41:9e:25:03:
22:7e:0e:d6:19:46:31:4a:f8:3f:ab:ca:dd:1e:67:
34:62:98:ed:d6:cb:83:75:55:f6:5e:28:fe:02:4a:
04:fc:35:c4:5f:c3:9d:50:6d:66:9e:4c:25:33:94:
25:ed:11:a8:86:63:a6:56:7a:3b:75:12:d1:c8:d3:
db:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:3D:E4:39:5E:1E:85:37:AD:C4:91:58:83:8E:45:3F:94:FF:7F:91
X509v3 Authority Key Identifier:
keyid:A8:D5:2C:C8:70:60:6A:3F:3F:32:C0:FF:F9:7C:F6:93:1F:A6:5C:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qNUsyHBgaj8_MsD_-Xz2kx-mXKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/fe131d-aa10-4c6b-8128-f55bc8af1506/1/5T3kOV4ehTetxJFYg45FP5T_f5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/fe131d-aa10-4c6b-8128-f55bc8af1506/1/qNUsyHBgaj8_MsD_-Xz2kx-mXKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.185.120.0/22
Signature Algorithm: sha256WithRSAEncryption
71:89:b6:a5:c5:09:80:fa:2d:bb:79:d3:bf:75:25:2e:f1:93:
26:74:b7:7b:0a:59:4e:f9:5e:85:16:02:2e:65:0d:7e:65:6b:
78:3d:64:14:81:52:5d:45:7d:23:64:51:51:b6:99:6a:df:8b:
7f:13:fb:6d:12:97:06:ca:51:f7:06:b3:c6:50:ea:90:5e:08:
9b:ea:6a:31:bf:47:b5:3f:61:0b:ac:05:bb:5c:a0:49:17:b2:
32:9e:73:8a:04:47:2c:9a:59:b0:0e:47:c8:a9:c6:58:8d:1c:
9d:50:2f:9d:9d:50:7a:55:08:b8:46:a1:d6:ed:64:7b:0f:c0:
26:41:f9:0e:42:3e:a4:49:86:f7:35:f4:83:92:e6:00:44:27:
98:52:5c:79:d6:20:f8:ed:9c:c2:a4:5a:db:dc:0f:0b:09:07:
cf:4c:ad:2d:3b:ba:30:c7:8d:7d:ed:9e:69:0b:3a:41:fd:74:
a7:2e:c7:aa:fe:46:c1:ac:80:bd:74:57:f4:0b:6e:d4:84:8c:
ba:38:49:32:c1:b4:0b:89:16:3c:42:a9:5b:6b:bf:44:7a:6a:
71:66:7e:25:9a:2c:27:21:74:7c:5f:9a:4b:78:c7:6f:14:0f:
4c:c7:16:42:d0:22:30:66:67:95:78:9a:3f:ec:c4:e3:c8:b2:
6a:bd:e9:4e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVu1M1lmNdOlAi79n5A8gl7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE4ZDUyY2M4NzA2MDZhM2YzZjMyYzBmZmY5N2NmNjkzMWZh
NjVjYTMwHhcNMjMwMTAxMTkzNTE4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNTNkZTQzOTVlMWU4NTM3YWRjNDkxNTg4MzhlNDUzZjk0ZmY3ZjkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmK+7QgpC8koW5+dX3NT2LkqAvq9e
+p3ienbIKMpul8/Qlw4U6yxkzimUX+5tLnNOHrzTkdPFie69EqklyXWYM88LLqCP
m/HdnVLhU/AhO34ZK/yugkTjPatvMpBy1S2FY0v6fJQ/qrkGkwTOkvNi2+ubJJqo
xAHz7fxi9YO89K8yxjeL8eYiN3QXOUrbD696HVqhD++DzKqxEkIWtZHyFhvR1VQN
/XOyVJ439FP1oes8yO9nGkpxpkcf2RkTjkGeJQMifg7WGUYxSvg/q8rdHmc0Ypjt
1suDdVX2Xij+AkoE/DXEX8OdUG1mnkwlM5Ql7RGohmOmVno7dRLRyNPbqQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOU95DleHoU3rcSRWIOORT+U/3+RMB8GA1UdIwQY
MBaAFKjVLMhwYGo/PzLA//l89pMfplyjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcU5Vc3lIQmdhajhfTXNEXy1YejJreC1tWEtNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi9mZTEzMWQtYWExMC00YzZiLTgxMjgt
ZjU1YmM4YWYxNTA2LzEvNVQza09WNGVoVGV0eEpGWWc0NUZQNVRfZjVFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi9mZTEzMWQtYWExMC00YzZiLTgxMjgtZjU1YmM4YWYxNTA2
LzEvcU5Vc3lIQmdhajhfTXNEXy1YejJreC1tWEtNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCubl4MA0G
CSqGSIb3DQEBCwUAA4IBAQBxibalxQmA+i27edO/dSUu8ZMmdLd7CllO+V6FFgIu
ZQ1+ZWt4PWQUgVJdRX0jZFFRtplq34t/E/ttEpcGylH3BrPGUOqQXgib6moxv0e1
P2ELrAW7XKBJF7IynnOKBEcsmlmwDkfIqcZYjRydUC+dnVB6VQi4RqHW7WR7D8Am
QfkOQj6kSYb3NfSDkuYARCeYUlx51iD47ZzCpFrb3A8LCQfPTK0tO7owx4197Z5p
CzpB/XSnLseq/kbBrIC9dFf0C27UhIy6OEkywbQLiRY8Qqlba79EempxZn4lmiwn
IXR8X5pLeMdvFA9MxxZC0CIwZmeVeJo/7MTjyLJqvelO
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:46 2024 by rpki-client on console-fra.rpki-client.org