Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/8b443e-f3c8-4ba0-9e96-86c541ca9d71/1/6e278phoPPB1B4hbBLwuOAVILi4.roa
File: 6e278phoPPB1B4hbBLwuOAVILi4.roa (raw, json)
Hash identifier: ZYOX5qCkRVPbE+eK6He3YABpa5zg4p8/Xjz/XOS+fVk=
Subject key identifier: E9:ED:BB:F2:98:68:3C:F0:75:07:88:5B:04:BC:2E:38:05:48:2E:2E
Certificate issuer: /CN=be1a887e7653a2de44f13163e187037326a29a03
Certificate serial: 01857228088E9C7746CBFBDCFA352FC5CBBF
Authority key identifier: BE:1A:88:7E:76:53:A2:DE:44:F1:31:63:E1:87:03:73:26:A2:9A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vhqIfnZTot5E8TFj4YcDcyaimgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/8b443e-f3c8-4ba0-9e96-86c541ca9d71/1/6e278phoPPB1B4hbBLwuOAVILi4.roa
Signing time: Mon 02 Jan 2023 11:05:04 +0000
ROA not before: Mon 02 Jan 2023 11:05:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12521
IP address blocks: 5.199.224.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:28:08:8e:9c:77:46:cb:fb:dc:fa:35:2f:c5:cb:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be1a887e7653a2de44f13163e187037326a29a03
Validity
Not Before: Jan 2 11:05:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e9edbbf298683cf07507885b04bc2e3805482e2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:62:91:1c:32:ff:4c:f2:33:73:aa:ca:b5:9f:
0b:8f:1e:af:1c:56:6a:15:0c:9d:77:63:58:9b:f0:
07:0b:fa:85:ff:62:7c:6c:33:96:06:eb:1a:94:31:
86:0f:26:0d:4f:ff:6e:c9:89:f4:b5:fb:bb:c4:98:
96:ae:0c:2d:a1:cd:df:a2:5d:96:1d:28:9e:f1:38:
81:29:ad:29:e1:b5:21:1f:fb:ba:ca:f9:1e:d7:3f:
82:5d:ff:da:f1:0e:22:1c:42:54:a1:04:1a:e2:9f:
0a:4c:d9:39:06:0b:f0:cc:05:f0:7c:4f:ab:1f:42:
c7:56:b4:50:b4:c9:c4:82:74:ee:0c:af:c0:31:57:
7c:59:8f:81:66:cf:bc:d4:8f:fe:54:2f:7e:1a:ce:
ae:d6:fc:e4:8c:15:7e:1e:44:ac:a1:4e:31:55:4a:
e4:a8:64:d5:60:b1:9c:99:7e:5f:2d:a9:1e:9b:cb:
81:18:fc:68:f0:c1:8d:43:1f:9b:f8:b7:17:8d:d0:
cd:6d:0d:01:14:35:cf:bb:3c:7d:66:e5:25:f2:b4:
46:99:2c:60:94:b3:6c:d9:04:37:f1:64:cb:c2:26:
b5:e8:02:75:2a:84:8a:90:6f:01:63:2f:86:bf:79:
34:e6:e4:59:df:c5:9e:9f:cf:e5:6c:81:67:30:ea:
8b:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:ED:BB:F2:98:68:3C:F0:75:07:88:5B:04:BC:2E:38:05:48:2E:2E
X509v3 Authority Key Identifier:
keyid:BE:1A:88:7E:76:53:A2:DE:44:F1:31:63:E1:87:03:73:26:A2:9A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vhqIfnZTot5E8TFj4YcDcyaimgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/8b443e-f3c8-4ba0-9e96-86c541ca9d71/1/6e278phoPPB1B4hbBLwuOAVILi4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/8b443e-f3c8-4ba0-9e96-86c541ca9d71/1/vhqIfnZTot5E8TFj4YcDcyaimgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.199.224.0/21
Signature Algorithm: sha256WithRSAEncryption
ac:e3:01:36:3a:c4:cf:0d:81:3f:7d:36:e3:6b:bc:49:33:cf:
30:9b:1a:c7:de:6b:21:33:55:88:ac:e2:ed:3a:d5:62:69:89:
71:17:c5:4a:b2:43:17:24:bb:85:2d:97:72:7e:9e:b5:d4:43:
a5:a2:7e:80:b0:58:2f:4a:c9:56:9b:db:9a:d2:e2:fe:a3:de:
55:92:b0:9a:d1:1d:da:37:36:bc:55:f1:fe:09:28:8c:cb:48:
58:cc:ee:95:b1:d0:cf:39:23:f1:da:3c:78:23:50:51:db:73:
b6:02:91:a1:ea:c1:80:28:8f:1e:d1:48:a4:2c:d4:67:6f:c2:
7f:0d:74:52:37:02:17:cb:7f:1a:d0:16:e7:b7:a4:6e:e4:6f:
4c:2e:95:0e:e8:0d:7e:20:77:ba:29:b4:b8:17:f8:26:80:f9:
5e:f1:92:56:1b:e8:c7:84:96:e7:26:a9:ce:70:33:65:1b:b8:
75:57:6c:d3:01:dd:a6:82:54:47:7f:81:45:58:51:f3:c4:19:
df:55:57:b1:91:96:2f:09:d3:2c:84:e4:42:9d:6b:7f:2a:52:
8b:e3:97:7a:0f:ad:ad:14:e7:73:54:20:9e:59:0a:6b:d3:53:
e8:a3:58:19:8e:9c:bc:95:f6:a1:14:55:0d:be:c6:b4:06:17:
98:79:fb:4f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyKAiOnHdGy/vc+jUvxcu/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJlMWE4ODdlNzY1M2EyZGU0NGYxMzE2M2UxODcwMzczMjZh
MjlhMDMwHhcNMjMwMTAyMTEwNTA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOWVkYmJmMjk4NjgzY2YwNzUwNzg4NWIwNGJjMmUzODA1NDgyZTJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn2KRHDL/TPIzc6rKtZ8Ljx6vHFZq
FQydd2NYm/AHC/qF/2J8bDOWBusalDGGDyYNT/9uyYn0tfu7xJiWrgwtoc3fol2W
HSie8TiBKa0p4bUhH/u6yvke1z+CXf/a8Q4iHEJUoQQa4p8KTNk5BgvwzAXwfE+r
H0LHVrRQtMnEgnTuDK/AMVd8WY+BZs+81I/+VC9+Gs6u1vzkjBV+HkSsoU4xVUrk
qGTVYLGcmX5fLakem8uBGPxo8MGNQx+b+LcXjdDNbQ0BFDXPuzx9ZuUl8rRGmSxg
lLNs2QQ38WTLwia16AJ1KoSKkG8BYy+Gv3k05uRZ38Wen8/lbIFnMOqLtwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOntu/KYaDzwdQeIWwS8LjgFSC4uMB8GA1UdIwQY
MBaAFL4aiH52U6LeRPExY+GHA3MmopoDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdmhxSWZuWlRvdDVFOFRGajRZY0RjeWFpbWdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC84YjQ0M2UtZjNjOC00YmEwLTllOTYt
ODZjNTQxY2E5ZDcxLzEvNmUyNzhwaG9QUEIxQjRoYkJMd3VPQVZJTGk0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC84YjQ0M2UtZjNjOC00YmEwLTllOTYtODZjNTQxY2E5ZDcx
LzEvdmhxSWZuWlRvdDVFOFRGajRZY0RjeWFpbWdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDBcfgMA0G
CSqGSIb3DQEBCwUAA4IBAQCs4wE2OsTPDYE/fTbja7xJM88wmxrH3mshM1WIrOLt
OtViaYlxF8VKskMXJLuFLZdyfp611EOlon6AsFgvSslWm9ua0uL+o95VkrCa0R3a
Nza8VfH+CSiMy0hYzO6VsdDPOSPx2jx4I1BR23O2ApGh6sGAKI8e0UikLNRnb8J/
DXRSNwIXy38a0Bbnt6Ru5G9MLpUO6A1+IHe6KbS4F/gmgPle8ZJWG+jHhJbnJqnO
cDNlG7h1V2zTAd2mglRHf4FFWFHzxBnfVVexkZYvCdMshORCnWt/KlKL45d6D62t
FOdzVCCeWQpr01Poo1gZjpy8lfahFFUNvsa0BheYeftP
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:20 2024 by rpki-client on console-ams.rpki-client.org