Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/E7pPXIFICF_V4rWB0tmdZWzXV-Q.roa
File: E7pPXIFICF_V4rWB0tmdZWzXV-Q.roa (raw, json)
Hash identifier: 0yUv4Qw1xNUNqQzETliKwgwOZ/4ZiMlJh5PtHToMkNg=
Subject key identifier: 13:BA:4F:5C:81:48:08:5F:D5:E2:B5:81:D2:D9:9D:65:6C:D7:57:E4
Certificate issuer: /CN=3853af5014499b2fb5cd2c1e68a24ff8256d0d0d
Certificate serial: 0185718312EF313DB94F45B61221264A1638
Authority key identifier: 38:53:AF:50:14:49:9B:2F:B5:CD:2C:1E:68:A2:4F:F8:25:6D:0D:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OFOvUBRJmy-1zSweaKJP-CVtDQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/E7pPXIFICF_V4rWB0tmdZWzXV-Q.roa
Signing time: Mon 02 Jan 2023 08:04:53 +0000
ROA not before: Mon 02 Jan 2023 08:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209301
IP address blocks: 5.253.48.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:29:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:83:12:ef:31:3d:b9:4f:45:b6:12:21:26:4a:16:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3853af5014499b2fb5cd2c1e68a24ff8256d0d0d
Validity
Not Before: Jan 2 08:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=13ba4f5c8148085fd5e2b581d2d99d656cd757e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:8d:52:65:dc:c1:9f:fb:85:21:fc:48:01:23:
d7:7d:40:48:f4:a0:7e:61:78:b5:c7:31:51:a3:b0:
aa:4d:9d:cb:9e:c2:4c:30:bb:fd:41:2e:e4:dc:10:
49:7e:e4:28:85:3e:4f:f3:6c:bf:26:03:9f:ca:0c:
e0:ba:d8:32:3d:6a:cb:59:74:e7:1d:c8:6e:43:95:
43:8e:d2:5d:38:07:73:b3:14:b3:13:17:92:b2:1c:
8b:ac:80:1e:b2:6c:3f:84:f0:8a:ec:6f:c7:99:fb:
a1:d2:33:6c:cc:dc:5c:d9:8d:1a:d6:cb:03:24:fe:
be:1c:b2:9f:a1:17:9c:57:7c:01:11:6c:a1:88:69:
11:dc:79:7e:92:5a:c1:b2:8d:e3:3c:05:6a:a2:61:
6f:e5:3c:80:db:2b:9f:74:bb:fd:bd:35:c1:3b:0a:
2b:dc:c0:0c:78:d9:a0:cb:0e:82:ab:7e:52:d0:74:
22:b1:d5:4f:94:ac:c1:d0:d4:7d:3e:f9:1b:ed:0b:
45:ae:b5:a5:7b:eb:69:30:5f:96:86:b3:98:6f:d0:
60:85:94:ee:4a:db:bc:f9:4e:b7:21:bf:14:18:66:
a9:88:5c:df:9e:f0:92:79:2e:8d:c3:cd:f3:c2:9b:
ea:b2:bc:97:31:7d:54:74:4e:04:1f:e4:09:39:40:
11:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:BA:4F:5C:81:48:08:5F:D5:E2:B5:81:D2:D9:9D:65:6C:D7:57:E4
X509v3 Authority Key Identifier:
keyid:38:53:AF:50:14:49:9B:2F:B5:CD:2C:1E:68:A2:4F:F8:25:6D:0D:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OFOvUBRJmy-1zSweaKJP-CVtDQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/E7pPXIFICF_V4rWB0tmdZWzXV-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/30cc41-8aab-4463-99f8-dcb56acb777f/1/OFOvUBRJmy-1zSweaKJP-CVtDQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.48.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:8d:32:4a:f9:ef:63:9d:f3:d3:18:ab:5d:57:1c:07:30:f5:
f6:2a:30:bf:f4:68:9d:6e:d5:7c:5e:38:a8:79:b5:6c:b8:a3:
17:a4:d9:01:e0:99:8e:95:c2:13:e0:c2:83:83:54:d4:1e:6e:
bc:f8:d4:82:d1:f9:c7:d8:10:a5:21:88:69:b8:25:50:11:29:
53:b7:5f:ca:ee:ce:1e:9f:fc:3a:61:27:e5:cc:21:20:8b:f4:
ba:f0:20:60:e6:ae:3e:69:da:e9:51:40:64:61:e6:e6:72:57:
82:52:ed:ad:2a:71:42:75:8a:43:6f:61:d3:2d:e3:43:a3:c3:
36:57:f5:ad:76:48:ef:61:b3:58:bd:b1:04:50:d3:e9:dc:91:
9a:49:26:81:e7:33:64:f4:14:8f:90:ac:c5:25:70:86:fd:92:
d5:0c:5d:31:8e:25:cd:71:b5:60:b5:6e:ff:c2:3f:34:4c:a1:
aa:06:cd:09:12:e2:6e:ec:83:20:9d:a8:1b:24:e8:f6:a5:26:
ff:77:69:3f:c0:18:1e:f2:66:fa:0e:29:e7:14:c7:f3:91:4c:
4b:fa:31:00:35:49:21:0e:7d:e7:44:bd:29:8c:73:54:c6:b5:
95:6e:e9:bb:98:c6:87:e4:d6:a0:96:21:65:fa:9e:bd:c2:63:
81:26:ce:b1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxgxLvMT25T0W2EiEmShY4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4NTNhZjUwMTQ0OTliMmZiNWNkMmMxZTY4YTI0ZmY4MjU2
ZDBkMGQwHhcNMjMwMTAyMDgwNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxM2JhNGY1YzgxNDgwODVmZDVlMmI1ODFkMmQ5OWQ2NTZjZDc1N2U0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA041SZdzBn/uFIfxIASPXfUBI9KB+
YXi1xzFRo7CqTZ3LnsJMMLv9QS7k3BBJfuQohT5P82y/JgOfygzgutgyPWrLWXTn
HchuQ5VDjtJdOAdzsxSzExeSshyLrIAesmw/hPCK7G/Hmfuh0jNszNxc2Y0a1ssD
JP6+HLKfoRecV3wBEWyhiGkR3Hl+klrBso3jPAVqomFv5TyA2yufdLv9vTXBOwor
3MAMeNmgyw6Cq35S0HQisdVPlKzB0NR9Pvkb7QtFrrWle+tpMF+WhrOYb9BghZTu
Stu8+U63Ib8UGGapiFzfnvCSeS6Nw83zwpvqsryXMX1UdE4EH+QJOUARswIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBO6T1yBSAhf1eK1gdLZnWVs11fkMB8GA1UdIwQY
MBaAFDhTr1AUSZsvtc0sHmiiT/glbQ0NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0ZPdlVCUkpteS0xelN3ZWFLSlAtQ1Z0RFEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8zMGNjNDEtOGFhYi00NDYzLTk5Zjgt
ZGNiNTZhY2I3NzdmLzEvRTdwUFhJRklDRl9WNHJXQjB0bWRaV3pYVi1RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC8zMGNjNDEtOGFhYi00NDYzLTk5ZjgtZGNiNTZhY2I3Nzdm
LzEvT0ZPdlVCUkpteS0xelN3ZWFLSlAtQ1Z0RFEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCBf0wMA0G
CSqGSIb3DQEBCwUAA4IBAQAfjTJK+e9jnfPTGKtdVxwHMPX2KjC/9GidbtV8Xjio
ebVsuKMXpNkB4JmOlcIT4MKDg1TUHm68+NSC0fnH2BClIYhpuCVQESlTt1/K7s4e
n/w6YSflzCEgi/S68CBg5q4+adrpUUBkYebmcleCUu2tKnFCdYpDb2HTLeNDo8M2
V/WtdkjvYbNYvbEEUNPp3JGaSSaB5zNk9BSPkKzFJXCG/ZLVDF0xjiXNcbVgtW7/
wj80TKGqBs0JEuJu7IMgnagbJOj2pSb/d2k/wBge8mb6DinnFMfzkUxL+jEANUkh
Dn3nRL0pjHNUxrWVbum7mMaH5NagliFl+p69wmOBJs6x
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:46 2024 by rpki-client on console-fra.rpki-client.org