Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/Ha5T7uOqtvz6Xp9nAeYbC47v0jc.roa
File: Ha5T7uOqtvz6Xp9nAeYbC47v0jc.roa (raw, json)
Hash identifier: TdRY7ESDTBT5I2zzxX6XXQeBOUUtAB/rABWz95MIDs4=
Subject key identifier: 1D:AE:53:EE:E3:AA:B6:FC:FA:5E:9F:67:01:E6:1B:0B:8E:EF:D2:37
Certificate issuer: /CN=a2c56441d83df94bbd0e60144a554639e40e0535
Certificate serial: 01856E0B07BF1E35D595BF803A0E7F287A17
Authority key identifier: A2:C5:64:41:D8:3D:F9:4B:BD:0E:60:14:4A:55:46:39:E4:0E:05:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/osVkQdg9-Uu9DmAUSlVGOeQOBTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/Ha5T7uOqtvz6Xp9nAeYbC47v0jc.roa
Signing time: Sun 01 Jan 2023 15:54:54 +0000
ROA not before: Sun 01 Jan 2023 15:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8881
IP address blocks: 194.145.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:0b:07:bf:1e:35:d5:95:bf:80:3a:0e:7f:28:7a:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2c56441d83df94bbd0e60144a554639e40e0535
Validity
Not Before: Jan 1 15:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1dae53eee3aab6fcfa5e9f6701e61b0b8eefd237
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:d3:04:e3:a3:62:7e:1e:b1:8a:93:8d:eb:4e:
d8:2d:2b:77:20:37:71:2b:b2:69:f6:f7:2e:81:58:
d0:5b:5f:42:b5:d4:ec:82:7b:f5:a9:9e:c6:e1:c7:
4e:79:ac:da:25:da:56:22:d2:80:8a:df:d1:b2:3d:
1a:25:bd:36:a3:7a:4e:58:e4:99:6b:b6:29:7b:33:
fb:01:a6:25:af:00:41:22:1a:84:71:2d:c9:09:84:
b5:c9:af:9e:de:e7:a2:bd:bd:70:46:26:80:7b:9d:
2c:97:5a:b6:79:39:7d:ce:4e:83:8c:cd:bf:a3:10:
29:5d:55:65:a3:4c:70:bb:13:68:d3:bd:93:f2:14:
94:b2:70:16:8f:ce:8b:a8:17:d2:23:c5:93:0f:ad:
fe:58:b0:0d:c1:0b:5e:c5:28:00:4e:41:b2:9d:0a:
f3:fb:aa:2f:82:06:18:71:77:02:df:31:b8:9a:f0:
ad:7f:f6:ea:cd:75:f6:b4:0f:ab:a2:87:c5:b6:6d:
4d:36:27:82:d9:8e:1a:34:99:9d:18:57:5c:88:3d:
51:b2:76:70:88:3c:74:30:e3:b2:f8:0f:60:1a:f9:
4d:9c:60:28:45:2b:13:8a:50:53:91:2a:2c:6b:eb:
a3:24:37:2c:db:9e:6b:9b:29:42:25:95:05:c1:0d:
e0:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:AE:53:EE:E3:AA:B6:FC:FA:5E:9F:67:01:E6:1B:0B:8E:EF:D2:37
X509v3 Authority Key Identifier:
keyid:A2:C5:64:41:D8:3D:F9:4B:BD:0E:60:14:4A:55:46:39:E4:0E:05:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/osVkQdg9-Uu9DmAUSlVGOeQOBTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/Ha5T7uOqtvz6Xp9nAeYbC47v0jc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.145.230.0/24
Signature Algorithm: sha256WithRSAEncryption
82:9a:2e:f0:45:e5:a4:b1:ab:56:a4:f7:57:cf:fc:64:bb:e1:
cf:d1:b4:d6:eb:df:7d:3d:bd:cc:4d:92:c0:5d:69:79:a8:1a:
1d:86:3a:16:e1:50:b0:57:54:13:d8:5e:4e:31:53:7f:c5:e8:
a3:b7:1f:11:c5:d1:33:94:78:f3:33:42:ba:54:5f:3f:fe:89:
d5:24:cf:be:4b:d3:0f:a1:b9:05:93:9d:cf:95:d8:cf:5f:f0:
c3:08:fe:f1:4d:79:6d:01:5a:eb:2e:1c:9d:a9:56:1a:2a:a1:
8e:d3:ed:3a:eb:ac:89:41:15:0f:f2:ce:a8:ff:18:ad:47:3e:
93:f3:3c:26:3a:13:f5:d8:40:e2:47:ba:2e:51:38:1d:ea:fa:
50:29:cf:36:0f:06:a9:83:85:14:72:78:14:f2:0a:1b:f2:13:
8a:2a:19:5a:a7:c3:d2:4f:b9:0f:3c:91:27:7d:59:88:00:ff:
79:1f:d8:3f:db:ad:ff:1c:6d:d1:11:76:bf:c6:db:e3:88:c2:
8d:b0:65:25:06:44:8f:9e:8a:1f:45:41:75:44:af:50:e3:1d:
8c:c3:a5:62:7b:6b:3a:21:0c:7e:95:fc:a7:cd:af:7c:f6:3b:
4c:2e:1d:fb:96:f4:e3:f6:52:84:48:94:27:3c:cb:17:55:e5:
7a:87:10:b0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuCwe/HjXVlb+AOg5/KHoXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyYzU2NDQxZDgzZGY5NGJiZDBlNjAxNDRhNTU0NjM5ZTQw
ZTA1MzUwHhcNMjMwMTAxMTU1NDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZGFlNTNlZWUzYWFiNmZjZmE1ZTlmNjcwMWU2MWIwYjhlZWZkMjM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhtME46Nifh6xipON607YLSt3IDdx
K7Jp9vcugVjQW19CtdTsgnv1qZ7G4cdOeazaJdpWItKAit/Rsj0aJb02o3pOWOSZ
a7YpezP7AaYlrwBBIhqEcS3JCYS1ya+e3ueivb1wRiaAe50sl1q2eTl9zk6DjM2/
oxApXVVlo0xwuxNo072T8hSUsnAWj86LqBfSI8WTD63+WLANwQtexSgATkGynQrz
+6ovggYYcXcC3zG4mvCtf/bqzXX2tA+roofFtm1NNieC2Y4aNJmdGFdciD1RsnZw
iDx0MOOy+A9gGvlNnGAoRSsTilBTkSosa+ujJDcs255rmylCJZUFwQ3g3wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB2uU+7jqrb8+l6fZwHmGwuO79I3MB8GA1UdIwQY
MBaAFKLFZEHYPflLvQ5gFEpVRjnkDgU1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb3NWa1FkZzktVXU5RG1BVVNsVkdPZVFPQlRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC82MjExYzQtNWE5Yy00NDFlLWI4MDAt
ZjY1ZGRkZmEwZTFkLzEvSGE1VDd1T3F0dno2WHA5bkFlWWJDNDd2MGpjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC82MjExYzQtNWE5Yy00NDFlLWI4MDAtZjY1ZGRkZmEwZTFk
LzEvb3NWa1FkZzktVXU5RG1BVVNsVkdPZVFPQlRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwpHmMA0G
CSqGSIb3DQEBCwUAA4IBAQCCmi7wReWksatWpPdXz/xku+HP0bTW6999Pb3MTZLA
XWl5qBodhjoW4VCwV1QT2F5OMVN/xeijtx8RxdEzlHjzM0K6VF8//onVJM++S9MP
obkFk53PldjPX/DDCP7xTXltAVrrLhydqVYaKqGO0+0666yJQRUP8s6o/xitRz6T
8zwmOhP12EDiR7ouUTgd6vpQKc82Dwapg4UUcngU8gob8hOKKhlap8PST7kPPJEn
fVmIAP95H9g/263/HG3REXa/xtvjiMKNsGUlBkSPnoofRUF1RK9Q4x2Mw6Vie2s6
IQx+lfynza989jtMLh37lvTj9lKESJQnPMsXVeV6hxCw
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:02 2024 by rpki-client on console-ams.rpki-client.org