Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/tUMvtQlZKo0I2WiZlY95RmMSTaA.roa
File: tUMvtQlZKo0I2WiZlY95RmMSTaA.roa (raw, json)
Hash identifier: jpSK00bG3VFAg7V42nb3ExEMNZvIwOjDLAXXyXAuuRQ=
Subject key identifier: B5:43:2F:B5:09:59:2A:8D:08:D9:68:99:95:8F:79:46:63:12:4D:A0
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0189211D3993C501523110ECABDF0CC79B43
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/tUMvtQlZKo0I2WiZlY95RmMSTaA.roa
Signing time: Tue 04 Jul 2023 13:35:10 +0000
ROA not before: Tue 04 Jul 2023 13:35:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207459
IP address blocks: 5.105.3.0/24 maxlen: 24
5.105.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 26 Aug 2023 09:33:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:21:1d:39:93:c5:01:52:31:10:ec:ab:df:0c:c7:9b:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jul 4 13:35:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b5432fb509592a8d08d96899958f794663124da0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:2c:27:a9:05:b9:6e:7f:f1:1d:a7:d7:ea:87:
ae:bd:18:2c:38:09:71:96:84:75:fa:9a:df:fe:91:
0c:6b:51:40:57:29:48:6c:f1:f4:20:fe:89:a4:dc:
a2:ae:64:0c:16:4d:bc:5f:2f:9d:3d:89:8f:70:3b:
3e:43:8b:93:2f:91:b6:ca:3b:b2:d6:ce:09:34:d5:
83:b6:67:42:65:9e:c8:a2:58:7d:97:f6:4d:7f:9d:
aa:a2:32:52:82:47:88:a5:f9:c0:c2:e8:53:51:44:
5e:51:ef:6a:8e:f6:43:12:aa:e6:fb:48:26:a2:5a:
cf:69:97:05:71:24:81:bf:0b:11:f0:62:61:ee:19:
f4:fc:03:c9:f9:f3:6e:c2:0b:61:e6:5c:1c:00:2c:
2b:ae:67:28:8e:d9:1c:d3:ab:1b:05:8f:06:a4:33:
10:0b:b4:0c:90:53:22:14:16:33:4e:0c:96:18:06:
54:73:0f:e9:d7:80:0a:44:cd:ce:19:a2:51:0c:43:
26:70:5a:c5:a9:99:a3:cd:95:e5:64:96:53:9f:06:
f1:0b:57:6e:43:56:f1:9f:83:ea:3f:c9:25:f8:bd:
64:79:39:d5:74:16:9e:06:3f:67:c8:30:c1:62:e4:
bc:1c:c7:4b:50:34:54:c6:37:c4:f8:cd:fd:8e:ab:
68:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:43:2F:B5:09:59:2A:8D:08:D9:68:99:95:8F:79:46:63:12:4D:A0
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/tUMvtQlZKo0I2WiZlY95RmMSTaA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.3.0-5.105.4.255
Signature Algorithm: sha256WithRSAEncryption
5b:3c:69:95:a2:72:46:2b:fb:2e:58:7c:43:c9:ea:84:dc:a4:
37:3c:e3:a0:7c:28:2e:a3:f7:ca:ff:20:14:c1:22:34:f3:65:
14:2a:3f:2f:79:5a:18:7e:5f:d6:ef:5f:04:38:80:c8:26:c4:
2b:29:c9:af:74:86:9a:67:8c:8d:89:a2:d5:e2:00:f9:57:36:
f6:f2:83:2a:95:a9:2f:58:cf:27:e9:c3:23:d2:5d:96:22:d0:
90:0f:44:79:8a:b7:34:70:f9:d8:df:7f:75:89:aa:bb:b3:47:
11:37:fc:79:17:d2:e6:9c:5e:d4:d0:a5:76:e7:23:3f:cc:67:
8e:79:40:4a:f7:1f:7b:0f:f5:8c:f8:6a:09:aa:2c:8d:e5:c6:
4e:8d:d6:0b:f7:f0:b9:b9:4f:6c:0b:da:b4:f3:4b:52:56:8e:
25:22:0b:06:3c:4b:73:1d:79:b8:0e:85:8f:d7:cf:a1:64:60:
33:f8:69:c3:13:81:c3:6d:20:3a:e0:a7:f0:96:79:7c:ac:9c:
17:a0:15:45:0e:18:13:8f:d0:fb:71:7c:dc:5a:d9:2c:53:19:
a9:76:2f:81:ec:a8:51:3d:ae:19:0c:f9:39:aa:40:13:e3:36:
06:43:d6:98:50:cf:a3:1e:01:73:02:a7:5d:e7:ad:63:10:a2:
17:bf:f4:71
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYkhHTmTxQFSMRDsq98Mx5tDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkZjhiNDUyNTRlNTQ3MGQxZDRjY2U2ZmI3ZGZkNGQwZDgz
YjVkNTkwHhcNMjMwNzA0MTMzNTEwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNTQzMmZiNTA5NTkyYThkMDhkOTY4OTk5NThmNzk0NjYzMTI0ZGEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqSwnqQW5bn/xHafX6oeuvRgsOAlx
loR1+prf/pEMa1FAVylIbPH0IP6JpNyirmQMFk28Xy+dPYmPcDs+Q4uTL5G2yjuy
1s4JNNWDtmdCZZ7Iolh9l/ZNf52qojJSgkeIpfnAwuhTUUReUe9qjvZDEqrm+0gm
olrPaZcFcSSBvwsR8GJh7hn0/APJ+fNuwgth5lwcACwrrmcojtkc06sbBY8GpDMQ
C7QMkFMiFBYzTgyWGAZUcw/p14AKRM3OGaJRDEMmcFrFqZmjzZXlZJZTnwbxC1du
Q1bxn4PqP8kl+L1keTnVdBaeBj9nyDDBYuS8HMdLUDRUxjfE+M39jqtoVQIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFLVDL7UJWSqNCNlomZWPeUZjEk2gMB8GA1UdIwQY
MBaAFN34tFJU5UcNHUzOb7ff1NDYO11ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2ZpMFVsVGxSdzBkVE01dnQ5X1UwTmc3WFZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS84ZmM3NDYtZmMwOC00MjExLWJhM2It
ODkzOTA2ZmI3ODU4LzEvdFVNdnRRbFpLbzBJMldpWmxZOTVSbU1TVGFBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS84ZmM3NDYtZmMwOC00MjExLWJhM2ItODkzOTA2ZmI3ODU4
LzEvM2ZpMFVsVGxSdzBkVE01dnQ5X1UwTmc3WFZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAAFaQMD
BAAFaQQwDQYJKoZIhvcNAQELBQADggEBAFs8aZWickYr+y5YfEPJ6oTcpDc846B8
KC6j98r/IBTBIjTzZRQqPy95Whh+X9bvXwQ4gMgmxCspya90hppnjI2JotXiAPlX
NvbygyqVqS9YzyfpwyPSXZYi0JAPRHmKtzRw+djff3WJqruzRxE3/HkX0uacXtTQ
pXbnIz/MZ455QEr3H3sP9Yz4agmqLI3lxk6N1gv38Lm5T2wL2rTzS1JWjiUiCwY8
S3MdebgOhY/Xz6FkYDP4acMTgcNtIDrgp/CWeXysnBegFUUOGBOP0PtxfNxa2SxT
Gal2L4HsqFE9rhkM+TmqQBPjNgZD1phQz6MeAXMCp13nrWMQohe/9HE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:59 2024 by rpki-client on console-ams.rpki-client.org