Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/wKMK25arcMw5rO_EocVdmJG0GNA.roa
File: wKMK25arcMw5rO_EocVdmJG0GNA.roa (raw, json)
Hash identifier: zeDAy+MrKSyCP5xL5lKrHFwlItvKkde0ey/Zhny3e9U=
Subject key identifier: C0:A3:0A:DB:96:AB:70:CC:39:AC:EF:C4:A1:C5:5D:98:91:B4:18:D0
Certificate issuer: /CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Certificate serial: 0185F41CA008FC7E944EFF48CFB5673C7D67
Authority key identifier: DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/wKMK25arcMw5rO_EocVdmJG0GNA.roa
Signing time: Fri 27 Jan 2023 16:43:14 +0000
ROA not before: Fri 27 Jan 2023 16:43:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61138
IP address blocks: 5.105.131.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Feb 2023 20:36:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:f4:1c:a0:08:fc:7e:94:4e:ff:48:cf:b5:67:3c:7d:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddf8b45254e5470d1d4cce6fb7dfd4d0d83b5d59
Validity
Not Before: Jan 27 16:43:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c0a30adb96ab70cc39acefc4a1c55d9891b418d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:91:ac:73:c7:ce:16:b2:49:c9:3f:56:1c:9c:
a4:35:65:16:85:07:4a:59:ec:61:c2:86:b7:e4:4c:
96:53:20:84:a6:d4:63:82:0d:5c:5f:cd:5d:e4:fe:
4f:92:de:bc:51:a2:87:8c:33:60:af:31:d9:32:06:
f9:be:3d:d5:3d:66:c0:f0:d4:da:21:9d:c2:be:8c:
f4:b2:fe:a0:f8:7f:9d:6a:5f:a9:fe:98:f6:00:b9:
86:e1:77:78:56:35:63:a2:d6:b5:8c:b6:67:56:94:
9f:a1:91:49:fc:b7:b7:de:27:c6:42:f0:37:23:82:
bb:27:56:fe:c6:18:35:46:7a:82:ed:90:b2:47:48:
78:40:cb:1f:e2:ae:d7:77:f8:17:84:4c:47:3e:a4:
0e:99:24:a7:23:0f:22:a4:a7:59:e0:14:b6:c1:3b:
d2:c9:29:73:eb:6b:8d:c8:68:a0:7f:3f:1e:a2:2f:
59:f0:10:76:68:2b:f0:e2:9f:7d:36:8f:ce:84:99:
41:63:0d:9b:d3:27:43:96:4c:26:c9:d9:f6:df:f8:
c9:da:c7:93:b4:b2:1c:6d:3c:e6:2c:b6:b7:3b:3b:
84:4f:5d:1e:66:92:d6:bf:bb:4d:4d:52:ba:bc:ad:
10:af:50:67:79:5b:04:d0:fc:18:bf:40:fa:40:e5:
45:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:A3:0A:DB:96:AB:70:CC:39:AC:EF:C4:A1:C5:5D:98:91:B4:18:D0
X509v3 Authority Key Identifier:
keyid:DD:F8:B4:52:54:E5:47:0D:1D:4C:CE:6F:B7:DF:D4:D0:D8:3B:5D:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/wKMK25arcMw5rO_EocVdmJG0GNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8fc746-fc08-4211-ba3b-893906fb7858/1/3fi0UlTlRw0dTM5vt9_U0Ng7XVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.105.131.0/24
Signature Algorithm: sha256WithRSAEncryption
67:a5:ff:d2:6c:00:f4:2b:3c:1a:4a:a2:ed:cd:73:ee:33:44:
81:4f:c6:92:5d:00:ec:33:cd:58:04:95:b6:a4:c2:74:f0:94:
17:13:55:55:c3:67:f4:da:7d:a3:08:68:4b:f8:bd:15:5f:59:
fa:3a:20:e0:b9:46:1f:3d:47:0f:a8:e5:52:7e:48:43:37:08:
12:55:14:f6:60:47:f4:80:b6:18:88:86:68:52:07:10:ba:c0:
2e:e9:52:bd:93:07:54:7e:4f:6c:98:92:96:21:17:42:f4:2b:
cb:f3:b9:86:3b:65:2f:93:b8:3c:f0:20:36:55:8a:3c:84:30:
ad:c8:bc:56:e4:e0:34:cc:27:87:02:ca:bc:85:63:2d:04:4e:
15:1f:05:7d:18:6b:83:44:61:cf:e1:a3:83:7f:4e:93:23:cd:
99:f4:04:c6:3f:61:4c:a5:ae:3b:b1:8f:cd:a2:ac:f1:1f:11:
19:a0:f2:cc:fa:84:b7:57:27:2f:57:14:78:74:ed:92:6f:ce:
d1:6a:55:f9:45:aa:b2:f8:1e:f1:3b:57:77:85:e0:c1:21:53:
be:9f:f4:94:1f:30:a8:64:7b:be:36:b9:ca:48:00:8d:0e:e4:
12:66:8c:bd:51:9e:15:2e:02:9f:21:58:df:5b:ff:d7:e8:36:
53:ac:cf:40
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYX0HKAI/H6UTv9Iz7VnPH1nMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkZjhiNDUyNTRlNTQ3MGQxZDRjY2U2ZmI3ZGZkNGQwZDgz
YjVkNTkwHhcNMjMwMTI3MTY0MzE0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMGEzMGFkYjk2YWI3MGNjMzlhY2VmYzRhMWM1NWQ5ODkxYjQxOGQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAspGsc8fOFrJJyT9WHJykNWUWhQdK
Wexhwoa35EyWUyCEptRjgg1cX81d5P5Pkt68UaKHjDNgrzHZMgb5vj3VPWbA8NTa
IZ3Cvoz0sv6g+H+dal+p/pj2ALmG4Xd4VjVjota1jLZnVpSfoZFJ/Le33ifGQvA3
I4K7J1b+xhg1RnqC7ZCyR0h4QMsf4q7Xd/gXhExHPqQOmSSnIw8ipKdZ4BS2wTvS
ySlz62uNyGigfz8eoi9Z8BB2aCvw4p99No/OhJlBYw2b0ydDlkwmydn23/jJ2seT
tLIcbTzmLLa3OzuET10eZpLWv7tNTVK6vK0Qr1BneVsE0PwYv0D6QOVFvQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMCjCtuWq3DMOazvxKHFXZiRtBjQMB8GA1UdIwQY
MBaAFN34tFJU5UcNHUzOb7ff1NDYO11ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2ZpMFVsVGxSdzBkVE01dnQ5X1UwTmc3WFZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS84ZmM3NDYtZmMwOC00MjExLWJhM2It
ODkzOTA2ZmI3ODU4LzEvd0tNSzI1YXJjTXc1ck9fRW9jVmRtSkcwR05BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS84ZmM3NDYtZmMwOC00MjExLWJhM2ItODkzOTA2ZmI3ODU4
LzEvM2ZpMFVsVGxSdzBkVE01dnQ5X1UwTmc3WFZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABWmDMA0G
CSqGSIb3DQEBCwUAA4IBAQBnpf/SbAD0KzwaSqLtzXPuM0SBT8aSXQDsM81YBJW2
pMJ08JQXE1VVw2f02n2jCGhL+L0VX1n6OiDguUYfPUcPqOVSfkhDNwgSVRT2YEf0
gLYYiIZoUgcQusAu6VK9kwdUfk9smJKWIRdC9CvL87mGO2Uvk7g88CA2VYo8hDCt
yLxW5OA0zCeHAsq8hWMtBE4VHwV9GGuDRGHP4aODf06TI82Z9ATGP2FMpa47sY/N
oqzxHxEZoPLM+oS3VycvVxR4dO2Sb87RalX5Raqy+B7xO1d3heDBIVO+n/SUHzCo
ZHu+NrnKSACNDuQSZoy9UZ4VLgKfIVjfW//X6DZTrM9A
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:29 2024 by rpki-client on console-fra.rpki-client.org