Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/c5eb99-7289-4e3e-a8cd-05bbe4ef06c0/1/TkwYJ17aYAbjvR4vIrZ-UZw_diY.roa
File: TkwYJ17aYAbjvR4vIrZ-UZw_diY.roa (raw, json)
Hash identifier: nkI/YuagSviNDezT+gG1DuT17/B99m0VOQW3bmjR+K8=
Subject key identifier: 4E:4C:18:27:5E:DA:60:06:E3:BD:1E:2F:22:B6:7E:51:9C:3F:76:26
Certificate issuer: /CN=cbd216b005744c18cb384d3d09d124066d55f62d
Certificate serial: 018A6FE63C5DC360955BE959046361316CD5
Authority key identifier: CB:D2:16:B0:05:74:4C:18:CB:38:4D:3D:09:D1:24:06:6D:55:F6:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9IWsAV0TBjLOE09CdEkBm1V9i0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/c5eb99-7289-4e3e-a8cd-05bbe4ef06c0/1/TkwYJ17aYAbjvR4vIrZ-UZw_diY.roa
Signing time: Thu 07 Sep 2023 13:47:54 +0000
ROA not before: Thu 07 Sep 2023 13:47:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3215
IP address blocks: 194.5.191.0/24 maxlen: 24
194.5.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6f:e6:3c:5d:c3:60:95:5b:e9:59:04:63:61:31:6c:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbd216b005744c18cb384d3d09d124066d55f62d
Validity
Not Before: Sep 7 13:47:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e4c18275eda6006e3bd1e2f22b67e519c3f7626
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:de:53:2c:4a:0d:a3:eb:ad:f6:1e:14:5f:20:
ea:8c:9d:4d:fa:17:ae:c7:c3:dd:70:b6:98:8f:29:
eb:fe:ae:1f:fb:4b:21:79:43:a8:30:fe:15:aa:ce:
c1:3f:0c:c1:f8:8a:1d:3a:71:e8:47:d3:5d:80:4e:
f2:74:11:1c:64:02:ff:5d:1e:85:50:e4:16:ef:07:
8a:a8:44:37:86:ff:29:7c:0b:b8:0a:0b:f9:3c:eb:
a2:2e:96:f0:49:00:3c:5a:45:f7:42:2c:53:f6:37:
40:35:15:22:17:78:57:cd:47:4e:86:66:e9:7c:c0:
4a:8b:68:cd:b3:e8:a9:00:a5:c5:35:06:a9:07:69:
26:72:70:38:26:ae:af:b1:41:91:25:ca:ac:99:27:
e4:af:5e:bc:5e:b3:6c:64:dc:a4:54:ae:34:6e:f5:
d7:e3:ab:93:27:32:91:1e:11:4f:71:29:00:a5:6e:
bb:5e:e8:af:9c:63:b3:f8:4a:f8:7e:24:49:7d:a2:
51:3c:75:0d:7a:16:05:bf:f9:9e:bc:9d:20:12:e0:
96:3c:31:32:a7:06:cf:77:81:72:db:80:65:05:a5:
1a:52:29:5d:df:51:d4:73:99:71:9e:ed:3b:5d:54:
20:53:08:9d:db:cc:47:72:b1:d1:4a:39:a5:61:30:
ba:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:4C:18:27:5E:DA:60:06:E3:BD:1E:2F:22:B6:7E:51:9C:3F:76:26
X509v3 Authority Key Identifier:
keyid:CB:D2:16:B0:05:74:4C:18:CB:38:4D:3D:09:D1:24:06:6D:55:F6:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9IWsAV0TBjLOE09CdEkBm1V9i0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/c5eb99-7289-4e3e-a8cd-05bbe4ef06c0/1/TkwYJ17aYAbjvR4vIrZ-UZw_diY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/c5eb99-7289-4e3e-a8cd-05bbe4ef06c0/1/y9IWsAV0TBjLOE09CdEkBm1V9i0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.5.190.0/23
Signature Algorithm: sha256WithRSAEncryption
0b:1c:8d:44:68:14:a3:fb:3d:2d:fc:ba:f3:ee:8b:75:f6:97:
75:e1:df:73:15:2b:02:00:72:db:fd:51:14:0d:26:46:18:75:
b1:88:47:94:e6:a0:b3:87:f7:49:7f:c2:c6:ef:d3:f5:ec:be:
4e:25:50:29:9f:37:14:16:7b:ab:b5:b2:4d:ed:eb:03:c6:9d:
a7:48:b8:56:9d:09:f8:de:98:ab:41:29:d4:ea:d3:69:7d:ff:
f4:fc:3b:da:3c:b7:08:25:0b:72:ab:90:01:82:f1:fb:bc:9b:
84:7e:e4:ad:4c:54:35:2d:b1:52:96:8b:27:72:9d:ba:be:59:
3c:22:07:b6:19:39:59:22:d0:29:86:36:26:74:b7:25:51:3c:
6a:4b:dd:2a:9a:7c:94:bd:2f:27:f1:16:34:85:71:75:d7:ce:
13:52:94:cb:44:11:21:5c:9e:66:91:5c:4e:12:34:bb:c7:7d:
77:f9:96:ad:4c:e9:32:1c:ee:64:d5:fe:b9:49:68:06:e8:a9:
e8:34:4e:ff:17:91:07:af:bf:2a:4a:be:bd:bb:a1:63:ab:cd:
0f:f5:0f:77:80:5d:49:91:c5:10:78:01:6c:c9:87:70:fe:28:
46:6a:c3:03:0a:14:42:d5:3c:2c:79:46:98:18:5d:79:c9:df:
f5:d9:a4:4d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYpv5jxdw2CVW+lZBGNhMWzVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNiZDIxNmIwMDU3NDRjMThjYjM4NGQzZDA5ZDEyNDA2NmQ1
NWY2MmQwHhcNMjMwOTA3MTM0NzU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZTRjMTgyNzVlZGE2MDA2ZTNiZDFlMmYyMmI2N2U1MTljM2Y3NjI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkt5TLEoNo+ut9h4UXyDqjJ1N+heu
x8PdcLaYjynr/q4f+0sheUOoMP4Vqs7BPwzB+IodOnHoR9NdgE7ydBEcZAL/XR6F
UOQW7weKqEQ3hv8pfAu4Cgv5POuiLpbwSQA8WkX3QixT9jdANRUiF3hXzUdOhmbp
fMBKi2jNs+ipAKXFNQapB2kmcnA4Jq6vsUGRJcqsmSfkr168XrNsZNykVK40bvXX
46uTJzKRHhFPcSkApW67XuivnGOz+Er4fiRJfaJRPHUNehYFv/mevJ0gEuCWPDEy
pwbPd4Fy24BlBaUaUild31HUc5lxnu07XVQgUwid28xHcrHRSjmlYTC63QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE5MGCde2mAG470eLyK2flGcP3YmMB8GA1UdIwQY
MBaAFMvSFrAFdEwYyzhNPQnRJAZtVfYtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveTlJV3NBVjBUQmpMT0UwOUNkRWtCbTFWOWkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni9jNWViOTktNzI4OS00ZTNlLWE4Y2Qt
MDViYmU0ZWYwNmMwLzEvVGt3WUoxN2FZQWJqdlI0dklyWi1VWndfZGlZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ni9jNWViOTktNzI4OS00ZTNlLWE4Y2QtMDViYmU0ZWYwNmMw
LzEveTlJV3NBVjBUQmpMT0UwOUNkRWtCbTFWOWkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwgW+MA0G
CSqGSIb3DQEBCwUAA4IBAQALHI1EaBSj+z0t/Lrz7ot19pd14d9zFSsCAHLb/VEU
DSZGGHWxiEeU5qCzh/dJf8LG79P17L5OJVApnzcUFnurtbJN7esDxp2nSLhWnQn4
3pirQSnU6tNpff/0/DvaPLcIJQtyq5ABgvH7vJuEfuStTFQ1LbFSlosncp26vlk8
Ige2GTlZItAphjYmdLclUTxqS90qmnyUvS8n8RY0hXF1184TUpTLRBEhXJ5mkVxO
EjS7x313+ZatTOkyHO5k1f65SWgG6KnoNE7/F5EHr78qSr69u6Fjq80P9Q93gF1J
kcUQeAFsyYdw/ihGasMDChRC1TwseUaYGF15yd/12aRN
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:14 2024 by rpki-client on console-ams.rpki-client.org