Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/XvJPaDiOZAf3aC-n2QOGo6JgceU.roa
File: XvJPaDiOZAf3aC-n2QOGo6JgceU.roa (raw, json)
Hash identifier: XQFi0RcM/EMA1ImynRg8I4e7gjIovfYHcG/T8Bqx2HU=
Subject key identifier: 5E:F2:4F:68:38:8E:64:07:F7:68:2F:A7:D9:03:86:A3:A2:60:71:E5
Certificate issuer: /CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Certificate serial: 01856C5CA41E0701339312A8F9A222D0A4A9
Authority key identifier: 94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/XvJPaDiOZAf3aC-n2QOGo6JgceU.roa
Signing time: Sun 01 Jan 2023 08:04:48 +0000
ROA not before: Sun 01 Jan 2023 08:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400377
IP address blocks: 194.107.161.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:5c:a4:1e:07:01:33:93:12:a8:f9:a2:22:d0:a4:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Validity
Not Before: Jan 1 08:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ef24f68388e6407f7682fa7d90386a3a26071e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:aa:c4:ac:0d:c5:a2:0b:9b:95:e3:25:29:0d:
ac:a0:dc:9c:c8:12:bf:af:12:ae:59:e0:2d:5a:b2:
1d:73:66:55:38:0f:f7:06:b7:95:b8:17:c1:a0:03:
ed:87:56:4f:e8:26:b8:5b:44:e6:6e:0a:02:e6:a7:
ab:cf:08:0f:9b:20:22:f9:22:c0:db:8d:ad:2c:41:
85:d8:6a:05:d3:81:9b:06:cb:7b:9c:9c:19:5c:a0:
47:5c:ce:ef:c7:56:1e:1c:df:96:c3:cb:6c:2c:50:
20:f8:4d:b8:d3:39:0f:d9:a2:d4:86:f5:a8:80:29:
4c:c8:de:9c:44:e3:1d:d6:b1:16:57:e0:4f:ef:4b:
ab:8f:1e:98:94:17:47:1c:a3:77:1e:76:0c:22:fd:
29:5d:a9:4b:bf:f5:14:73:e8:83:55:61:51:7d:3d:
40:01:4a:62:99:94:3c:b7:82:7e:a2:d2:6e:08:85:
60:3f:37:dc:8b:67:6e:e3:cc:1e:ba:93:d1:ab:9b:
33:7d:b2:88:96:d0:ee:ec:57:b5:64:d9:c6:bd:12:
f8:42:54:6f:5f:84:5b:61:16:9c:f0:4b:53:4d:94:
2d:f9:57:d1:17:db:b4:ed:6d:7f:1c:dd:85:ef:2e:
51:7b:c5:d2:99:f2:dc:1c:70:52:ea:ab:33:f1:63:
14:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:F2:4F:68:38:8E:64:07:F7:68:2F:A7:D9:03:86:A3:A2:60:71:E5
X509v3 Authority Key Identifier:
keyid:94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/XvJPaDiOZAf3aC-n2QOGo6JgceU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.107.161.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:57:84:d2:33:da:02:2b:18:14:e4:85:64:8a:b9:41:be:81:
c6:b5:f2:a8:16:c8:38:2f:7d:b5:df:32:fd:66:5a:3b:72:cc:
b6:cb:f1:6c:c2:d9:aa:ad:24:97:25:04:01:ca:6b:31:a9:21:
01:9a:0f:1e:22:b0:8b:a6:67:85:3b:3e:31:4b:53:fe:9f:6f:
a0:74:84:33:bc:dd:83:20:1a:7e:1f:65:db:36:a0:aa:b9:fa:
14:c4:5a:dd:83:12:9f:f5:3c:48:36:bd:70:7c:84:d0:a7:20:
4c:4f:48:19:90:f2:d3:aa:88:79:03:b9:d8:5e:ba:eb:23:58:
15:ea:e3:c7:b6:50:85:ae:93:c6:69:9c:a5:33:08:a9:f8:a1:
3c:58:e5:14:09:0f:13:8d:81:07:a7:b1:a7:18:ef:58:d9:08:
a5:a1:d4:7c:3e:db:c4:a6:be:d4:b4:63:ef:7c:d2:bb:93:c0:
49:2c:b3:00:08:5c:98:93:14:75:04:e1:2c:74:fd:c2:0a:8b:
c1:40:34:96:20:a6:99:c7:9e:0f:d6:b8:33:2b:3c:00:bb:90:
42:38:eb:76:35:97:5d:39:1f:88:b8:16:a7:c0:a8:39:43:79:
33:ca:24:bc:0a:c9:f8:c2:f0:a9:0a:ec:ed:7b:61:15:5a:d2:
6d:d3:4f:35
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsXKQeBwEzkxKo+aIi0KSpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0ZTU5ZDI0NWQxNTBkYzM4YzQ4OTYyNjNkY2JkY2JiZDY3
NDcwYTcwHhcNMjMwMTAxMDgwNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZWYyNGY2ODM4OGU2NDA3Zjc2ODJmYTdkOTAzODZhM2EyNjA3MWU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw6rErA3FogubleMlKQ2soNycyBK/
rxKuWeAtWrIdc2ZVOA/3BreVuBfBoAPth1ZP6Ca4W0TmbgoC5qerzwgPmyAi+SLA
242tLEGF2GoF04GbBst7nJwZXKBHXM7vx1YeHN+Ww8tsLFAg+E240zkP2aLUhvWo
gClMyN6cROMd1rEWV+BP70urjx6YlBdHHKN3HnYMIv0pXalLv/UUc+iDVWFRfT1A
AUpimZQ8t4J+otJuCIVgPzfci2du48weupPRq5szfbKIltDu7Fe1ZNnGvRL4QlRv
X4RbYRac8EtTTZQt+VfRF9u07W1/HN2F7y5Re8XSmfLcHHBS6qsz8WMUjwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF7yT2g4jmQH92gvp9kDhqOiYHHlMB8GA1UdIwQY
MBaAFJTlnSRdFQ3DjEiWJj3L3LvWdHCnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbE9XZEpGMFZEY09NU0pZbVBjdmN1OVowY0tjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC8yODdjZDItZjFkOC00NGE5LWJlZDIt
ZWU5NWI2Y2MzNDc0LzEvWHZKUGFEaU9aQWYzYUMtbjJRT0dvNkpnY2VVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC8yODdjZDItZjFkOC00NGE5LWJlZDItZWU5NWI2Y2MzNDc0
LzEvbE9XZEpGMFZEY09NU0pZbVBjdmN1OVowY0tjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwmuhMA0G
CSqGSIb3DQEBCwUAA4IBAQBaV4TSM9oCKxgU5IVkirlBvoHGtfKoFsg4L3213zL9
Zlo7csy2y/FswtmqrSSXJQQBymsxqSEBmg8eIrCLpmeFOz4xS1P+n2+gdIQzvN2D
IBp+H2XbNqCqufoUxFrdgxKf9TxINr1wfITQpyBMT0gZkPLTqoh5A7nYXrrrI1gV
6uPHtlCFrpPGaZylMwip+KE8WOUUCQ8TjYEHp7GnGO9Y2QilodR8PtvEpr7UtGPv
fNK7k8BJLLMACFyYkxR1BOEsdP3CCovBQDSWIKaZx54P1rgzKzwAu5BCOOt2NZdd
OR+IuBanwKg5Q3kzyiS8Csn4wvCpCuzte2EVWtJt0081
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:09 2023 by rpki-client on console-fra.rpki-client.org