Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/5kLHKJjZtYqS-1KAE_NF9sjPaQo.roa
File: 5kLHKJjZtYqS-1KAE_NF9sjPaQo.roa (raw, json)
Hash identifier: 7TVhdNYGPmzJLHg7LarfRgAnkEeBkBak672GycdRPP0=
Subject key identifier: E6:42:C7:28:98:D9:B5:8A:92:FB:52:80:13:F3:45:F6:C8:CF:69:0A
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 019169A9849BA70CE5CFDD252AA55DC68A77
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/5kLHKJjZtYqS-1KAE_NF9sjPaQo.roa
Signing time: Mon 19 Aug 2024 08:03:22 +0000
ROA not before: Mon 19 Aug 2024 08:03:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207766
IP address blocks: 178.19.33.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 10 Sep 2024 08:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:69:a9:84:9b:a7:0c:e5:cf:dd:25:2a:a5:5d:c6:8a:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Aug 19 08:03:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e642c72898d9b58a92fb528013f345f6c8cf690a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:5c:7e:de:9f:af:01:b7:76:e3:ec:39:88:30:
34:70:bb:7e:ac:bc:16:8e:57:41:c0:cb:3d:c5:9f:
bd:07:e3:da:ea:ff:86:24:78:0b:7b:4a:51:98:fc:
62:3e:ad:60:ce:ef:72:34:88:d9:fc:bd:d5:4f:13:
9e:95:e8:9b:58:02:9c:6b:86:07:d0:25:ec:d6:18:
16:c5:cc:ef:21:a9:d2:a2:a9:48:2d:80:cd:14:f8:
ca:b7:1a:9b:f9:46:58:bc:4b:8b:ea:4a:7d:70:f8:
95:78:42:44:ca:93:99:7f:65:44:c8:5d:d7:ae:75:
55:30:c7:12:bc:ca:e9:b3:1e:b5:ad:09:94:5e:eb:
b0:e2:05:df:e2:84:24:0c:4d:66:f0:60:6d:f9:24:
de:8c:58:a4:3a:5d:f5:24:15:73:7e:fb:01:77:ff:
d9:67:08:92:5d:0f:9d:20:d9:a9:0b:32:3c:52:4a:
64:6d:7a:42:a4:d1:e2:8c:f9:6f:3a:f3:28:b0:9b:
bd:f9:5e:23:d5:eb:22:d8:ca:b3:94:71:2b:48:93:
77:e5:49:6e:94:60:88:47:54:71:50:58:40:29:ed:
2c:e2:ba:15:d1:cc:7e:18:b7:ce:21:56:fa:22:fa:
b9:1a:83:b6:22:ad:25:61:91:0f:ac:a1:28:07:35:
70:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:42:C7:28:98:D9:B5:8A:92:FB:52:80:13:F3:45:F6:C8:CF:69:0A
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/5kLHKJjZtYqS-1KAE_NF9sjPaQo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.19.33.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:f9:28:95:59:65:06:e2:38:0f:56:30:40:50:f5:2c:63:34:
ce:1a:58:18:2e:7c:6c:7b:55:21:2d:46:8a:73:6f:26:ea:7a:
1e:fc:bc:cd:c7:eb:de:9c:ae:ee:2b:70:4a:03:35:0f:34:f0:
2d:eb:58:48:69:33:17:3e:c9:a7:78:ee:0b:b3:fb:41:f8:6f:
21:53:4c:ae:b8:eb:8b:fb:6c:cb:d2:7d:fd:1b:24:fa:53:74:
cc:77:52:02:9e:9b:a8:8b:0a:83:ab:bc:56:52:8b:e6:67:9f:
ad:26:25:3f:df:04:c9:82:42:0f:74:c8:b9:03:26:f7:44:6e:
63:82:01:bd:1f:dd:d1:dc:1f:d3:b0:bf:00:e0:c1:7b:65:87:
d5:31:1b:bb:04:74:21:4a:a6:a9:7e:56:93:6a:a5:c9:22:72:
02:e7:f4:61:0b:6b:96:2d:11:6c:c1:10:9a:fc:fb:da:20:9c:
f5:22:ae:29:59:93:0e:30:bb:93:fa:6b:f3:87:f8:d1:1c:b5:
5e:6f:69:56:2c:c3:90:15:1f:b4:63:56:a4:23:ea:fe:e8:b9:
af:10:16:bd:99:af:75:ed:2e:d0:d0:02:c1:09:8c:4a:32:93:
48:e9:70:d6:24:6a:25:13:67:73:74:48:0f:15:3f:57:92:09:
28:2a:32:68
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZFpqYSbpwzlz90lKqVdxop3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1MzRjNDlmY2ZhOGE0NTA0MWQ5NWVkNGQ4ZDRmYzY5Yzcy
N2E0NjcwHhcNMjQwODE5MDgwMzIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNjQyYzcyODk4ZDliNThhOTJmYjUyODAxM2YzNDVmNmM4Y2Y2OTBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvlx+3p+vAbd24+w5iDA0cLt+rLwW
jldBwMs9xZ+9B+Pa6v+GJHgLe0pRmPxiPq1gzu9yNIjZ/L3VTxOeleibWAKca4YH
0CXs1hgWxczvIanSoqlILYDNFPjKtxqb+UZYvEuL6kp9cPiVeEJEypOZf2VEyF3X
rnVVMMcSvMrpsx61rQmUXuuw4gXf4oQkDE1m8GBt+STejFikOl31JBVzfvsBd//Z
ZwiSXQ+dINmpCzI8UkpkbXpCpNHijPlvOvMosJu9+V4j1esi2MqzlHErSJN35Ulu
lGCIR1RxUFhAKe0s4roV0cx+GLfOIVb6Ivq5GoO2Iq0lYZEPrKEoBzVwXQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOZCxyiY2bWKkvtSgBPzRfbIz2kKMB8GA1UdIwQY
MBaAFAU0xJ/PqKRQQdle1NjU/GnHJ6RnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYt
Y2Q3ZTA2Y2JiNTMxLzEvNWtMSEtKalp0WXFTLTFLQUVfTkY5c2pQYVFvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYtY2Q3ZTA2Y2JiNTMx
LzEvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAshMhMA0G
CSqGSIb3DQEBCwUAA4IBAQCN+SiVWWUG4jgPVjBAUPUsYzTOGlgYLnxse1UhLUaK
c28m6noe/LzNx+venK7uK3BKAzUPNPAt61hIaTMXPsmneO4Ls/tB+G8hU0yuuOuL
+2zL0n39GyT6U3TMd1ICnpuoiwqDq7xWUovmZ5+tJiU/3wTJgkIPdMi5Ayb3RG5j
ggG9H93R3B/TsL8A4MF7ZYfVMRu7BHQhSqapflaTaqXJInIC5/RhC2uWLRFswRCa
/PvaIJz1Iq4pWZMOMLuT+mvzh/jRHLVeb2lWLMOQFR+0Y1akI+r+6LmvEBa9ma91
7S7Q0ALBCYxKMpNI6XDWJGolE2dzdEgPFT9XkgkoKjJo
-----END CERTIFICATE-----
Generated at Tue Sep 10 10:22:48 2024 by rpki-client on console-fra.rpki-client.org