Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/tXSEGkW6-0vdDyEkWQEpbCFMVKs.roa
File: tXSEGkW6-0vdDyEkWQEpbCFMVKs.roa (raw, json)
Hash identifier: XGWGKEQzmF2Fsb7ppfDhVun3pMjE4kshQodElFFP0to=
Subject key identifier: B5:74:84:1A:45:BA:FB:4B:DD:0F:21:24:59:01:29:6C:21:4C:54:AB
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 01896A3332C2BB0D7F1C2A7428B5F49DE0D7
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/tXSEGkW6-0vdDyEkWQEpbCFMVKs.roa
Signing time: Tue 18 Jul 2023 18:11:27 +0000
ROA not before: Tue 18 Jul 2023 18:11:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 272827
IP address blocks: 171.22.165.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6a:33:32:c2:bb:0d:7f:1c:2a:74:28:b5:f4:9d:e0:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jul 18 18:11:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b574841a45bafb4bdd0f21245901296c214c54ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:03:c5:f5:97:24:9d:8a:82:c5:03:ea:53:f9:
bf:f4:38:95:f5:dd:4d:a3:10:f2:46:7e:30:dc:dc:
6e:f9:52:9b:4c:81:88:d7:75:fc:fd:eb:68:bb:88:
5b:9d:7c:2c:6f:2f:76:48:00:ea:e1:6a:4d:95:7d:
5a:12:e7:00:77:8d:c0:53:96:69:f9:33:f6:4e:1e:
13:ed:7b:4c:86:02:c3:c9:96:76:a2:ec:87:08:6b:
41:8b:71:ee:1a:5f:a8:5e:1c:70:1b:54:4b:c2:2a:
d8:b9:ee:22:13:62:06:4e:69:a4:26:73:1b:5d:59:
ad:51:f5:95:be:35:a8:34:c9:c9:89:eb:ba:e4:6d:
94:44:21:b8:e1:2e:79:16:e6:a5:0b:d9:d6:e4:64:
09:a4:a3:66:ad:a4:4c:cb:1d:78:92:10:da:77:31:
d2:29:e4:cc:08:d6:76:b4:40:51:c9:91:7b:e3:00:
79:69:f3:d3:be:21:d9:59:59:7b:83:95:13:86:fd:
92:24:ff:66:c3:95:33:57:61:2e:4f:50:35:ca:ec:
12:47:d5:b1:f8:52:c7:9a:7a:d3:a5:72:b5:6c:4f:
be:b4:c0:d0:8f:43:56:8b:a9:40:2f:42:a1:5d:b1:
ee:1f:37:b1:1d:e7:ba:e2:a6:1e:aa:71:3e:82:34:
22:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:74:84:1A:45:BA:FB:4B:DD:0F:21:24:59:01:29:6C:21:4C:54:AB
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/tXSEGkW6-0vdDyEkWQEpbCFMVKs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
171.22.165.0/24
Signature Algorithm: sha256WithRSAEncryption
75:2a:f1:2b:bf:47:3c:d3:75:da:de:80:2d:a9:db:46:c1:5f:
92:2f:b2:c8:22:24:d1:db:5b:c2:44:ff:b1:8e:44:08:08:ac:
1b:c4:98:3a:aa:37:60:79:a5:3b:63:93:5f:30:20:fe:52:8f:
f9:e9:81:a6:81:04:69:60:1f:68:ba:0d:03:97:62:da:b8:dc:
ca:19:19:2a:9d:6e:62:50:30:00:24:66:b9:22:d7:9a:58:98:
6f:2a:c6:43:49:90:cd:ca:38:9a:cf:12:88:0a:de:c3:e6:14:
cf:0c:c8:79:e7:a1:fd:f2:d6:bb:ba:e9:08:aa:e0:b4:24:53:
db:ed:48:b5:62:40:aa:c9:30:01:22:7e:95:6f:55:38:5e:0a:
fe:c2:af:9c:f4:06:54:3a:21:61:06:65:8e:7f:4c:76:bd:0d:
77:ba:b0:eb:11:d3:1a:5a:f7:37:55:9e:4f:7a:ea:4f:bc:7a:
bf:d6:04:b4:7b:7e:60:60:72:66:0f:e9:37:f4:3e:8b:76:58:
19:41:dc:0d:16:68:3c:d5:ec:55:e4:e4:5b:81:b4:cf:e7:31:
66:58:4d:ed:f2:6e:d0:aa:1f:e7:4c:7d:1f:89:8d:ea:c3:28:
cc:48:e4:1e:03:ca:c6:07:54:88:d9:8c:c7:73:24:ca:e3:da:
cc:5f:bc:4e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYlqMzLCuw1/HCp0KLX0neDXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1MzRjNDlmY2ZhOGE0NTA0MWQ5NWVkNGQ4ZDRmYzY5Yzcy
N2E0NjcwHhcNMjMwNzE4MTgxMTI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNTc0ODQxYTQ1YmFmYjRiZGQwZjIxMjQ1OTAxMjk2YzIxNGM1NGFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjAPF9ZcknYqCxQPqU/m/9DiV9d1N
oxDyRn4w3Nxu+VKbTIGI13X8/etou4hbnXwsby92SADq4WpNlX1aEucAd43AU5Zp
+TP2Th4T7XtMhgLDyZZ2ouyHCGtBi3HuGl+oXhxwG1RLwirYue4iE2IGTmmkJnMb
XVmtUfWVvjWoNMnJieu65G2URCG44S55FualC9nW5GQJpKNmraRMyx14khDadzHS
KeTMCNZ2tEBRyZF74wB5afPTviHZWVl7g5UThv2SJP9mw5UzV2EuT1A1yuwSR9Wx
+FLHmnrTpXK1bE++tMDQj0NWi6lAL0KhXbHuHzexHee64qYeqnE+gjQiPwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLV0hBpFuvtL3Q8hJFkBKWwhTFSrMB8GA1UdIwQY
MBaAFAU0xJ/PqKRQQdle1NjU/GnHJ6RnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYt
Y2Q3ZTA2Y2JiNTMxLzEvdFhTRUdrVzYtMHZkRHlFa1dRRXBiQ0ZNVktzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYtY2Q3ZTA2Y2JiNTMx
LzEvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAqxalMA0G
CSqGSIb3DQEBCwUAA4IBAQB1KvErv0c803Xa3oAtqdtGwV+SL7LIIiTR21vCRP+x
jkQICKwbxJg6qjdgeaU7Y5NfMCD+Uo/56YGmgQRpYB9oug0Dl2LauNzKGRkqnW5i
UDAAJGa5IteaWJhvKsZDSZDNyjiazxKICt7D5hTPDMh556H98ta7uukIquC0JFPb
7Ui1YkCqyTABIn6Vb1U4Xgr+wq+c9AZUOiFhBmWOf0x2vQ13urDrEdMaWvc3VZ5P
eupPvHq/1gS0e35gYHJmD+k39D6LdlgZQdwNFmg81exV5ORbgbTP5zFmWE3t8m7Q
qh/nTH0fiY3qwyjMSOQeA8rGB1SI2YzHcyTK49rMX7xO
-----END CERTIFICATE-----
Generated at Mon Jan 1 17:14:09 2024 by rpki-client on console-ams.rpki-client.org