Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/tly4Z-ao2jXrMIwyqYHe-kRndOc.roa
File: tly4Z-ao2jXrMIwyqYHe-kRndOc.roa (raw, json)
Hash identifier: vNGc5FdyrGwD8/hPFY+N8El33wKUadynwO4aa4jp7WQ=
Subject key identifier: B6:5C:B8:67:E6:A8:DA:35:EB:30:8C:32:A9:81:DE:FA:44:67:74:E7
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 01856ED4CAFF3E72D09D8212AC51D324AB85
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/tly4Z-ao2jXrMIwyqYHe-kRndOc.roa
Signing time: Sun 01 Jan 2023 19:35:17 +0000
ROA not before: Sun 01 Jan 2023 19:35:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52356
IP address blocks: 181.41.154.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:ca:ff:3e:72:d0:9d:82:12:ac:51:d3:24:ab:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 1 19:35:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b65cb867e6a8da35eb308c32a981defa446774e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:55:83:45:f7:0f:a4:08:54:5e:11:5b:0d:4c:
b5:93:ab:41:14:23:6f:66:0b:8f:7d:0a:77:18:fa:
7f:0b:cc:c4:01:85:20:28:03:84:54:ba:b4:a5:6c:
79:6b:d7:47:ec:13:94:9b:86:b8:83:ae:2a:60:5e:
9f:0c:cd:8e:3c:ea:40:31:f4:c6:59:e7:cb:6f:c0:
fd:72:45:c6:f8:35:d2:6e:9b:10:da:13:50:4f:03:
12:4b:5d:28:68:cb:bf:79:a7:cd:de:50:2b:5e:60:
cb:33:66:a5:bd:c8:7c:3a:e8:7a:d2:af:f9:d0:8a:
c1:e0:17:94:ca:41:9d:3f:c9:46:49:60:7a:01:86:
a0:b7:89:41:ab:f0:09:80:e4:f5:d4:7d:fd:e4:0a:
73:5d:8f:a4:4c:6e:51:37:40:b2:02:be:c1:f6:d5:
70:97:7b:13:31:42:bf:59:de:3b:9a:88:be:5a:c0:
3c:1d:b1:22:5d:30:9a:e3:e5:89:8f:52:a6:f8:78:
5e:d6:3d:fb:34:5c:3e:56:b2:01:81:22:3a:ae:cd:
29:1b:cb:b7:26:2d:27:43:2b:ba:cc:74:1a:c7:70:
0f:0a:92:23:f5:82:7a:7d:d0:60:11:f5:e6:65:0b:
81:70:12:6e:85:c1:4d:fd:f1:f3:a2:18:a2:13:39:
46:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:5C:B8:67:E6:A8:DA:35:EB:30:8C:32:A9:81:DE:FA:44:67:74:E7
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/tly4Z-ao2jXrMIwyqYHe-kRndOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.41.154.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:8e:15:8e:dd:2d:27:76:ca:22:f4:8c:31:3e:e5:0c:46:6b:
48:93:2f:75:f8:a0:c2:fb:81:90:36:e3:5f:a7:2a:60:94:cb:
b2:8e:12:e5:90:c4:f0:fb:06:cb:9e:59:6b:bd:6d:ca:6c:b1:
62:cd:4d:65:65:70:9b:10:b0:87:54:c6:6b:cf:13:f8:e4:96:
43:31:e6:2d:b1:43:33:af:0b:ae:3b:30:b5:65:64:04:10:e5:
03:f8:8e:d9:40:83:07:fb:2f:88:96:dc:69:a6:9a:eb:db:f3:
e5:79:70:ba:11:a0:1e:25:71:eb:df:cf:ca:3b:00:2a:9d:0d:
cf:da:b1:38:c0:24:59:ac:19:41:5c:70:0b:4d:3a:69:3d:18:
25:97:34:67:e4:e9:32:23:c2:06:ea:98:03:55:1d:14:5b:ca:
e0:ca:59:6c:e3:a1:82:52:09:0c:a4:7d:fa:c9:a9:81:97:42:
0d:b6:a1:79:01:45:2b:27:1d:54:b8:ea:3c:fe:3c:47:5a:8c:
f7:de:88:a5:fb:51:00:e2:ee:59:e5:b8:84:f3:d8:5d:78:44:
28:c5:1b:a7:26:cc:fd:b5:59:3a:83:f8:f1:94:80:a3:e2:1a:
1a:40:b1:e3:05:97:7a:48:4a:c4:77:d2:49:ab:79:36:da:26:
75:0d:e5:b7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVu1Mr/PnLQnYISrFHTJKuFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1MzRjNDlmY2ZhOGE0NTA0MWQ5NWVkNGQ4ZDRmYzY5Yzcy
N2E0NjcwHhcNMjMwMTAxMTkzNTE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNjVjYjg2N2U2YThkYTM1ZWIzMDhjMzJhOTgxZGVmYTQ0Njc3NGU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoVWDRfcPpAhUXhFbDUy1k6tBFCNv
ZguPfQp3GPp/C8zEAYUgKAOEVLq0pWx5a9dH7BOUm4a4g64qYF6fDM2OPOpAMfTG
WefLb8D9ckXG+DXSbpsQ2hNQTwMSS10oaMu/eafN3lArXmDLM2alvch8Ouh60q/5
0IrB4BeUykGdP8lGSWB6AYagt4lBq/AJgOT11H395ApzXY+kTG5RN0CyAr7B9tVw
l3sTMUK/Wd47moi+WsA8HbEiXTCa4+WJj1Km+Hhe1j37NFw+VrIBgSI6rs0pG8u3
Ji0nQyu6zHQax3APCpIj9YJ6fdBgEfXmZQuBcBJuhcFN/fHzohiiEzlGHwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLZcuGfmqNo16zCMMqmB3vpEZ3TnMB8GA1UdIwQY
MBaAFAU0xJ/PqKRQQdle1NjU/GnHJ6RnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYt
Y2Q3ZTA2Y2JiNTMxLzEvdGx5NFotYW8yalhyTUl3eXFZSGUta1JuZE9jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS8wY2NiZGEtZDZmMS00NTI3LTgxMDYtY2Q3ZTA2Y2JiNTMx
LzEvQlRURW44LW9wRkJCMlY3VTJOVDhhY2NucEdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAtSmaMA0G
CSqGSIb3DQEBCwUAA4IBAQDJjhWO3S0ndsoi9IwxPuUMRmtIky91+KDC+4GQNuNf
pypglMuyjhLlkMTw+wbLnllrvW3KbLFizU1lZXCbELCHVMZrzxP45JZDMeYtsUMz
rwuuOzC1ZWQEEOUD+I7ZQIMH+y+Iltxppprr2/PleXC6EaAeJXHr38/KOwAqnQ3P
2rE4wCRZrBlBXHALTTppPRgllzRn5OkyI8IG6pgDVR0UW8rgylls46GCUgkMpH36
yamBl0INtqF5AUUrJx1UuOo8/jxHWoz33oil+1EA4u5Z5biE89hdeEQoxRunJsz9
tVk6g/jxlICj4hoaQLHjBZd6SErEd9JJq3k22iZ1DeW3
-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:47 2024 by rpki-client on console-fra.rpki-client.org