Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/l1kAYLkYTl53ZJr5zgGqVzPdPKw.roa
File: l1kAYLkYTl53ZJr5zgGqVzPdPKw.roa (raw, json)
Hash identifier: K8kOcJ2/zfFMaukV3LjAByTfiJt9alvHwxQVuJAAWQs=
Subject key identifier: 97:59:00:60:B9:18:4E:5E:77:64:9A:F9:CE:01:AA:57:33:DD:3C:AC
Certificate issuer: /CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9
Certificate serial: 018BD96D4F1D2C108D8D5C9336E09244760A
Authority key identifier: 4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/l1kAYLkYTl53ZJr5zgGqVzPdPKw.roa
Signing time: Thu 16 Nov 2023 18:38:21 +0000
ROA not before: Thu 16 Nov 2023 18:38:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16589
IP address blocks: 159.197.224.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d9:6d:4f:1d:2c:10:8d:8d:5c:93:36:e0:92:44:76:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9
Validity
Not Before: Nov 16 18:38:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=97590060b9184e5e77649af9ce01aa5733dd3cac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:49:86:6f:fb:64:16:24:10:8d:2d:1e:dc:aa:
fa:31:f8:09:c6:4e:0a:71:31:6b:e4:34:e3:11:8a:
45:29:60:e4:c7:4b:9e:fc:03:b1:f8:11:47:fa:de:
27:32:f7:27:b7:5b:44:78:b1:ba:79:7d:83:74:f6:
d5:62:5e:30:d2:82:fb:c3:d7:73:c8:e2:7d:54:be:
de:78:40:7b:71:18:35:a4:af:bf:cc:42:db:bc:d9:
66:85:e5:9d:7c:d4:fb:ab:9a:13:4d:7b:82:f4:2a:
85:fe:93:e5:4b:12:9d:d0:2f:91:09:20:25:e6:c0:
93:3b:f0:b3:9e:a6:3f:42:10:d5:a9:f8:83:f2:ec:
2d:fc:2d:dc:41:72:d1:f9:54:44:2d:b9:c0:eb:5b:
1f:09:e9:99:6d:be:43:56:7e:14:b2:e5:8d:d5:ca:
57:68:fb:4e:78:b4:bf:be:6d:63:79:cc:87:39:7e:
d7:a3:e0:19:70:4f:51:bd:be:2f:4d:a8:e8:d1:3c:
8e:91:d3:58:49:b8:f3:0e:4e:74:09:dd:bd:ce:89:
d2:77:63:09:dd:e0:3b:39:7d:31:ce:39:1d:98:a0:
18:f5:71:9a:a1:e5:ab:78:6f:1d:a8:df:91:c8:46:
4e:18:83:ae:3c:63:d7:fb:d1:5c:34:08:7e:4a:5f:
39:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:59:00:60:B9:18:4E:5E:77:64:9A:F9:CE:01:AA:57:33:DD:3C:AC
X509v3 Authority Key Identifier:
keyid:4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/l1kAYLkYTl53ZJr5zgGqVzPdPKw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/TdlU08d8nE437r91PYbz3PCR1Kk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.197.224.0/19
Signature Algorithm: sha256WithRSAEncryption
04:fa:6e:63:de:a0:b4:ea:80:65:52:0f:cd:cb:72:09:01:a8:
3c:db:30:ed:2d:20:ff:e4:01:b2:4d:43:2c:ac:c6:4e:f3:da:
62:74:8b:e0:45:d0:64:42:de:4f:98:92:fd:ab:be:55:1a:50:
8a:7d:15:b3:26:e5:73:71:8f:b1:05:07:a2:05:f5:0f:44:d5:
5d:7f:e2:22:ff:c3:98:15:7b:af:96:d4:91:95:6a:43:c7:9d:
d4:e8:e0:59:e7:43:af:e1:94:d1:04:d2:c5:8c:bc:59:9b:8c:
75:e7:85:d6:64:f6:e9:98:d8:c8:72:e4:34:db:b9:11:33:4a:
33:e4:9b:02:b2:9e:4c:69:3e:bf:13:aa:48:26:60:e6:bb:e8:
04:d3:76:d3:ce:ea:9b:4b:05:d5:ea:72:76:42:b9:84:54:7a:
7a:d3:eb:a3:f8:14:7a:39:55:12:b1:0e:ff:8e:06:a3:d9:1d:
c5:fa:77:ab:79:45:23:83:81:81:a7:b8:ea:0c:69:5e:99:8d:
2e:fa:2b:44:b5:f0:c6:25:f9:25:83:6a:2c:8f:50:2c:cb:a7:
7e:c8:b5:40:50:d0:11:98:41:04:41:a9:12:44:b1:01:e0:9e:
51:de:09:6f:9e:02:35:1b:9d:12:7c:f5:3c:1f:c5:9c:ff:5b:
ec:f2:77:d2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYvZbU8dLBCNjVyTNuCSRHYKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkZDk1NGQzYzc3YzljNGUzN2VlYmY3NTNkODZmM2RjZjA5
MWQ0YTkwHhcNMjMxMTE2MTgzODIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NzU5MDA2MGI5MTg0ZTVlNzc2NDlhZjljZTAxYWE1NzMzZGQzY2FjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3UmGb/tkFiQQjS0e3Kr6MfgJxk4K
cTFr5DTjEYpFKWDkx0ue/AOx+BFH+t4nMvcnt1tEeLG6eX2DdPbVYl4w0oL7w9dz
yOJ9VL7eeEB7cRg1pK+/zELbvNlmheWdfNT7q5oTTXuC9CqF/pPlSxKd0C+RCSAl
5sCTO/CznqY/QhDVqfiD8uwt/C3cQXLR+VRELbnA61sfCemZbb5DVn4UsuWN1cpX
aPtOeLS/vm1jecyHOX7Xo+AZcE9Rvb4vTajo0TyOkdNYSbjzDk50Cd29zonSd2MJ
3eA7OX0xzjkdmKAY9XGaoeWreG8dqN+RyEZOGIOuPGPX+9FcNAh+Sl85mQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJdZAGC5GE5ed2Sa+c4Bqlcz3TysMB8GA1UdIwQY
MBaAFE3ZVNPHfJxON+6/dT2G89zwkdSpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVGRsVTA4ZDhuRTQzN3I5MVBZYnozUENSMUtrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC83YTJhOTktMTQ2Yy00NzgxLWEzMDIt
ZWI3YWFhNjgyOGJlLzEvbDFrQVlMa1lUbDUzWkpyNXpnR3FWelBkUEt3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC83YTJhOTktMTQ2Yy00NzgxLWEzMDItZWI3YWFhNjgyOGJl
LzEvVGRsVTA4ZDhuRTQzN3I5MVBZYnozUENSMUtrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFn8XgMA0G
CSqGSIb3DQEBCwUAA4IBAQAE+m5j3qC06oBlUg/Ny3IJAag82zDtLSD/5AGyTUMs
rMZO89pidIvgRdBkQt5PmJL9q75VGlCKfRWzJuVzcY+xBQeiBfUPRNVdf+Ii/8OY
FXuvltSRlWpDx53U6OBZ50Ov4ZTRBNLFjLxZm4x154XWZPbpmNjIcuQ027kRM0oz
5JsCsp5MaT6/E6pIJmDmu+gE03bTzuqbSwXV6nJ2QrmEVHp60+uj+BR6OVUSsQ7/
jgaj2R3F+nereUUjg4GBp7jqDGlemY0u+itEtfDGJfklg2osj1Asy6d+yLVAUNAR
mEEEQakSRLEB4J5R3glvngI1G50SfPU8H8Wc/1vs8nfS
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:14 2024 by rpki-client on console-ams.rpki-client.org