Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/u5aVbY0xOoeluo98zjJw-VFbC2A.roa
File: u5aVbY0xOoeluo98zjJw-VFbC2A.roa (raw, json)
Hash identifier: lRvijItdiAC28si813+ZQ6v16E9MvapdL4vL/OEx5M8=
Subject key identifier: BB:96:95:6D:8D:31:3A:87:A5:BA:8F:7C:CE:32:70:F9:51:5B:0B:60
Certificate issuer: /CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9
Certificate serial: 01856CE6104A53E45FA755531846F0125D7B
Authority key identifier: 4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/u5aVbY0xOoeluo98zjJw-VFbC2A.roa
Signing time: Sun 01 Jan 2023 10:34:54 +0000
ROA not before: Sun 01 Jan 2023 10:34:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204170
IP address blocks: 161.8.64.0/18 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:10:4a:53:e4:5f:a7:55:53:18:46:f0:12:5d:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9
Validity
Not Before: Jan 1 10:34:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb96956d8d313a87a5ba8f7cce3270f9515b0b60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:1a:b8:3a:ec:e0:1f:e1:2b:59:26:73:22:a6:
70:cd:81:e1:f0:7b:fb:32:fb:06:2b:b4:ca:14:a7:
05:d4:eb:fb:3e:d6:39:b3:16:6e:72:6e:f5:5d:a1:
a3:c7:cc:4d:58:1b:8e:3c:5b:0a:8f:6d:7d:72:4b:
e2:08:c8:e9:47:b2:0c:fb:d4:34:76:ad:dd:6b:15:
cd:85:a4:d7:19:2f:0a:67:37:03:5a:65:e4:ca:44:
a1:74:97:4f:09:5d:cb:48:d5:6e:55:63:9c:7d:59:
06:35:20:79:1d:af:cd:1f:80:72:ed:bd:ea:c4:f8:
f4:54:5a:9a:ff:cb:0c:19:f5:03:fc:dd:a1:62:5e:
35:fc:c2:18:6d:c7:7c:25:66:6a:5d:a2:c2:2c:16:
c4:03:b6:15:2d:f5:c0:7d:03:9a:37:d0:e8:ad:53:
c8:52:8f:d2:2c:74:d4:7f:8b:3d:50:53:c8:32:4c:
93:ae:ad:c8:7c:b3:22:15:5e:88:a2:7b:f5:11:30:
dd:7a:25:4b:1d:0e:d4:97:c7:6b:18:bd:aa:03:83:
8c:91:90:4f:ac:00:95:35:5d:b9:0d:5c:2e:39:8d:
eb:af:64:c9:b3:2a:3d:b1:e4:dd:47:6c:f9:c4:7f:
4b:b5:e3:f2:ee:32:76:3b:e5:64:05:07:fd:ca:3a:
75:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:96:95:6D:8D:31:3A:87:A5:BA:8F:7C:CE:32:70:F9:51:5B:0B:60
X509v3 Authority Key Identifier:
keyid:4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/u5aVbY0xOoeluo98zjJw-VFbC2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/TdlU08d8nE437r91PYbz3PCR1Kk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
161.8.64.0/18
Signature Algorithm: sha256WithRSAEncryption
49:6b:d4:de:86:9b:0c:21:38:3d:9f:7d:64:60:e5:d3:75:e1:
57:57:db:7d:59:4e:bf:87:21:8a:73:5d:a4:b3:61:26:34:a1:
ae:c6:fb:2f:78:98:a3:64:49:e5:e1:fb:4f:07:da:d5:1a:d3:
6e:0b:b9:a6:cc:78:f9:d5:e2:95:88:cf:13:e6:d8:8e:10:3c:
bd:21:83:86:85:c7:37:5a:22:dc:7a:31:71:7b:4a:7f:87:f5:
19:7b:b4:2f:fe:9d:61:ab:ac:54:af:1f:67:8d:5f:ea:12:ec:
95:1f:ef:8d:34:51:f0:70:32:b6:01:04:eb:a3:5b:55:94:95:
57:36:2c:6b:c7:b2:56:40:5e:4b:fa:8f:0f:e4:f7:ab:68:7f:
95:a7:e9:c5:1c:01:18:ac:3e:32:d2:ee:52:8c:48:61:78:b7:
62:8d:35:28:d2:50:af:1e:db:f6:7a:7c:58:46:8e:5d:4d:06:
30:b4:ed:23:34:d1:96:b5:4e:1b:c8:0f:d3:36:78:45:6f:8d:
41:7f:f2:07:03:f9:ca:ce:b1:85:94:b4:bd:d0:30:a6:c2:68:
7d:34:75:21:93:5c:c3:4f:a9:60:73:70:db:71:7b:ed:a4:7f:
76:ed:15:10:1a:68:7d:68:43:50:dd:06:90:5e:cd:b5:e9:b8:
df:27:de:38
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVs5hBKU+Rfp1VTGEbwEl17MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkZDk1NGQzYzc3YzljNGUzN2VlYmY3NTNkODZmM2RjZjA5
MWQ0YTkwHhcNMjMwMTAxMTAzNDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYjk2OTU2ZDhkMzEzYTg3YTViYThmN2NjZTMyNzBmOTUxNWIwYjYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnBq4OuzgH+ErWSZzIqZwzYHh8Hv7
MvsGK7TKFKcF1Ov7PtY5sxZucm71XaGjx8xNWBuOPFsKj219ckviCMjpR7IM+9Q0
dq3daxXNhaTXGS8KZzcDWmXkykShdJdPCV3LSNVuVWOcfVkGNSB5Ha/NH4By7b3q
xPj0VFqa/8sMGfUD/N2hYl41/MIYbcd8JWZqXaLCLBbEA7YVLfXAfQOaN9DorVPI
Uo/SLHTUf4s9UFPIMkyTrq3IfLMiFV6Ionv1ETDdeiVLHQ7Ul8drGL2qA4OMkZBP
rACVNV25DVwuOY3rr2TJsyo9seTdR2z5xH9LtePy7jJ2O+VkBQf9yjp1BQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLuWlW2NMTqHpbqPfM4ycPlRWwtgMB8GA1UdIwQY
MBaAFE3ZVNPHfJxON+6/dT2G89zwkdSpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVGRsVTA4ZDhuRTQzN3I5MVBZYnozUENSMUtrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC83YTJhOTktMTQ2Yy00NzgxLWEzMDIt
ZWI3YWFhNjgyOGJlLzEvdTVhVmJZMHhPb2VsdW85OHpqSnctVkZiQzJBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC83YTJhOTktMTQ2Yy00NzgxLWEzMDItZWI3YWFhNjgyOGJl
LzEvVGRsVTA4ZDhuRTQzN3I5MVBZYnozUENSMUtrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGoQhAMA0G
CSqGSIb3DQEBCwUAA4IBAQBJa9TehpsMITg9n31kYOXTdeFXV9t9WU6/hyGKc12k
s2EmNKGuxvsveJijZEnl4ftPB9rVGtNuC7mmzHj51eKViM8T5tiOEDy9IYOGhcc3
WiLcejFxe0p/h/UZe7Qv/p1hq6xUrx9njV/qEuyVH++NNFHwcDK2AQTro1tVlJVX
Nixrx7JWQF5L+o8P5PeraH+Vp+nFHAEYrD4y0u5SjEhheLdijTUo0lCvHtv2enxY
Ro5dTQYwtO0jNNGWtU4byA/TNnhFb41Bf/IHA/nKzrGFlLS90DCmwmh9NHUhk1zD
T6lgc3DbcXvtpH927RUQGmh9aENQ3QaQXs216bjfJ944
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:14 2024 by rpki-client on console-ams.rpki-client.org