Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/1ee7af-7f61-4dc9-bc3e-b4e5cad0dc52/1/RtGYfGcF4tYP8pSseORFvY9LvLs.roa
File: RtGYfGcF4tYP8pSseORFvY9LvLs.roa (raw, json)
Hash identifier: ONrHoBIz9Kv10vNeT84jnAb4Gq4/ylBBuIDb3yBnEt8=
Subject key identifier: 46:D1:98:7C:67:05:E2:D6:0F:F2:94:AC:78:E4:45:BD:8F:4B:BC:BB
Certificate issuer: /CN=0babfb67a0975384efb8b7b7ca807f714f75f84a
Certificate serial: 01899703AAC4DADEF253D6AB1B9C1F62A95A
Authority key identifier: 0B:AB:FB:67:A0:97:53:84:EF:B8:B7:B7:CA:80:7F:71:4F:75:F8:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C6v7Z6CXU4TvuLe3yoB_cU91-Eo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/1ee7af-7f61-4dc9-bc3e-b4e5cad0dc52/1/RtGYfGcF4tYP8pSseORFvY9LvLs.roa
Signing time: Thu 27 Jul 2023 11:02:27 +0000
ROA not before: Thu 27 Jul 2023 11:02:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57575
IP address blocks: 185.153.54.0/24 maxlen: 24
2a13:9a40::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:97:03:aa:c4:da:de:f2:53:d6:ab:1b:9c:1f:62:a9:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0babfb67a0975384efb8b7b7ca807f714f75f84a
Validity
Not Before: Jul 27 11:02:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=46d1987c6705e2d60ff294ac78e445bd8f4bbcbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:0f:37:37:fe:6b:f1:10:ed:2c:e7:f6:a1:94:
1f:68:06:52:c3:ea:11:bb:f4:07:d3:4c:2b:4a:cd:
c9:4d:39:49:ae:78:2d:f1:a0:93:60:e9:72:f4:ef:
14:b5:e2:ac:1e:66:3d:39:30:fd:63:c6:44:78:8c:
64:57:4e:56:d0:33:41:7b:d6:c6:c3:89:5a:b9:55:
00:cf:f5:eb:b0:fa:f6:c7:92:52:2a:9a:e7:3b:8c:
ef:99:a2:92:d4:39:5b:f7:b8:e5:d6:a2:52:f7:46:
aa:40:7b:e4:2f:91:86:1b:16:c3:96:e7:62:08:63:
c4:c0:65:9e:c9:98:ae:b0:53:0a:c2:92:1d:bf:51:
0b:62:5b:5a:22:df:1a:ed:0b:db:db:66:d9:9b:40:
e7:ee:6f:c0:86:fe:15:12:68:aa:27:5c:07:84:a4:
49:ff:a6:15:59:e7:37:ef:dd:39:fe:4a:ea:34:a9:
f3:bf:cc:39:66:c5:d6:e0:3b:49:58:f6:32:30:a2:
bd:47:da:a5:84:8f:e5:96:6a:ec:da:93:2e:3e:b0:
b4:2e:4a:c7:e4:32:1d:18:46:9a:9b:d6:f3:75:5e:
21:c3:88:be:16:de:cb:dd:da:df:b3:19:67:ed:4b:
b7:2d:09:64:ce:cd:ca:dc:16:29:cb:60:50:3b:2a:
14:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:D1:98:7C:67:05:E2:D6:0F:F2:94:AC:78:E4:45:BD:8F:4B:BC:BB
X509v3 Authority Key Identifier:
keyid:0B:AB:FB:67:A0:97:53:84:EF:B8:B7:B7:CA:80:7F:71:4F:75:F8:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C6v7Z6CXU4TvuLe3yoB_cU91-Eo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/1ee7af-7f61-4dc9-bc3e-b4e5cad0dc52/1/RtGYfGcF4tYP8pSseORFvY9LvLs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/1ee7af-7f61-4dc9-bc3e-b4e5cad0dc52/1/C6v7Z6CXU4TvuLe3yoB_cU91-Eo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.153.54.0/24
IPv6:
2a13:9a40::/32
Signature Algorithm: sha256WithRSAEncryption
76:cb:3c:1d:26:f8:2c:da:bb:61:ef:80:06:31:79:36:73:1f:
52:41:8a:19:c6:03:e1:66:cc:ec:32:82:16:d9:04:71:16:2f:
a5:41:a3:c7:2a:8c:16:c2:44:ad:d6:77:bd:4e:f2:de:56:ee:
c1:ca:6e:08:bc:05:94:4c:ad:7c:41:c7:c2:4a:28:eb:9d:86:
95:1b:e7:eb:7b:95:15:21:53:99:b9:09:91:d5:82:5f:53:a8:
cb:28:c6:12:73:f5:c2:de:fd:33:29:71:a2:4c:96:56:8b:c8:
b2:0b:11:d7:1a:c1:b3:57:a6:67:98:1c:1b:74:5c:20:ac:d9:
23:2a:68:78:36:61:79:20:8e:2e:26:82:d0:89:15:67:1b:34:
d5:e3:fd:b5:5f:dd:47:3a:8c:31:54:ac:41:53:1c:43:bc:e8:
19:ea:5f:80:44:dd:2c:d3:67:d2:c1:76:4a:14:1e:0d:37:2f:
13:f5:99:fa:35:f5:82:62:bb:db:5f:56:20:0d:a7:57:e1:37:
7b:6f:dd:e6:5e:34:b7:b9:ed:9c:c0:80:a4:7f:b9:2a:87:69:
54:8a:af:57:49:2b:ad:85:18:08:27:10:09:55:00:0e:0b:4c:
3a:b7:12:bb:20:f7:71:13:fd:58:53:5d:af:2f:1a:32:3c:15:
07:ea:ad:80
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYmXA6rE2t7yU9arG5wfYqlaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBiYWJmYjY3YTA5NzUzODRlZmI4YjdiN2NhODA3ZjcxNGY3
NWY4NGEwHhcNMjMwNzI3MTEwMjI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NmQxOTg3YzY3MDVlMmQ2MGZmMjk0YWM3OGU0NDViZDhmNGJiY2JiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjA83N/5r8RDtLOf2oZQfaAZSw+oR
u/QH00wrSs3JTTlJrngt8aCTYOly9O8UteKsHmY9OTD9Y8ZEeIxkV05W0DNBe9bG
w4lauVUAz/XrsPr2x5JSKprnO4zvmaKS1Dlb97jl1qJS90aqQHvkL5GGGxbDludi
CGPEwGWeyZiusFMKwpIdv1ELYltaIt8a7Qvb22bZm0Dn7m/Ahv4VEmiqJ1wHhKRJ
/6YVWec37905/krqNKnzv8w5ZsXW4DtJWPYyMKK9R9qlhI/llmrs2pMuPrC0LkrH
5DIdGEaam9bzdV4hw4i+Ft7L3drfsxln7Uu3LQlkzs3K3BYpy2BQOyoUPQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFEbRmHxnBeLWD/KUrHjkRb2PS7y7MB8GA1UdIwQY
MBaAFAur+2egl1OE77i3t8qAf3FPdfhKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQzZ2N1o2Q1hVNFR2dUxlM3lvQl9jVTkxLUVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy8xZWU3YWYtN2Y2MS00ZGM5LWJjM2Ut
YjRlNWNhZDBkYzUyLzEvUnRHWWZHY0Y0dFlQOHBTc2VPUkZ2WTlMdkxzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yy8xZWU3YWYtN2Y2MS00ZGM5LWJjM2UtYjRlNWNhZDBkYzUy
LzEvQzZ2N1o2Q1hVNFR2dUxlM3lvQl9jVTkxLUVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAuZk2MA0E
AgACMAcDBQAqE5pAMA0GCSqGSIb3DQEBCwUAA4IBAQB2yzwdJvgs2rth74AGMXk2
cx9SQYoZxgPhZszsMoIW2QRxFi+lQaPHKowWwkSt1ne9TvLeVu7Bym4IvAWUTK18
QcfCSijrnYaVG+fre5UVIVOZuQmR1YJfU6jLKMYSc/XC3v0zKXGiTJZWi8iyCxHX
GsGzV6ZnmBwbdFwgrNkjKmh4NmF5II4uJoLQiRVnGzTV4/21X91HOowxVKxBUxxD
vOgZ6l+ARN0s02fSwXZKFB4NNy8T9Zn6NfWCYrvbX1YgDadX4Td7b93mXjS3ue2c
wICkf7kqh2lUiq9XSSuthRgIJxAJVQAOC0w6txK7IPdxE/1YU12vLxoyPBUH6q2A
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:57 2024 by rpki-client on console-fra.rpki-client.org