Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/5EgfpiPSGFsS2_XjqD0G9L3n9SA.roa
File: 5EgfpiPSGFsS2_XjqD0G9L3n9SA.roa (raw, json)
Hash identifier: IrVrg8lAVbBzNYI2nDc5mIfbxMkIDP6TWrXLmP4YsrA=
Subject key identifier: E4:48:1F:A6:23:D2:18:5B:12:DB:F5:E3:A8:3D:06:F4:BD:E7:F5:20
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 0186791976E6270173585767F6B69049C190
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/5EgfpiPSGFsS2_XjqD0G9L3n9SA.roa
Signing time: Wed 22 Feb 2023 12:29:17 +0000
ROA not before: Wed 22 Feb 2023 12:29:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211280
IP address blocks: 145.62.64.0/20 maxlen: 20
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:79:19:76:e6:27:01:73:58:57:67:f6:b6:90:49:c1:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Feb 22 12:29:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4481fa623d2185b12dbf5e3a83d06f4bde7f520
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ab:2a:28:56:fa:f7:ef:7a:bb:eb:2e:42:fb:
d3:5c:d1:09:13:c3:e1:81:c8:0c:ae:da:16:3b:6c:
1a:26:4c:03:da:46:28:52:45:2a:2d:68:9e:e7:58:
5d:72:4d:3f:d5:05:10:6e:3d:60:88:a7:3c:29:ab:
dd:93:d5:3c:ca:8c:69:87:64:08:4a:0a:d8:2f:10:
63:1a:d1:d1:58:4d:ac:31:98:a6:e7:df:95:94:42:
a1:e3:d2:a2:ee:8c:26:08:cc:06:74:a0:6b:ba:97:
c2:26:e8:f1:24:90:7b:b7:67:28:53:6d:77:8e:22:
82:b3:86:de:82:34:ef:69:cc:42:99:c1:84:16:e1:
4f:29:45:ea:d3:10:d0:27:52:27:9c:c8:ef:65:a0:
54:42:fd:35:17:23:da:59:74:97:f9:a3:f2:f4:08:
72:9e:7e:2a:b3:ff:95:17:da:3c:7a:25:59:9c:f9:
54:33:3c:67:50:cd:26:eb:24:e5:e5:58:09:a6:62:
48:3e:64:50:a0:b0:03:bb:45:31:e1:25:b2:d4:96:
14:85:9c:7c:a9:53:a8:2a:ca:90:cd:8f:79:75:81:
86:02:a0:86:19:7e:de:6b:0e:15:28:31:87:7c:8f:
e6:f3:ad:75:9b:a9:1f:02:26:9e:14:be:b8:de:1e:
99:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:48:1F:A6:23:D2:18:5B:12:DB:F5:E3:A8:3D:06:F4:BD:E7:F5:20
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/5EgfpiPSGFsS2_XjqD0G9L3n9SA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.62.64.0/20
Signature Algorithm: sha256WithRSAEncryption
b2:11:24:d1:b4:fd:a3:84:86:75:7a:5f:5e:dd:76:ed:4d:cf:
05:b0:27:b4:83:f8:87:ad:2e:87:92:8a:4f:01:f8:88:4e:76:
1d:be:99:1a:ab:92:ac:6f:ca:68:2b:9b:6b:7d:2f:01:cf:df:
da:17:57:fa:a1:ea:af:e6:c7:08:c2:14:25:ce:6f:ff:94:30:
02:08:dc:cb:89:64:1f:86:16:a2:8d:2f:d9:9d:84:fe:d5:ea:
d4:eb:01:2a:21:b2:26:60:e1:fc:d4:57:23:26:9d:c9:6e:e3:
db:6a:a0:e5:9c:80:93:6d:34:07:e1:dc:11:93:1e:9d:fb:cd:
97:cd:40:ff:36:96:ce:1b:e7:0e:15:2e:1f:d8:aa:98:84:ec:
f8:26:cb:52:72:7c:ea:aa:6f:b1:69:69:b5:12:54:63:be:4b:
40:38:d8:64:e7:15:10:b8:65:61:88:a6:26:cb:8a:95:69:84:
f3:62:4e:69:c4:d3:f9:35:8d:23:67:2b:ff:35:31:1d:1c:a7:
db:fe:e5:04:f2:00:53:9b:f4:44:19:53:42:41:05:97:f9:9c:
e2:06:31:f0:70:16:0f:7b:49:a7:3e:f9:81:45:c7:b6:6c:ff:
66:ee:d3:46:d0:e4:bf:ee:eb:71:7d:b7:30:f0:7b:c9:44:d2:
ea:30:37:59
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYZ5GXbmJwFzWFdn9raQScGQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3NzNkYjE3Nzk1ZDJiZjFiNGI1MzQ1YzViMjkzOTBkYmFm
NDUyM2UwHhcNMjMwMjIyMTIyOTE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNDQ4MWZhNjIzZDIxODViMTJkYmY1ZTNhODNkMDZmNGJkZTdmNTIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp6sqKFb69+96u+suQvvTXNEJE8Ph
gcgMrtoWO2waJkwD2kYoUkUqLWie51hdck0/1QUQbj1giKc8Kavdk9U8yoxph2QI
SgrYLxBjGtHRWE2sMZim59+VlEKh49Ki7owmCMwGdKBrupfCJujxJJB7t2coU213
jiKCs4begjTvacxCmcGEFuFPKUXq0xDQJ1InnMjvZaBUQv01FyPaWXSX+aPy9Ahy
nn4qs/+VF9o8eiVZnPlUMzxnUM0m6yTl5VgJpmJIPmRQoLADu0Ux4SWy1JYUhZx8
qVOoKsqQzY95dYGGAqCGGX7eaw4VKDGHfI/m8611m6kfAiaeFL643h6Z6wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFORIH6Yj0hhbEtv146g9BvS95/UgMB8GA1UdIwQY
MBaAFBdz2xd5XSvxtLU0XFspOQ269FI+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRjNQYkYzbGRLX0cwdFRSY1d5azVEYnIwVWo0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC9mNzdjYmQtODkzYi00NjE2LTlkNzYt
NTQ4NjFmMjMyNDlkLzEvNUVnZnBpUFNHRnNTMl9YanFEMEc5TDNuOVNBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZC9mNzdjYmQtODkzYi00NjE2LTlkNzYtNTQ4NjFmMjMyNDlk
LzEvRjNQYkYzbGRLX0cwdFRSY1d5azVEYnIwVWo0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEkT5AMA0G
CSqGSIb3DQEBCwUAA4IBAQCyESTRtP2jhIZ1el9e3XbtTc8FsCe0g/iHrS6HkopP
AfiITnYdvpkaq5Ksb8poK5trfS8Bz9/aF1f6oeqv5scIwhQlzm//lDACCNzLiWQf
hhaijS/ZnYT+1erU6wEqIbImYOH81FcjJp3JbuPbaqDlnICTbTQH4dwRkx6d+82X
zUD/NpbOG+cOFS4f2KqYhOz4JstScnzqqm+xaWm1ElRjvktAONhk5xUQuGVhiKYm
y4qVaYTzYk5pxNP5NY0jZyv/NTEdHKfb/uUE8gBTm/REGVNCQQWX+ZziBjHwcBYP
e0mnPvmBRce2bP9m7tNG0OS/7utxfbcw8HvJRNLqMDdZ
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:44 2024 by rpki-client on console-ams.rpki-client.org