Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/745bdb-104b-49c7-99d5-cec33ba1bdf5/1/25jMvF_6mGLCUllmMfmacroevW4.roa
File: 25jMvF_6mGLCUllmMfmacroevW4.roa (raw, json)
Hash identifier: you1mFEEQF7inbM9Jzxe2cdNLLr7flFBDnISzZg4GOY=
Subject key identifier: DB:98:CC:BC:5F:FA:98:62:C2:52:59:66:31:F9:9A:72:BA:1E:BD:6E
Certificate issuer: /CN=9d5de490ff874e9689cecf726cbb4e2f51f6c731
Certificate serial: 01856F1DB17B1C7BE8CEFA83C169FA9EC531
Authority key identifier: 9D:5D:E4:90:FF:87:4E:96:89:CE:CF:72:6C:BB:4E:2F:51:F6:C7:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nV3kkP-HTpaJzs9ybLtOL1H2xzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/745bdb-104b-49c7-99d5-cec33ba1bdf5/1/25jMvF_6mGLCUllmMfmacroevW4.roa
Signing time: Sun 01 Jan 2023 20:54:54 +0000
ROA not before: Sun 01 Jan 2023 20:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24989
IP address blocks: 194.8.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:b1:7b:1c:7b:e8:ce:fa:83:c1:69:fa:9e:c5:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d5de490ff874e9689cecf726cbb4e2f51f6c731
Validity
Not Before: Jan 1 20:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db98ccbc5ffa9862c252596631f99a72ba1ebd6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:49:fa:0a:b2:92:6d:10:e9:a4:aa:e8:4e:21:
96:14:7e:6f:91:8b:88:b8:ad:6e:46:f4:6e:50:0f:
7c:e6:d5:f0:a5:dc:f4:4b:fa:7f:a0:44:31:f1:52:
2c:fc:11:ef:61:f2:fe:67:45:aa:f0:54:99:88:2b:
2f:31:7c:77:cc:b3:d7:cc:02:99:3e:d0:09:3b:51:
61:04:90:56:c9:b5:79:c5:69:a5:ad:c2:f3:f6:3d:
8d:b3:1f:7a:67:65:54:3c:59:8e:1f:12:af:b7:19:
89:0d:56:c4:d1:b3:2a:12:c6:89:e4:66:57:78:1b:
9b:ba:cd:9f:1f:f4:bd:6b:0a:3b:b6:4c:29:72:e7:
51:60:78:62:5e:7d:ba:83:40:cf:50:09:0f:4c:0a:
43:92:65:50:6f:23:7d:2c:5a:87:95:e5:29:54:97:
d5:1e:6b:d7:c2:4e:42:fa:57:72:3b:5b:3b:f9:4b:
7e:6b:07:84:89:98:0d:09:33:d6:33:9b:ef:19:24:
57:8b:75:95:4a:0a:f5:c0:32:60:0e:4b:71:9d:26:
52:2b:52:fa:8b:7f:85:91:5d:74:97:35:c5:22:40:
41:84:9e:37:bc:2c:70:0c:2c:99:dc:9c:b5:60:81:
8b:3f:ca:59:af:31:d2:46:0f:e3:1f:60:51:2f:28:
c8:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:98:CC:BC:5F:FA:98:62:C2:52:59:66:31:F9:9A:72:BA:1E:BD:6E
X509v3 Authority Key Identifier:
keyid:9D:5D:E4:90:FF:87:4E:96:89:CE:CF:72:6C:BB:4E:2F:51:F6:C7:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nV3kkP-HTpaJzs9ybLtOL1H2xzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/745bdb-104b-49c7-99d5-cec33ba1bdf5/1/25jMvF_6mGLCUllmMfmacroevW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/745bdb-104b-49c7-99d5-cec33ba1bdf5/1/nV3kkP-HTpaJzs9ybLtOL1H2xzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.8.123.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:65:68:66:c1:e3:2b:5a:4a:73:0e:12:01:84:40:63:cc:34:
8d:a3:bc:8b:ca:fb:69:a6:ca:f0:0f:3c:62:b9:52:8f:5c:5f:
09:eb:26:93:ce:4f:af:1f:1e:6b:6e:00:31:4d:fb:31:09:ed:
b3:c2:95:d1:84:d8:52:c4:2e:6b:40:01:ba:8e:74:40:37:40:
59:32:97:13:24:41:99:6d:83:ca:d0:cd:c4:ad:76:3f:f3:07:
45:c0:e5:3b:75:a9:14:ac:e8:0e:09:7d:53:bb:31:9a:f8:76:
39:3a:c8:b5:02:6f:60:57:bd:a7:c7:1b:3f:a1:8b:9e:65:a5:
6b:b0:b1:92:02:ea:e9:86:c6:ed:00:f9:08:84:e9:d7:63:a3:
e7:0e:1c:c2:ea:14:a2:c1:01:34:19:f4:fa:42:e0:cc:3c:21:
c4:cc:10:ed:1b:f8:2a:c6:d9:d9:f5:91:ad:87:df:4b:5a:aa:
9a:d9:c3:53:2e:0f:70:76:af:7e:cf:f7:00:64:04:18:87:5c:
10:44:86:0b:80:70:4c:85:14:a5:dd:25:96:d7:58:99:1a:c2:
b3:4e:e3:3a:1f:6d:5b:f8:82:03:94:a2:ac:5a:34:8e:dd:12:
ed:fe:1a:d2:de:6e:5e:54:88:75:a0:79:8b:36:bb:cb:f3:d1:
8e:33:aa:69
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvHbF7HHvozvqDwWn6nsUxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkNWRlNDkwZmY4NzRlOTY4OWNlY2Y3MjZjYmI0ZTJmNTFm
NmM3MzEwHhcNMjMwMTAxMjA1NDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYjk4Y2NiYzVmZmE5ODYyYzI1MjU5NjYzMWY5OWE3MmJhMWViZDZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmUn6CrKSbRDppKroTiGWFH5vkYuI
uK1uRvRuUA985tXwpdz0S/p/oEQx8VIs/BHvYfL+Z0Wq8FSZiCsvMXx3zLPXzAKZ
PtAJO1FhBJBWybV5xWmlrcLz9j2Nsx96Z2VUPFmOHxKvtxmJDVbE0bMqEsaJ5GZX
eBubus2fH/S9awo7tkwpcudRYHhiXn26g0DPUAkPTApDkmVQbyN9LFqHleUpVJfV
HmvXwk5C+ldyO1s7+Ut+aweEiZgNCTPWM5vvGSRXi3WVSgr1wDJgDktxnSZSK1L6
i3+FkV10lzXFIkBBhJ43vCxwDCyZ3Jy1YIGLP8pZrzHSRg/jH2BRLyjIhwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNuYzLxf+phiwlJZZjH5mnK6Hr1uMB8GA1UdIwQY
MBaAFJ1d5JD/h06Wic7Pcmy7Ti9R9scxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblYza2tQLUhUcGFKenM5eWJMdE9MMUgyeHpFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC83NDViZGItMTA0Yi00OWM3LTk5ZDUt
Y2VjMzNiYTFiZGY1LzEvMjVqTXZGXzZtR0xDVWxsbU1mbWFjcm9ldlc0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC83NDViZGItMTA0Yi00OWM3LTk5ZDUtY2VjMzNiYTFiZGY1
LzEvblYza2tQLUhUcGFKenM5eWJMdE9MMUgyeHpFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwgh7MA0G
CSqGSIb3DQEBCwUAA4IBAQAsZWhmweMrWkpzDhIBhEBjzDSNo7yLyvtppsrwDzxi
uVKPXF8J6yaTzk+vHx5rbgAxTfsxCe2zwpXRhNhSxC5rQAG6jnRAN0BZMpcTJEGZ
bYPK0M3ErXY/8wdFwOU7dakUrOgOCX1TuzGa+HY5Osi1Am9gV72nxxs/oYueZaVr
sLGSAurphsbtAPkIhOnXY6PnDhzC6hSiwQE0GfT6QuDMPCHEzBDtG/gqxtnZ9ZGt
h99LWqqa2cNTLg9wdq9+z/cAZAQYh1wQRIYLgHBMhRSl3SWW11iZGsKzTuM6H21b
+IIDlKKsWjSO3RLt/hrS3m5eVIh1oHmLNrvL89GOM6pp
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:20 2024 by rpki-client on console-ams.rpki-client.org