Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/97b0bc-f4f8-4f90-8554-1e279f7b6023/1/6wS4I9GYXmZ2fAOjN7TcBJxSu-Q.roa
File: 6wS4I9GYXmZ2fAOjN7TcBJxSu-Q.roa (raw, json)
Hash identifier: hTnU/s4F6qeqhoAL+M/AEXvl1tIY8F0+S2xwKgE0SCw=
Subject key identifier: EB:04:B8:23:D1:98:5E:66:76:7C:03:A3:37:B4:DC:04:9C:52:BB:E4
Certificate issuer: /CN=e5503498ff185d0c607353f43f55e911f62a6802
Certificate serial: 018829C62E90D2178D6A24E96D1BACE00C8F
Authority key identifier: E5:50:34:98:FF:18:5D:0C:60:73:53:F4:3F:55:E9:11:F6:2A:68:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5VA0mP8YXQxgc1P0P1XpEfYqaAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/97b0bc-f4f8-4f90-8554-1e279f7b6023/1/6wS4I9GYXmZ2fAOjN7TcBJxSu-Q.roa
Signing time: Wed 17 May 2023 12:53:53 +0000
ROA not before: Wed 17 May 2023 12:53:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34309
IP address blocks: 176.109.192.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:29:c6:2e:90:d2:17:8d:6a:24:e9:6d:1b:ac:e0:0c:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5503498ff185d0c607353f43f55e911f62a6802
Validity
Not Before: May 17 12:53:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eb04b823d1985e66767c03a337b4dc049c52bbe4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:39:0a:55:8f:f0:e3:c6:16:86:40:7f:9a:28:
f6:61:cf:fd:56:c3:44:66:13:1f:ed:5c:b1:39:f1:
27:96:35:99:17:65:d4:90:2f:f7:f4:06:02:5a:d9:
a4:da:d2:c0:ce:f4:6c:d4:40:4e:d6:45:24:8f:d1:
41:34:f5:27:bb:05:d1:74:ea:d8:59:65:4f:be:9b:
20:84:ba:e9:6d:d1:1f:8c:44:fd:6f:3b:c0:60:7b:
c3:d3:fb:8d:b5:d0:51:2d:6e:ed:ec:80:7d:6a:51:
a8:62:d1:28:1f:80:1a:65:27:07:86:85:b5:b6:68:
1e:02:a9:0a:81:2d:01:52:34:8d:4b:3d:c2:84:2d:
fa:32:be:56:15:f2:7f:7d:eb:db:aa:97:6c:41:15:
e7:dc:49:41:7c:08:28:21:cf:0d:e3:a1:0d:4b:1a:
c7:bc:a4:8b:2a:fb:62:85:59:c8:c3:28:2c:d3:44:
86:07:2a:cd:b0:9a:75:b0:0d:b8:db:ef:d9:a1:6f:
52:c3:90:d9:0e:34:0a:7e:73:79:91:df:5b:e2:c6:
7c:b8:cb:03:9e:c9:bf:75:67:d2:50:7f:ee:d3:c8:
2c:74:ec:b2:e3:1f:3f:2d:dc:20:6a:c4:ad:8d:7a:
d1:db:2a:fe:33:3c:dd:e5:77:c8:5c:57:4b:86:5a:
a3:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:04:B8:23:D1:98:5E:66:76:7C:03:A3:37:B4:DC:04:9C:52:BB:E4
X509v3 Authority Key Identifier:
keyid:E5:50:34:98:FF:18:5D:0C:60:73:53:F4:3F:55:E9:11:F6:2A:68:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5VA0mP8YXQxgc1P0P1XpEfYqaAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/97b0bc-f4f8-4f90-8554-1e279f7b6023/1/6wS4I9GYXmZ2fAOjN7TcBJxSu-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/97b0bc-f4f8-4f90-8554-1e279f7b6023/1/5VA0mP8YXQxgc1P0P1XpEfYqaAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.109.192.0/24
Signature Algorithm: sha256WithRSAEncryption
47:cd:53:51:29:6c:7f:13:10:05:31:8b:d9:2c:7f:03:f0:e5:
db:69:53:67:ce:24:e8:74:d9:5a:20:f9:b6:b5:d8:d7:fc:c6:
da:e8:9a:d8:9e:5d:65:c2:7e:fe:3a:4f:2a:0b:d1:f4:f7:7f:
2f:f6:d2:db:b7:b0:86:a7:7b:6f:82:8a:70:0e:78:46:c1:32:
91:64:d0:84:86:68:f9:46:30:85:95:b0:eb:a1:86:44:3d:09:
8a:a9:4d:0a:4c:5f:bc:a8:f4:c8:10:e6:c6:e9:fe:1a:7b:cd:
ce:d8:b0:c8:4e:01:58:d7:59:c0:a1:7a:45:4a:0d:8e:23:ed:
ff:ee:d5:4a:56:de:14:cb:34:74:f9:5b:7f:67:9a:01:7f:72:
6b:1f:4d:6a:19:9a:23:f2:44:36:fa:69:5c:9d:f5:ed:2e:1a:
e5:9d:0c:9b:b0:96:7d:4a:23:8e:ad:46:0e:9a:8c:7e:9a:9a:
07:94:1e:77:40:50:a3:60:90:d5:32:03:9e:bf:ae:22:10:37:
cb:54:c9:dd:c3:19:cd:7a:b6:fb:9e:f9:a6:70:fa:6e:76:46:
f5:a8:f5:ba:48:26:76:f0:c4:8e:0b:f9:96:48:08:e2:65:18:
67:ac:6f:13:3e:e8:a4:95:d2:6a:6c:79:cb:99:33:1f:92:f3:
ad:36:dc:38
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYgpxi6Q0heNaiTpbRus4AyPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1NTAzNDk4ZmYxODVkMGM2MDczNTNmNDNmNTVlOTExZjYy
YTY4MDIwHhcNMjMwNTE3MTI1MzUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYjA0YjgyM2QxOTg1ZTY2NzY3YzAzYTMzN2I0ZGMwNDljNTJiYmU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmzkKVY/w48YWhkB/mij2Yc/9VsNE
ZhMf7VyxOfEnljWZF2XUkC/39AYCWtmk2tLAzvRs1EBO1kUkj9FBNPUnuwXRdOrY
WWVPvpsghLrpbdEfjET9bzvAYHvD0/uNtdBRLW7t7IB9alGoYtEoH4AaZScHhoW1
tmgeAqkKgS0BUjSNSz3ChC36Mr5WFfJ/fevbqpdsQRXn3ElBfAgoIc8N46ENSxrH
vKSLKvtihVnIwygs00SGByrNsJp1sA242+/ZoW9Sw5DZDjQKfnN5kd9b4sZ8uMsD
nsm/dWfSUH/u08gsdOyy4x8/LdwgasStjXrR2yr+Mzzd5XfIXFdLhlqj1wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOsEuCPRmF5mdnwDoze03AScUrvkMB8GA1UdIwQY
MBaAFOVQNJj/GF0MYHNT9D9V6RH2KmgCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNVZBMG1QOFlYUXhnYzFQMFAxWHBFZllxYUFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC85N2IwYmMtZjRmOC00ZjkwLTg1NTQt
MWUyNzlmN2I2MDIzLzEvNndTNEk5R1lYbVoyZkFPak43VGNCSnhTdS1RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC85N2IwYmMtZjRmOC00ZjkwLTg1NTQtMWUyNzlmN2I2MDIz
LzEvNVZBMG1QOFlYUXhnYzFQMFAxWHBFZllxYUFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsG3AMA0G
CSqGSIb3DQEBCwUAA4IBAQBHzVNRKWx/ExAFMYvZLH8D8OXbaVNnziTodNlaIPm2
tdjX/Mba6JrYnl1lwn7+Ok8qC9H0938v9tLbt7CGp3tvgopwDnhGwTKRZNCEhmj5
RjCFlbDroYZEPQmKqU0KTF+8qPTIEObG6f4ae83O2LDITgFY11nAoXpFSg2OI+3/
7tVKVt4UyzR0+Vt/Z5oBf3JrH01qGZoj8kQ2+mlcnfXtLhrlnQybsJZ9SiOOrUYO
mox+mpoHlB53QFCjYJDVMgOev64iEDfLVMndwxnNerb7nvmmcPpudkb1qPW6SCZ2
8MSOC/mWSAjiZRhnrG8TPuikldJqbHnLmTMfkvOtNtw4
-----END CERTIFICATE-----
Generated at Mon Jan 1 13:11:17 2024 by rpki-client on console-ams.rpki-client.org