Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/WphV7y1V9wWdCUhsVAE4QQoHv2w.roa
File: WphV7y1V9wWdCUhsVAE4QQoHv2w.roa (raw, json)
Hash identifier: 1tiqY+6uWri2UNg/2agqyePpDIJMFpkF7FrHNWCeOGQ=
Subject key identifier: 5A:98:55:EF:2D:55:F7:05:9D:09:48:6C:54:01:38:41:0A:07:BF:6C
Certificate issuer: /CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Certificate serial: 018A4AA1AF0AF349BDB1C9F6BBFC6E8E65AE
Authority key identifier: AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/WphV7y1V9wWdCUhsVAE4QQoHv2w.roa
Signing time: Thu 31 Aug 2023 08:07:04 +0000
ROA not before: Thu 31 Aug 2023 08:07:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15785
IP address blocks: 194.146.199.0/24 maxlen: 24
188.0.71.0/24 maxlen: 24
188.0.69.0/24 maxlen: 24
188.0.70.0/24 maxlen: 24
188.0.68.0/24 maxlen: 24
31.128.65.0/24 maxlen: 24
188.0.76.0/24 maxlen: 24
188.0.75.0/24 maxlen: 24
188.0.74.0/24 maxlen: 24
188.0.72.0/24 maxlen: 24
194.110.79.0/24 maxlen: 24
5.1.3.0/24 maxlen: 24
5.1.2.0/24 maxlen: 24
2a01:758:8306::/48 maxlen: 48
2a01:758:8301::/48 maxlen: 48
2a01:758:8305::/48 maxlen: 48
2a01:758::/48 maxlen: 48
2a01:758:8300::/48 maxlen: 48
2a01:758:8303::/48 maxlen: 48
2a01:758:8309::/48 maxlen: 48
2a01:758:8304::/48 maxlen: 48
2a01:758:8307::/48 maxlen: 48
2a01:758:8302::/48 maxlen: 48
2a01:758:8308::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 12 Sep 2023 18:50:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4a:a1:af:0a:f3:49:bd:b1:c9:f6:bb:fc:6e:8e:65:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abc8dbe52083ad335c9f1fde6016ec8b49293140
Validity
Not Before: Aug 31 08:07:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a9855ef2d55f7059d09486c540138410a07bf6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:26:8e:81:de:9d:38:84:fc:c8:12:c1:9b:ad:
b1:fb:9e:a1:b1:3e:3c:48:06:77:a0:8c:24:5f:38:
f1:ef:c2:c5:45:aa:82:9f:b0:d1:5f:0f:de:53:df:
07:bc:ae:1e:20:ce:fa:62:18:c6:a1:87:25:8d:b0:
fd:74:6b:60:43:ed:91:57:33:5e:b4:59:2e:24:7e:
ff:b0:98:58:dc:2e:3a:2e:c5:2f:e4:06:c0:e2:17:
17:02:ae:71:a6:b1:f1:6e:66:cf:fa:80:23:6a:90:
1d:99:db:de:52:ce:a9:10:b6:7f:bc:1a:8c:12:7c:
da:54:b9:c0:22:19:d1:40:44:71:a5:ae:8c:65:90:
8d:16:f9:aa:3c:84:96:22:9c:c0:a3:12:ba:b0:a6:
a7:14:36:9a:80:c5:f3:1c:37:68:c9:c9:29:52:55:
d6:cf:4c:91:df:52:74:0b:09:38:84:24:e6:27:f8:
48:79:08:1d:de:0a:ee:7b:e2:b9:db:f4:39:8c:c4:
9c:f3:6c:f3:3c:b2:6d:2f:3c:91:f8:53:65:55:92:
c7:d1:9a:15:43:74:d6:2d:f8:1a:c5:86:7a:45:0e:
66:f4:9c:36:44:b0:3d:48:cf:d5:fe:7e:53:e2:7d:
d4:45:18:55:58:99:51:39:dc:87:b6:41:9f:7a:55:
67:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:98:55:EF:2D:55:F7:05:9D:09:48:6C:54:01:38:41:0A:07:BF:6C
X509v3 Authority Key Identifier:
keyid:AB:C8:DB:E5:20:83:AD:33:5C:9F:1F:DE:60:16:EC:8B:49:29:31:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q8jb5SCDrTNcnx_eYBbsi0kpMUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/WphV7y1V9wWdCUhsVAE4QQoHv2w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/ce6ccb-25cf-4917-b3cd-3056af9a335e/1/q8jb5SCDrTNcnx_eYBbsi0kpMUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.2.0/23
31.128.65.0/24
188.0.68.0-188.0.72.255
188.0.74.0-188.0.76.255
194.110.79.0/24
194.146.199.0/24
IPv6:
2a01:758::/48
2a01:758:8300::-2a01:758:8309:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
9e:80:98:85:18:3c:44:4c:1b:f1:3a:57:fe:e9:3d:04:7b:3d:
2c:43:cf:c6:77:93:9d:f5:c4:f9:99:d8:c4:81:07:7c:13:cb:
72:5e:65:9a:9f:18:33:5a:2d:d0:dc:46:b3:b3:91:0c:e4:ac:
10:d0:36:cb:d7:a9:e7:56:9e:7e:d7:f1:1d:af:52:c4:e4:35:
80:01:42:13:ca:a0:f4:e2:12:c6:cb:a1:9c:18:e4:00:e4:d2:
94:4b:68:43:5a:d0:02:48:b1:cb:cb:a2:6b:39:70:b8:0b:c0:
2e:04:bd:89:16:37:fb:fd:54:6b:e1:65:70:c2:ac:56:f0:6d:
11:34:c3:95:e8:d6:1e:f1:b0:37:03:43:99:6e:de:10:22:05:
41:ff:29:28:06:04:c0:65:a5:df:84:89:86:0e:80:6d:f7:d3:
4b:47:f8:50:85:bc:44:e7:79:a2:d7:32:5b:67:b5:ee:0d:36:
b1:88:3c:ec:ee:c0:f0:d2:60:9f:d6:c2:e2:48:93:69:2b:bb:
5c:19:ee:a2:d4:52:60:a9:6e:fe:b9:f7:ef:d4:ac:c0:f3:7e:
98:20:40:68:b8:3b:ec:12:e0:98:ec:fe:a4:e1:4d:0b:e0:2d:
31:54:92:89:cb:b0:ca:69:d1:6d:8a:52:56:67:21:c2:91:92:
66:29:ff:c0
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgISAYpKoa8K80m9scn2u/xujmWuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiYzhkYmU1MjA4M2FkMzM1YzlmMWZkZTYwMTZlYzhiNDky
OTMxNDAwHhcNMjMwODMxMDgwNzA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YTk4NTVlZjJkNTVmNzA1OWQwOTQ4NmM1NDAxMzg0MTBhMDdiZjZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArCaOgd6dOIT8yBLBm62x+56hsT48
SAZ3oIwkXzjx78LFRaqCn7DRXw/eU98HvK4eIM76YhjGoYcljbD9dGtgQ+2RVzNe
tFkuJH7/sJhY3C46LsUv5AbA4hcXAq5xprHxbmbP+oAjapAdmdveUs6pELZ/vBqM
EnzaVLnAIhnRQERxpa6MZZCNFvmqPISWIpzAoxK6sKanFDaagMXzHDdoyckpUlXW
z0yR31J0Cwk4hCTmJ/hIeQgd3grue+K52/Q5jMSc82zzPLJtLzyR+FNlVZLH0ZoV
Q3TWLfgaxYZ6RQ5m9Jw2RLA9SM/V/n5T4n3URRhVWJlROdyHtkGfelVnzwIDAQAB
o4ICWzCCAlcwHQYDVR0OBBYEFFqYVe8tVfcFnQlIbFQBOEEKB79sMB8GA1UdIwQY
MBaAFKvI2+Ugg60zXJ8f3mAW7ItJKTFAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcThqYjVTQ0RyVE5jbnhfZVlCYnNpMGtwTVVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS9jZTZjY2ItMjVjZi00OTE3LWIzY2Qt
MzA1NmFmOWEzMzVlLzEvV3BoVjd5MVY5d1dkQ1Voc1ZBRTRRUW9IdjJ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZS9jZTZjY2ItMjVjZi00OTE3LWIzY2QtMzA1NmFmOWEzMzVl
LzEvcThqYjVTQ0RyVE5jbnhfZVlCYnNpMGtwTVVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHEGCCsGAQUFBwEHAQH/BGIwYDA6BAIAATA0AwQBBQECAwQA
H4BBMAwDBAK8AEQDBAC8AEgwDAMEAbwASgMEALwATAMEAMJuTwMEAMKSxzAiBAIA
AjAcAwcAKgEHWAAAMBEDBgAqAQdYgwMHASoBB1iDCDANBgkqhkiG9w0BAQsFAAOC
AQEAnoCYhRg8REwb8TpX/uk9BHs9LEPPxneTnfXE+ZnYxIEHfBPLcl5lmp8YM1ot
0NxGs7ORDOSsENA2y9ep51aeftfxHa9SxOQ1gAFCE8qg9OISxsuhnBjkAOTSlEto
Q1rQAkixy8uiazlwuAvALgS9iRY3+/1Ua+FlcMKsVvBtETTDlejWHvGwNwNDmW7e
ECIFQf8pKAYEwGWl34SJhg6AbffTS0f4UIW8ROd5otcyW2e17g02sYg87O7A8NJg
n9bC4kiTaSu7XBnuotRSYKlu/rn379SswPN+mCBAaLg77BLgmOz+pOFNC+AtMVSS
icuwymnRbYpSVmchwpGSZin/wA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:04 2024 by rpki-client on console-ams.rpki-client.org