Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/fz9ZqEohEuGFUvRuegg3veaQNZk.roa
File: fz9ZqEohEuGFUvRuegg3veaQNZk.roa (raw, json)
Hash identifier: IXfCru4zIkkFD2lqw0Iexu+pbWYusOOP7t/O2WgwN6s=
Subject key identifier: 7F:3F:59:A8:4A:21:12:E1:85:52:F4:6E:7A:08:37:BD:E6:90:35:99
Certificate issuer: /CN=bd252a75c961ad338fd91147d461dd8b3d20cf51
Certificate serial: 01856BAEB82EAA4CF0F53AF0F405699FC234
Authority key identifier: BD:25:2A:75:C9:61:AD:33:8F:D9:11:47:D4:61:DD:8B:3D:20:CF:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vSUqdclhrTOP2RFH1GHdiz0gz1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/fz9ZqEohEuGFUvRuegg3veaQNZk.roa
Signing time: Sun 01 Jan 2023 04:54:50 +0000
ROA not before: Sun 01 Jan 2023 04:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5539
IP address blocks: 5.182.155.0/24 maxlen: 24
5.182.154.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ae:b8:2e:aa:4c:f0:f5:3a:f0:f4:05:69:9f:c2:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd252a75c961ad338fd91147d461dd8b3d20cf51
Validity
Not Before: Jan 1 04:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7f3f59a84a2112e18552f46e7a0837bde6903599
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:86:25:e8:b3:d2:2a:de:97:50:b9:3c:9c:4c:
d5:3d:54:80:e1:71:cb:b1:e3:ef:40:e3:a3:28:c3:
b6:14:e5:4f:b8:56:ea:5f:63:fc:10:21:b4:3c:d1:
e2:1c:59:19:12:ae:8a:5f:a6:01:0e:cd:0e:c6:58:
df:31:c7:62:e4:c5:a3:65:c4:59:c1:d8:e5:20:a9:
ac:13:c4:48:dc:26:34:cd:9c:c4:e6:7f:3d:41:6c:
37:02:91:29:fe:e6:5d:01:fc:f6:87:f2:3d:75:bc:
3b:e7:f0:7b:79:73:1d:c7:a7:49:d6:34:2c:6a:e0:
53:e3:0a:c3:d0:15:2d:a5:4e:f1:ef:6b:8e:5f:3a:
9e:a2:04:f2:10:b7:63:d6:6e:2a:00:b0:b7:35:e9:
ab:be:0c:34:3f:ea:20:81:b6:b6:9a:4c:a8:84:b2:
b8:29:2b:e5:5b:e2:05:17:cb:a0:3b:2b:e3:45:52:
96:10:e4:4d:f2:4a:7c:6f:97:0c:00:4a:ee:7b:eb:
7d:12:1e:23:36:ca:f5:40:ec:0c:d1:96:7e:53:23:
0f:f3:50:0a:12:98:c1:b0:ee:01:88:9a:4f:12:c5:
73:19:a4:85:5b:19:8e:29:ff:b6:e8:6e:a3:1c:2a:
50:45:d0:99:70:b3:9e:7d:2d:83:d5:94:da:01:c0:
25:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:3F:59:A8:4A:21:12:E1:85:52:F4:6E:7A:08:37:BD:E6:90:35:99
X509v3 Authority Key Identifier:
keyid:BD:25:2A:75:C9:61:AD:33:8F:D9:11:47:D4:61:DD:8B:3D:20:CF:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vSUqdclhrTOP2RFH1GHdiz0gz1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/fz9ZqEohEuGFUvRuegg3veaQNZk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.154.0/23
Signature Algorithm: sha256WithRSAEncryption
aa:83:2d:7a:1e:66:c5:f7:9d:1c:f1:38:72:a8:7e:2b:ab:62:
0b:39:37:ba:04:38:b9:ed:46:bf:ee:75:3b:98:eb:fa:d3:cb:
9b:a9:8b:9a:59:ee:de:85:c2:7f:4e:a7:7e:15:14:73:be:d9:
2c:48:79:07:ab:1b:16:05:d3:b5:ef:f7:e9:89:1c:d4:3f:56:
3a:c7:27:df:21:75:f9:67:30:d2:75:13:06:19:ba:87:17:35:
7e:50:e6:83:e5:c6:2c:c1:73:db:c4:b9:08:72:fe:7c:c9:d7:
64:74:ac:38:f0:c7:0d:c0:70:19:77:95:a6:2e:b4:84:46:78:
ee:7d:f6:45:4d:91:58:d3:0f:49:82:0b:db:25:0b:34:25:62:
b0:d0:77:8a:81:61:5f:11:3c:ed:e9:39:83:45:cb:97:46:cc:
37:dd:1e:b8:aa:bb:64:1b:10:58:eb:2d:99:a4:7f:9f:79:05:
94:4d:60:50:e5:b7:d7:0a:26:a9:40:80:a3:30:cf:48:10:b2:
df:fe:86:92:e5:bd:0b:20:64:e2:1d:69:13:71:43:a9:13:52:
5a:9f:f8:38:db:3e:6c:69:6f:72:29:ce:93:67:e1:67:46:7c:
ff:f2:c9:7c:0f:71:a3:f8:dc:a5:56:c6:4f:ef:4b:48:a6:10:
4b:31:0b:7f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVrrrguqkzw9Trw9AVpn8I0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkMjUyYTc1Yzk2MWFkMzM4ZmQ5MTE0N2Q0NjFkZDhiM2Qy
MGNmNTEwHhcNMjMwMTAxMDQ1NDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZjNmNTlhODRhMjExMmUxODU1MmY0NmU3YTA4MzdiZGU2OTAzNTk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuYYl6LPSKt6XULk8nEzVPVSA4XHL
sePvQOOjKMO2FOVPuFbqX2P8ECG0PNHiHFkZEq6KX6YBDs0OxljfMcdi5MWjZcRZ
wdjlIKmsE8RI3CY0zZzE5n89QWw3ApEp/uZdAfz2h/I9dbw75/B7eXMdx6dJ1jQs
auBT4wrD0BUtpU7x72uOXzqeogTyELdj1m4qALC3Nemrvgw0P+oggba2mkyohLK4
KSvlW+IFF8ugOyvjRVKWEORN8kp8b5cMAErue+t9Eh4jNsr1QOwM0ZZ+UyMP81AK
EpjBsO4BiJpPEsVzGaSFWxmOKf+26G6jHCpQRdCZcLOefS2D1ZTaAcAltQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH8/WahKIRLhhVL0bnoIN73mkDWZMB8GA1UdIwQY
MBaAFL0lKnXJYa0zj9kRR9Rh3Ys9IM9RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdlNVcWRjbGhyVE9QMlJGSDFHSGRpejBnejFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS9kMWM3MGUtMjI2YS00NzgxLWI2NjIt
NzQxYWI5Mjk5N2QwLzEvZno5WnFFb2hFdUdGVXZSdWVnZzN2ZWFRTlprLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS9kMWM3MGUtMjI2YS00NzgxLWI2NjItNzQxYWI5Mjk5N2Qw
LzEvdlNVcWRjbGhyVE9QMlJGSDFHSGRpejBnejFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBBbaaMA0G
CSqGSIb3DQEBCwUAA4IBAQCqgy16HmbF950c8ThyqH4rq2ILOTe6BDi57Ua/7nU7
mOv608ubqYuaWe7ehcJ/Tqd+FRRzvtksSHkHqxsWBdO17/fpiRzUP1Y6xyffIXX5
ZzDSdRMGGbqHFzV+UOaD5cYswXPbxLkIcv58yddkdKw48McNwHAZd5WmLrSERnju
ffZFTZFY0w9JggvbJQs0JWKw0HeKgWFfETzt6TmDRcuXRsw33R64qrtkGxBY6y2Z
pH+feQWUTWBQ5bfXCiapQICjMM9IELLf/oaS5b0LIGTiHWkTcUOpE1Jan/g42z5s
aW9yKc6TZ+FnRnz/8sl8D3Gj+NylVsZP70tIphBLMQt/
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:56 2024 by rpki-client on console-fra.rpki-client.org