Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/TNhPxxGR1MZrqWJl7fZHV8REY48.roa
File: TNhPxxGR1MZrqWJl7fZHV8REY48.roa (raw, json)
Hash identifier: iakmQGWPBPaXc2robQhGx2qu67bPWRKcg8kMrFc0FA4=
Subject key identifier: 4C:D8:4F:C7:11:91:D4:C6:6B:A9:62:65:ED:F6:47:57:C4:44:63:8F
Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Certificate serial: 018CC9E32FCBC1F648FD9AF42B84C478BA24
Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/TNhPxxGR1MZrqWJl7fZHV8REY48.roa
Signing time: Tue 02 Jan 2024 11:15:58 +0000
ROA not before: Tue 02 Jan 2024 11:15:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204104
IP address blocks: 5.57.33.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:31:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:e3:2f:cb:c1:f6:48:fd:9a:f4:2b:84:c4:78:ba:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Validity
Not Before: Jan 2 11:15:58 2024 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4cd84fc71191d4c66ba96265edf64757c444638f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:dd:ad:0e:f3:37:de:95:86:31:88:0d:53:28:
12:a1:01:2e:5b:4d:b0:ee:5c:22:99:27:ad:da:05:
22:1f:f6:7f:3d:ad:f6:c5:a5:3b:bd:45:3c:60:02:
ff:be:84:ae:25:87:68:25:fa:2b:a7:02:c0:43:13:
a7:f8:af:ba:12:e4:b9:7c:b0:ab:e8:16:88:2e:0b:
c8:a8:ac:84:50:e9:fc:02:5a:1e:a1:87:5f:f0:82:
c8:f7:39:1a:5b:96:b6:d2:fd:36:b0:7d:6d:43:32:
ea:38:5f:94:26:04:5a:e6:bd:e3:18:9b:bf:b2:7f:
7a:91:2c:c7:f3:74:4a:a9:a2:c4:de:b2:82:47:13:
7f:09:cd:55:af:8a:ab:0a:b0:59:71:a6:c2:d3:80:
ce:2c:17:89:bc:9b:b0:31:51:5a:37:28:da:c3:c7:
eb:95:67:63:14:ca:19:4f:42:c5:0a:b5:5e:7c:05:
d0:25:5b:2e:d4:d2:b1:f4:d4:2b:14:30:11:f2:10:
42:bb:b9:72:72:97:3f:d5:d8:8f:a1:1e:8c:41:52:
19:ec:56:82:53:8b:ab:0c:71:56:0a:14:a6:a7:9f:
bb:fd:57:b2:ab:d1:b6:70:7d:96:b5:d9:fe:12:94:
9e:c6:dd:ba:6c:4a:cb:8b:3e:b7:20:2c:27:8f:0f:
ba:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:D8:4F:C7:11:91:D4:C6:6B:A9:62:65:ED:F6:47:57:C4:44:63:8F
X509v3 Authority Key Identifier:
keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/TNhPxxGR1MZrqWJl7fZHV8REY48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.33.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:fe:3b:81:fc:30:e4:43:22:be:54:1d:9e:4d:c0:72:af:40:
5e:05:4e:2d:c0:bd:b1:a8:74:8b:21:96:45:c0:d2:37:54:97:
ad:c2:70:97:9f:6a:48:34:19:47:fe:f3:9e:ad:aa:bd:e0:de:
2e:88:87:a8:31:28:f1:8a:69:0d:70:5c:1a:0e:39:65:22:25:
cd:8b:ef:35:89:3e:c4:2f:48:48:7b:66:82:f7:f3:fb:c1:fc:
e4:f6:8b:ef:1c:fd:08:21:e1:8c:ba:31:85:4e:4a:e7:91:cd:
bc:09:96:38:a2:62:f2:ab:d4:d0:06:b0:6e:65:1c:1b:75:3e:
7d:0d:6a:a4:fd:77:18:6c:31:2c:95:25:0d:b4:6f:1e:7f:5c:
d7:6b:06:a4:b7:fd:69:35:21:51:35:cf:ef:00:1f:69:24:87:
fc:90:a3:f5:09:9c:58:62:aa:64:c5:f1:ea:09:18:80:8f:bf:
45:8f:32:d4:bc:f1:98:00:ba:e3:99:c8:25:cb:d4:f1:2f:0e:
15:40:a7:41:e5:a4:c1:3b:9e:02:80:7e:db:50:18:01:24:e9:
99:7e:73:38:c4:b6:0f:6a:6e:ce:b3:e3:89:bb:a2:f8:56:0d:
e0:f5:3f:0c:82:f3:73:84:ce:d2:e9:47:f3:b8:02:13:7f:71:
41:53:54:52
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzJ4y/LwfZI/Zr0K4TEeLokMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYxMzUzMzM5OWY1NWViNTJlNmIyMjAwYzdjYWU0MjcyYjc0
ZDY0NjQwHhcNMjQwMTAyMTExNTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0Y2Q4NGZjNzExOTFkNGM2NmJhOTYyNjVlZGY2NDc1N2M0NDQ2MzhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAut2tDvM33pWGMYgNUygSoQEuW02w
7lwimSet2gUiH/Z/Pa32xaU7vUU8YAL/voSuJYdoJforpwLAQxOn+K+6EuS5fLCr
6BaILgvIqKyEUOn8AloeoYdf8ILI9zkaW5a20v02sH1tQzLqOF+UJgRa5r3jGJu/
sn96kSzH83RKqaLE3rKCRxN/Cc1Vr4qrCrBZcabC04DOLBeJvJuwMVFaNyjaw8fr
lWdjFMoZT0LFCrVefAXQJVsu1NKx9NQrFDAR8hBCu7lycpc/1diPoR6MQVIZ7FaC
U4urDHFWChSmp5+7/Veyq9G2cH2Wtdn+EpSext26bErLiz63ICwnjw+60QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEzYT8cRkdTGa6liZe32R1fERGOPMB8GA1UdIwQY
MBaAFPE1MzmfVetS5rIgDHyuQnK3TWRkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOFRVek9aOVY2MUxtc2lBTWZLNUNjcmROWkdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi84NDRlZWItY2RmMS00N2YxLWJjZmEt
OTg5MTY2ODgxOTY5LzEvVE5oUHh4R1IxTVpycVdKbDdmWkhWOFJFWTQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi84NDRlZWItY2RmMS00N2YxLWJjZmEtOTg5MTY2ODgxOTY5
LzEvOFRVek9aOVY2MUxtc2lBTWZLNUNjcmROWkdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABTkhMA0G
CSqGSIb3DQEBCwUAA4IBAQBL/juB/DDkQyK+VB2eTcByr0BeBU4twL2xqHSLIZZF
wNI3VJetwnCXn2pINBlH/vOeraq94N4uiIeoMSjximkNcFwaDjllIiXNi+81iT7E
L0hIe2aC9/P7wfzk9ovvHP0IIeGMujGFTkrnkc28CZY4omLyq9TQBrBuZRwbdT59
DWqk/XcYbDEslSUNtG8ef1zXawakt/1pNSFRNc/vAB9pJIf8kKP1CZxYYqpkxfHq
CRiAj79FjzLUvPGYALrjmcgly9TxLw4VQKdB5aTBO54CgH7bUBgBJOmZfnM4xLYP
am7Os+OJu6L4Vg3g9T8MgvNzhM7S6UfzuAITf3FBU1RS
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:29 2024 by rpki-client on console-fra.rpki-client.org