Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/JSJsJh0zhIVEkoXUc6JjvlGoX_E.roa
File: JSJsJh0zhIVEkoXUc6JjvlGoX_E.roa (raw, json)
Hash identifier: 5htGVMNa+8V+8KLNC6qY+/6Q7z9lqp1ZXCsvhJt8Wzc=
Subject key identifier: 25:22:6C:26:1D:33:84:85:44:92:85:D4:73:A2:63:BE:51:A8:5F:F1
Certificate issuer: /CN=b0b5a80a7106e0a4b8545c8150bb72c699fcc9a0
Certificate serial: 018A70BAA38CD8056EA889703F78A035CEA9
Authority key identifier: B0:B5:A8:0A:71:06:E0:A4:B8:54:5C:81:50:BB:72:C6:99:FC:C9:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sLWoCnEG4KS4VFyBULtyxpn8yaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/JSJsJh0zhIVEkoXUc6JjvlGoX_E.roa
Signing time: Thu 07 Sep 2023 17:39:54 +0000
ROA not before: Thu 07 Sep 2023 17:39:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205463
IP address blocks: 193.164.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:70:ba:a3:8c:d8:05:6e:a8:89:70:3f:78:a0:35:ce:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0b5a80a7106e0a4b8545c8150bb72c699fcc9a0
Validity
Not Before: Sep 7 17:39:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=25226c261d338485449285d473a263be51a85ff1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:db:fa:13:32:5e:f1:02:b4:0d:48:e4:df:7a:
ba:be:bc:d8:e3:aa:36:95:8c:66:58:db:e3:1c:8e:
63:fe:31:4c:5a:39:94:20:b5:e3:55:79:68:56:48:
ab:e8:43:8b:2c:ff:ef:a8:a6:d1:89:30:db:51:fd:
eb:b8:11:35:49:7c:7e:b5:03:0d:33:31:3e:ab:86:
41:9b:de:2d:93:13:7d:9a:8e:49:03:c2:51:7b:12:
6a:d8:98:1f:47:6d:82:ae:28:89:f1:c6:68:9b:26:
f9:6e:cc:09:91:ff:cc:4d:f9:d8:0a:da:38:5a:99:
3d:23:9f:db:93:ee:7f:40:5a:7c:4e:77:42:95:14:
b0:10:fa:cb:ef:a3:85:dc:1b:4a:5e:aa:15:30:a6:
64:d5:ff:49:11:2c:84:44:93:a3:a2:b2:a2:3b:d1:
ec:c5:0b:1e:86:61:2e:fb:eb:d5:98:bf:49:0d:72:
c9:e0:c9:f5:22:ab:eb:09:4f:dc:ea:15:18:6c:94:
86:8d:8e:45:95:18:e4:3b:6d:26:bb:c9:7e:87:bd:
48:3a:03:bf:89:30:ae:b9:3a:44:58:6f:ea:fc:5b:
31:1e:f7:1c:93:32:97:05:ba:0a:58:dc:61:51:06:
4f:84:e4:eb:9a:a1:46:98:30:d1:ea:30:8d:52:38:
57:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:22:6C:26:1D:33:84:85:44:92:85:D4:73:A2:63:BE:51:A8:5F:F1
X509v3 Authority Key Identifier:
keyid:B0:B5:A8:0A:71:06:E0:A4:B8:54:5C:81:50:BB:72:C6:99:FC:C9:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sLWoCnEG4KS4VFyBULtyxpn8yaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/JSJsJh0zhIVEkoXUc6JjvlGoX_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f153dc-cbfb-4a4f-80d2-745e08fe58c6/1/sLWoCnEG4KS4VFyBULtyxpn8yaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.164.5.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:2c:95:fa:a1:fe:ad:07:ce:9b:37:29:05:e9:c3:90:3e:36:
42:44:35:d2:4f:42:6d:97:da:6c:c9:18:bc:84:65:fd:06:4c:
57:dd:8d:48:e2:08:8f:92:33:f6:4e:d6:f5:5a:34:90:33:17:
df:75:9b:0a:b9:ed:c4:4e:83:31:21:a6:e6:02:f3:09:cc:b0:
61:4c:c9:27:e4:86:53:b4:11:5a:79:f7:9b:d3:6a:75:29:96:
8d:b3:a1:aa:bb:d2:19:7c:5a:20:29:2a:cf:7c:c4:81:c8:d3:
2b:e4:81:d9:38:3a:9a:c5:24:4a:96:13:25:68:f1:f4:76:16:
1a:43:a2:22:77:25:72:b6:79:74:2c:87:f4:4b:06:e6:8b:e3:
e9:54:ca:fc:29:88:23:e4:2e:40:67:de:a0:f5:23:0a:27:08:
fd:fe:2a:4a:78:66:12:33:6a:7c:0d:c3:19:28:e2:4e:2b:68:
eb:d9:3a:a0:7f:30:f0:73:00:10:8b:16:d1:d5:1b:a9:f0:4d:
ff:68:18:1a:95:f9:c3:bf:d3:e4:35:60:09:40:d6:b0:6a:dd:
94:6a:ac:b1:0f:5f:5c:2c:9d:ef:0d:4b:d5:1b:04:53:42:2a:
ae:ad:2e:b8:32:e7:8a:8c:99:8a:27:89:c5:c6:36:e3:49:1b:
fa:a9:d2:5a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYpwuqOM2AVuqIlwP3igNc6pMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwYjVhODBhNzEwNmUwYTRiODU0NWM4MTUwYmI3MmM2OTlm
Y2M5YTAwHhcNMjMwOTA3MTczOTU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNTIyNmMyNjFkMzM4NDg1NDQ5Mjg1ZDQ3M2EyNjNiZTUxYTg1ZmYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmtv6EzJe8QK0DUjk33q6vrzY46o2
lYxmWNvjHI5j/jFMWjmUILXjVXloVkir6EOLLP/vqKbRiTDbUf3ruBE1SXx+tQMN
MzE+q4ZBm94tkxN9mo5JA8JRexJq2JgfR22CriiJ8cZomyb5bswJkf/MTfnYCto4
Wpk9I5/bk+5/QFp8TndClRSwEPrL76OF3BtKXqoVMKZk1f9JESyERJOjorKiO9Hs
xQsehmEu++vVmL9JDXLJ4Mn1IqvrCU/c6hUYbJSGjY5FlRjkO20mu8l+h71IOgO/
iTCuuTpEWG/q/FsxHvcckzKXBboKWNxhUQZPhOTrmqFGmDDR6jCNUjhX1QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCUibCYdM4SFRJKF1HOiY75RqF/xMB8GA1UdIwQY
MBaAFLC1qApxBuCkuFRcgVC7csaZ/MmgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc0xXb0NuRUc0S1M0VkZ5QlVMdHl4cG44eWFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi9mMTUzZGMtY2JmYi00YTRmLTgwZDIt
NzQ1ZTA4ZmU1OGM2LzEvSlNKc0poMHpoSVZFa29YVWM2Smp2bEdvWF9FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi9mMTUzZGMtY2JmYi00YTRmLTgwZDItNzQ1ZTA4ZmU1OGM2
LzEvc0xXb0NuRUc0S1M0VkZ5QlVMdHl4cG44eWFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwaQFMA0G
CSqGSIb3DQEBCwUAA4IBAQCyLJX6of6tB86bNykF6cOQPjZCRDXST0Jtl9psyRi8
hGX9BkxX3Y1I4giPkjP2Ttb1WjSQMxffdZsKue3EToMxIabmAvMJzLBhTMkn5IZT
tBFaefeb02p1KZaNs6Gqu9IZfFogKSrPfMSByNMr5IHZODqaxSRKlhMlaPH0dhYa
Q6IidyVytnl0LIf0Swbmi+PpVMr8KYgj5C5AZ96g9SMKJwj9/ipKeGYSM2p8DcMZ
KOJOK2jr2TqgfzDwcwAQixbR1Rup8E3/aBgalfnDv9PkNWAJQNawat2UaqyxD19c
LJ3vDUvVGwRTQiqurS64MueKjJmKJ4nFxjbjSRv6qdJa
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:32 2024 by rpki-client on console-fra.rpki-client.org