Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/a3d825-d7a7-47cc-a0ca-9666edeee1e3/1/LSJue9OgIna7Mlq08SV8tZG87Es.roa
File: LSJue9OgIna7Mlq08SV8tZG87Es.roa (raw, json)
Hash identifier: NcdG3uqESp4lhYSZzUFfDm2Bad2hEiZ6rHYLitKkIko=
Subject key identifier: 2D:22:6E:7B:D3:A0:22:76:BB:32:5A:B4:F1:25:7C:B5:91:BC:EC:4B
Certificate issuer: /CN=5a8a52dc998f1148c078290bdbb4d3cdc3f03cbc
Certificate serial: 018CC56E7DA95DA02D61509D0DD3BC077237
Authority key identifier: 5A:8A:52:DC:99:8F:11:48:C0:78:29:0B:DB:B4:D3:CD:C3:F0:3C:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WopS3JmPEUjAeCkL27TTzcPwPLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/a3d825-d7a7-47cc-a0ca-9666edeee1e3/1/LSJue9OgIna7Mlq08SV8tZG87Es.roa
Signing time: Mon 01 Jan 2024 14:30:01 +0000
ROA not before: Mon 01 Jan 2024 14:30:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6830
IP address blocks: 194.33.186.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 Feb 2024 12:41:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:7d:a9:5d:a0:2d:61:50:9d:0d:d3:bc:07:72:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a8a52dc998f1148c078290bdbb4d3cdc3f03cbc
Validity
Not Before: Jan 1 14:30:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2d226e7bd3a02276bb325ab4f1257cb591bcec4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ad:c6:1a:a1:aa:70:8c:94:d0:87:29:47:5e:
62:11:be:a9:92:a3:eb:f0:a2:af:5f:f6:49:a0:4d:
0c:c6:8d:3f:de:14:8a:d4:55:53:7a:a1:95:f5:1e:
21:cc:95:bc:5d:17:09:08:8f:0d:86:f8:11:d8:9c:
02:2e:06:71:9c:47:be:58:14:e1:d3:68:cf:8f:d3:
d8:63:12:bf:9c:29:51:29:32:94:78:7f:b1:22:a5:
22:fa:01:a8:84:f9:cc:fa:63:b7:de:64:a1:4f:0b:
78:22:a4:b9:f1:28:4c:32:ee:a7:9d:b7:dd:cc:93:
b9:91:cf:4e:10:cf:20:85:42:2b:fc:26:e9:52:a5:
b2:95:ea:6a:c7:45:f8:d4:5e:ab:c9:cf:47:5d:61:
d1:71:4e:78:82:13:17:6d:07:63:0a:67:92:65:65:
b9:f0:f5:aa:8e:86:7f:9c:90:36:05:7c:88:6e:58:
6f:5e:0d:ee:a1:a9:53:0c:1a:9f:a5:01:41:6e:6a:
ac:b6:c4:d6:0d:b9:87:c8:94:27:f1:ff:02:f8:b6:
3d:6d:a4:27:17:d8:35:b8:ea:8a:e0:ba:1c:00:45:
f6:36:af:3e:11:ec:cf:66:5c:3c:20:3a:6b:c0:a3:
e8:9e:42:cd:61:86:a5:1b:9a:95:5b:4f:5e:0c:10:
c0:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:22:6E:7B:D3:A0:22:76:BB:32:5A:B4:F1:25:7C:B5:91:BC:EC:4B
X509v3 Authority Key Identifier:
keyid:5A:8A:52:DC:99:8F:11:48:C0:78:29:0B:DB:B4:D3:CD:C3:F0:3C:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WopS3JmPEUjAeCkL27TTzcPwPLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a3d825-d7a7-47cc-a0ca-9666edeee1e3/1/LSJue9OgIna7Mlq08SV8tZG87Es.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/a3d825-d7a7-47cc-a0ca-9666edeee1e3/1/WopS3JmPEUjAeCkL27TTzcPwPLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.33.186.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:ec:d8:73:fc:70:48:89:f7:9a:a0:6b:9d:31:84:cc:45:46:
a8:18:08:ea:a8:e4:52:94:ff:5b:d9:b1:d3:27:0f:96:9d:94:
3c:f7:07:d6:b9:98:c8:bd:05:26:3f:15:e5:1d:8c:20:cd:d2:
cb:22:05:58:84:7b:ea:10:94:6c:bb:69:3d:12:e5:40:1d:67:
d7:1e:80:2e:2d:47:32:17:08:ff:7b:ff:c2:91:6c:10:02:49:
1a:01:74:1a:30:9b:b7:6a:89:ee:bf:80:f2:37:51:f2:86:96:
d3:99:9a:80:24:b0:37:11:28:a0:97:70:d1:b0:fc:4c:90:09:
44:fa:32:46:7a:5c:34:95:27:88:12:e9:8e:52:33:38:71:b7:
d7:69:2e:e1:43:66:6a:cc:ed:85:d3:17:b0:2e:21:f8:01:43:
58:ea:cb:80:0c:de:e3:f5:5f:41:0f:f6:97:a2:7a:21:cd:44:
0b:ba:77:bb:85:f9:68:9b:bf:31:e5:b0:cb:40:60:89:fb:df:
f7:18:65:fe:98:71:31:e0:a1:f3:ea:7c:81:69:e0:b8:6e:68:
b0:74:db:34:3d:93:98:ec:fd:09:30:01:93:a0:7d:15:5a:32:
3a:33:a8:3b:3e:e2:53:ba:1c:a2:06:f6:5c:b3:85:f5:a9:7c:
dd:c1:f3:a5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzFbn2pXaAtYVCdDdO8B3I3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVhOGE1MmRjOTk4ZjExNDhjMDc4MjkwYmRiYjRkM2NkYzNm
MDNjYmMwHhcNMjQwMTAxMTQzMDAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZDIyNmU3YmQzYTAyMjc2YmIzMjVhYjRmMTI1N2NiNTkxYmNlYzRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApq3GGqGqcIyU0IcpR15iEb6pkqPr
8KKvX/ZJoE0Mxo0/3hSK1FVTeqGV9R4hzJW8XRcJCI8NhvgR2JwCLgZxnEe+WBTh
02jPj9PYYxK/nClRKTKUeH+xIqUi+gGohPnM+mO33mShTwt4IqS58ShMMu6nnbfd
zJO5kc9OEM8ghUIr/CbpUqWylepqx0X41F6ryc9HXWHRcU54ghMXbQdjCmeSZWW5
8PWqjoZ/nJA2BXyIblhvXg3uoalTDBqfpQFBbmqstsTWDbmHyJQn8f8C+LY9baQn
F9g1uOqK4LocAEX2Nq8+EezPZlw8IDprwKPonkLNYYalG5qVW09eDBDAZQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC0ibnvToCJ2uzJatPElfLWRvOxLMB8GA1UdIwQY
MBaAFFqKUtyZjxFIwHgpC9u0083D8Dy8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV29wUzNKbVBFVWpBZUNrTDI3VFR6Y1B3UEx3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9hM2Q4MjUtZDdhNy00N2NjLWEwY2Et
OTY2NmVkZWVlMWUzLzEvTFNKdWU5T2dJbmE3TWxxMDhTVjh0Wkc4N0VzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS9hM2Q4MjUtZDdhNy00N2NjLWEwY2EtOTY2NmVkZWVlMWUz
LzEvV29wUzNKbVBFVWpBZUNrTDI3VFR6Y1B3UEx3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwiG6MA0G
CSqGSIb3DQEBCwUAA4IBAQAu7Nhz/HBIifeaoGudMYTMRUaoGAjqqORSlP9b2bHT
Jw+WnZQ89wfWuZjIvQUmPxXlHYwgzdLLIgVYhHvqEJRsu2k9EuVAHWfXHoAuLUcy
Fwj/e//CkWwQAkkaAXQaMJu3aonuv4DyN1HyhpbTmZqAJLA3ESigl3DRsPxMkAlE
+jJGelw0lSeIEumOUjM4cbfXaS7hQ2ZqzO2F0xewLiH4AUNY6suADN7j9V9BD/aX
onohzUQLune7hflom78x5bDLQGCJ+9/3GGX+mHEx4KHz6nyBaeC4bmiwdNs0PZOY
7P0JMAGToH0VWjI6M6g7PuJTuhyiBvZcs4X1qXzdwfOl
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:34 2024 by rpki-client on console-fra.rpki-client.org