Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/M04YUkCCArZ3wW9lKpoXOmW60aw.roa
File: M04YUkCCArZ3wW9lKpoXOmW60aw.roa (raw, json)
Hash identifier: XnXAjMxbxBcILmez3uD0geX/3IRZiG3g+BZlKYdSEMI=
Subject key identifier: 33:4E:18:52:40:82:02:B6:77:C1:6F:65:2A:9A:17:3A:65:BA:D1:AC
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018B947AED9AB615A1D54B86ECE1E441434A
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/M04YUkCCArZ3wW9lKpoXOmW60aw.roa
Signing time: Fri 03 Nov 2023 09:19:26 +0000
ROA not before: Fri 03 Nov 2023 09:19:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29802
IP address blocks: 194.5.49.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:94:7a:ed:9a:b6:15:a1:d5:4b:86:ec:e1:e4:41:43:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Nov 3 09:19:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=334e1852408202b677c16f652a9a173a65bad1ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f3:e6:58:85:45:7d:80:f4:02:bc:f3:65:8d:
4e:b7:f0:40:7c:50:28:39:1b:c0:d3:52:f0:bd:47:
da:f5:71:0e:5b:52:a5:39:3a:30:6c:81:1e:64:89:
9f:bd:e1:54:a5:30:0a:99:3b:e4:03:0a:ec:f1:be:
85:9f:11:89:6f:15:fb:d1:0b:ba:7b:79:4a:f0:5b:
56:ac:8b:ad:16:72:1d:1e:71:e9:40:8c:4d:e0:cf:
b0:3b:70:31:84:76:4b:6d:8a:2e:19:ef:34:73:c9:
4a:9b:94:fe:b9:b8:84:98:97:d5:de:54:a1:41:93:
35:93:9a:3e:79:41:83:1d:be:47:34:ef:1f:75:79:
90:57:be:9e:c8:a2:7b:86:3b:e3:7e:8e:5b:48:a6:
dd:44:c1:b1:c3:bc:d3:e1:3c:88:0f:96:10:61:0f:
e6:91:44:f8:38:1b:10:59:94:fe:69:2c:3e:35:ab:
14:b1:fe:5f:21:97:3e:5e:66:3f:92:d7:05:f3:34:
4d:ce:ff:9c:28:df:10:c7:11:1b:ea:ab:c1:fd:df:
ac:6e:43:77:b2:cf:d4:69:5d:c4:0e:03:a3:3a:45:
bf:63:8d:8a:4f:d3:79:13:cb:48:6a:13:59:c8:bc:
f5:c4:35:e2:25:a7:63:af:1f:80:72:e2:2b:a2:06:
f6:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:4E:18:52:40:82:02:B6:77:C1:6F:65:2A:9A:17:3A:65:BA:D1:AC
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/M04YUkCCArZ3wW9lKpoXOmW60aw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.5.49.0/24
Signature Algorithm: sha256WithRSAEncryption
52:6f:5a:ca:c8:b6:42:5f:92:2d:a9:75:87:8a:c7:70:90:76:
9d:07:41:28:b3:33:e7:0e:87:0c:f9:29:d1:05:1a:d1:d3:63:
4e:e5:a0:00:68:16:e2:77:10:53:9e:9a:b8:77:f8:0b:50:fc:
a1:6a:6e:aa:9d:a7:4c:1c:cb:77:6b:68:99:ee:52:8d:ef:dd:
e9:69:04:03:2f:67:8d:e2:5f:d2:1e:8c:47:1d:70:d7:4d:d2:
70:8d:30:9f:6d:74:ce:c5:58:4d:78:d7:6c:1e:68:77:42:16:
2e:74:91:10:23:57:5b:d1:27:c5:55:ac:bd:7e:9f:24:8f:9d:
ae:16:7f:cb:db:c9:9a:26:1e:aa:aa:57:1c:7b:aa:ef:3e:53:
4a:0b:e0:f9:b6:4a:41:5d:1a:a9:33:35:a4:0b:17:55:ba:0b:
be:4a:f1:57:2d:18:ae:f4:ff:64:5d:32:2a:aa:15:11:e1:96:
3c:8c:5a:a2:3a:b5:9b:65:b2:80:ff:73:f5:3b:a1:4b:cd:6c:
d4:11:45:73:b3:2d:7b:9d:eb:57:94:1c:3f:48:a7:da:b5:4a:
94:e3:b1:9d:54:34:2c:43:cb:0f:a5:b2:24:30:2b:a1:aa:8c:
2b:f8:a9:36:1d:ce:19:28:db:09:ac:8a:e4:22:ea:d9:9e:51:
d0:9a:b7:05
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYuUeu2athWh1UuG7OHkQUNKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxNTUwMDljM2RlNDIxY2M0ZTY3YjlhOWFlNDIzYmIzNWRl
MGI5MjYwHhcNMjMxMTAzMDkxOTI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMzRlMTg1MjQwODIwMmI2NzdjMTZmNjUyYTlhMTczYTY1YmFkMWFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArfPmWIVFfYD0ArzzZY1Ot/BAfFAo
ORvA01LwvUfa9XEOW1KlOTowbIEeZImfveFUpTAKmTvkAwrs8b6FnxGJbxX70Qu6
e3lK8FtWrIutFnIdHnHpQIxN4M+wO3AxhHZLbYouGe80c8lKm5T+ubiEmJfV3lSh
QZM1k5o+eUGDHb5HNO8fdXmQV76eyKJ7hjvjfo5bSKbdRMGxw7zT4TyID5YQYQ/m
kUT4OBsQWZT+aSw+NasUsf5fIZc+XmY/ktcF8zRNzv+cKN8QxxEb6qvB/d+sbkN3
ss/UaV3EDgOjOkW/Y42KT9N5E8tIahNZyLz1xDXiJadjrx+AcuIrogb2GQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDNOGFJAggK2d8FvZSqaFzplutGsMB8GA1UdIwQY
MBaAFLFVAJw95CHMTme5qa5CO7Nd4LkmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYt
NzM4NTZhZjQ5ZjNlLzEvTTA0WVVrQ0NBclozd1c5bEtwb1hPbVc2MGF3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYtNzM4NTZhZjQ5ZjNl
LzEvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwgUxMA0G
CSqGSIb3DQEBCwUAA4IBAQBSb1rKyLZCX5ItqXWHisdwkHadB0EoszPnDocM+SnR
BRrR02NO5aAAaBbidxBTnpq4d/gLUPyham6qnadMHMt3a2iZ7lKN793paQQDL2eN
4l/SHoxHHXDXTdJwjTCfbXTOxVhNeNdsHmh3QhYudJEQI1db0SfFVay9fp8kj52u
Fn/L28maJh6qqlcce6rvPlNKC+D5tkpBXRqpMzWkCxdVugu+SvFXLRiu9P9kXTIq
qhUR4ZY8jFqiOrWbZbKA/3P1O6FLzWzUEUVzsy17netXlBw/SKfatUqU47GdVDQs
Q8sPpbIkMCuhqowr+Kk2Hc4ZKNsJrIrkIurZnlHQmrcF
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:51 2024 by rpki-client on console-ams.rpki-client.org