Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/WmFK7U5aUiJOovs9Wj8WejPQQos.roa
File: WmFK7U5aUiJOovs9Wj8WejPQQos.roa (raw, json)
Hash identifier: /lIc9KAipljruUR91CQjIAtNEP7htrrnnU3Ey9q3u1Y=
Subject key identifier: 5A:61:4A:ED:4E:5A:52:22:4E:A2:FB:3D:5A:3F:16:7A:33:D0:42:8B
Certificate issuer: /CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Certificate serial: 01914B0B55923C7DFD212114B95BA07EEF01
Authority key identifier: 2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/WmFK7U5aUiJOovs9Wj8WejPQQos.roa
Signing time: Tue 13 Aug 2024 09:21:59 +0000
ROA not before: Tue 13 Aug 2024 09:21:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 5.249.184.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 17 Oct 2024 06:45:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:4b:0b:55:92:3c:7d:fd:21:21:14:b9:5b:a0:7e:ef:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Validity
Not Before: Aug 13 09:21:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a614aed4e5a52224ea2fb3d5a3f167a33d0428b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e6:9e:ea:94:8d:98:b6:8d:a9:2f:cb:cc:0a:
12:76:79:1b:e4:f2:87:98:e0:3d:02:2c:88:9e:c0:
86:94:6e:30:8b:97:31:ce:21:af:d7:8e:ac:60:dd:
ee:88:8a:21:76:77:b3:e8:24:25:1c:9e:e0:ac:ce:
c9:73:83:bb:9c:df:e3:bb:b9:20:ec:64:cd:35:05:
1c:c5:57:78:71:cd:ae:82:f5:b7:38:9e:81:0a:07:
5f:b0:73:92:98:4a:94:e1:f5:92:ad:74:ea:6d:a7:
ca:7a:fd:7e:37:e6:72:52:ae:36:d5:67:a6:1a:d6:
e7:77:a2:44:56:6d:de:5c:40:85:af:30:00:ff:82:
ac:2c:69:04:68:70:16:cb:14:70:64:ea:d5:e8:8d:
2f:6a:10:d7:a7:ac:24:10:fc:16:eb:89:52:70:c1:
83:27:13:0a:4e:af:0b:b5:26:fc:5a:35:5f:cd:39:
31:20:38:0f:35:b1:66:6c:6a:9d:e3:41:7d:b6:7f:
aa:72:a7:3c:ab:5e:ab:24:23:bc:7d:36:8a:60:45:
c5:55:18:9f:2b:0d:2b:30:c2:57:bd:10:84:59:84:
a4:8a:2e:89:fa:da:1c:0d:ed:6d:f1:49:29:a1:7a:
17:27:35:15:4f:82:8e:13:47:d1:38:99:1b:eb:04:
71:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:61:4A:ED:4E:5A:52:22:4E:A2:FB:3D:5A:3F:16:7A:33:D0:42:8B
X509v3 Authority Key Identifier:
keyid:2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/WmFK7U5aUiJOovs9Wj8WejPQQos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.249.184.0/22
Signature Algorithm: sha256WithRSAEncryption
26:1d:9a:0a:8e:69:cb:bd:bf:3f:96:37:b9:ed:ff:1c:7e:f8:
2a:be:0f:eb:1f:e5:1c:30:a6:43:43:26:0f:23:c1:c6:2a:e3:
69:cd:37:8c:82:18:8a:3d:97:6a:bc:7d:76:1a:f4:4f:e7:7c:
8a:f5:9c:ca:a1:72:ce:57:92:7d:9f:7e:60:14:40:38:a9:41:
0d:6b:87:58:63:42:df:8e:59:f2:fa:8a:e3:8a:c6:1d:3e:b9:
51:91:45:e6:90:39:09:9e:13:09:a5:fa:86:2c:40:da:c0:f6:
ef:a5:29:45:2e:22:27:b6:7e:61:16:7c:9b:e7:da:3e:fe:5e:
b2:25:33:5c:a9:8e:21:88:9c:ff:cc:e6:fa:ed:ad:80:45:e7:
b0:97:d0:59:21:c3:c2:33:11:b0:df:42:d7:34:92:37:9c:25:
58:63:16:d2:f7:1b:9f:4f:0a:e2:2a:6a:70:3d:80:6e:73:10:
57:ec:a5:fe:41:6d:00:1d:6e:68:77:51:d9:59:40:3d:ed:b4:
e7:c6:ea:a9:2e:ba:16:51:2e:29:a9:cc:18:b1:aa:5f:93:6b:
41:20:38:30:6c:65:1e:ea:db:61:74:d0:46:c3:4e:92:1e:94:
a6:c0:c6:1e:25:c1:a4:fc:4c:33:68:2b:54:41:ee:e5:a1:fd:
d9:1d:01:56
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZFLC1WSPH39ISEUuVugfu8BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJlODI5NjNmZjFhYTcwYWIxMGQxZDMzZTg2YjFkNmQ0OTRk
NmNlNTEwHhcNMjQwODEzMDkyMTU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YTYxNGFlZDRlNWE1MjIyNGVhMmZiM2Q1YTNmMTY3YTMzZDA0MjhiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq+ae6pSNmLaNqS/LzAoSdnkb5PKH
mOA9AiyInsCGlG4wi5cxziGv146sYN3uiIohdnez6CQlHJ7grM7Jc4O7nN/ju7kg
7GTNNQUcxVd4cc2ugvW3OJ6BCgdfsHOSmEqU4fWSrXTqbafKev1+N+ZyUq421Wem
Gtbnd6JEVm3eXECFrzAA/4KsLGkEaHAWyxRwZOrV6I0vahDXp6wkEPwW64lScMGD
JxMKTq8LtSb8WjVfzTkxIDgPNbFmbGqd40F9tn+qcqc8q16rJCO8fTaKYEXFVRif
Kw0rMMJXvRCEWYSkii6J+tocDe1t8UkpoXoXJzUVT4KOE0fROJkb6wRxiwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFphSu1OWlIiTqL7PVo/Fnoz0EKLMB8GA1UdIwQY
MBaAFC6Clj/xqnCrENHTPoax1tSU1s5RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTG9LV1BfR3FjS3NRMGRNLWhySFcxSlRXemxFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi85NTdjNjgtNmYyNy00MGVkLWFiZWQt
ZGY2NGYwZTgyMzYwLzEvV21GSzdVNWFVaUpPb3ZzOVdqOFdlalBRUW9zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi85NTdjNjgtNmYyNy00MGVkLWFiZWQtZGY2NGYwZTgyMzYw
LzEvTG9LV1BfR3FjS3NRMGRNLWhySFcxSlRXemxFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCBfm4MA0G
CSqGSIb3DQEBCwUAA4IBAQAmHZoKjmnLvb8/lje57f8cfvgqvg/rH+UcMKZDQyYP
I8HGKuNpzTeMghiKPZdqvH12GvRP53yK9ZzKoXLOV5J9n35gFEA4qUENa4dYY0Lf
jlny+orjisYdPrlRkUXmkDkJnhMJpfqGLEDawPbvpSlFLiIntn5hFnyb59o+/l6y
JTNcqY4hiJz/zOb67a2AReewl9BZIcPCMxGw30LXNJI3nCVYYxbS9xufTwriKmpw
PYBucxBX7KX+QW0AHW5od1HZWUA97bTnxuqpLroWUS4pqcwYsapfk2tBIDgwbGUe
6tthdNBGw06SHpSmwMYeJcGk/EwzaCtUQe7lof3ZHQFW
-----END CERTIFICATE-----
Generated at Thu Oct 17 08:44:51 2024 by rpki-client on console-ams.rpki-client.org