Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/de9615-0bc0-4e5e-8318-fb1d992de001/1/5elLK-6xVsufyaDGHh3OyrVy9V4.roa
File: 5elLK-6xVsufyaDGHh3OyrVy9V4.roa (raw, json)
Hash identifier: Um8QldmE9Pw2QwjIzLHQbdXL7KlRavK2Jyi1UFVZs1k=
Subject key identifier: E5:E9:4B:2B:EE:B1:56:CB:9F:C9:A0:C6:1E:1D:CE:CA:B5:72:F5:5E
Certificate issuer: /CN=aa8551e851e69db165c6c632af45f21715512939
Certificate serial: 01856F94C1BE7045118CE59DFDFF560FE990
Authority key identifier: AA:85:51:E8:51:E6:9D:B1:65:C6:C6:32:AF:45:F2:17:15:51:29:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qoVR6FHmnbFlxsYyr0XyFxVRKTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/de9615-0bc0-4e5e-8318-fb1d992de001/1/5elLK-6xVsufyaDGHh3OyrVy9V4.roa
Signing time: Sun 01 Jan 2023 23:04:57 +0000
ROA not before: Sun 01 Jan 2023 23:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 176.221.80.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:c1:be:70:45:11:8c:e5:9d:fd:ff:56:0f:e9:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa8551e851e69db165c6c632af45f21715512939
Validity
Not Before: Jan 1 23:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e5e94b2beeb156cb9fc9a0c61e1dcecab572f55e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:4d:f5:91:9f:b0:99:b3:63:09:92:36:ab:45:
7d:ef:c6:55:3a:5e:2b:1d:ff:0e:ea:55:ea:46:8f:
22:40:59:c8:42:e3:94:1b:58:3d:c8:39:6a:b6:a5:
23:8c:eb:78:c2:41:8a:3f:37:bc:98:90:8a:d7:f0:
21:76:8a:7c:f2:41:99:a8:1c:ea:26:0e:13:b3:85:
40:f7:aa:08:d4:9c:d9:7a:53:af:50:34:68:3d:62:
51:d6:74:03:5b:c1:0d:4f:a3:3d:0b:80:70:d8:02:
8e:0c:32:13:46:32:be:67:40:d7:be:78:c2:99:b8:
79:4d:47:52:9e:e4:bb:60:d8:60:d5:aa:bb:9b:b5:
b4:49:69:bb:0f:10:9f:c0:19:bf:b6:c8:74:72:03:
38:2f:aa:78:6a:3c:e1:89:39:7a:6b:26:c6:9b:f6:
24:d8:67:87:7c:c0:ce:41:13:28:e4:05:42:1f:0b:
dc:e9:b4:95:76:16:0e:f9:b1:2d:b7:99:05:23:bf:
f1:e7:1b:ef:1c:85:fc:a8:19:3d:f4:c6:51:89:98:
df:ac:bf:af:2e:55:84:4c:99:a1:8f:f9:d8:45:7c:
49:56:85:82:b8:3e:8c:1d:00:99:98:29:44:92:45:
05:53:9f:eb:98:1c:6e:d2:de:d4:23:90:9d:9b:cb:
81:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:E9:4B:2B:EE:B1:56:CB:9F:C9:A0:C6:1E:1D:CE:CA:B5:72:F5:5E
X509v3 Authority Key Identifier:
keyid:AA:85:51:E8:51:E6:9D:B1:65:C6:C6:32:AF:45:F2:17:15:51:29:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qoVR6FHmnbFlxsYyr0XyFxVRKTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/de9615-0bc0-4e5e-8318-fb1d992de001/1/5elLK-6xVsufyaDGHh3OyrVy9V4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/de9615-0bc0-4e5e-8318-fb1d992de001/1/qoVR6FHmnbFlxsYyr0XyFxVRKTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.221.80.0/22
Signature Algorithm: sha256WithRSAEncryption
61:92:8d:d5:ef:f1:a6:b8:57:3d:f7:3c:b8:3d:67:62:22:25:
bb:ee:7d:5b:e6:bd:17:fb:f9:6f:ac:ef:dd:12:63:de:d2:c5:
d0:2a:b7:c2:16:59:5e:53:2d:00:8d:66:e5:fd:34:8c:cd:04:
64:c5:3f:d3:c8:a6:36:af:b7:09:73:37:26:ee:ae:33:e0:53:
34:e0:9b:b4:0a:02:73:d8:10:14:e7:c6:1c:52:15:d6:86:89:
0b:77:b3:be:ce:72:5e:51:12:86:ca:a8:97:85:a0:8e:2b:4b:
32:ae:89:7a:3c:41:f2:a9:60:7a:d8:5e:d7:8a:92:7a:bf:bc:
be:05:15:45:f7:ae:a0:6f:5d:61:52:eb:d5:49:11:52:08:08:
6e:15:22:96:6c:62:92:ca:dc:40:54:4a:cb:ad:da:72:de:cb:
41:d0:c1:9d:5e:10:e4:f0:7e:15:80:bb:45:32:32:39:0e:21:
b4:97:44:2e:5d:e0:ae:1a:c2:d2:31:2a:21:ab:03:3a:39:d1:
5b:31:6f:36:32:9d:a0:2e:6f:20:10:06:5e:76:bb:8f:07:a9:
2d:5b:e4:9c:99:e3:70:a8:da:47:16:3e:58:9a:ac:26:b5:60:
77:8b:b8:6b:b8:2f:48:56:a9:bc:ce:07:18:3d:71:d4:fb:5c:
7e:b3:b1:23
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvlMG+cEURjOWd/f9WD+mQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhODU1MWU4NTFlNjlkYjE2NWM2YzYzMmFmNDVmMjE3MTU1
MTI5MzkwHhcNMjMwMTAxMjMwNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNWU5NGIyYmVlYjE1NmNiOWZjOWEwYzYxZTFkY2VjYWI1NzJmNTVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2E31kZ+wmbNjCZI2q0V978ZVOl4r
Hf8O6lXqRo8iQFnIQuOUG1g9yDlqtqUjjOt4wkGKPze8mJCK1/Ahdop88kGZqBzq
Jg4Ts4VA96oI1JzZelOvUDRoPWJR1nQDW8ENT6M9C4Bw2AKODDITRjK+Z0DXvnjC
mbh5TUdSnuS7YNhg1aq7m7W0SWm7DxCfwBm/tsh0cgM4L6p4ajzhiTl6aybGm/Yk
2GeHfMDOQRMo5AVCHwvc6bSVdhYO+bEtt5kFI7/x5xvvHIX8qBk99MZRiZjfrL+v
LlWETJmhj/nYRXxJVoWCuD6MHQCZmClEkkUFU5/rmBxu0t7UI5Cdm8uBGQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOXpSyvusVbLn8mgxh4dzsq1cvVeMB8GA1UdIwQY
MBaAFKqFUehR5p2xZcbGMq9F8hcVUSk5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcW9WUjZGSG1uYkZseHNZeXIwWHlGeFZSS1RrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi9kZTk2MTUtMGJjMC00ZTVlLTgzMTgt
ZmIxZDk5MmRlMDAxLzEvNWVsTEstNnhWc3VmeWFER0hoM095clZ5OVY0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMi9kZTk2MTUtMGJjMC00ZTVlLTgzMTgtZmIxZDk5MmRlMDAx
LzEvcW9WUjZGSG1uYkZseHNZeXIwWHlGeFZSS1RrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCsN1QMA0G
CSqGSIb3DQEBCwUAA4IBAQBhko3V7/GmuFc99zy4PWdiIiW77n1b5r0X+/lvrO/d
EmPe0sXQKrfCFlleUy0AjWbl/TSMzQRkxT/TyKY2r7cJczcm7q4z4FM04Ju0CgJz
2BAU58YcUhXWhokLd7O+znJeURKGyqiXhaCOK0syrol6PEHyqWB62F7XipJ6v7y+
BRVF966gb11hUuvVSRFSCAhuFSKWbGKSytxAVErLrdpy3stB0MGdXhDk8H4VgLtF
MjI5DiG0l0QuXeCuGsLSMSohqwM6OdFbMW82Mp2gLm8gEAZedruPB6ktW+ScmeNw
qNpHFj5YmqwmtWB3i7hruC9IVqm8zgcYPXHU+1x+s7Ej
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:07 2024 by rpki-client on console-fra.rpki-client.org