Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/5y53rzqv1yoKxIlH7OEga3EokUg.roa
File: 5y53rzqv1yoKxIlH7OEga3EokUg.roa (raw, json)
Hash identifier: E0ZQ0SqJ4RNrSspFGAaDXAf9UcC+Q+bGY3q7DTw4BRQ=
Subject key identifier: E7:2E:77:AF:3A:AF:D7:2A:0A:C4:89:47:EC:E1:20:6B:71:28:91:48
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018A4CDFB8C53BF0B653B1593286936CF711
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/5y53rzqv1yoKxIlH7OEga3EokUg.roa
Signing time: Thu 31 Aug 2023 18:34:04 +0000
ROA not before: Thu 31 Aug 2023 18:34:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 137331
IP address blocks: 89.37.196.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 21 Oct 2023 06:59:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4c:df:b8:c5:3b:f0:b6:53:b1:59:32:86:93:6c:f7:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Aug 31 18:34:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e72e77af3aafd72a0ac48947ece1206b71289148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:9f:a9:36:1d:2d:93:22:01:52:88:7b:a7:8d:
af:44:d2:2b:da:d9:f4:43:6a:9a:52:82:ae:ef:15:
99:89:a4:6d:18:b3:77:b8:64:57:8c:4e:91:d4:68:
3c:2c:57:04:6f:99:f7:2c:14:09:4e:5e:4a:e7:c0:
2c:13:37:f3:42:14:70:7c:33:1b:a8:e0:e8:b3:be:
45:90:6d:ad:16:d2:78:34:40:ef:e5:ce:6d:3a:1e:
09:da:71:e9:5d:14:09:09:e6:95:1c:86:f6:f8:00:
df:df:6b:16:28:87:34:29:ae:da:50:a7:f4:6d:f6:
6d:6c:61:48:da:5a:bf:65:b4:e6:37:b3:15:c3:62:
80:21:46:df:9f:82:0e:bd:0c:03:2b:f8:13:85:2b:
ee:1b:0c:e0:2c:cb:3b:7d:fd:cc:eb:14:47:46:0a:
ab:ce:c2:33:c1:9a:65:86:7d:e2:5e:02:1e:56:a9:
0e:9c:aa:25:9e:38:66:ff:7d:1c:89:e1:4a:6b:70:
05:ac:22:03:13:ad:8b:e3:c7:56:3e:4b:d9:2c:3f:
dc:7a:34:36:c4:48:1e:ad:0a:7d:7b:e9:b0:51:45:
af:b9:c3:2e:a9:a9:87:91:4b:97:fb:d7:2e:f9:a8:
f5:bc:f1:4d:e9:ab:29:26:46:c6:a4:18:8a:e0:ba:
42:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:2E:77:AF:3A:AF:D7:2A:0A:C4:89:47:EC:E1:20:6B:71:28:91:48
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/5y53rzqv1yoKxIlH7OEga3EokUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.37.196.0/24
Signature Algorithm: sha256WithRSAEncryption
58:1e:fa:a1:e6:4a:68:cb:e1:91:15:77:5f:6e:1c:65:b3:70:
6e:05:ac:a7:fe:98:9c:3b:4a:1b:d6:65:af:c4:4d:13:36:6b:
13:c6:5a:8e:48:90:67:3a:56:7e:40:96:d1:f2:51:e3:b2:05:
e2:cb:20:a5:58:18:50:82:f3:fe:15:28:39:f3:cf:c0:25:e5:
b3:28:99:e9:d9:9a:81:b9:8d:c0:4c:2b:48:a9:81:cf:7f:c5:
c3:65:28:18:b2:fe:b2:ce:f2:a5:ae:a6:fe:43:ab:f5:5d:a2:
ef:cd:2b:9a:83:2d:f4:66:46:98:4e:f2:c4:82:ef:49:0e:00:
39:54:f3:48:49:d3:86:3e:ad:45:fd:e9:f4:98:fb:cc:53:da:
70:95:ae:04:54:61:b5:0d:4a:82:59:c1:16:09:e7:1e:50:4c:
8b:f8:44:7a:16:e8:54:6e:13:d0:9f:97:14:20:d8:a3:84:2a:
72:cb:57:cb:f5:88:7b:e3:65:73:cb:0c:92:4b:5d:fd:8b:38:
de:d0:d5:9b:43:db:c6:ce:fa:f2:7e:30:05:17:c7:71:aa:75:
0f:f1:0e:57:29:ea:81:4b:1f:d2:d3:a2:29:96:25:d6:98:8c:
bd:c4:90:22:9b:79:5a:70:a9:67:ed:f8:aa:26:02:f0:d8:c6:
40:ee:20:8f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYpM37jFO/C2U7FZMoaTbPcRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYxZDQ2ZTBlM2U4Y2FhYWVkNGE1MjliZDdkNzMwOGJkMWVm
MDFjMWQwHhcNMjMwODMxMTgzNDA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNzJlNzdhZjNhYWZkNzJhMGFjNDg5NDdlY2UxMjA2YjcxMjg5MTQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgZ+pNh0tkyIBUoh7p42vRNIr2tn0
Q2qaUoKu7xWZiaRtGLN3uGRXjE6R1Gg8LFcEb5n3LBQJTl5K58AsEzfzQhRwfDMb
qODos75FkG2tFtJ4NEDv5c5tOh4J2nHpXRQJCeaVHIb2+ADf32sWKIc0Ka7aUKf0
bfZtbGFI2lq/ZbTmN7MVw2KAIUbfn4IOvQwDK/gThSvuGwzgLMs7ff3M6xRHRgqr
zsIzwZplhn3iXgIeVqkOnKolnjhm/30cieFKa3AFrCIDE62L48dWPkvZLD/cejQ2
xEgerQp9e+mwUUWvucMuqamHkUuX+9cu+aj1vPFN6aspJkbGpBiK4LpCuwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOcud686r9cqCsSJR+zhIGtxKJFIMB8GA1UdIwQY
MBaAFPHUbg4+jKqu1KUpvX1zCL0e8BwdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOGRSdURqNk1xcTdVcFNtOWZYTUl2Ujd3SEIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi84NGViNDQtYmJkZi00NmMxLWIwNDMt
YjQyZjIzZDgyOGMzLzEvNXk1M3J6cXYxeW9LeElsSDdPRWdhM0Vva1VnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi84NGViNDQtYmJkZi00NmMxLWIwNDMtYjQyZjIzZDgyOGMz
LzEvOGRSdURqNk1xcTdVcFNtOWZYTUl2Ujd3SEIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWSXEMA0G
CSqGSIb3DQEBCwUAA4IBAQBYHvqh5kpoy+GRFXdfbhxls3BuBayn/picO0ob1mWv
xE0TNmsTxlqOSJBnOlZ+QJbR8lHjsgXiyyClWBhQgvP+FSg588/AJeWzKJnp2ZqB
uY3ATCtIqYHPf8XDZSgYsv6yzvKlrqb+Q6v1XaLvzSuagy30ZkaYTvLEgu9JDgA5
VPNISdOGPq1F/en0mPvMU9pwla4EVGG1DUqCWcEWCeceUEyL+ER6FuhUbhPQn5cU
INijhCpyy1fL9Yh742VzywySS139izje0NWbQ9vGzvryfjAFF8dxqnUP8Q5XKeqB
Sx/S06IpliXWmIy9xJAim3lacKln7fiqJgLw2MZA7iCP
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:18 2024 by rpki-client on console-fra.rpki-client.org