Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/387720-5784-4e03-813c-13b290750fb9/1/t71iM28WXejhXMtjqqZNwWX7t20.roa
File: t71iM28WXejhXMtjqqZNwWX7t20.roa (raw, json)
Hash identifier: kMAzW5NPp+55NjXqFZzLJVHofI0pMt43MveZDjlNbHc=
Subject key identifier: B7:BD:62:33:6F:16:5D:E8:E1:5C:CB:63:AA:A6:4D:C1:65:FB:B7:6D
Certificate issuer: /CN=a5e0b94f0b4e4c846ef9cf27cdc88110876b1cf3
Certificate serial: 01856F5DC8D32ABBEC969245F261F7D3EDB8
Authority key identifier: A5:E0:B9:4F:0B:4E:4C:84:6E:F9:CF:27:CD:C8:81:10:87:6B:1C:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/peC5TwtOTIRu-c8nzciBEIdrHPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/387720-5784-4e03-813c-13b290750fb9/1/t71iM28WXejhXMtjqqZNwWX7t20.roa
Signing time: Sun 01 Jan 2023 22:04:55 +0000
ROA not before: Sun 01 Jan 2023 22:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30781
IP address blocks: 194.117.244.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:c8:d3:2a:bb:ec:96:92:45:f2:61:f7:d3:ed:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5e0b94f0b4e4c846ef9cf27cdc88110876b1cf3
Validity
Not Before: Jan 1 22:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b7bd62336f165de8e15ccb63aaa64dc165fbb76d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:97:b1:e5:f8:fe:58:a6:51:d4:cb:d2:3a:67:
d6:61:b9:6b:94:c2:af:a7:2f:5a:79:71:3a:75:ff:
7e:75:63:d3:73:b2:b9:5e:03:f6:31:e9:d2:e6:91:
59:9e:76:05:9a:50:50:ca:4b:85:2a:29:e1:44:5e:
0b:a7:93:9c:ca:f2:2b:c2:c3:7a:67:cf:f0:52:9d:
c1:8f:71:c3:52:eb:a0:ad:ab:ff:f2:58:b1:bf:81:
5f:2f:40:18:f9:e4:af:9d:61:91:06:72:94:6d:e7:
b3:70:95:30:49:b3:cb:f5:0d:c0:2e:07:45:b4:64:
dc:0a:6d:a1:36:45:fc:ba:55:dc:b4:0e:9e:f5:12:
d7:7f:88:99:9f:99:8d:f3:0c:bf:93:aa:38:0a:b6:
c1:1d:be:b8:90:07:e7:d1:b9:e9:92:70:dc:08:b5:
90:e9:42:ef:ad:78:b5:f1:cc:6a:d6:58:45:75:4b:
fd:69:ac:5e:ab:0b:45:be:12:97:ae:c7:a9:04:4c:
52:a3:6f:9c:77:b6:b4:2d:1a:c8:3c:fe:46:fd:17:
3f:66:8d:14:f5:b3:53:d8:3d:12:07:3c:3f:c6:6b:
2c:f8:8e:b8:52:0e:d2:e6:09:6c:96:1b:85:f9:61:
c6:18:7c:54:43:2b:0f:e4:b3:80:5b:3a:e6:b0:d0:
bc:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:BD:62:33:6F:16:5D:E8:E1:5C:CB:63:AA:A6:4D:C1:65:FB:B7:6D
X509v3 Authority Key Identifier:
keyid:A5:E0:B9:4F:0B:4E:4C:84:6E:F9:CF:27:CD:C8:81:10:87:6B:1C:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/peC5TwtOTIRu-c8nzciBEIdrHPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/387720-5784-4e03-813c-13b290750fb9/1/t71iM28WXejhXMtjqqZNwWX7t20.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/387720-5784-4e03-813c-13b290750fb9/1/peC5TwtOTIRu-c8nzciBEIdrHPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.117.244.0/23
Signature Algorithm: sha256WithRSAEncryption
52:09:55:99:ca:e0:94:a8:65:4e:0a:40:4a:af:9d:50:b3:04:
b7:f6:d2:b1:0e:eb:ab:bf:40:0c:19:11:bd:db:86:11:6e:e3:
5d:93:78:4a:f0:06:34:cc:7f:c6:f8:65:23:f2:32:86:d6:40:
81:53:6c:05:56:65:f6:31:fd:28:db:5e:22:d3:3d:2d:74:d2:
a8:89:47:83:3c:93:38:3e:ab:20:af:35:85:e7:ed:22:37:24:
f7:be:f3:66:61:a2:67:a2:18:18:8c:1a:de:72:8f:90:a7:ed:
9d:84:d0:08:50:14:ae:e6:1c:c9:ea:2c:0b:f9:3a:f9:39:af:
a7:8b:10:28:d4:02:b9:0d:40:5a:5b:bc:51:1f:7a:ca:f3:00:
82:f7:30:4a:6d:b9:54:e3:64:7d:00:ee:7b:4e:1a:16:63:62:
9c:cc:fd:77:e7:d3:0b:7b:25:cc:3a:36:54:51:16:c9:5c:f7:
a8:96:7e:a2:8a:ae:f7:3f:e7:b9:8d:5e:a6:a2:52:38:02:ed:
de:4b:bc:1a:cb:67:ef:12:24:b7:c4:8c:27:cc:c3:01:e5:60:
49:49:cb:8a:7f:bc:bd:a4:d9:88:54:63:0b:c4:df:26:60:2b:
57:33:f9:e3:df:7f:70:bf:2f:da:9d:cc:20:1c:11:97:1f:b0:
ef:64:13:4a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvXcjTKrvslpJF8mH30+24MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1ZTBiOTRmMGI0ZTRjODQ2ZWY5Y2YyN2NkYzg4MTEwODc2
YjFjZjMwHhcNMjMwMTAxMjIwNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiN2JkNjIzMzZmMTY1ZGU4ZTE1Y2NiNjNhYWE2NGRjMTY1ZmJiNzZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh5ex5fj+WKZR1MvSOmfWYblrlMKv
py9aeXE6df9+dWPTc7K5XgP2MenS5pFZnnYFmlBQykuFKinhRF4Lp5OcyvIrwsN6
Z8/wUp3Bj3HDUuugrav/8lixv4FfL0AY+eSvnWGRBnKUbeezcJUwSbPL9Q3ALgdF
tGTcCm2hNkX8ulXctA6e9RLXf4iZn5mN8wy/k6o4CrbBHb64kAfn0bnpknDcCLWQ
6ULvrXi18cxq1lhFdUv9aaxeqwtFvhKXrsepBExSo2+cd7a0LRrIPP5G/Rc/Zo0U
9bNT2D0SBzw/xmss+I64Ug7S5glslhuF+WHGGHxUQysP5LOAWzrmsNC8zQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLe9YjNvFl3o4VzLY6qmTcFl+7dtMB8GA1UdIwQY
MBaAFKXguU8LTkyEbvnPJ83IgRCHaxzzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcGVDNVR3dE9USVJ1LWM4bnpjaUJFSWRySFBNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy8zODc3MjAtNTc4NC00ZTAzLTgxM2Mt
MTNiMjkwNzUwZmI5LzEvdDcxaU0yOFdYZWpoWE10anFxWk53V1g3dDIwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYy8zODc3MjAtNTc4NC00ZTAzLTgxM2MtMTNiMjkwNzUwZmI5
LzEvcGVDNVR3dE9USVJ1LWM4bnpjaUJFSWRySFBNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwnX0MA0G
CSqGSIb3DQEBCwUAA4IBAQBSCVWZyuCUqGVOCkBKr51QswS39tKxDuurv0AMGRG9
24YRbuNdk3hK8AY0zH/G+GUj8jKG1kCBU2wFVmX2Mf0o214i0z0tdNKoiUeDPJM4
PqsgrzWF5+0iNyT3vvNmYaJnohgYjBreco+Qp+2dhNAIUBSu5hzJ6iwL+Tr5Oa+n
ixAo1AK5DUBaW7xRH3rK8wCC9zBKbblU42R9AO57ThoWY2KczP1359MLeyXMOjZU
URbJXPeoln6iiq73P+e5jV6molI4Au3eS7way2fvEiS3xIwnzMMB5WBJScuKf7y9
pNmIVGMLxN8mYCtXM/nj339wvy/ancwgHBGXH7DvZBNK
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:26 2024 by rpki-client on console-fra.rpki-client.org