Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/py9khQqwM1rDG-Wr1xyOk7Wgp_E.roa
File: py9khQqwM1rDG-Wr1xyOk7Wgp_E.roa (raw, json)
Hash identifier: ksi23edripkrnGhH1b++CRYSnr4BmqApf0sjzGS3v7Y=
Subject key identifier: A7:2F:64:85:0A:B0:33:5A:C3:1B:E5:AB:D7:1C:8E:93:B5:A0:A7:F1
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 018B3788FE164F39E4A672A9809A6C2472AE
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/py9khQqwM1rDG-Wr1xyOk7Wgp_E.roa
Signing time: Mon 16 Oct 2023 08:10:06 +0000
ROA not before: Mon 16 Oct 2023 08:10:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197929
IP address blocks: 212.5.152.0/23 maxlen: 24
212.5.154.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:37:88:fe:16:4f:39:e4:a6:72:a9:80:9a:6c:24:72:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Oct 16 08:10:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a72f64850ab0335ac31be5abd71c8e93b5a0a7f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:94:c8:64:c6:1f:6f:c5:e3:8a:2e:5c:fa:a0:
05:10:29:c1:06:a6:d9:1b:f1:58:dd:d9:db:a3:2e:
8f:bf:a5:27:af:43:47:91:13:97:e9:b1:d9:ba:0d:
fa:57:8d:e1:77:72:07:6f:7d:6a:cb:23:52:31:13:
21:61:c0:35:b6:12:fd:29:3e:c8:98:6f:90:3a:de:
01:5e:1b:26:31:8d:32:c5:97:10:40:c3:83:0a:de:
55:5c:36:06:68:c0:74:96:f5:73:d0:65:8f:b9:5a:
57:88:e0:57:58:8e:13:31:3a:2c:25:09:f2:b7:81:
53:85:e1:d1:6c:86:6f:d5:57:61:45:61:1e:9b:ef:
a1:61:76:a2:8f:ec:4b:0c:1a:66:cf:74:10:95:73:
da:00:01:1c:d2:ef:42:aa:ef:04:09:57:1a:03:6a:
9c:0a:8e:ff:3d:b9:7d:8f:f6:f0:f8:7d:fa:b5:49:
51:8a:be:92:8a:30:40:36:48:a0:f9:00:61:03:11:
fd:e8:e1:4a:d6:52:42:6c:72:0c:2c:9d:4d:ac:dd:
48:c1:c6:ae:59:37:06:b1:58:5e:a5:cb:52:7a:82:
87:08:f7:58:c4:4b:67:6f:04:28:59:f5:44:e4:0e:
04:b4:87:b0:0c:bc:15:58:81:e3:2b:20:16:05:e7:
63:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:2F:64:85:0A:B0:33:5A:C3:1B:E5:AB:D7:1C:8E:93:B5:A0:A7:F1
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/py9khQqwM1rDG-Wr1xyOk7Wgp_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.5.152.0/22
Signature Algorithm: sha256WithRSAEncryption
77:c8:4f:fb:48:13:aa:ec:3b:d8:04:ed:6e:21:fb:6d:c5:01:
45:21:49:c0:34:25:f5:e1:a1:33:77:6f:f0:a0:b3:07:35:13:
8f:8f:34:29:3b:8d:69:47:5e:84:27:bc:d3:8f:e7:0a:da:9b:
d7:03:3d:85:0f:96:73:9b:7f:e4:3a:74:ae:f8:9d:ef:f9:5e:
a7:e7:d7:05:5b:e6:eb:e4:d6:06:49:1d:d4:14:53:ff:f8:48:
57:e9:75:5b:b0:ac:e1:49:13:52:ff:4b:c1:e1:42:8d:a6:4a:
ab:c0:29:a8:53:50:ab:30:02:60:9e:e0:e6:bd:3c:89:35:c1:
39:0c:bc:55:28:f2:72:4b:65:62:9d:3a:56:23:68:0b:39:0e:
85:5f:78:bd:50:6c:bf:f3:06:1b:c1:d6:e3:73:22:ee:21:fa:
07:93:54:46:25:da:d0:db:3d:24:39:ff:68:a9:7b:3c:85:0c:
d7:8f:d2:d1:2e:b5:53:23:5c:d0:3b:e2:7f:c1:e5:01:3d:2a:
a9:ec:e4:b2:ba:22:59:d2:81:bd:18:ab:0f:29:d5:91:b5:d7:
7a:30:51:71:75:c0:b0:ad:d0:8e:03:b6:b7:52:0a:b4:dc:29:
78:b6:d7:73:a4:17:9f:2e:0b:a5:79:2d:57:70:db:9c:44:63:
b6:c2:63:be
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYs3iP4WTznkpnKpgJpsJHKuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0YjJmNGZhNTE2M2FmOTYxNjhlODhmYmY5Y2I0ZWQxZWQ4
ZmI0YzQwHhcNMjMxMDE2MDgxMDA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNzJmNjQ4NTBhYjAzMzVhYzMxYmU1YWJkNzFjOGU5M2I1YTBhN2YxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyJTIZMYfb8Xjii5c+qAFECnBBqbZ
G/FY3dnboy6Pv6Unr0NHkROX6bHZug36V43hd3IHb31qyyNSMRMhYcA1thL9KT7I
mG+QOt4BXhsmMY0yxZcQQMODCt5VXDYGaMB0lvVz0GWPuVpXiOBXWI4TMTosJQny
t4FTheHRbIZv1VdhRWEem++hYXaij+xLDBpmz3QQlXPaAAEc0u9Cqu8ECVcaA2qc
Co7/Pbl9j/bw+H36tUlRir6SijBANkig+QBhAxH96OFK1lJCbHIMLJ1NrN1Iwcau
WTcGsVhepctSeoKHCPdYxEtnbwQoWfVE5A4EtIewDLwVWIHjKyAWBedjBQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKcvZIUKsDNawxvlq9ccjpO1oKfxMB8GA1UdIwQY
MBaAFISy9PpRY6+WFo6I+/nLTtHtj7TEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDct
ODcyYmEyZDlmNDRjLzEvcHk5a2hRcXdNMXJERy1XcjF4eU9rN1dncF9FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDctODcyYmEyZDlmNDRj
LzEvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC1AWYMA0G
CSqGSIb3DQEBCwUAA4IBAQB3yE/7SBOq7DvYBO1uIfttxQFFIUnANCX14aEzd2/w
oLMHNROPjzQpO41pR16EJ7zTj+cK2pvXAz2FD5Zzm3/kOnSu+J3v+V6n59cFW+br
5NYGSR3UFFP/+EhX6XVbsKzhSRNS/0vB4UKNpkqrwCmoU1CrMAJgnuDmvTyJNcE5
DLxVKPJyS2VinTpWI2gLOQ6FX3i9UGy/8wYbwdbjcyLuIfoHk1RGJdrQ2z0kOf9o
qXs8hQzXj9LRLrVTI1zQO+J/weUBPSqp7OSyuiJZ0oG9GKsPKdWRtdd6MFFxdcCw
rdCOA7a3Ugq03Cl4ttdzpBefLguleS1XcNucRGO2wmO+
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:05 2024 by rpki-client on console-fra.rpki-client.org