Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/aSCrF0qUWhzsJVjIRJjBU0s8BvY.roa
File: aSCrF0qUWhzsJVjIRJjBU0s8BvY.roa (raw, json)
Hash identifier: JOpaHYQJCGmKLUrYkXLO2zerM8S4GKPsAaqz5DEnoTM=
Subject key identifier: 69:20:AB:17:4A:94:5A:1C:EC:25:58:C8:44:98:C1:53:4B:3C:06:F6
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 01856E8B51C1BD60300602C6519AE087C6F9
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/aSCrF0qUWhzsJVjIRJjBU0s8BvY.roa
Signing time: Sun 01 Jan 2023 18:15:02 +0000
ROA not before: Sun 01 Jan 2023 18:15:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210122
IP address blocks: 5.180.34.0/24 maxlen: 24
5.180.33.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:51:c1:bd:60:30:06:02:c6:51:9a:e0:87:c6:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Jan 1 18:15:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6920ab174a945a1cec2558c84498c1534b3c06f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:98:30:1e:78:30:24:94:33:d9:1a:27:c9:68:
84:f1:3a:7b:10:51:13:9f:b6:f1:98:3c:7c:9b:7e:
53:98:6f:ce:7f:d7:a9:40:b0:5c:c5:f0:27:50:35:
06:b6:95:50:22:81:b9:17:9c:cc:7b:13:0b:4b:bd:
96:46:0f:96:fe:de:83:5e:01:76:e8:ea:13:20:7a:
c3:98:0c:9c:74:1c:ec:72:ea:e8:7c:9c:19:ba:7d:
8a:a7:7f:15:6b:98:7b:eb:b6:94:12:b1:81:95:d6:
29:8b:d2:0d:d1:9b:ec:79:21:73:bf:a7:dd:af:d0:
af:13:be:32:c4:ee:3c:f2:cd:3a:22:18:e0:e4:b2:
54:59:8c:9e:20:84:45:cb:63:51:73:f5:00:ab:58:
48:64:bd:9d:93:12:a0:10:e4:4d:4f:13:ec:1c:b6:
cb:6f:89:d6:76:b0:2c:fa:52:22:14:41:9e:a1:14:
7f:69:c0:ba:b2:3e:d7:74:3d:22:17:f1:ab:25:95:
6f:13:bf:20:88:7e:78:5c:f2:e4:aa:00:35:06:31:
4a:0e:63:b0:28:a0:57:93:8c:5e:2e:0a:80:c0:1d:
85:31:44:b1:62:77:5c:f4:85:93:03:b8:d0:32:01:
de:bd:36:d4:af:44:77:ad:ef:e5:c9:db:ad:eb:b8:
d1:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:20:AB:17:4A:94:5A:1C:EC:25:58:C8:44:98:C1:53:4B:3C:06:F6
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/aSCrF0qUWhzsJVjIRJjBU0s8BvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.33.0-5.180.34.255
Signature Algorithm: sha256WithRSAEncryption
52:ab:56:22:b4:fb:3a:9a:e4:e6:d8:f1:56:07:4a:a8:91:05:
5d:21:d9:96:40:a9:14:bf:83:5f:61:6e:e8:1c:91:bb:74:18:
fc:d9:8c:8a:59:ad:29:1c:8a:1a:bb:f6:36:e0:93:0c:7e:94:
c6:e6:1a:bd:4c:21:3b:83:58:a8:d1:c7:a0:c9:e3:a2:ae:f0:
82:d5:84:4d:c1:2b:b8:5b:4b:67:44:ec:66:89:e6:ad:be:8f:
d3:75:8a:25:fa:aa:36:c6:7b:d8:0b:34:bb:06:a0:d2:9b:40:
2a:59:3d:c4:d8:52:00:59:b3:a2:b3:4f:5a:e8:3b:28:37:e1:
9e:a4:57:e1:bd:65:48:4f:ee:83:79:e5:3b:c7:20:1b:a5:26:
6b:22:23:e2:69:dc:aa:12:95:37:d3:aa:85:2f:00:6c:01:49:
ee:88:ee:d5:15:42:4b:5f:93:1c:be:5b:eb:76:96:0f:89:12:
0f:69:96:3d:d5:67:65:37:46:d8:f0:62:90:5f:bc:dc:50:ae:
1e:b1:9b:ee:1f:7d:dc:26:7e:69:c1:c9:2c:db:35:49:8c:0b:
a6:19:cf:b5:1c:80:a7:76:00:b4:34:34:50:25:7f:62:90:56:
cc:09:d2:9c:88:a5:bb:35:bf:47:1a:09:1c:34:75:13:bb:9e:
d5:87:9d:43
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYVui1HBvWAwBgLGUZrgh8b5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyZmRiNjc2NTRkZjYxODRlN2Q2MGM0MTUwZWE5NTMzYzJj
Zjk3MDQwHhcNMjMwMTAxMTgxNTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2OTIwYWIxNzRhOTQ1YTFjZWMyNTU4Yzg0NDk4YzE1MzRiM2MwNmY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgpgwHngwJJQz2RonyWiE8Tp7EFET
n7bxmDx8m35TmG/Of9epQLBcxfAnUDUGtpVQIoG5F5zMexMLS72WRg+W/t6DXgF2
6OoTIHrDmAycdBzscurofJwZun2Kp38Va5h767aUErGBldYpi9IN0ZvseSFzv6fd
r9CvE74yxO488s06Ihjg5LJUWYyeIIRFy2NRc/UAq1hIZL2dkxKgEORNTxPsHLbL
b4nWdrAs+lIiFEGeoRR/acC6sj7XdD0iF/GrJZVvE78giH54XPLkqgA1BjFKDmOw
KKBXk4xeLgqAwB2FMUSxYndc9IWTA7jQMgHevTbUr0R3re/lydut67jRmwIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFGkgqxdKlFoc7CVYyESYwVNLPAb2MB8GA1UdIwQY
MBaAFGL9tnZU32GE59YMQVDqlTPCz5cEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTct
ZTg2MTIxYzU5NGRmLzEvYVNDckYwcVVXaHpzSlZqSVJKakJVMHM4QnZZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTctZTg2MTIxYzU5NGRm
LzEvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAAFtCED
BAAFtCIwDQYJKoZIhvcNAQELBQADggEBAFKrViK0+zqa5ObY8VYHSqiRBV0h2ZZA
qRS/g19hbugckbt0GPzZjIpZrSkcihq79jbgkwx+lMbmGr1MITuDWKjRx6DJ46Ku
8ILVhE3BK7hbS2dE7GaJ5q2+j9N1iiX6qjbGe9gLNLsGoNKbQCpZPcTYUgBZs6Kz
T1roOyg34Z6kV+G9ZUhP7oN55TvHIBulJmsiI+Jp3KoSlTfTqoUvAGwBSe6I7tUV
Qktfkxy+W+t2lg+JEg9plj3VZ2U3RtjwYpBfvNxQrh6xm+4ffdwmfmnBySzbNUmM
C6YZz7UcgKd2ALQ0NFAlf2KQVswJ0pyIpbs1v0caCRw0dRO7ntWHnUM=
-----END CERTIFICATE-----
Generated at Sat Dec 16 16:15:58 2023 by rpki-client on console-ams.rpki-client.org