Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/WrO6TqvDX6MMDhmLuiteAr-leLk.roa
File: WrO6TqvDX6MMDhmLuiteAr-leLk.roa (raw, json)
Hash identifier: oThwklXIlNWFLXM7nyYk18LsxNPcVkPFITjfdvCRZbc=
Subject key identifier: 5A:B3:BA:4E:AB:C3:5F:A3:0C:0E:19:8B:BA:2B:5E:02:BF:A5:78:B9
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 0188526B9EDCC0922F9F049B82652DFB164A
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/WrO6TqvDX6MMDhmLuiteAr-leLk.roa
Signing time: Thu 25 May 2023 10:19:24 +0000
ROA not before: Thu 25 May 2023 10:19:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25508
IP address blocks: 194.179.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:52:6b:9e:dc:c0:92:2f:9f:04:9b:82:65:2d:fb:16:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: May 25 10:19:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ab3ba4eabc35fa30c0e198bba2b5e02bfa578b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:ec:c2:25:1f:ca:1a:40:08:cc:6a:a7:0c:06:
e7:d7:1d:67:98:b7:45:3c:e0:2a:a1:ba:aa:4a:1c:
5b:d3:ec:90:aa:66:69:6e:f1:7c:06:10:a0:83:c4:
49:ad:87:4b:ae:a8:7f:79:19:af:37:04:f9:88:ba:
6b:e1:6f:47:23:c1:ed:37:20:0b:54:d6:36:be:d2:
f3:9a:3c:76:ca:e6:a2:3d:cb:6a:29:3c:e3:d1:6c:
b7:f0:4c:84:94:cc:08:b6:83:f6:f3:a3:53:22:55:
bb:f6:f5:fa:f9:e4:7c:7c:b8:0e:84:52:e6:0b:67:
f7:58:9a:44:1d:bc:1d:98:25:3a:68:4b:b5:6a:5c:
1d:86:19:34:b0:00:9b:04:19:df:5c:bc:2a:1e:a4:
31:32:d1:c6:79:5c:67:4f:82:20:f3:e3:fa:6f:09:
cd:29:8e:77:61:61:58:bd:0a:f0:6b:e6:ab:3a:62:
db:d5:a4:db:bf:07:9a:76:c5:70:90:b8:ee:5d:1a:
b5:ca:70:b7:82:60:37:44:14:06:ab:0e:90:c2:f3:
89:84:2c:69:68:b0:88:a2:a7:ca:a1:42:59:cc:d9:
be:56:2e:09:c8:d6:71:bb:a4:55:ed:95:8a:8b:ba:
00:30:a3:92:7d:17:b5:ca:d5:ad:54:0e:c5:d0:ca:
05:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:B3:BA:4E:AB:C3:5F:A3:0C:0E:19:8B:BA:2B:5E:02:BF:A5:78:B9
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/WrO6TqvDX6MMDhmLuiteAr-leLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.179.41.0/24
Signature Algorithm: sha256WithRSAEncryption
ed:ad:ec:3d:92:f7:f5:4e:a2:e7:68:41:57:c3:1c:34:8c:bb:
57:52:40:10:2f:8c:95:73:75:c5:89:5b:38:4d:c4:ff:a9:26:
1c:f9:f8:2d:86:56:76:4d:9f:99:1d:fd:8f:f7:da:cf:8d:89:
26:8c:1b:43:13:a7:19:ff:e8:da:7f:fc:f4:0c:46:18:57:6f:
91:d5:af:ec:8d:ef:f4:fd:d8:dc:c4:26:33:b2:7c:d5:6f:af:
e5:fe:ad:3e:9a:e7:4b:ab:f0:38:d3:53:6b:6c:9c:d6:d3:e4:
1e:43:3e:b8:de:ad:c6:40:95:04:68:de:78:68:b9:56:d7:40:
b1:f6:19:c0:04:79:4c:43:cc:8c:27:1f:e3:d4:bc:38:62:b1:
99:a7:9f:0f:1a:b8:d3:a0:bf:53:89:f4:d7:b9:e7:55:1c:d8:
ee:26:79:75:27:c2:a1:f7:55:d7:bc:61:43:d9:18:b9:de:f8:
8c:b6:e2:ee:89:54:1a:86:50:21:83:dd:bf:5d:af:bd:ce:ef:
0d:84:2d:da:16:fb:e6:a8:48:4f:25:9f:d3:93:8e:73:51:2c:
63:60:00:24:5c:52:28:3e:0a:13:8e:7a:c1:9f:e0:77:4e:a5:
7b:5d:44:f2:a2:36:31:43:d6:2c:b3:a1:a9:5e:58:95:85:6e:
a3:01:e3:e7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYhSa57cwJIvnwSbgmUt+xZKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwN2Y1ZmUyNzQwYTJiNmRlNGMzNzA5ZDI5NjQxMTViM2M5
NjdkYTEwHhcNMjMwNTI1MTAxOTI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YWIzYmE0ZWFiYzM1ZmEzMGMwZTE5OGJiYTJiNWUwMmJmYTU3OGI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgOzCJR/KGkAIzGqnDAbn1x1nmLdF
POAqobqqShxb0+yQqmZpbvF8BhCgg8RJrYdLrqh/eRmvNwT5iLpr4W9HI8HtNyAL
VNY2vtLzmjx2yuaiPctqKTzj0Wy38EyElMwItoP286NTIlW79vX6+eR8fLgOhFLm
C2f3WJpEHbwdmCU6aEu1alwdhhk0sACbBBnfXLwqHqQxMtHGeVxnT4Ig8+P6bwnN
KY53YWFYvQrwa+arOmLb1aTbvweadsVwkLjuXRq1ynC3gmA3RBQGqw6QwvOJhCxp
aLCIoqfKoUJZzNm+Vi4JyNZxu6RV7ZWKi7oAMKOSfRe1ytWtVA7F0MoFywIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFqzuk6rw1+jDA4Zi7orXgK/pXi5MB8GA1UdIwQY
MBaAFDB/X+J0Citt5MNwnSlkEVs8ln2hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUg5ZjRuUUtLMjNrdzNDZEtXUVJXenlXZmFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9kY2ZkNDgtYzU0YS00Yzc4LWE0ZWQt
NGJhMmY4ZjFmODNiLzEvV3JPNlRxdkRYNk1NRGhtTHVpdGVBci1sZUxrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy9kY2ZkNDgtYzU0YS00Yzc4LWE0ZWQtNGJhMmY4ZjFmODNi
LzEvTUg5ZjRuUUtLMjNrdzNDZEtXUVJXenlXZmFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwrMpMA0G
CSqGSIb3DQEBCwUAA4IBAQDtrew9kvf1TqLnaEFXwxw0jLtXUkAQL4yVc3XFiVs4
TcT/qSYc+fgthlZ2TZ+ZHf2P99rPjYkmjBtDE6cZ/+jaf/z0DEYYV2+R1a/sje/0
/djcxCYzsnzVb6/l/q0+mudLq/A401NrbJzW0+QeQz643q3GQJUEaN54aLlW10Cx
9hnABHlMQ8yMJx/j1Lw4YrGZp58PGrjToL9TifTXuedVHNjuJnl1J8Kh91XXvGFD
2Ri53viMtuLuiVQahlAhg92/Xa+9zu8NhC3aFvvmqEhPJZ/Tk45zUSxjYAAkXFIo
PgoTjnrBn+B3TqV7XUTyojYxQ9Yss6GpXliVhW6jAePn
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:13 2024 by rpki-client on console-ams.rpki-client.org