Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/4892a9-3b37-4d39-9c2b-d83ed140d28d/1/ohbBNidL8m1b3rL7u6GMqh7rU8s.roa
File: ohbBNidL8m1b3rL7u6GMqh7rU8s.roa (raw, json)
Hash identifier: yNmuXVdcVgjOzaAFaEQs2mDkfw8N4nWUtD7RjbyR3yc=
Subject key identifier: A2:16:C1:36:27:4B:F2:6D:5B:DE:B2:FB:BB:A1:8C:AA:1E:EB:53:CB
Certificate issuer: /CN=4173eeb8d02f5f64788b3fdc78d6bab8a55fd16a
Certificate serial: 018CC94E5E7325B277C8D0352C9E3C762BD3
Authority key identifier: 41:73:EE:B8:D0:2F:5F:64:78:8B:3F:DC:78:D6:BA:B8:A5:5F:D1:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QXPuuNAvX2R4iz_ceNa6uKVf0Wo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/4892a9-3b37-4d39-9c2b-d83ed140d28d/1/ohbBNidL8m1b3rL7u6GMqh7rU8s.roa
Signing time: Tue 02 Jan 2024 08:33:25 +0000
ROA not before: Tue 02 Jan 2024 08:33:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205516
IP address blocks: 5.35.81.0/24 maxlen: 24
5.35.80.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Mar 2024 07:56:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:5e:73:25:b2:77:c8:d0:35:2c:9e:3c:76:2b:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4173eeb8d02f5f64788b3fdc78d6bab8a55fd16a
Validity
Not Before: Jan 2 08:33:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a216c136274bf26d5bdeb2fbbba18caa1eeb53cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a5:1b:16:1c:79:2a:78:b8:c7:53:a7:40:3a:
0b:00:59:2b:f9:60:12:ef:cb:2c:b4:6b:a4:33:25:
18:cf:ec:ca:77:0f:b1:f5:eb:cc:6e:ab:3b:3d:14:
06:f5:5b:49:17:38:0e:36:73:d7:2a:90:12:7f:4d:
3d:bd:71:e4:75:58:f7:e9:4f:ad:cd:c9:24:da:fb:
3d:89:0c:c6:42:1e:3b:0e:dc:9c:7e:2b:96:8b:c7:
27:d9:a5:c4:9d:d4:9d:3f:59:cf:e1:e5:8c:1f:24:
f1:c7:3e:50:d1:6a:0e:69:83:f7:53:da:59:7a:3b:
5a:14:6a:3b:73:55:89:4f:14:d3:36:81:a4:7b:45:
06:b2:91:5d:8b:ed:61:54:0d:9b:b9:f7:98:3f:23:
03:8b:31:3e:66:a2:61:e4:e2:a7:b9:9a:d8:6a:b4:
c4:21:d7:da:8b:71:7b:e9:c0:07:bc:ce:39:85:06:
fe:72:d8:13:fc:be:62:0f:13:a1:34:21:3e:28:b3:
32:2c:be:a1:4e:da:92:11:08:b9:6b:b6:05:c7:e7:
52:17:ee:eb:b3:35:1a:00:54:29:c7:d2:f1:12:2d:
90:17:f1:cb:0a:12:5d:db:b6:9f:af:c7:1c:dd:90:
ae:1d:11:18:c5:a8:d8:80:3f:74:85:79:5b:07:65:
7e:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:16:C1:36:27:4B:F2:6D:5B:DE:B2:FB:BB:A1:8C:AA:1E:EB:53:CB
X509v3 Authority Key Identifier:
keyid:41:73:EE:B8:D0:2F:5F:64:78:8B:3F:DC:78:D6:BA:B8:A5:5F:D1:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QXPuuNAvX2R4iz_ceNa6uKVf0Wo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/4892a9-3b37-4d39-9c2b-d83ed140d28d/1/ohbBNidL8m1b3rL7u6GMqh7rU8s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/4892a9-3b37-4d39-9c2b-d83ed140d28d/1/QXPuuNAvX2R4iz_ceNa6uKVf0Wo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.35.80.0/23
Signature Algorithm: sha256WithRSAEncryption
90:4a:8e:04:ce:d9:34:e3:8b:42:65:16:b3:8d:05:ca:19:a1:
90:ba:33:af:1c:5f:e0:c0:49:78:c8:54:6c:34:b0:d7:1f:16:
71:23:49:41:e9:a0:65:88:95:f7:ea:88:57:55:99:a1:e3:38:
ba:ce:84:2a:74:77:87:a9:42:97:eb:b3:6f:a5:ba:46:45:f4:
3a:ab:59:c0:51:ec:55:7d:7c:1f:1f:61:6a:f9:51:45:00:c3:
5d:f0:d0:07:1f:47:7f:6b:cd:dc:a4:0b:0c:28:ed:f9:e1:2a:
9f:97:2f:ba:0f:ed:e6:89:ec:a0:23:28:7f:ad:86:ad:ff:74:
12:dc:ce:2d:10:a8:5a:35:10:70:26:88:56:6e:38:8e:ee:f2:
1b:36:6b:49:22:b4:1d:67:2c:93:81:88:b4:89:05:d4:75:09:
4a:84:4b:f9:07:42:cf:eb:b3:fd:6a:08:10:b0:27:e6:ea:43:
6f:da:87:13:36:c4:f6:1c:8a:31:ea:ec:e9:08:fe:3d:a5:a0:
c5:63:09:71:e1:d9:b4:a3:fe:90:db:90:84:ad:83:f7:c3:05:
a0:e4:9c:d9:27:e1:b1:5f:de:f0:3a:a5:db:58:10:66:33:87:
9f:ad:40:cf:b0:42:f7:e0:69:1e:67:a0:5b:b1:13:60:a3:b7:
3e:55:b6:a6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzJTl5zJbJ3yNA1LJ48divTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxNzNlZWI4ZDAyZjVmNjQ3ODhiM2ZkYzc4ZDZiYWI4YTU1
ZmQxNmEwHhcNMjQwMTAyMDgzMzI1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMjE2YzEzNjI3NGJmMjZkNWJkZWIyZmJiYmExOGNhYTFlZWI1M2NiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoqUbFhx5Kni4x1OnQDoLAFkr+WAS
78sstGukMyUYz+zKdw+x9evMbqs7PRQG9VtJFzgONnPXKpASf009vXHkdVj36U+t
zckk2vs9iQzGQh47DtycfiuWi8cn2aXEndSdP1nP4eWMHyTxxz5Q0WoOaYP3U9pZ
ejtaFGo7c1WJTxTTNoGke0UGspFdi+1hVA2bufeYPyMDizE+ZqJh5OKnuZrYarTE
Idfai3F76cAHvM45hQb+ctgT/L5iDxOhNCE+KLMyLL6hTtqSEQi5a7YFx+dSF+7r
szUaAFQpx9LxEi2QF/HLChJd27afr8cc3ZCuHREYxajYgD90hXlbB2V+4QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKIWwTYnS/JtW96y+7uhjKoe61PLMB8GA1UdIwQY
MBaAFEFz7rjQL19keIs/3HjWurilX9FqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVhQdXVOQXZYMlI0aXpfY2VOYTZ1S1ZmMFdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC80ODkyYTktM2IzNy00ZDM5LTljMmIt
ZDgzZWQxNDBkMjhkLzEvb2hiQk5pZEw4bTFiM3JMN3U2R01xaDdyVThzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOC80ODkyYTktM2IzNy00ZDM5LTljMmItZDgzZWQxNDBkMjhk
LzEvUVhQdXVOQXZYMlI0aXpfY2VOYTZ1S1ZmMFdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBBSNQMA0G
CSqGSIb3DQEBCwUAA4IBAQCQSo4Eztk044tCZRazjQXKGaGQujOvHF/gwEl4yFRs
NLDXHxZxI0lB6aBliJX36ohXVZmh4zi6zoQqdHeHqUKX67NvpbpGRfQ6q1nAUexV
fXwfH2Fq+VFFAMNd8NAHH0d/a83cpAsMKO354Sqfly+6D+3mieygIyh/rYat/3QS
3M4tEKhaNRBwJohWbjiO7vIbNmtJIrQdZyyTgYi0iQXUdQlKhEv5B0LP67P9aggQ
sCfm6kNv2ocTNsT2HIox6uzpCP49paDFYwlx4dm0o/6Q25CErYP3wwWg5JzZJ+Gx
X97wOqXbWBBmM4efrUDPsEL34GkeZ6BbsRNgo7c+Vbam
-----END CERTIFICATE-----
Generated at Thu Mar 7 11:00:38 2024 by rpki-client on console-fra.rpki-client.org