Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/2c950e-7d3a-4cad-841f-2c014b740c3b/1/G5GcTe2AiMcvcO0yBJxEar0qUWo.roa
File: G5GcTe2AiMcvcO0yBJxEar0qUWo.roa (raw, json)
Hash identifier: XQa8ToZqpK0AyQYmoZawS0K/IqE3Vswx7WoWxhsKXFI=
Subject key identifier: 1B:91:9C:4D:ED:80:88:C7:2F:70:ED:32:04:9C:44:6A:BD:2A:51:6A
Certificate issuer: /CN=05712e88949d5a435a33e7040c9fb7e7a8244395
Certificate serial: 01856D41AC8A9CE3607A3F51BFAD863ABDD5
Authority key identifier: 05:71:2E:88:94:9D:5A:43:5A:33:E7:04:0C:9F:B7:E7:A8:24:43:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BXEuiJSdWkNaM-cEDJ-356gkQ5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/2c950e-7d3a-4cad-841f-2c014b740c3b/1/G5GcTe2AiMcvcO0yBJxEar0qUWo.roa
Signing time: Sun 01 Jan 2023 12:14:58 +0000
ROA not before: Sun 01 Jan 2023 12:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42547
IP address blocks: 194.50.117.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:41:ac:8a:9c:e3:60:7a:3f:51:bf:ad:86:3a:bd:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05712e88949d5a435a33e7040c9fb7e7a8244395
Validity
Not Before: Jan 1 12:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b919c4ded8088c72f70ed32049c446abd2a516a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:a1:16:5a:bc:bf:eb:ea:24:99:18:9e:b2:a2:
03:38:0b:96:74:b2:a0:22:d4:6d:f4:27:63:ef:35:
8a:05:71:be:4c:4b:1f:ee:d1:83:0b:b1:a0:f0:05:
7c:28:86:b5:6c:08:7b:c6:a7:34:d8:34:5f:0d:31:
62:39:ca:fb:ee:3d:f1:73:a8:52:29:36:cb:f1:77:
ea:3b:56:50:e3:41:ff:6d:d2:53:8e:8b:de:e2:74:
56:ff:69:e9:bb:3b:98:1b:12:c8:16:b2:9d:f6:63:
3c:f2:10:43:1b:e1:fb:97:07:26:b4:0e:33:a3:89:
74:17:71:02:99:bc:62:ca:94:f6:55:4a:82:e2:60:
fb:a6:8d:fb:3a:e5:40:50:cc:6d:1f:7b:8f:c3:18:
5e:3c:a0:89:55:c6:53:a0:5b:c5:5b:0e:65:59:f3:
45:7d:ed:d6:70:6d:3e:22:45:a2:7c:9a:34:35:e6:
76:8e:1c:0b:68:7a:e3:10:60:b7:b6:b4:0f:de:84:
cd:31:aa:ec:33:16:d9:3d:85:fc:30:05:59:97:c5:
42:06:96:c1:9c:f7:09:43:23:53:6e:b5:c8:09:d4:
e9:47:ba:54:d4:e5:a3:5f:84:61:a3:34:86:4a:6f:
23:09:71:88:22:91:49:46:58:5a:d9:5f:ce:39:e6:
d5:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:91:9C:4D:ED:80:88:C7:2F:70:ED:32:04:9C:44:6A:BD:2A:51:6A
X509v3 Authority Key Identifier:
keyid:05:71:2E:88:94:9D:5A:43:5A:33:E7:04:0C:9F:B7:E7:A8:24:43:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BXEuiJSdWkNaM-cEDJ-356gkQ5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/2c950e-7d3a-4cad-841f-2c014b740c3b/1/G5GcTe2AiMcvcO0yBJxEar0qUWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/2c950e-7d3a-4cad-841f-2c014b740c3b/1/BXEuiJSdWkNaM-cEDJ-356gkQ5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.117.0/24
Signature Algorithm: sha256WithRSAEncryption
81:d8:f2:c0:e7:16:78:af:79:59:8f:40:3d:03:4f:d6:0f:83:
4c:ad:92:bf:a7:d0:0e:d1:f7:d9:d8:b5:12:42:8e:99:96:62:
6b:1a:1c:d4:47:7a:a6:b7:22:8e:ef:2f:d8:1b:e6:8d:c2:82:
29:08:3c:d9:2e:49:76:a8:fe:f6:3a:f5:bd:bc:34:fc:bd:b9:
38:c4:8e:4d:52:bf:a9:21:25:e4:84:59:fa:b7:70:bc:a5:91:
af:4e:af:d2:05:ce:49:75:d5:2a:bc:46:13:be:52:46:c4:5d:
21:30:f9:cc:b2:b6:90:fd:90:49:a4:01:07:15:11:d0:d4:0e:
24:23:d1:57:6d:66:b9:0e:21:95:24:44:48:a1:49:a8:25:a7:
7b:d1:11:38:fa:2c:88:d5:e6:b1:a7:d1:87:26:8c:fb:b7:1d:
5c:a8:38:14:8f:c7:02:1e:0f:4d:b2:b7:c6:d2:fb:a7:85:f4:
39:79:ce:33:1b:03:6f:fa:90:d8:7b:39:09:21:02:65:d8:6f:
75:16:87:0c:96:ea:78:33:40:28:9e:90:44:26:db:ae:57:4b:
a1:57:2a:49:9e:fd:53:cb:cf:ac:57:95:d4:1d:be:03:06:4a:
d4:c6:1e:17:fb:fb:34:5e:bd:74:5b:98:70:ae:c5:c8:47:b7:
27:ff:ae:70
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtQayKnONgej9Rv62GOr3VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1NzEyZTg4OTQ5ZDVhNDM1YTMzZTcwNDBjOWZiN2U3YTgy
NDQzOTUwHhcNMjMwMTAxMTIxNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYjkxOWM0ZGVkODA4OGM3MmY3MGVkMzIwNDljNDQ2YWJkMmE1MTZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjaEWWry/6+okmRiesqIDOAuWdLKg
ItRt9Cdj7zWKBXG+TEsf7tGDC7Gg8AV8KIa1bAh7xqc02DRfDTFiOcr77j3xc6hS
KTbL8XfqO1ZQ40H/bdJTjove4nRW/2npuzuYGxLIFrKd9mM88hBDG+H7lwcmtA4z
o4l0F3ECmbxiypT2VUqC4mD7po37OuVAUMxtH3uPwxhePKCJVcZToFvFWw5lWfNF
fe3WcG0+IkWifJo0NeZ2jhwLaHrjEGC3trQP3oTNMarsMxbZPYX8MAVZl8VCBpbB
nPcJQyNTbrXICdTpR7pU1OWjX4RhozSGSm8jCXGIIpFJRlha2V/OOebVjwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBuRnE3tgIjHL3DtMgScRGq9KlFqMB8GA1UdIwQY
MBaAFAVxLoiUnVpDWjPnBAyft+eoJEOVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlhFdWlKU2RXa05hTS1jRURKLTM1NmdrUTVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS8yYzk1MGUtN2QzYS00Y2FkLTg0MWYt
MmMwMTRiNzQwYzNiLzEvRzVHY1RlMkFpTWN2Y08weUJKeEVhcjBxVVdvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOS8yYzk1MGUtN2QzYS00Y2FkLTg0MWYtMmMwMTRiNzQwYzNi
LzEvQlhFdWlKU2RXa05hTS1jRURKLTM1NmdrUTVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwjJ1MA0G
CSqGSIb3DQEBCwUAA4IBAQCB2PLA5xZ4r3lZj0A9A0/WD4NMrZK/p9AO0ffZ2LUS
Qo6ZlmJrGhzUR3qmtyKO7y/YG+aNwoIpCDzZLkl2qP72OvW9vDT8vbk4xI5NUr+p
ISXkhFn6t3C8pZGvTq/SBc5JddUqvEYTvlJGxF0hMPnMsraQ/ZBJpAEHFRHQ1A4k
I9FXbWa5DiGVJERIoUmoJad70RE4+iyI1eaxp9GHJoz7tx1cqDgUj8cCHg9NsrfG
0vunhfQ5ec4zGwNv+pDYezkJIQJl2G91FocMlup4M0AonpBEJtuuV0uhVypJnv1T
y8+sV5XUHb4DBkrUxh4X+/s0Xr10W5hwrsXIR7cn/65w
-----END CERTIFICATE-----
Generated at Mon Jan 1 21:19:49 2024 by rpki-client on console-ams.rpki-client.org