Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/EQiTj7sdwyLOjMGJlsKACMNhK60.roa
File: EQiTj7sdwyLOjMGJlsKACMNhK60.roa (raw, json)
Hash identifier: TUueK/YjB2tQoa6f4NUlgSvBH0RkUMvMOjxsXOB2SGU=
Subject key identifier: 11:08:93:8F:BB:1D:C3:22:CE:8C:C1:89:96:C2:80:08:C3:61:2B:AD
Certificate issuer: /CN=b0c20ae1dacca31815b274702927c1a5a9dbc7b3
Certificate serial: 01857139B85CB21C6E66755B288AA33D61DC
Authority key identifier: B0:C2:0A:E1:DA:CC:A3:18:15:B2:74:70:29:27:C1:A5:A9:DB:C7:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sMIK4drMoxgVsnRwKSfBpanbx7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/EQiTj7sdwyLOjMGJlsKACMNhK60.roa
Signing time: Mon 02 Jan 2023 06:44:46 +0000
ROA not before: Mon 02 Jan 2023 06:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39203
IP address blocks: 5.154.171.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Feb 2023 11:19:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:b8:5c:b2:1c:6e:66:75:5b:28:8a:a3:3d:61:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0c20ae1dacca31815b274702927c1a5a9dbc7b3
Validity
Not Before: Jan 2 06:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1108938fbb1dc322ce8cc18996c28008c3612bad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:5b:3d:c2:31:89:ee:c3:86:4e:a2:22:4e:7b:
18:6b:e1:5e:c2:a1:6e:7a:08:54:4e:e7:22:22:10:
4b:84:d2:c4:e5:2c:c1:73:d4:9a:e8:4a:17:52:f8:
8c:7a:e6:d4:aa:40:41:7f:fb:69:e7:e7:42:80:5d:
71:c7:8c:30:3c:01:30:13:5a:39:15:0f:e6:d6:8d:
fd:39:a7:93:6c:be:b6:63:c0:b3:3a:34:c0:79:33:
5f:f9:b2:79:08:8a:ca:fa:ea:f5:a2:6a:cf:8a:61:
ff:cd:5e:d2:94:a1:0b:92:4a:2c:b6:eb:23:6c:ee:
42:5e:e5:0f:1c:00:6c:00:8b:c8:8b:04:8c:57:ce:
67:32:36:38:54:62:27:42:cc:d5:62:17:2d:a5:f0:
fa:aa:69:93:42:48:18:c0:e7:b6:fc:2b:a8:20:1d:
03:04:d4:d2:a0:c2:7b:70:52:e4:1c:6c:fe:c1:9f:
8b:2b:ee:5c:a9:3a:65:ea:f3:07:8e:f2:66:3f:58:
62:08:c9:a6:18:9b:4d:55:4a:21:19:96:1e:f2:25:
42:9c:7c:fa:8d:a1:5d:08:46:ef:31:51:8e:13:d4:
13:eb:8c:59:56:18:1d:ac:b7:c8:bd:d0:f1:03:e9:
7e:f8:38:bc:10:a0:d5:11:e4:e1:96:72:5e:72:bf:
19:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:08:93:8F:BB:1D:C3:22:CE:8C:C1:89:96:C2:80:08:C3:61:2B:AD
X509v3 Authority Key Identifier:
keyid:B0:C2:0A:E1:DA:CC:A3:18:15:B2:74:70:29:27:C1:A5:A9:DB:C7:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sMIK4drMoxgVsnRwKSfBpanbx7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/EQiTj7sdwyLOjMGJlsKACMNhK60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/888869-7a65-415b-b68f-5484402ceb7a/1/sMIK4drMoxgVsnRwKSfBpanbx7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.154.171.0/24
Signature Algorithm: sha256WithRSAEncryption
49:b3:42:12:38:20:c0:85:f7:04:3a:17:b0:d9:bd:dc:50:5b:
c6:d2:c0:c5:ef:f3:81:34:e9:91:11:09:09:12:00:57:3d:be:
7b:4f:eb:92:93:b9:38:28:e2:48:c3:28:c9:8c:a5:76:39:bb:
4e:04:6a:d8:74:48:d1:72:19:dd:47:25:16:e0:16:2d:d0:a0:
14:5e:04:02:d1:d9:ce:d0:4f:fb:f2:c9:96:fa:1b:cd:4b:a0:
7d:36:d5:b5:cc:78:43:40:df:90:4e:5a:f5:6d:b1:b8:4a:c1:
d2:20:5d:08:82:34:6e:b0:ce:6a:b1:e6:a1:8b:05:58:af:0a:
5e:53:b2:1a:6a:d4:27:be:4e:32:14:30:00:df:55:48:ae:b6:
e0:bf:79:3e:7c:0f:fa:7f:54:c1:20:c4:c1:30:2c:0b:2f:fd:
a6:fb:b2:d3:a9:05:ab:59:a9:fd:ae:1c:2b:eb:ab:61:36:c9:
03:44:33:fa:ec:c7:38:5d:5a:35:33:57:18:77:9f:54:1a:48:
92:c6:cf:e8:ce:b7:a0:17:bb:96:0a:73:f6:80:8a:81:e9:6e:
c2:f5:01:04:1e:ff:ec:20:3a:d2:21:86:b7:a7:ac:bb:f6:87:
f1:74:a6:4a:66:6f:6b:8d:8d:06:5b:d7:00:7c:c7:65:0b:69:
ed:3c:e0:d0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxObhcshxuZnVbKIqjPWHcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwYzIwYWUxZGFjY2EzMTgxNWIyNzQ3MDI5MjdjMWE1YTlk
YmM3YjMwHhcNMjMwMTAyMDY0NDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMTA4OTM4ZmJiMWRjMzIyY2U4Y2MxODk5NmMyODAwOGMzNjEyYmFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi1s9wjGJ7sOGTqIiTnsYa+FewqFu
eghUTuciIhBLhNLE5SzBc9Sa6EoXUviMeubUqkBBf/tp5+dCgF1xx4wwPAEwE1o5
FQ/m1o39OaeTbL62Y8CzOjTAeTNf+bJ5CIrK+ur1omrPimH/zV7SlKELkkostusj
bO5CXuUPHABsAIvIiwSMV85nMjY4VGInQszVYhctpfD6qmmTQkgYwOe2/CuoIB0D
BNTSoMJ7cFLkHGz+wZ+LK+5cqTpl6vMHjvJmP1hiCMmmGJtNVUohGZYe8iVCnHz6
jaFdCEbvMVGOE9QT64xZVhgdrLfIvdDxA+l++Di8EKDVEeThlnJecr8ZAwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBEIk4+7HcMizozBiZbCgAjDYSutMB8GA1UdIwQY
MBaAFLDCCuHazKMYFbJ0cCknwaWp28ezMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc01JSzRkck1veGdWc25Sd0tTZkJwYW5ieDdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS84ODg4NjktN2E2NS00MTViLWI2OGYt
NTQ4NDQwMmNlYjdhLzEvRVFpVGo3c2R3eUxPak1HSmxzS0FDTU5oSzYwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNS84ODg4NjktN2E2NS00MTViLWI2OGYtNTQ4NDQwMmNlYjdh
LzEvc01JSzRkck1veGdWc25Sd0tTZkJwYW5ieDdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABZqrMA0G
CSqGSIb3DQEBCwUAA4IBAQBJs0ISOCDAhfcEOhew2b3cUFvG0sDF7/OBNOmREQkJ
EgBXPb57T+uSk7k4KOJIwyjJjKV2ObtOBGrYdEjRchndRyUW4BYt0KAUXgQC0dnO
0E/78smW+hvNS6B9NtW1zHhDQN+QTlr1bbG4SsHSIF0IgjRusM5qseahiwVYrwpe
U7IaatQnvk4yFDAA31VIrrbgv3k+fA/6f1TBIMTBMCwLL/2m+7LTqQWrWan9rhwr
66thNskDRDP67Mc4XVo1M1cYd59UGkiSxs/ozregF7uWCnP2gIqB6W7C9QEEHv/s
IDrSIYa3p6y79ofxdKZKZm9rjY0GW9cAfMdlC2ntPODQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:07 2024 by rpki-client on console-fra.rpki-client.org