Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/TOUzUyQYqxx8fBKUCwqLYJr3y_A.roa
File: TOUzUyQYqxx8fBKUCwqLYJr3y_A.roa (raw, json)
Hash identifier: xgit4mJhbAANuq4OJ2G7E+8XpiEWhrqk0lm28n0C55M=
Subject key identifier: 4C:E5:33:53:24:18:AB:1C:7C:7C:12:94:0B:0A:8B:60:9A:F7:CB:F0
Certificate issuer: /CN=f04eb204f358004788224e2fb18e4d5e74bebf8d
Certificate serial: 018B515A544293CFAC458F65BB0FD4AD3E4F
Authority key identifier: F0:4E:B2:04:F3:58:00:47:88:22:4E:2F:B1:8E:4D:5E:74:BE:BF:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8E6yBPNYAEeIIk4vsY5NXnS-v40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/TOUzUyQYqxx8fBKUCwqLYJr3y_A.roa
Signing time: Sat 21 Oct 2023 08:29:16 +0000
ROA not before: Sat 21 Oct 2023 08:29:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 123.253.212.0/24 maxlen: 24
46.175.130.0/24 maxlen: 24
185.110.63.0/24 maxlen: 24
123.253.213.0/24 maxlen: 24
141.98.139.0/24 maxlen: 24
141.98.137.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Nov 2023 14:22:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:51:5a:54:42:93:cf:ac:45:8f:65:bb:0f:d4:ad:3e:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04eb204f358004788224e2fb18e4d5e74bebf8d
Validity
Not Before: Oct 21 08:29:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ce533532418ab1c7c7c12940b0a8b609af7cbf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c3:b4:60:3f:62:ea:cb:76:5c:fb:f5:3e:45:
79:28:3e:12:37:a2:73:a6:6b:7e:37:ee:09:3f:a5:
c9:48:fd:43:64:47:7e:3f:eb:10:d7:88:f9:1f:3a:
af:32:32:ac:92:4a:60:5b:2c:05:61:c6:b5:d8:6c:
35:54:dc:78:27:fe:48:7a:ed:79:5d:07:cc:ca:82:
28:d5:85:22:53:44:a3:6e:77:33:a2:99:9b:f0:d3:
62:dc:74:50:21:5c:cc:ae:4e:79:6d:dc:94:88:ce:
3f:fe:83:f4:bc:61:af:16:e8:1e:95:cc:37:c1:ad:
ac:7e:48:ed:91:ed:d6:0f:c7:b2:1d:92:92:88:dd:
7d:ce:3a:a2:6a:8e:d6:6c:69:10:d9:68:55:06:09:
61:7b:ec:f6:a2:42:aa:24:da:81:ff:2a:fb:25:d7:
76:6a:bb:b4:f6:37:12:76:a8:2a:b2:4a:16:27:a9:
f5:c1:e9:2a:65:2a:58:c1:18:00:6d:1b:f3:11:ff:
2c:19:05:b2:43:93:af:96:df:75:70:1e:ae:9b:26:
65:4f:c9:6a:ee:b9:84:ed:21:45:d4:b6:d5:98:24:
58:b2:b3:53:65:32:9a:24:71:72:f8:51:4d:e6:19:
fc:0d:5a:57:ea:83:37:32:76:ec:45:de:16:a4:33:
af:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:E5:33:53:24:18:AB:1C:7C:7C:12:94:0B:0A:8B:60:9A:F7:CB:F0
X509v3 Authority Key Identifier:
keyid:F0:4E:B2:04:F3:58:00:47:88:22:4E:2F:B1:8E:4D:5E:74:BE:BF:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8E6yBPNYAEeIIk4vsY5NXnS-v40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/TOUzUyQYqxx8fBKUCwqLYJr3y_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/9ab42a-df92-4e42-9e33-5c5892afa487/1/8E6yBPNYAEeIIk4vsY5NXnS-v40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.175.130.0/24
123.253.212.0/23
141.98.137.0/24
141.98.139.0/24
185.110.63.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:af:bf:ca:5e:33:dd:3a:cb:67:ac:cd:47:30:3c:d5:3b:e1:
d4:68:e5:80:8b:9a:c6:dd:b0:d4:0a:fa:49:a2:9d:8d:00:ba:
5a:bd:e4:e7:4c:6c:36:08:ae:5d:be:9f:1c:8c:45:bb:20:11:
e4:15:c3:ff:96:c9:34:d7:cf:c0:2f:77:cf:80:3a:8b:56:52:
14:7f:88:e9:96:87:d9:8b:1d:10:09:bf:39:2e:d3:5f:ca:78:
23:27:5e:0a:32:9b:57:a1:ca:17:84:9b:c0:5e:70:e2:e0:20:
63:7e:96:b7:8f:a9:c9:79:8c:17:7d:c6:31:ed:36:ed:f3:99:
5b:a8:23:43:1d:b2:ca:fe:88:8b:75:3f:be:eb:ed:4e:18:18:
40:36:c8:57:ef:c3:94:2d:13:a6:ed:8e:d2:2b:21:6e:15:3d:
fb:0f:7d:54:0a:1f:c3:00:8d:cb:12:7b:cb:c1:ac:7d:4e:08:
87:73:0d:68:2e:5f:7d:73:84:bf:92:67:5e:51:1f:e6:ab:30:
e5:a1:41:42:98:33:37:53:e2:16:70:fb:c5:b9:d8:82:35:94:
34:ac:93:16:5b:07:5e:e2:4f:ff:0f:22:a3:4e:0b:14:c0:61:
5a:e1:c2:ad:9f:15:bd:d0:bf:5e:5e:af:0c:e9:4a:2c:aa:e8:
80:41:9f:8b
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAYtRWlRCk8+sRY9luw/UrT5PMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwNGViMjA0ZjM1ODAwNDc4ODIyNGUyZmIxOGU0ZDVlNzRi
ZWJmOGQwHhcNMjMxMDIxMDgyOTE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0Y2U1MzM1MzI0MThhYjFjN2M3YzEyOTQwYjBhOGI2MDlhZjdjYmYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqcO0YD9i6st2XPv1PkV5KD4SN6Jz
pmt+N+4JP6XJSP1DZEd+P+sQ14j5HzqvMjKskkpgWywFYca12Gw1VNx4J/5Ieu15
XQfMyoIo1YUiU0Sjbnczopmb8NNi3HRQIVzMrk55bdyUiM4//oP0vGGvFugelcw3
wa2sfkjtke3WD8eyHZKSiN19zjqiao7WbGkQ2WhVBglhe+z2okKqJNqB/yr7Jdd2
aru09jcSdqgqskoWJ6n1wekqZSpYwRgAbRvzEf8sGQWyQ5Ovlt91cB6umyZlT8lq
7rmE7SFF1LbVmCRYsrNTZTKaJHFy+FFN5hn8DVpX6oM3MnbsRd4WpDOvLwIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFEzlM1MkGKscfHwSlAsKi2Ca98vwMB8GA1UdIwQY
MBaAFPBOsgTzWABHiCJOL7GOTV50vr+NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOEU2eUJQTllBRWVJSWs0dnNZNU5YblMtdjQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS85YWI0MmEtZGY5Mi00ZTQyLTllMzMt
NWM1ODkyYWZhNDg3LzEvVE9VelV5UVlxeHg4ZkJLVUN3cUxZSnIzeV9BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNS85YWI0MmEtZGY5Mi00ZTQyLTllMzMtNWM1ODkyYWZhNDg3
LzEvOEU2eUJQTllBRWVJSWs0dnNZNU5YblMtdjQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQALq+CAwQB
e/3UAwQAjWKJAwQAjWKLAwQAuW4/MA0GCSqGSIb3DQEBCwUAA4IBAQBMr7/KXjPd
OstnrM1HMDzVO+HUaOWAi5rG3bDUCvpJop2NALpaveTnTGw2CK5dvp8cjEW7IBHk
FcP/lsk018/AL3fPgDqLVlIUf4jplofZix0QCb85LtNfyngjJ14KMptXocoXhJvA
XnDi4CBjfpa3j6nJeYwXfcYx7Tbt85lbqCNDHbLK/oiLdT++6+1OGBhANshX78OU
LROm7Y7SKyFuFT37D31UCh/DAI3LEnvLwax9TgiHcw1oLl99c4S/kmdeUR/mqzDl
oUFCmDM3U+IWcPvFudiCNZQ0rJMWWwde4k//DyKjTgsUwGFa4cKtnxW90L9eXq8M
6UosquiAQZ+L
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:12 2024 by rpki-client on console-ams.rpki-client.org