Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/540e53-c4a6-4f52-811e-6afc4ec63cf0/1/2ofK8qkz14C8KFrwzsCxt-f54_A.roa
File: 2ofK8qkz14C8KFrwzsCxt-f54_A.roa (raw, json)
Hash identifier: tVSJwBYi8QM34QtBV/mCRxogfBuCs7f4EE7caFrb4h0=
Subject key identifier: DA:87:CA:F2:A9:33:D7:80:BC:28:5A:F0:CE:C0:B1:B7:E7:F9:E3:F0
Certificate issuer: /CN=e505d93497f19d2563066b409200969711f28c67
Certificate serial: 0185723A2BDE46E53AE9833C6DA72A6B0FC0
Authority key identifier: E5:05:D9:34:97:F1:9D:25:63:06:6B:40:92:00:96:97:11:F2:8C:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5QXZNJfxnSVjBmtAkgCWlxHyjGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/540e53-c4a6-4f52-811e-6afc4ec63cf0/1/2ofK8qkz14C8KFrwzsCxt-f54_A.roa
Signing time: Mon 02 Jan 2023 11:24:52 +0000
ROA not before: Mon 02 Jan 2023 11:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42184
IP address blocks: 194.49.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:3a:2b:de:46:e5:3a:e9:83:3c:6d:a7:2a:6b:0f:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e505d93497f19d2563066b409200969711f28c67
Validity
Not Before: Jan 2 11:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=da87caf2a933d780bc285af0cec0b1b7e7f9e3f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:bf:7a:b4:67:83:b8:1a:57:55:37:cc:1d:ef:
aa:ea:64:62:58:fc:f1:92:ed:73:61:e8:81:40:d3:
bf:b9:b0:99:18:96:e8:e5:68:a3:89:10:99:be:68:
91:89:30:35:dd:6f:a0:c7:9f:da:fa:be:91:97:7e:
0d:d6:ad:61:8b:b0:f3:cb:95:7d:c1:48:df:17:91:
60:c9:71:48:1f:bf:de:1d:36:6f:ec:9f:95:ca:da:
5b:4b:56:75:6e:0b:54:aa:60:f1:74:5e:06:5f:aa:
c5:e0:88:05:a7:eb:54:54:59:12:6e:12:79:5b:5c:
76:39:b8:51:bf:6d:ea:c7:a5:9c:64:9c:97:76:3a:
da:86:d4:1d:9a:65:5e:70:c5:03:9f:24:fc:00:28:
21:bd:54:b3:ef:3c:c1:91:91:4f:50:ad:fe:f7:fd:
c0:62:72:a2:1e:72:95:cb:85:b3:95:9f:2d:29:2a:
b5:55:e1:8e:72:8a:67:d8:4a:bc:3d:27:59:11:7e:
76:f8:07:b9:2f:d8:6f:dd:94:7a:2c:ad:02:a2:e9:
aa:97:77:81:8e:f4:3a:53:60:f5:28:f7:3e:50:f2:
1a:63:94:b9:bc:fc:0d:f8:36:5d:c8:23:f0:8d:ec:
2c:9c:e0:42:8a:44:a4:f5:86:14:0b:c6:6f:8c:2c:
5d:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:87:CA:F2:A9:33:D7:80:BC:28:5A:F0:CE:C0:B1:B7:E7:F9:E3:F0
X509v3 Authority Key Identifier:
keyid:E5:05:D9:34:97:F1:9D:25:63:06:6B:40:92:00:96:97:11:F2:8C:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5QXZNJfxnSVjBmtAkgCWlxHyjGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/540e53-c4a6-4f52-811e-6afc4ec63cf0/1/2ofK8qkz14C8KFrwzsCxt-f54_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/540e53-c4a6-4f52-811e-6afc4ec63cf0/1/5QXZNJfxnSVjBmtAkgCWlxHyjGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.49.22.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:f3:40:07:d7:bb:a3:7e:24:0f:01:fb:a2:34:ef:97:de:29:
c2:bb:57:a1:aa:ca:f4:7e:39:ba:2c:09:e8:bf:76:f1:c3:c5:
9b:f1:c3:f2:d6:c3:62:4b:8c:4a:87:c2:5e:ba:d0:0d:52:6d:
c5:29:fd:12:96:b2:77:f2:16:45:62:3e:24:45:c6:ce:1a:81:
60:06:fe:c8:10:0b:72:1d:1e:0e:09:12:4b:c4:49:ee:d4:2c:
e6:82:6c:48:f1:6e:b9:47:e2:31:01:b7:a2:ac:a9:3d:7c:79:
9f:cd:0e:de:a8:3d:69:31:f4:e7:2e:0d:12:e8:db:a2:65:a1:
15:cb:81:9e:18:9a:7e:7b:75:43:f2:59:03:7a:d8:fa:e9:66:
03:d3:44:60:1e:b0:24:1f:94:39:b5:2c:f5:6c:cc:b4:e3:25:
cd:79:4a:0a:e3:a3:7a:51:a6:e4:d1:f5:32:50:84:55:52:a9:
5f:a3:bf:7e:03:e4:b2:66:e2:9b:db:80:d4:df:b7:85:af:21:
6c:d5:c5:fd:fb:47:c6:7d:4e:36:40:a3:07:12:00:5f:27:f3:
f4:60:ee:84:06:0e:f9:34:e2:d2:9b:7d:6f:b9:2b:4e:6d:3d:
90:63:2d:0d:70:5c:55:12:26:55:96:18:4f:17:d9:e5:20:c0:
e4:2b:df:b9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyOiveRuU66YM8bacqaw/AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1MDVkOTM0OTdmMTlkMjU2MzA2NmI0MDkyMDA5Njk3MTFm
MjhjNjcwHhcNMjMwMTAyMTEyNDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYTg3Y2FmMmE5MzNkNzgwYmMyODVhZjBjZWMwYjFiN2U3ZjllM2YwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw796tGeDuBpXVTfMHe+q6mRiWPzx
ku1zYeiBQNO/ubCZGJbo5WijiRCZvmiRiTA13W+gx5/a+r6Rl34N1q1hi7Dzy5V9
wUjfF5FgyXFIH7/eHTZv7J+VytpbS1Z1bgtUqmDxdF4GX6rF4IgFp+tUVFkSbhJ5
W1x2ObhRv23qx6WcZJyXdjrahtQdmmVecMUDnyT8ACghvVSz7zzBkZFPUK3+9/3A
YnKiHnKVy4WzlZ8tKSq1VeGOcopn2Eq8PSdZEX52+Ae5L9hv3ZR6LK0Coumql3eB
jvQ6U2D1KPc+UPIaY5S5vPwN+DZdyCPwjewsnOBCikSk9YYUC8ZvjCxdgQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNqHyvKpM9eAvCha8M7Asbfn+ePwMB8GA1UdIwQY
MBaAFOUF2TSX8Z0lYwZrQJIAlpcR8oxnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNVFYWk5KZnhuU1ZqQm10QWtnQ1dseEh5akdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC81NDBlNTMtYzRhNi00ZjUyLTgxMWUt
NmFmYzRlYzYzY2YwLzEvMm9mSzhxa3oxNEM4S0Zyd3pzQ3h0LWY1NF9BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC81NDBlNTMtYzRhNi00ZjUyLTgxMWUtNmFmYzRlYzYzY2Yw
LzEvNVFYWk5KZnhuU1ZqQm10QWtnQ1dseEh5akdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwjEWMA0G
CSqGSIb3DQEBCwUAA4IBAQB980AH17ujfiQPAfuiNO+X3inCu1ehqsr0fjm6LAno
v3bxw8Wb8cPy1sNiS4xKh8JeutANUm3FKf0SlrJ38hZFYj4kRcbOGoFgBv7IEAty
HR4OCRJLxEnu1CzmgmxI8W65R+IxAbeirKk9fHmfzQ7eqD1pMfTnLg0S6NuiZaEV
y4GeGJp+e3VD8lkDetj66WYD00RgHrAkH5Q5tSz1bMy04yXNeUoK46N6Uabk0fUy
UIRVUqlfo79+A+SyZuKb24DU37eFryFs1cX9+0fGfU42QKMHEgBfJ/P0YO6EBg75
NOLSm31vuStObT2QYy0NcFxVEiZVlhhPF9nlIMDkK9+5
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:45 2024 by rpki-client on console-ams.rpki-client.org