Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/WXhtN-GGL-LAaRk3AMF0s1hnpog.roa
File: WXhtN-GGL-LAaRk3AMF0s1hnpog.roa (raw, json)
Hash identifier: yjHr2THnKsoZRKkscqd+R+/cd7GOotz9i4YcYcKlpNc=
Subject key identifier: 59:78:6D:37:E1:86:2F:E2:C0:69:19:37:00:C1:74:B3:58:67:A6:88
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018A8DB7D846BA6CAE5E3D76DD399CA1C20E
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/WXhtN-GGL-LAaRk3AMF0s1hnpog.roa
Signing time: Wed 13 Sep 2023 08:45:50 +0000
ROA not before: Wed 13 Sep 2023 08:45:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 194.5.67.0/24 maxlen: 24
185.223.83.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 09 Dec 2023 12:21:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8d:b7:d8:46:ba:6c:ae:5e:3d:76:dd:39:9c:a1:c2:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Sep 13 08:45:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=59786d37e1862fe2c069193700c174b35867a688
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:8b:bb:71:7a:f7:1a:c8:58:74:7b:9b:01:ae:
00:7e:21:95:78:a9:a1:26:22:be:ba:8a:dd:3b:e3:
a0:1f:5b:af:9e:c6:5c:ec:f9:6a:11:5b:35:e8:f2:
91:e2:49:88:92:47:f0:e9:99:0b:13:03:d0:f1:bf:
67:7c:14:be:82:8d:80:40:50:35:0f:50:08:d2:93:
15:bf:e6:79:19:a6:26:9e:26:29:5e:70:d0:22:fe:
54:d9:85:9a:4b:fc:c0:5b:3d:46:cc:d7:75:8b:a9:
92:c3:d2:2f:a8:1c:35:46:86:ac:5b:67:9e:b6:4e:
bd:f4:21:2c:61:ef:6e:69:2f:47:4a:31:64:2c:bb:
f4:7d:14:0f:5d:84:5d:f3:f8:ff:14:25:0c:75:12:
db:64:8c:0a:1a:44:f8:5b:ec:05:a9:9b:d2:a5:2e:
13:34:2d:d4:40:69:d5:f2:e2:ad:12:6b:6c:d9:ba:
e3:80:8f:53:16:70:7f:ac:ac:66:8b:11:dc:3a:0a:
6e:8f:70:a6:e2:55:52:19:f6:36:5b:6a:cb:17:98:
f6:b9:f3:1c:55:cd:7a:c6:04:c4:b4:e9:3f:4c:8b:
a5:79:a5:09:93:e1:03:12:56:63:ae:b9:3b:f7:06:
bd:ce:29:02:7c:a5:c5:31:b4:11:49:0b:58:f5:55:
a2:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:78:6D:37:E1:86:2F:E2:C0:69:19:37:00:C1:74:B3:58:67:A6:88
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/WXhtN-GGL-LAaRk3AMF0s1hnpog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.83.0/24
194.5.67.0/24
Signature Algorithm: sha256WithRSAEncryption
70:19:0c:b6:f3:fa:d2:7b:63:1b:e3:87:be:09:0f:3d:43:d0:
58:0a:f7:36:88:87:b6:c3:9c:93:fd:f2:15:bb:18:63:de:df:
ab:c2:44:f0:0e:62:de:0b:dc:3b:a9:83:9c:bf:af:d2:b2:e1:
bf:03:08:12:5b:f8:d0:8f:89:78:b9:8b:76:97:49:26:68:77:
7c:e1:e0:b3:ed:4e:99:f3:84:ae:bc:0a:1e:7d:5d:01:70:12:
f6:b7:71:b4:fc:f9:80:fb:e8:7f:d6:01:f6:36:20:7b:2e:dd:
9e:f5:97:aa:d3:4c:6e:c4:9f:95:3c:ea:dd:75:e6:bb:73:88:
67:97:47:a3:9d:d7:cd:f0:db:f8:41:4e:fe:1e:b6:be:94:58:
70:f0:5f:8d:cd:a3:fe:b7:e0:1f:7f:e0:fb:e3:a2:aa:48:4c:
05:a7:b2:3f:50:67:14:76:0e:6f:4a:8c:a8:dc:49:f8:07:00:
56:69:39:fe:6e:c1:17:ed:0e:a6:73:7f:a3:19:9d:2d:5c:52:
a2:f4:5e:bc:ac:0d:45:12:d9:ee:64:6b:42:d6:8b:2f:b3:79:
6c:9a:0b:9e:55:7b:ed:89:f0:a6:38:87:3f:64:24:9d:7e:86:
06:14:b1:ec:fa:dd:01:19:91:bf:48:70:f1:1d:f9:a5:f1:d6:
57:6d:ef:2d
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYqNt9hGumyuXj123TmcocIOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjMwOTEzMDg0NTUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OTc4NmQzN2UxODYyZmUyYzA2OTE5MzcwMGMxNzRiMzU4NjdhNjg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkIu7cXr3GshYdHubAa4AfiGVeKmh
JiK+uordO+OgH1uvnsZc7PlqEVs16PKR4kmIkkfw6ZkLEwPQ8b9nfBS+go2AQFA1
D1AI0pMVv+Z5GaYmniYpXnDQIv5U2YWaS/zAWz1GzNd1i6mSw9IvqBw1RoasW2ee
tk699CEsYe9uaS9HSjFkLLv0fRQPXYRd8/j/FCUMdRLbZIwKGkT4W+wFqZvSpS4T
NC3UQGnV8uKtEmts2brjgI9TFnB/rKxmixHcOgpuj3Cm4lVSGfY2W2rLF5j2ufMc
Vc16xgTEtOk/TIuleaUJk+EDElZjrrk79wa9zikCfKXFMbQRSQtY9VWiUQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFFl4bTfhhi/iwGkZNwDBdLNYZ6aIMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvV1hodE4tR0dMLUxBYVJrM0FNRjBzMWhucG9nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAud9TAwQA
wgVDMA0GCSqGSIb3DQEBCwUAA4IBAQBwGQy28/rSe2Mb44e+CQ89Q9BYCvc2iIe2
w5yT/fIVuxhj3t+rwkTwDmLeC9w7qYOcv6/SsuG/AwgSW/jQj4l4uYt2l0kmaHd8
4eCz7U6Z84SuvAoefV0BcBL2t3G0/PmA++h/1gH2NiB7Lt2e9Zeq00xuxJ+VPOrd
dea7c4hnl0ejndfN8Nv4QU7+Hra+lFhw8F+NzaP+t+Aff+D746KqSEwFp7I/UGcU
dg5vSoyo3En4BwBWaTn+bsEX7Q6mc3+jGZ0tXFKi9F68rA1FEtnuZGtC1osvs3ls
mgueVXvtifCmOIc/ZCSdfoYGFLHs+t0BGZG/SHDxHfml8dZXbe8t
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:27 2024 by rpki-client on console-ams.rpki-client.org