Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/PbuTsqRoY8YUQtNU-GNnS-4sloM.roa
File: PbuTsqRoY8YUQtNU-GNnS-4sloM.roa (raw, json)
Hash identifier: xtFqjONuV8582mINuOtM77syHuzc6AYoEu94v+3NT6w=
Subject key identifier: 3D:BB:93:B2:A4:68:63:C6:14:42:D3:54:F8:63:67:4B:EE:2C:96:83
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 018570FBC2D1E8E4171A3F8A62AA2D2D67BD
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/PbuTsqRoY8YUQtNU-GNnS-4sloM.roa
Signing time: Mon 02 Jan 2023 05:37:05 +0000
ROA not before: Mon 02 Jan 2023 05:37:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200615
IP address blocks: 5.1.70.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:c2:d1:e8:e4:17:1a:3f:8a:62:aa:2d:2d:67:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Jan 2 05:37:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3dbb93b2a46863c61442d354f863674bee2c9683
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:b5:11:f7:54:bf:eb:dc:1b:d1:15:da:16:0b:
21:d7:69:8b:0d:a7:11:71:1a:b2:65:55:e8:29:a5:
ad:87:44:dc:8c:23:4f:a7:75:01:4a:02:a9:95:79:
42:5f:90:c0:d4:80:90:68:19:f4:4d:40:49:3c:68:
6e:99:26:9c:92:5b:0d:78:07:9d:ed:7d:0e:6f:7c:
bd:6b:6d:3d:c4:fb:45:78:dd:38:b6:76:5c:91:a8:
0c:b6:02:fb:5a:a1:09:96:14:da:e3:3f:f5:55:ad:
25:65:05:67:79:ac:47:29:b3:b7:5c:bf:78:ba:5b:
f4:8b:00:e5:1e:85:0a:00:06:82:f6:26:1d:0a:a1:
3b:a2:e1:eb:3d:3c:af:73:b6:df:77:62:31:e7:3f:
dc:81:42:ec:3e:55:68:3b:f7:37:fe:05:cf:e1:fd:
78:d3:2d:56:dd:6c:b0:44:f4:f9:bd:3b:e6:24:8c:
84:73:50:b2:20:1a:a4:75:ac:d7:1c:10:47:6b:bf:
64:e8:b2:79:88:81:e6:eb:57:b3:1b:0f:9b:dd:0b:
8b:46:a2:e9:ac:b9:80:d4:6c:7c:77:22:1c:16:a1:
ea:8d:be:c7:43:b1:cb:35:77:90:ba:43:6c:20:58:
1d:fe:5a:5b:1f:f0:80:6e:9c:00:ac:e8:85:66:19:
b1:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:BB:93:B2:A4:68:63:C6:14:42:D3:54:F8:63:67:4B:EE:2C:96:83
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/PbuTsqRoY8YUQtNU-GNnS-4sloM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.70.0/24
Signature Algorithm: sha256WithRSAEncryption
14:ed:bb:99:53:fd:82:94:b3:1f:b6:4c:c2:28:c6:2c:36:66:
23:c8:23:e8:88:bb:29:cf:b6:48:bc:fc:a3:97:d9:ef:16:4c:
0e:38:11:ab:da:9b:8a:c0:4c:d4:37:5e:d8:29:d0:e7:30:41:
c8:02:91:9c:3f:0a:ce:66:79:3f:77:a8:d7:1a:b1:4b:8a:59:
eb:03:19:5d:a8:52:c6:c6:58:24:d2:9b:a5:d0:ec:92:db:86:
6d:3b:2a:29:70:25:43:fa:3a:c5:cb:fa:e1:fe:5d:7e:34:96:
42:ad:9a:7e:b8:c8:bf:95:4f:42:53:e3:b2:f9:d4:49:51:39:
3f:7b:5a:f8:7a:3e:10:52:d1:1d:c4:a3:f5:41:b6:81:2f:13:
29:1b:a8:0a:b1:5c:7d:74:74:4a:6e:ab:2b:cc:60:0c:17:bb:
6a:fb:8b:cc:8d:60:41:70:e4:46:ec:1c:c5:96:51:0d:ee:08:
c8:85:66:bd:a3:b6:07:95:fe:63:14:d5:31:28:78:bb:79:6c:
65:35:25:68:ef:5b:17:b5:07:ac:3e:61:0c:09:c8:f7:1a:62:
0c:27:fe:1d:31:b3:4c:ff:63:0e:62:57:de:ff:a6:b3:68:97:
28:b9:2c:7a:54:eb:1e:33:dc:a7:7f:c2:10:b9:40:76:63:f5:
64:8c:d3:60
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVw+8LR6OQXGj+KYqotLWe9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0MjUzYzRmMjMzY2U5ODQ3Njk5YWU2OGVjYmY1ZDc1MTRi
MGZhZGIwHhcNMjMwMTAyMDUzNzA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZGJiOTNiMmE0Njg2M2M2MTQ0MmQzNTRmODYzNjc0YmVlMmM5NjgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk7UR91S/69wb0RXaFgsh12mLDacR
cRqyZVXoKaWth0TcjCNPp3UBSgKplXlCX5DA1ICQaBn0TUBJPGhumSacklsNeAed
7X0Ob3y9a209xPtFeN04tnZckagMtgL7WqEJlhTa4z/1Va0lZQVneaxHKbO3XL94
ulv0iwDlHoUKAAaC9iYdCqE7ouHrPTyvc7bfd2Ix5z/cgULsPlVoO/c3/gXP4f14
0y1W3WywRPT5vTvmJIyEc1CyIBqkdazXHBBHa79k6LJ5iIHm61ezGw+b3QuLRqLp
rLmA1Gx8dyIcFqHqjb7HQ7HLNXeQukNsIFgd/lpbH/CAbpwArOiFZhmxawIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFD27k7KkaGPGFELTVPhjZ0vuLJaDMB8GA1UdIwQY
MBaAFLQlPE8jPOmEdpmuaOy/XXUUsPrbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdENVOFR5TTg2WVIybWE1bzdMOWRkUlN3LXRzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC80MWQ2ZTEtNWNhZC00MGRiLTk3NzMt
NThiMzhmNWFjODBiLzEvUGJ1VHNxUm9ZOFlVUXROVS1HTm5TLTRzbG9NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC80MWQ2ZTEtNWNhZC00MGRiLTk3NzMtNThiMzhmNWFjODBi
LzEvdENVOFR5TTg2WVIybWE1bzdMOWRkUlN3LXRzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABQFGMA0G
CSqGSIb3DQEBCwUAA4IBAQAU7buZU/2ClLMftkzCKMYsNmYjyCPoiLspz7ZIvPyj
l9nvFkwOOBGr2puKwEzUN17YKdDnMEHIApGcPwrOZnk/d6jXGrFLilnrAxldqFLG
xlgk0pul0OyS24ZtOyopcCVD+jrFy/rh/l1+NJZCrZp+uMi/lU9CU+Oy+dRJUTk/
e1r4ej4QUtEdxKP1QbaBLxMpG6gKsVx9dHRKbqsrzGAMF7tq+4vMjWBBcORG7BzF
llEN7gjIhWa9o7YHlf5jFNUxKHi7eWxlNSVo71sXtQesPmEMCcj3GmIMJ/4dMbNM
/2MOYlfe/6azaJcouSx6VOseM9ynf8IQuUB2Y/VkjNNg
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:31 2024 by rpki-client on console-ams.rpki-client.org