Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/teSGlu7cvzvIpVOsff5QmE5vEZE.roa
File: teSGlu7cvzvIpVOsff5QmE5vEZE.roa (raw, json)
Hash identifier: ypJvD3Nzn7SOjZH5VksbLc/3NTXuhqsVhCLTzS6wcBc=
Subject key identifier: B5:E4:86:96:EE:DC:BF:3B:C8:A5:53:AC:7D:FE:50:98:4E:6F:11:91
Certificate issuer: /CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Certificate serial: 018CC2DB14528B1513CF99191DD1A57C6652
Authority key identifier: 50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/teSGlu7cvzvIpVOsff5QmE5vEZE.roa
Signing time: Mon 01 Jan 2024 02:29:46 +0000
ROA not before: Mon 01 Jan 2024 02:29:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204457
IP address blocks: 194.145.138.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 28 May 2024 07:39:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:14:52:8b:15:13:cf:99:19:1d:d1:a5:7c:66:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Validity
Not Before: Jan 1 02:29:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b5e48696eedcbf3bc8a553ac7dfe50984e6f1191
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:5a:32:e1:57:3e:da:e3:55:be:af:d7:84:84:
63:90:c1:41:c2:68:68:9f:6b:76:c5:c3:3f:51:be:
ea:c2:f9:10:c6:e0:f8:a8:e4:b4:bb:cd:3d:5c:3d:
01:57:cc:49:58:88:7d:22:8e:fd:f2:ff:cd:8f:00:
2a:12:a0:54:4e:fc:f5:47:0f:00:e0:9b:0d:e9:37:
1d:53:00:b3:95:67:25:ac:32:87:09:47:3f:63:30:
48:69:f4:55:d1:1a:ad:db:cd:79:35:2b:af:d0:65:
1c:a9:0a:72:6d:37:c4:be:97:c8:d3:b6:18:97:c9:
3c:f4:52:0e:e9:3c:cf:a2:2d:88:ee:57:42:88:94:
c1:d1:9c:b3:26:f2:e5:32:75:5a:5d:21:7c:39:f5:
c2:df:66:7b:4c:05:76:57:0b:fa:0b:3a:53:33:08:
bb:81:99:cb:28:9a:21:67:f7:9c:18:8d:6f:32:65:
d4:aa:c1:d6:7d:4f:5b:a2:54:ce:7f:d6:68:0f:c6:
99:de:21:36:02:03:1b:cb:e1:d9:41:3d:fb:72:6b:
d0:7a:80:70:13:c1:48:81:9d:5a:7f:33:6f:dc:8e:
31:a9:a2:f4:15:9e:85:dc:e3:c6:d2:d9:f4:7c:69:
59:20:26:1b:73:e2:0f:0f:52:4a:6f:6d:e7:f9:34:
10:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:E4:86:96:EE:DC:BF:3B:C8:A5:53:AC:7D:FE:50:98:4E:6F:11:91
X509v3 Authority Key Identifier:
keyid:50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/teSGlu7cvzvIpVOsff5QmE5vEZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/UFkuaIlccGi0ZVUIkXrVu929Cl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.145.138.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:88:bb:d6:40:b4:df:04:6c:9f:f8:90:f5:62:4b:35:ab:4e:
f2:a4:23:8a:ae:b1:b4:e0:ae:ae:ae:c3:b7:a6:02:d7:10:c8:
80:40:1a:c9:d0:99:29:7a:e4:d1:03:05:df:bd:5b:26:65:72:
59:45:d5:4e:05:ca:76:51:13:d2:b5:73:1b:9d:63:52:6c:49:
77:b1:0a:1a:23:98:15:28:b1:8c:89:6f:bc:b8:2e:00:08:8c:
c3:a7:42:67:59:20:cc:46:19:5f:c6:07:0a:a9:df:b4:8c:65:
5d:c8:f5:b8:87:e6:2a:d0:b0:8e:b7:ee:6e:b5:ec:6d:94:d1:
5f:36:f3:5e:9b:79:a3:54:76:b6:39:28:6b:70:57:ca:14:84:
3b:cc:42:01:12:74:69:23:78:54:3f:f3:1b:ac:4c:17:d7:f0:
fc:df:47:05:a9:6c:9b:1d:7d:d1:7b:8c:1d:eb:2b:ec:70:34:
8c:05:6f:7e:50:0a:93:44:c2:23:41:15:b1:4e:74:9d:3c:2c:
50:a0:43:e1:14:ae:ea:fd:43:e6:be:79:75:63:8f:15:d6:72:
09:49:6b:18:1b:b8:0c:c7:01:b7:5c:70:4b:75:7c:98:f8:8a:
b0:a0:1d:0f:b4:4c:ea:64:d8:1f:06:7d:a6:a3:35:97:78:f5:
41:e7:18:76
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzC2xRSixUTz5kZHdGlfGZSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwNTkyZTY4ODk1YzcwNjhiNDY1NTUwODkxN2FkNWJiZGRi
ZDBhNWYwHhcNMjQwMTAxMDIyOTQ2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNWU0ODY5NmVlZGNiZjNiYzhhNTUzYWM3ZGZlNTA5ODRlNmYxMTkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwloy4Vc+2uNVvq/XhIRjkMFBwmho
n2t2xcM/Ub7qwvkQxuD4qOS0u809XD0BV8xJWIh9Io798v/NjwAqEqBUTvz1Rw8A
4JsN6TcdUwCzlWclrDKHCUc/YzBIafRV0Rqt2815NSuv0GUcqQpybTfEvpfI07YY
l8k89FIO6TzPoi2I7ldCiJTB0ZyzJvLlMnVaXSF8OfXC32Z7TAV2Vwv6CzpTMwi7
gZnLKJohZ/ecGI1vMmXUqsHWfU9bolTOf9ZoD8aZ3iE2AgMby+HZQT37cmvQeoBw
E8FIgZ1afzNv3I4xqaL0FZ6F3OPG0tn0fGlZICYbc+IPD1JKb23n+TQQbQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLXkhpbu3L87yKVTrH3+UJhObxGRMB8GA1UdIwQY
MBaAFFBZLmiJXHBotGVVCJF61bvdvQpfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVUZrdWFJbGNjR2kwWlZVSWtYclZ1OTI5Q2w4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi8yYTgxMDAtMTcyYi00OGUzLWEzMmEt
N2JiZDI4Y2U0YTc1LzEvdGVTR2x1N2N2enZJcFZPc2ZmNVFtRTV2RVpFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi8yYTgxMDAtMTcyYi00OGUzLWEzMmEtN2JiZDI4Y2U0YTc1
LzEvVUZrdWFJbGNjR2kwWlZVSWtYclZ1OTI5Q2w4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwpGKMA0G
CSqGSIb3DQEBCwUAA4IBAQCkiLvWQLTfBGyf+JD1Yks1q07ypCOKrrG04K6ursO3
pgLXEMiAQBrJ0JkpeuTRAwXfvVsmZXJZRdVOBcp2URPStXMbnWNSbEl3sQoaI5gV
KLGMiW+8uC4ACIzDp0JnWSDMRhlfxgcKqd+0jGVdyPW4h+Yq0LCOt+5utextlNFf
NvNem3mjVHa2OShrcFfKFIQ7zEIBEnRpI3hUP/MbrEwX1/D830cFqWybHX3Re4wd
6yvscDSMBW9+UAqTRMIjQRWxTnSdPCxQoEPhFK7q/UPmvnl1Y48V1nIJSWsYG7gM
xwG3XHBLdXyY+IqwoB0PtEzqZNgfBn2mozWXePVB5xh2
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:59 2024 by rpki-client on console-fra.rpki-client.org