Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/1wbtuJKAry1w1Kiut9QE7zTZt6s.roa
File: 1wbtuJKAry1w1Kiut9QE7zTZt6s.roa (raw, json)
Hash identifier: y7sbSIY1PkSyJm2OzkpslBeJGtqZgiyJq1Ue3aBOyYs=
Subject key identifier: D7:06:ED:B8:92:80:AF:2D:70:D4:A8:AE:B7:D4:04:EF:34:D9:B7:AB
Certificate issuer: /CN=1c4c26273da2821fce26075aa0a6e2301ec84927
Certificate serial: 01856DA65651C3FA837DD3DFA51D2BE02EEF
Authority key identifier: 1C:4C:26:27:3D:A2:82:1F:CE:26:07:5A:A0:A6:E2:30:1E:C8:49:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HEwmJz2igh_OJgdaoKbiMB7ISSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/1wbtuJKAry1w1Kiut9QE7zTZt6s.roa
Signing time: Sun 01 Jan 2023 14:04:55 +0000
ROA not before: Sun 01 Jan 2023 14:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 786
IP address blocks: 143.239.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:a6:56:51:c3:fa:83:7d:d3:df:a5:1d:2b:e0:2e:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c4c26273da2821fce26075aa0a6e2301ec84927
Validity
Not Before: Jan 1 14:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d706edb89280af2d70d4a8aeb7d404ef34d9b7ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:30:43:21:16:96:21:94:82:05:16:4d:78:88:
68:1f:68:db:5b:dd:67:39:0b:64:37:8d:aa:12:45:
c8:45:67:d3:9d:08:d9:ed:23:0b:2a:d5:59:ea:ee:
d1:65:e9:67:f5:78:70:2c:e8:b4:41:6a:ec:70:bf:
c7:48:ea:27:bd:dd:c5:b6:c6:8d:55:78:56:ae:fa:
0b:1c:94:c1:e9:d2:d9:c3:fb:dc:c5:a0:a4:e3:ce:
dd:ff:a3:79:ce:3e:65:ab:9c:52:99:e7:a7:b6:4c:
75:66:89:25:6a:71:87:1c:3f:fb:04:54:e1:5a:5a:
ee:46:1f:87:db:a5:42:fe:b0:fe:78:b2:f4:6e:9d:
23:8e:21:ee:00:28:77:f3:f2:15:15:b1:2a:73:56:
fc:ef:a3:cd:18:e9:8f:10:ff:af:1c:f1:34:c2:7d:
fc:33:e6:51:6b:07:7a:9f:a2:02:5f:e9:16:02:93:
05:b7:ad:ae:2e:dd:60:92:59:7d:71:06:74:3d:26:
5c:fb:4e:78:f9:0f:34:85:cc:b7:6d:9d:ca:a1:59:
11:a4:6b:a9:ff:a6:9d:20:f0:1e:d6:00:a5:d5:06:
b6:d4:9a:f2:16:36:af:c5:1b:39:65:16:c8:08:8d:
22:d5:ae:01:a0:f3:95:95:73:ae:3e:1f:9f:28:4f:
84:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:06:ED:B8:92:80:AF:2D:70:D4:A8:AE:B7:D4:04:EF:34:D9:B7:AB
X509v3 Authority Key Identifier:
keyid:1C:4C:26:27:3D:A2:82:1F:CE:26:07:5A:A0:A6:E2:30:1E:C8:49:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HEwmJz2igh_OJgdaoKbiMB7ISSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/1wbtuJKAry1w1Kiut9QE7zTZt6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/545cce-af11-4ef7-9a5d-d35b430af26d/1/HEwmJz2igh_OJgdaoKbiMB7ISSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.239.0.0/16
Signature Algorithm: sha256WithRSAEncryption
05:5e:bd:dc:44:0e:2a:a3:02:4f:10:f1:2e:b7:46:a3:90:4d:
5e:24:46:50:40:cb:86:0d:3c:d4:18:62:7b:33:2d:d5:95:d0:
d4:41:59:c3:d1:80:c0:49:3e:7d:82:9f:7f:40:6a:2c:7d:22:
5a:11:b7:b1:8f:3a:4f:98:d6:b6:b9:fe:fc:41:d0:a0:87:ab:
44:6c:24:cf:17:5e:9d:9e:c6:30:a6:7e:28:dc:db:71:fd:56:
01:02:e4:06:fe:92:98:3c:39:84:bd:94:e4:d6:75:b4:bb:a5:
67:e9:b1:bc:a2:b2:ff:e6:fb:8b:08:00:a4:26:42:8d:0c:99:
47:07:42:db:18:c7:34:50:bb:00:c4:ad:55:0d:a5:6d:6c:0a:
1d:c6:18:b5:27:12:8b:f7:55:c1:b5:99:49:0f:87:9a:b3:52:
cc:db:c5:47:57:35:d8:3e:f0:04:4a:87:73:14:c5:ac:e8:86:
45:2f:bd:2c:fb:1f:04:99:03:b9:1b:dc:e8:9c:53:b0:f0:70:
2e:3f:01:7d:d2:22:cf:0b:bb:be:8d:a1:59:e7:dc:0d:af:80:
3b:ef:f7:43:b7:5a:19:d6:8c:55:59:15:a9:16:ef:0b:c8:68:
3d:50:ef:30:40:73:42:e6:11:b5:7c:bf:fa:f0:1f:6c:87:50:
89:90:9e:23
-----BEGIN CERTIFICATE-----
MIIE/DCCA+SgAwIBAgISAYVtplZRw/qDfdPfpR0r4C7vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjNGMyNjI3M2RhMjgyMWZjZTI2MDc1YWEwYTZlMjMwMWVj
ODQ5MjcwHhcNMjMwMTAxMTQwNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNzA2ZWRiODkyODBhZjJkNzBkNGE4YWViN2Q0MDRlZjM0ZDliN2FiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApzBDIRaWIZSCBRZNeIhoH2jbW91n
OQtkN42qEkXIRWfTnQjZ7SMLKtVZ6u7RZeln9XhwLOi0QWrscL/HSOonvd3FtsaN
VXhWrvoLHJTB6dLZw/vcxaCk487d/6N5zj5lq5xSmeentkx1ZoklanGHHD/7BFTh
WlruRh+H26VC/rD+eLL0bp0jjiHuACh38/IVFbEqc1b876PNGOmPEP+vHPE0wn38
M+ZRawd6n6ICX+kWApMFt62uLt1gkll9cQZ0PSZc+054+Q80hcy3bZ3KoVkRpGup
/6adIPAe1gCl1Qa21JryFjavxRs5ZRbICI0i1a4BoPOVlXOuPh+fKE+EHQIDAQAB
o4ICCDCCAgQwHQYDVR0OBBYEFNcG7biSgK8tcNSorrfUBO802berMB8GA1UdIwQY
MBaAFBxMJic9ooIfziYHWqCm4jAeyEknMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSEV3bUp6MmlnaF9PSmdkYW9LYmlNQjdJU1NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS81NDVjY2UtYWYxMS00ZWY3LTlhNWQt
ZDM1YjQzMGFmMjZkLzEvMXdidHVKS0FyeTF3MUtpdXQ5UUU3elRadDZzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNS81NDVjY2UtYWYxMS00ZWY3LTlhNWQtZDM1YjQzMGFmMjZk
LzEvSEV3bUp6MmlnaF9PSmdkYW9LYmlNQjdJU1NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAj+8wDQYJ
KoZIhvcNAQELBQADggEBAAVevdxEDiqjAk8Q8S63RqOQTV4kRlBAy4YNPNQYYnsz
LdWV0NRBWcPRgMBJPn2Cn39Aaix9IloRt7GPOk+Y1ra5/vxB0KCHq0RsJM8XXp2e
xjCmfijc23H9VgEC5Ab+kpg8OYS9lOTWdbS7pWfpsbyisv/m+4sIAKQmQo0MmUcH
QtsYxzRQuwDErVUNpW1sCh3GGLUnEov3VcG1mUkPh5qzUszbxUdXNdg+8ARKh3MU
xazohkUvvSz7HwSZA7kb3OicU7DwcC4/AX3SIs8Lu76NoVnn3A2vgDvv90O3WhnW
jFVZFakW7wvIaD1Q7zBAc0LmEbV8v/rwH2yHUImQniM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:27 2024 by rpki-client on console-ams.rpki-client.org