Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/eaf2e2-1817-40a8-9be8-2507db32c1c4/1/AcAlEfzwIEjT_Rns8OWpfBkb9rE.roa
File: AcAlEfzwIEjT_Rns8OWpfBkb9rE.roa (raw, json)
Hash identifier: FmP3Qs3Wri7cGae1pDeJgsYlJO6wCjE/DxFnR50IyQU=
Subject key identifier: 01:C0:25:11:FC:F0:20:48:D3:FD:19:EC:F0:E5:A9:7C:19:1B:F6:B1
Certificate issuer: /CN=88ff4ee623d8fab73c901d0cbdc93a321e9ccfb7
Certificate serial: 018631900773F4654477DEFFAEC6E013B45C
Authority key identifier: 88:FF:4E:E6:23:D8:FA:B7:3C:90:1D:0C:BD:C9:3A:32:1E:9C:CF:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iP9O5iPY-rc8kB0Mvck6Mh6cz7c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/eaf2e2-1817-40a8-9be8-2507db32c1c4/1/AcAlEfzwIEjT_Rns8OWpfBkb9rE.roa
Signing time: Wed 08 Feb 2023 15:06:08 +0000
ROA not before: Wed 08 Feb 2023 15:06:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41509
IP address blocks: 194.145.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:31:90:07:73:f4:65:44:77:de:ff:ae:c6:e0:13:b4:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88ff4ee623d8fab73c901d0cbdc93a321e9ccfb7
Validity
Not Before: Feb 8 15:06:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=01c02511fcf02048d3fd19ecf0e5a97c191bf6b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:f9:63:92:c0:c2:8a:7f:0b:d6:ce:e4:8a:91:
13:a3:d8:bc:b4:86:4c:ba:89:2f:4e:2c:63:66:a4:
62:56:75:9d:5c:46:90:9d:30:6d:dd:83:47:f5:9d:
fb:d6:fe:fd:07:24:b4:f0:df:db:3d:c3:da:20:15:
12:ab:7f:6b:42:38:f4:1e:b5:e2:c9:8b:64:46:40:
0c:7c:7a:ec:31:f9:3d:6d:a7:ac:4a:6c:40:57:af:
53:9b:7e:aa:ce:a3:ef:5e:b1:54:22:99:4f:85:ae:
61:60:0f:5f:2a:96:64:9d:50:84:ab:37:80:7b:72:
96:55:0d:a0:ea:cd:8b:cc:b8:a7:42:7e:69:4f:98:
9d:4f:2c:7b:ec:98:45:b8:95:34:d0:de:0b:b4:db:
a5:1b:3d:3e:b7:68:79:69:53:b1:c1:1b:f6:94:8e:
ff:b6:d5:8d:20:54:d4:eb:65:ba:ca:bc:88:af:fc:
92:cd:b2:cc:11:84:8a:7d:4b:12:26:51:dc:ae:0f:
4a:26:c5:08:46:81:7b:87:45:65:af:bc:2b:5e:96:
44:ca:39:40:9a:14:ed:cd:a2:d5:86:01:a8:c3:31:
be:9d:0f:01:bb:0d:ff:1e:0e:9b:2f:4a:a3:9e:f3:
7b:7d:9c:ee:f3:bf:c4:10:88:32:e9:5d:50:6c:08:
ad:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:C0:25:11:FC:F0:20:48:D3:FD:19:EC:F0:E5:A9:7C:19:1B:F6:B1
X509v3 Authority Key Identifier:
keyid:88:FF:4E:E6:23:D8:FA:B7:3C:90:1D:0C:BD:C9:3A:32:1E:9C:CF:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iP9O5iPY-rc8kB0Mvck6Mh6cz7c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/eaf2e2-1817-40a8-9be8-2507db32c1c4/1/AcAlEfzwIEjT_Rns8OWpfBkb9rE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/eaf2e2-1817-40a8-9be8-2507db32c1c4/1/iP9O5iPY-rc8kB0Mvck6Mh6cz7c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.145.156.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:2f:0b:80:86:8c:d9:06:2d:bb:bf:ee:60:37:d6:69:01:39:
fa:d2:d2:07:24:65:f0:48:0d:d3:66:9d:d0:e4:69:ee:5f:23:
a6:f8:df:45:5f:ce:4e:f8:50:ad:a0:53:51:98:71:6e:f5:91:
8b:49:5c:33:7e:71:e7:02:9f:f3:8c:6a:f3:59:70:6b:12:b8:
41:21:e0:cb:bc:75:8b:7a:90:b6:72:00:91:60:97:16:af:22:
e0:a9:d6:49:c2:04:b2:b5:92:55:4c:77:56:f1:f0:c6:63:74:
e6:eb:0f:09:f5:66:4c:c6:18:60:d8:00:52:19:ba:6e:4d:7a:
f6:f8:22:41:c2:9a:dc:b0:23:12:de:ca:53:11:8e:49:19:2c:
3c:ca:eb:8f:59:3c:36:63:a9:a6:11:a5:b8:c0:b4:9a:7f:1e:
bb:7c:e6:44:ce:32:ba:45:51:1d:67:ea:b0:11:26:67:3c:d3:
71:12:f9:be:99:6c:f0:7c:51:18:54:ec:ae:48:69:3b:cf:f8:
4d:58:61:dc:54:50:2d:f9:fa:63:a8:77:65:a4:73:dc:dc:30:
b7:5e:61:ac:3a:3b:e5:d5:2b:91:c4:42:cb:a7:ad:55:ed:b7:
1f:d7:13:16:5c:33:75:37:56:4c:ad:9d:c7:51:79:82:24:ab:
af:b6:9d:15
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYYxkAdz9GVEd97/rsbgE7RcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4ZmY0ZWU2MjNkOGZhYjczYzkwMWQwY2JkYzkzYTMyMWU5
Y2NmYjcwHhcNMjMwMjA4MTUwNjA4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMWMwMjUxMWZjZjAyMDQ4ZDNmZDE5ZWNmMGU1YTk3YzE5MWJmNmIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgvljksDCin8L1s7kipETo9i8tIZM
uokvTixjZqRiVnWdXEaQnTBt3YNH9Z371v79ByS08N/bPcPaIBUSq39rQjj0HrXi
yYtkRkAMfHrsMfk9baesSmxAV69Tm36qzqPvXrFUIplPha5hYA9fKpZknVCEqzeA
e3KWVQ2g6s2LzLinQn5pT5idTyx77JhFuJU00N4LtNulGz0+t2h5aVOxwRv2lI7/
ttWNIFTU62W6yryIr/ySzbLMEYSKfUsSJlHcrg9KJsUIRoF7h0Vlr7wrXpZEyjlA
mhTtzaLVhgGowzG+nQ8Buw3/Hg6bL0qjnvN7fZzu87/EEIgy6V1QbAitMQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAHAJRH88CBI0/0Z7PDlqXwZG/axMB8GA1UdIwQY
MBaAFIj/TuYj2Pq3PJAdDL3JOjIenM+3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVA5TzVpUFktcmM4a0IwTXZjazZNaDZjejdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9lYWYyZTItMTgxNy00MGE4LTliZTgt
MjUwN2RiMzJjMWM0LzEvQWNBbEVmendJRWpUX1JuczhPV3BmQmtiOXJFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi9lYWYyZTItMTgxNy00MGE4LTliZTgtMjUwN2RiMzJjMWM0
LzEvaVA5TzVpUFktcmM4a0IwTXZjazZNaDZjejdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwpGcMA0G
CSqGSIb3DQEBCwUAA4IBAQC6LwuAhozZBi27v+5gN9ZpATn60tIHJGXwSA3TZp3Q
5GnuXyOm+N9FX85O+FCtoFNRmHFu9ZGLSVwzfnHnAp/zjGrzWXBrErhBIeDLvHWL
epC2cgCRYJcWryLgqdZJwgSytZJVTHdW8fDGY3Tm6w8J9WZMxhhg2ABSGbpuTXr2
+CJBwprcsCMS3spTEY5JGSw8yuuPWTw2Y6mmEaW4wLSafx67fOZEzjK6RVEdZ+qw
ESZnPNNxEvm+mWzwfFEYVOyuSGk7z/hNWGHcVFAt+fpjqHdlpHPc3DC3XmGsOjvl
1SuRxELLp61V7bcf1xMWXDN1N1ZMrZ3HUXmCJKuvtp0V
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:39 2024 by rpki-client on console-ams.rpki-client.org