Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/4tbl1Wy2cNiuDOxKdtiZENEOAQI.roa
File: 4tbl1Wy2cNiuDOxKdtiZENEOAQI.roa (raw, json)
Hash identifier: RzFfssOcuXek4aKUOoi9nc3N7wknh9Tr4YIBND9Fw3o=
Subject key identifier: E2:D6:E5:D5:6C:B6:70:D8:AE:0C:EC:4A:76:D8:99:10:D1:0E:01:02
Certificate issuer: /CN=79a843d3a67bf202d0ae23df95e14ea871d8f15d
Certificate serial: 018877365FABC9ADE9AF4E92570AB6325A6A
Authority key identifier: 79:A8:43:D3:A6:7B:F2:02:D0:AE:23:DF:95:E1:4E:A8:71:D8:F1:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eahD06Z78gLQriPfleFOqHHY8V0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/4tbl1Wy2cNiuDOxKdtiZENEOAQI.roa
Signing time: Thu 01 Jun 2023 13:47:12 +0000
ROA not before: Thu 01 Jun 2023 13:47:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 5.180.155.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:77:36:5f:ab:c9:ad:e9:af:4e:92:57:0a:b6:32:5a:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79a843d3a67bf202d0ae23df95e14ea871d8f15d
Validity
Not Before: Jun 1 13:47:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e2d6e5d56cb670d8ae0cec4a76d89910d10e0102
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:3c:83:1b:1b:48:8d:e1:3f:68:f1:73:16:4a:
00:43:28:24:5f:36:51:a6:2a:0a:8d:28:2c:62:69:
e1:76:f7:5b:a0:e5:a1:e7:b3:1a:f8:21:4e:e8:40:
51:8e:ad:72:af:fb:47:91:92:97:b0:07:aa:7a:8d:
39:56:47:73:5d:12:78:63:ec:0c:86:a1:b2:69:f5:
46:f3:19:b4:29:9f:c8:f4:3d:be:07:93:ec:ab:3f:
f5:7c:74:b1:bb:41:00:87:1b:d1:fb:0a:d9:eb:1f:
a7:67:23:8c:9d:32:87:88:25:f9:20:f4:8f:5f:9f:
c7:b2:6a:7d:71:18:6f:e1:be:57:56:9b:66:e8:8e:
5e:44:2c:11:b4:a9:db:c3:e4:77:94:53:34:b5:96:
b3:54:e9:a1:f5:96:80:67:49:36:81:71:3c:ac:09:
d5:63:34:a4:78:8d:83:34:cb:04:3f:3b:6a:6a:b3:
ba:12:aa:09:4e:2b:f0:02:1d:01:58:a6:e4:91:64:
3b:27:42:da:e6:71:da:72:54:16:f2:65:f8:4e:dd:
43:06:14:ec:89:29:cf:fe:28:a6:fd:fc:6b:f8:4c:
ee:11:03:e9:56:d8:1f:a3:98:84:a8:e3:c0:58:7d:
8a:9f:09:01:fb:fe:35:4a:c3:fd:d2:1c:b1:12:c7:
94:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:D6:E5:D5:6C:B6:70:D8:AE:0C:EC:4A:76:D8:99:10:D1:0E:01:02
X509v3 Authority Key Identifier:
keyid:79:A8:43:D3:A6:7B:F2:02:D0:AE:23:DF:95:E1:4E:A8:71:D8:F1:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eahD06Z78gLQriPfleFOqHHY8V0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/4tbl1Wy2cNiuDOxKdtiZENEOAQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/eahD06Z78gLQriPfleFOqHHY8V0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.155.0/24
Signature Algorithm: sha256WithRSAEncryption
91:f5:e5:43:2a:43:e1:01:88:be:32:22:61:a3:f3:b7:59:cf:
58:1b:e4:1a:d5:46:a4:fd:93:6b:55:84:67:00:c9:76:d6:ab:
66:4a:60:20:d6:2c:c6:92:71:59:db:8e:78:f1:6f:bd:a2:11:
d8:a9:f1:e4:b1:a0:14:f9:b5:01:eb:c1:41:aa:26:3d:13:b6:
44:3d:51:0a:76:d1:ff:c4:67:ad:c5:70:62:45:ca:f0:4a:89:
03:12:a5:4f:06:87:84:11:83:ea:32:72:4f:23:17:d0:51:99:
0e:a8:0d:1d:e3:ac:a7:5e:8a:29:33:26:38:cb:d1:05:7f:b7:
8a:4b:2e:09:25:2d:83:03:10:11:5a:54:e3:c8:ee:51:fb:93:
fe:9d:82:c5:74:05:d7:58:41:50:37:3f:bb:e4:42:a7:00:26:
dd:35:d8:b5:b9:4d:57:64:f6:db:84:ba:8a:15:95:a5:85:15:
0d:28:47:c4:d4:4f:a6:2e:1a:ba:71:b1:32:f2:5f:8d:3f:25:
2b:55:f4:ee:f9:0e:83:46:a3:8d:3c:f4:77:ce:b4:c0:a9:f5:
1d:d9:a9:9c:e5:d2:89:39:7a:15:48:32:99:89:98:c7:2c:67:
e5:8c:7f:35:2b:42:58:a7:92:ab:e2:82:ba:44:f3:e9:e6:93:
15:4d:d3:63
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYh3Nl+rya3pr06SVwq2MlpqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc5YTg0M2QzYTY3YmYyMDJkMGFlMjNkZjk1ZTE0ZWE4NzFk
OGYxNWQwHhcNMjMwNjAxMTM0NzEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMmQ2ZTVkNTZjYjY3MGQ4YWUwY2VjNGE3NmQ4OTkxMGQxMGUwMTAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmDyDGxtIjeE/aPFzFkoAQygkXzZR
pioKjSgsYmnhdvdboOWh57Ma+CFO6EBRjq1yr/tHkZKXsAeqeo05VkdzXRJ4Y+wM
hqGyafVG8xm0KZ/I9D2+B5Psqz/1fHSxu0EAhxvR+wrZ6x+nZyOMnTKHiCX5IPSP
X5/Hsmp9cRhv4b5XVptm6I5eRCwRtKnbw+R3lFM0tZazVOmh9ZaAZ0k2gXE8rAnV
YzSkeI2DNMsEPztqarO6EqoJTivwAh0BWKbkkWQ7J0La5nHaclQW8mX4Tt1DBhTs
iSnP/iim/fxr+EzuEQPpVtgfo5iEqOPAWH2KnwkB+/41SsP90hyxEseUpwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOLW5dVstnDYrgzsSnbYmRDRDgECMB8GA1UdIwQY
MBaAFHmoQ9Ome/IC0K4j35XhTqhx2PFdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZWFoRDA2Wjc4Z0xRcmlQZmxlRk9xSEhZOFYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9mNzBjNmEtODE0Yi00NjFhLTg1NDEt
YjRkZDIyNzU4OTUxLzEvNHRibDFXeTJjTml1RE94S2R0aVpFTkVPQVFJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi9mNzBjNmEtODE0Yi00NjFhLTg1NDEtYjRkZDIyNzU4OTUx
LzEvZWFoRDA2Wjc4Z0xRcmlQZmxlRk9xSEhZOFYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABbSbMA0G
CSqGSIb3DQEBCwUAA4IBAQCR9eVDKkPhAYi+MiJho/O3Wc9YG+Qa1Uak/ZNrVYRn
AMl21qtmSmAg1izGknFZ24548W+9ohHYqfHksaAU+bUB68FBqiY9E7ZEPVEKdtH/
xGetxXBiRcrwSokDEqVPBoeEEYPqMnJPIxfQUZkOqA0d46ynXoopMyY4y9EFf7eK
Sy4JJS2DAxARWlTjyO5R+5P+nYLFdAXXWEFQNz+75EKnACbdNdi1uU1XZPbbhLqK
FZWlhRUNKEfE1E+mLhq6cbEy8l+NPyUrVfTu+Q6DRqONPPR3zrTAqfUd2amc5dKJ
OXoVSDKZiZjHLGfljH81K0JYp5Kr4oK6RPPp5pMVTdNj
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:56 2023 by rpki-client on console-fra.rpki-client.org