Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/i0-oMX0NiXpyI3C6nymO5uLsbPo.roa
File: i0-oMX0NiXpyI3C6nymO5uLsbPo.roa (raw, json)
Hash identifier: kE6ajVlTMrndNBMzkQ6wIY0o0dU6fYPTf5e5yV0whOM=
Subject key identifier: 8B:4F:A8:31:7D:0D:89:7A:72:23:70:BA:9F:29:8E:E6:E2:EC:6C:FA
Certificate issuer: /CN=79a843d3a67bf202d0ae23df95e14ea871d8f15d
Certificate serial: 018BD3940F46CDDE8801EA1A56760A5B409B
Authority key identifier: 79:A8:43:D3:A6:7B:F2:02:D0:AE:23:DF:95:E1:4E:A8:71:D8:F1:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eahD06Z78gLQriPfleFOqHHY8V0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/i0-oMX0NiXpyI3C6nymO5uLsbPo.roa
Signing time: Wed 15 Nov 2023 15:22:57 +0000
ROA not before: Wed 15 Nov 2023 15:22:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 147186
IP address blocks: 5.180.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Dec 2023 22:07:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d3:94:0f:46:cd:de:88:01:ea:1a:56:76:0a:5b:40:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79a843d3a67bf202d0ae23df95e14ea871d8f15d
Validity
Not Before: Nov 15 15:22:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b4fa8317d0d897a722370ba9f298ee6e2ec6cfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:c7:5b:33:8f:16:65:ad:63:28:1f:7f:cb:73:
99:86:b8:78:97:7d:c6:f7:be:75:cb:25:43:48:e5:
f2:c0:08:56:95:73:61:62:2c:78:8f:6f:16:cf:29:
36:18:8e:a7:cd:01:af:f2:f1:1d:42:a7:e1:40:d6:
67:a8:a2:16:d9:fc:d5:ea:06:2f:5a:bd:9d:d2:30:
89:b0:67:28:d1:0f:a5:67:ca:47:2c:87:17:e8:82:
87:94:d4:5b:a6:e3:e0:1b:1b:eb:e3:1f:2a:79:72:
eb:ac:16:5a:cd:98:26:3e:ea:5d:1c:dc:00:e9:75:
f0:d5:cb:d6:3f:c9:f5:a5:f5:8a:63:63:87:c5:f8:
87:7b:f6:84:e2:da:02:c2:aa:25:b8:7c:84:ac:99:
7e:28:ca:6e:7c:b6:b4:8e:32:1a:e0:3e:23:89:d3:
23:05:f1:4e:fc:1e:19:7c:75:9a:e1:7e:c2:67:16:
19:e1:23:a9:b7:82:ff:3e:3f:18:1f:7f:dc:f3:46:
bd:dc:10:ac:69:e6:4b:3b:4b:dd:87:a7:35:42:d5:
97:83:a0:89:5e:bf:79:83:a8:39:f1:a4:f8:d2:39:
74:9a:42:b8:8d:1f:41:e0:6e:25:09:96:35:41:f3:
bb:b7:30:61:e9:0f:15:2b:e3:73:13:31:c4:80:c1:
13:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:4F:A8:31:7D:0D:89:7A:72:23:70:BA:9F:29:8E:E6:E2:EC:6C:FA
X509v3 Authority Key Identifier:
keyid:79:A8:43:D3:A6:7B:F2:02:D0:AE:23:DF:95:E1:4E:A8:71:D8:F1:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eahD06Z78gLQriPfleFOqHHY8V0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/i0-oMX0NiXpyI3C6nymO5uLsbPo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/eahD06Z78gLQriPfleFOqHHY8V0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.153.0/24
Signature Algorithm: sha256WithRSAEncryption
45:e5:62:1f:38:17:8f:e3:63:1b:46:20:58:6d:66:93:36:b0:
dd:e4:27:04:67:6c:c9:69:83:fc:7c:55:9d:84:31:cf:b1:e2:
48:48:ea:52:15:1f:1b:dd:0b:82:af:fb:a4:f8:fe:2c:0f:76:
41:a0:03:50:c7:81:96:6f:e6:f1:57:10:7e:fd:46:e2:e8:47:
6f:ba:41:71:84:08:0a:39:87:36:8d:bf:c2:bf:06:31:60:26:
46:ce:2a:a6:35:01:5a:49:9a:8e:f5:6e:7b:64:3e:e4:5a:a0:
19:a9:c9:a4:37:d6:6b:c8:21:b5:8e:62:5c:39:79:b2:c2:60:
6e:b4:7f:a9:88:f9:6a:47:2f:7d:85:12:66:e7:74:6f:27:f2:
6f:c1:fe:35:75:27:cc:b5:17:34:2e:41:dc:51:01:72:30:9d:
89:56:d1:eb:ba:02:0e:03:cd:b7:e0:43:24:24:ed:a2:82:0a:
ec:ef:42:dd:9e:df:49:97:eb:88:cc:aa:0b:47:47:a3:0d:e8:
1d:9c:49:c7:79:d3:e0:a4:4a:5e:d6:1d:e1:7a:f0:c4:bf:71:
8b:2b:c9:89:2e:47:d4:d0:64:b4:97:0c:29:30:bb:83:10:1f:
47:f1:8b:91:09:7a:d2:23:ce:67:b9:87:5d:51:ae:cd:3f:f0:
d2:cb:c3:22
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYvTlA9Gzd6IAeoaVnYKW0CbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc5YTg0M2QzYTY3YmYyMDJkMGFlMjNkZjk1ZTE0ZWE4NzFk
OGYxNWQwHhcNMjMxMTE1MTUyMjU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YjRmYTgzMTdkMGQ4OTdhNzIyMzcwYmE5ZjI5OGVlNmUyZWM2Y2ZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl8dbM48WZa1jKB9/y3OZhrh4l33G
9751yyVDSOXywAhWlXNhYix4j28Wzyk2GI6nzQGv8vEdQqfhQNZnqKIW2fzV6gYv
Wr2d0jCJsGco0Q+lZ8pHLIcX6IKHlNRbpuPgGxvr4x8qeXLrrBZazZgmPupdHNwA
6XXw1cvWP8n1pfWKY2OHxfiHe/aE4toCwqoluHyErJl+KMpufLa0jjIa4D4jidMj
BfFO/B4ZfHWa4X7CZxYZ4SOpt4L/Pj8YH3/c80a93BCsaeZLO0vdh6c1QtWXg6CJ
Xr95g6g58aT40jl0mkK4jR9B4G4lCZY1QfO7tzBh6Q8VK+NzEzHEgMETSQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFItPqDF9DYl6ciNwup8pjubi7Gz6MB8GA1UdIwQY
MBaAFHmoQ9Ome/IC0K4j35XhTqhx2PFdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZWFoRDA2Wjc4Z0xRcmlQZmxlRk9xSEhZOFYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9mNzBjNmEtODE0Yi00NjFhLTg1NDEt
YjRkZDIyNzU4OTUxLzEvaTAtb01YME5pWHB5STNDNm55bU81dUxzYlBvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi9mNzBjNmEtODE0Yi00NjFhLTg1NDEtYjRkZDIyNzU4OTUx
LzEvZWFoRDA2Wjc4Z0xRcmlQZmxlRk9xSEhZOFYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABbSZMA0G
CSqGSIb3DQEBCwUAA4IBAQBF5WIfOBeP42MbRiBYbWaTNrDd5CcEZ2zJaYP8fFWd
hDHPseJISOpSFR8b3QuCr/uk+P4sD3ZBoANQx4GWb+bxVxB+/Ubi6EdvukFxhAgK
OYc2jb/CvwYxYCZGziqmNQFaSZqO9W57ZD7kWqAZqcmkN9ZryCG1jmJcOXmywmBu
tH+piPlqRy99hRJm53RvJ/Jvwf41dSfMtRc0LkHcUQFyMJ2JVtHrugIOA8234EMk
JO2iggrs70Ldnt9Jl+uIzKoLR0ejDegdnEnHedPgpEpe1h3hevDEv3GLK8mJLkfU
0GS0lwwpMLuDEB9H8YuRCXrSI85nuYddUa7NP/DSy8Mi
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:15 2024 by rpki-client on console-fra.rpki-client.org