Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/5noZSbOcgBS9Vle-Th3I6HTVqRs.roa
File: 5noZSbOcgBS9Vle-Th3I6HTVqRs.roa (raw, json)
Hash identifier: 4DvYy5EaL/lRKz20ZND3lZCgxq92JmOQgKllUnaQ51s=
Subject key identifier: E6:7A:19:49:B3:9C:80:14:BD:56:57:BE:4E:1D:C8:E8:74:D5:A9:1B
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018E5AD2C17A3280347AC2267554B3879B86
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/5noZSbOcgBS9Vle-Th3I6HTVqRs.roa
Signing time: Wed 20 Mar 2024 07:45:45 +0000
ROA not before: Wed 20 Mar 2024 07:45:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215998
IP address blocks: 77.242.153.0/24 maxlen: 24
77.242.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 Apr 2024 11:11:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:5a:d2:c1:7a:32:80:34:7a:c2:26:75:54:b3:87:9b:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Mar 20 07:45:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e67a1949b39c8014bd5657be4e1dc8e874d5a91b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d4:89:98:6d:7f:75:d6:24:93:45:70:b3:77:
04:c6:94:ab:9e:84:39:80:89:a0:dc:93:99:f6:73:
51:66:38:4a:4c:06:f1:bd:f5:bc:7c:ce:68:3a:e7:
db:61:85:7f:61:fa:98:d3:18:e3:1d:29:79:68:95:
fb:e9:a1:fb:4a:0c:49:2a:a2:cc:8c:bf:11:0c:4c:
aa:35:48:83:88:f8:42:9b:c8:e3:6e:87:b6:a1:43:
75:18:83:34:e7:60:fa:71:90:f8:f9:14:08:0c:4d:
55:fa:39:18:d5:78:d5:2b:2f:a1:d5:5b:10:71:14:
f7:d3:f1:df:1f:0b:2e:71:89:8d:b3:19:f0:bb:ea:
ca:da:90:8c:4f:5e:8d:d0:5a:63:65:4a:f3:ef:f4:
33:1f:e9:bb:7b:28:0c:ec:15:91:97:ec:a3:58:57:
a1:ca:46:be:7c:10:f9:91:a1:22:60:0b:dd:60:83:
eb:db:41:60:11:30:e2:3b:a0:69:d7:3f:49:b5:d0:
4d:7f:fe:dc:ec:f9:50:50:8c:eb:e1:66:55:b2:a0:
e8:c7:8b:48:cf:8c:28:4c:88:1d:d8:74:13:08:ae:
05:40:75:65:9b:e7:e9:6d:22:7c:66:da:80:0b:e3:
bc:3c:80:ff:3e:26:47:43:f4:6b:ea:af:d6:a0:29:
ed:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:7A:19:49:B3:9C:80:14:BD:56:57:BE:4E:1D:C8:E8:74:D5:A9:1B
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/5noZSbOcgBS9Vle-Th3I6HTVqRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.242.153.0/24
77.242.155.0/24
Signature Algorithm: sha256WithRSAEncryption
94:54:2d:3e:0d:d6:3f:f8:66:bf:e2:92:ff:f6:68:4c:65:5d:
23:2d:a8:e9:09:d0:7b:61:11:2c:90:04:b0:c8:64:44:d8:40:
3b:63:61:36:c3:27:76:53:c7:69:9e:b5:50:64:bd:20:cb:71:
d0:22:68:74:24:27:03:4d:dd:27:f1:58:9a:4f:3d:12:57:b3:
35:dc:96:9f:4a:00:13:a8:2e:8a:8d:7b:a6:c8:59:60:bf:14:
9b:d3:19:37:33:2c:fc:f0:9e:3e:5d:5a:be:34:09:f5:33:eb:
43:dc:80:4e:5a:b4:40:1b:90:28:9a:f1:2a:43:77:e7:b8:58:
d1:cd:2c:74:57:68:c1:e9:73:d9:e6:a1:84:25:61:49:70:f3:
fd:45:ff:19:65:eb:af:36:96:f2:b5:9b:01:39:93:4e:1c:45:
28:20:76:91:2c:75:a7:39:e1:0d:22:63:72:df:e8:66:5c:61:
6d:4f:6b:2e:00:9d:27:6e:e0:ea:9f:34:c2:8e:bc:82:fd:e9:
f1:e8:a8:a8:98:ac:49:db:15:17:6e:f0:b7:3e:12:3d:15:76:
7f:e9:3c:d1:c5:6a:c6:b0:e5:33:b9:10:29:28:b1:fc:ce:f4:
00:86:5d:d8:2c:f4:ba:b8:8f:de:a5:42:e3:57:03:65:0d:2b:
01:14:08:6c
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY5a0sF6MoA0esImdVSzh5uGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx
MWRhMTAwHhcNMjQwMzIwMDc0NTQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNjdhMTk0OWIzOWM4MDE0YmQ1NjU3YmU0ZTFkYzhlODc0ZDVhOTFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAztSJmG1/ddYkk0Vws3cExpSrnoQ5
gImg3JOZ9nNRZjhKTAbxvfW8fM5oOufbYYV/YfqY0xjjHSl5aJX76aH7SgxJKqLM
jL8RDEyqNUiDiPhCm8jjboe2oUN1GIM052D6cZD4+RQIDE1V+jkY1XjVKy+h1VsQ
cRT30/HfHwsucYmNsxnwu+rK2pCMT16N0FpjZUrz7/QzH+m7eygM7BWRl+yjWFeh
yka+fBD5kaEiYAvdYIPr20FgETDiO6Bp1z9JtdBNf/7c7PlQUIzr4WZVsqDox4tI
z4woTIgd2HQTCK4FQHVlm+fpbSJ8ZtqAC+O8PID/PiZHQ/Rr6q/WoCntcwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFOZ6GUmznIAUvVZXvk4dyOh01akbMB8GA1UdIwQY
MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt
N2U0ZDZmNmY2ZTY2LzEvNW5vWlNiT2NnQlM5VmxlLVRoM0k2SFRWcVJzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2
LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQATfKZAwQA
TfKbMA0GCSqGSIb3DQEBCwUAA4IBAQCUVC0+DdY/+Ga/4pL/9mhMZV0jLajpCdB7
YREskASwyGRE2EA7Y2E2wyd2U8dpnrVQZL0gy3HQImh0JCcDTd0n8ViaTz0SV7M1
3JafSgATqC6KjXumyFlgvxSb0xk3Myz88J4+XVq+NAn1M+tD3IBOWrRAG5AomvEq
Q3fnuFjRzSx0V2jB6XPZ5qGEJWFJcPP9Rf8ZZeuvNpbytZsBOZNOHEUoIHaRLHWn
OeENImNy3+hmXGFtT2suAJ0nbuDqnzTCjryC/enx6KiomKxJ2xUXbvC3PhI9FXZ/
6TzRxWrGsOUzuRApKLH8zvQAhl3YLPS6uI/epULjVwNlDSsBFAhs
-----END CERTIFICATE-----
Generated at Wed Apr 24 13:50:29 2024 by rpki-client on console-fra.rpki-client.org