Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/5rfKlLjmydBp6ZB5i9qoOws26BI.roa
File: 5rfKlLjmydBp6ZB5i9qoOws26BI.roa (raw, json)
Hash identifier: Bn95WpsxgkYlhkuSs/6NuJ5F3S3FiEnLwgArq9n3pJU=
Subject key identifier: E6:B7:CA:94:B8:E6:C9:D0:69:E9:90:79:8B:DA:A8:3B:0B:36:E8:12
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018CC3B6C31C93A45A38E6376C768F95CAD9
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/5rfKlLjmydBp6ZB5i9qoOws26BI.roa
Signing time: Mon 01 Jan 2024 06:29:43 +0000
ROA not before: Mon 01 Jan 2024 06:29:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215904
IP address blocks: 92.52.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Apr 2024 08:32:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:c3:1c:93:a4:5a:38:e6:37:6c:76:8f:95:ca:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jan 1 06:29:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e6b7ca94b8e6c9d069e990798bdaa83b0b36e812
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:72:18:0b:c3:69:ee:ee:c3:22:7d:67:57:a7:
b8:3b:b1:f2:44:e3:a2:93:ec:bc:9c:5d:8a:32:1d:
6a:b5:fd:c6:ff:d9:02:94:e3:f3:5e:9f:0f:79:04:
04:42:5f:25:1b:2b:48:f7:24:cf:d6:8e:b0:88:10:
2e:0d:d7:84:d4:26:cd:67:33:99:6e:58:3f:1f:97:
85:c0:c9:47:2a:ae:f4:29:17:1d:4b:e6:ff:28:f3:
b2:3c:6d:de:69:0c:60:76:8d:3a:c3:0e:e2:3c:a0:
89:67:f1:59:8e:92:b4:c6:ac:af:48:8f:2e:28:d5:
78:a5:45:1a:af:32:da:21:ed:66:66:63:fc:d2:89:
11:fd:c8:d8:27:75:9d:e9:28:c0:64:ed:e5:ec:f2:
1f:4c:ca:e0:28:4e:8f:24:58:1d:27:fc:a5:00:e6:
67:3f:af:38:61:f3:cd:ac:c3:90:aa:29:f7:a5:64:
0e:a6:fa:56:bf:c1:11:0c:d8:ec:de:4e:57:82:17:
ac:e8:7a:16:83:67:cb:30:bd:60:88:1e:07:5e:45:
2e:b1:41:09:bb:08:91:cd:84:aa:38:a8:c7:6c:8d:
89:d0:14:3a:1a:26:56:32:3e:b9:20:63:76:69:91:
15:cf:f8:5a:18:b8:1d:b1:b4:5a:69:28:e5:5f:ee:
c9:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:B7:CA:94:B8:E6:C9:D0:69:E9:90:79:8B:DA:A8:3B:0B:36:E8:12
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/5rfKlLjmydBp6ZB5i9qoOws26BI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.52.219.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:97:b8:54:15:85:98:cc:54:8c:b8:83:72:ea:21:81:d4:92:
0b:4b:d7:83:03:77:d9:09:8b:b7:64:97:d3:90:03:5d:3c:69:
94:46:dd:dd:49:58:15:d0:1f:ce:45:0f:88:10:f1:95:fa:b3:
f7:03:7f:12:b9:69:c9:98:34:a5:b4:66:7e:a1:eb:fa:70:35:
9c:73:92:ef:86:41:c1:53:c8:bb:ce:0e:92:2a:5e:1b:4c:ba:
81:41:e3:79:2f:2a:7b:d3:5d:8c:ca:a4:70:37:c0:6a:83:f2:
76:78:2c:2b:ed:36:71:18:4b:e8:b8:c4:79:6f:72:aa:01:b6:
ef:35:32:24:df:96:14:6d:7a:83:64:11:ab:34:22:c8:48:6b:
bf:d0:31:a8:55:4b:e0:2f:f9:aa:cb:25:bd:f5:03:e1:a0:1d:
d0:c3:79:a5:f9:ed:da:8d:c2:6c:1b:46:bb:6c:c7:df:d7:de:
bf:6f:a8:fe:1e:f9:53:24:f1:17:e3:04:66:86:04:69:4e:93:
9f:37:41:14:4b:47:90:17:71:e0:19:87:7a:28:2e:1b:5a:72:
32:fc:35:36:8a:ed:fc:10:d8:5d:7c:22:6c:3d:97:c3:3d:ad:
ef:13:09:f2:92:54:d1:6c:95:ce:a6:27:4d:1f:e2:22:bf:f3:
f9:a5:a9:6a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzDtsMck6RaOOY3bHaPlcrZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYWFhMGUwODIzNjAzNjBhY2RhMzQ3NjY0ZWI4MzE0ZWIx
MWRhMTAwHhcNMjQwMTAxMDYyOTQzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNmI3Y2E5NGI4ZTZjOWQwNjllOTkwNzk4YmRhYTgzYjBiMzZlODEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqXIYC8Np7u7DIn1nV6e4O7HyROOi
k+y8nF2KMh1qtf3G/9kClOPzXp8PeQQEQl8lGytI9yTP1o6wiBAuDdeE1CbNZzOZ
blg/H5eFwMlHKq70KRcdS+b/KPOyPG3eaQxgdo06ww7iPKCJZ/FZjpK0xqyvSI8u
KNV4pUUarzLaIe1mZmP80okR/cjYJ3Wd6SjAZO3l7PIfTMrgKE6PJFgdJ/ylAOZn
P684YfPNrMOQqin3pWQOpvpWv8ERDNjs3k5Xghes6HoWg2fLML1giB4HXkUusUEJ
uwiRzYSqOKjHbI2J0BQ6GiZWMj65IGN2aZEVz/haGLgdsbRaaSjlX+7JaQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOa3ypS45snQaemQeYvaqDsLNugSMB8GA1UdIwQY
MBaAFM2qoOCCNgNgrNo0dmTrgxTrEdoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2Mt
N2U0ZDZmNmY2ZTY2LzEvNXJmS2xMam15ZEJwNlpCNWk5cW9Pd3MyNkJJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC81ODkxMjctMTA5Ni00YzkxLTk2Y2MtN2U0ZDZmNmY2ZTY2
LzEvemFxZzRJSTJBMkNzMmpSMlpPdURGT3NSMmhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXDTbMA0G
CSqGSIb3DQEBCwUAA4IBAQC6l7hUFYWYzFSMuINy6iGB1JILS9eDA3fZCYu3ZJfT
kANdPGmURt3dSVgV0B/ORQ+IEPGV+rP3A38SuWnJmDSltGZ+oev6cDWcc5LvhkHB
U8i7zg6SKl4bTLqBQeN5Lyp7012MyqRwN8Bqg/J2eCwr7TZxGEvouMR5b3KqAbbv
NTIk35YUbXqDZBGrNCLISGu/0DGoVUvgL/mqyyW99QPhoB3Qw3ml+e3ajcJsG0a7
bMff196/b6j+HvlTJPEX4wRmhgRpTpOfN0EUS0eQF3HgGYd6KC4bWnIy/DU2iu38
ENhdfCJsPZfDPa3vEwnyklTRbJXOpidNH+Iiv/P5palq
-----END CERTIFICATE-----
Generated at Tue Apr 2 11:48:41 2024 by rpki-client on console-ams.rpki-client.org