Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/01058a-4a82-4818-972d-842858122bbc/1/htK5cVAGgYzKVhIWU06URnR2lBE.roa
File: htK5cVAGgYzKVhIWU06URnR2lBE.roa (raw, json)
Hash identifier: 0KCtKJ/mhJIelPGe5lPzW10i72PLFkIAiWBNh3uDaAo=
Subject key identifier: 86:D2:B9:71:50:06:81:8C:CA:56:12:16:53:4E:94:46:74:76:94:11
Certificate issuer: /CN=464952bc165441ec6e2e2010c933dc830f361731
Certificate serial: 018D5E0B5DD812BE1CD36DA3B7AFBD83D9F5
Authority key identifier: 46:49:52:BC:16:54:41:EC:6E:2E:20:10:C9:33:DC:83:0F:36:17:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RklSvBZUQexuLiAQyTPcgw82FzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/01058a-4a82-4818-972d-842858122bbc/1/htK5cVAGgYzKVhIWU06URnR2lBE.roa
Signing time: Wed 31 Jan 2024 05:43:39 +0000
ROA not before: Wed 31 Jan 2024 05:43:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58074
IP address blocks: 89.37.139.0/24 maxlen: 24
188.214.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Apr 2024 16:49:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5e:0b:5d:d8:12:be:1c:d3:6d:a3:b7:af:bd:83:d9:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=464952bc165441ec6e2e2010c933dc830f361731
Validity
Not Before: Jan 31 05:43:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=86d2b9715006818cca561216534e944674769411
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e9:83:5e:8c:a9:7f:70:15:e4:59:8c:31:13:
11:e5:06:0d:b5:a5:7f:db:94:03:a6:fe:ed:fc:0a:
a6:10:97:e5:cb:e6:1c:06:65:f2:8b:dc:c5:ea:28:
f0:fb:fd:2b:7b:77:04:60:6d:29:65:4b:3a:6f:9c:
4d:db:bb:e3:a1:db:73:c6:fe:56:c9:7c:67:00:88:
64:2e:c5:c9:b3:2f:74:c8:89:74:b2:ed:f8:d6:47:
48:dd:05:55:90:8a:6c:04:94:1d:98:bd:97:00:00:
c1:99:39:42:92:bf:f7:0f:2b:b5:8e:e4:b2:c9:ab:
76:7b:2f:94:72:5e:65:78:aa:33:05:08:2a:f1:74:
20:51:fc:e4:99:63:9b:3c:33:90:1e:a4:59:7b:20:
a9:d6:50:3a:a3:76:58:9c:d1:9c:9f:36:62:3a:00:
a8:10:b2:05:97:05:12:ee:88:29:05:24:fc:cb:9a:
a6:67:e1:b5:a5:62:c9:f6:e3:7c:5f:16:81:ff:60:
06:26:47:06:70:ee:a3:55:88:fa:39:5b:f3:e4:ad:
87:9f:6c:d0:43:c6:c5:dd:89:98:72:d2:ce:26:d4:
8a:7c:59:c7:12:0b:54:f8:cf:43:63:46:d6:a3:1f:
a5:86:8e:b5:3f:22:89:31:b1:87:e4:d3:1d:33:c6:
ee:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:D2:B9:71:50:06:81:8C:CA:56:12:16:53:4E:94:46:74:76:94:11
X509v3 Authority Key Identifier:
keyid:46:49:52:BC:16:54:41:EC:6E:2E:20:10:C9:33:DC:83:0F:36:17:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RklSvBZUQexuLiAQyTPcgw82FzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/01058a-4a82-4818-972d-842858122bbc/1/htK5cVAGgYzKVhIWU06URnR2lBE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/01058a-4a82-4818-972d-842858122bbc/1/RklSvBZUQexuLiAQyTPcgw82FzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.37.139.0/24
188.214.227.0/24
Signature Algorithm: sha256WithRSAEncryption
53:02:1c:45:97:12:42:02:07:e9:9a:0a:1a:60:95:c4:9a:9d:
0e:16:b1:aa:0d:ce:c9:e7:68:7f:bf:24:34:e8:db:cd:fa:f3:
4b:95:55:b5:b9:ef:b4:5d:8e:04:c2:24:65:87:db:74:98:9d:
22:23:06:07:8d:44:58:09:f1:c6:51:49:01:c2:bb:f6:0c:36:
43:df:31:8b:db:9f:ea:88:ba:1c:74:7c:b9:16:59:61:41:9b:
5e:2c:b2:4b:8a:f4:75:9a:e2:fa:eb:0e:74:30:14:9b:e4:b2:
01:1d:04:ce:aa:95:57:74:94:74:c1:c0:fa:d6:97:24:e7:76:
53:16:69:de:fc:83:bf:df:94:1b:3b:ed:9d:cd:d7:a5:91:be:
a3:f1:12:9b:cd:46:c0:5e:e4:5e:4c:e1:ff:cf:68:21:5c:4d:
58:f9:45:30:57:15:ad:6b:62:0c:85:ae:29:68:36:e0:37:c7:
60:eb:24:ec:23:97:92:9b:c7:1c:d9:00:3f:58:51:f8:42:b7:
1e:c1:a9:0d:16:34:43:b3:5c:db:bb:de:ad:a1:de:2f:64:ea:
8d:1e:f8:69:8b:7d:0f:33:75:9e:9b:cb:5b:61:2e:d2:41:c9:
e3:f5:c4:b8:0d:8b:78:46:57:97:2c:6d:37:3c:dd:6e:8e:8c:
03:61:0c:d0
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY1eC13YEr4c022jt6+9g9n1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ2NDk1MmJjMTY1NDQxZWM2ZTJlMjAxMGM5MzNkYzgzMGYz
NjE3MzEwHhcNMjQwMTMxMDU0MzM5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NmQyYjk3MTUwMDY4MThjY2E1NjEyMTY1MzRlOTQ0Njc0NzY5NDExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsumDXoypf3AV5FmMMRMR5QYNtaV/
25QDpv7t/AqmEJfly+YcBmXyi9zF6ijw+/0re3cEYG0pZUs6b5xN27vjodtzxv5W
yXxnAIhkLsXJsy90yIl0su341kdI3QVVkIpsBJQdmL2XAADBmTlCkr/3Dyu1juSy
yat2ey+Ucl5leKozBQgq8XQgUfzkmWObPDOQHqRZeyCp1lA6o3ZYnNGcnzZiOgCo
ELIFlwUS7ogpBST8y5qmZ+G1pWLJ9uN8XxaB/2AGJkcGcO6jVYj6OVvz5K2Hn2zQ
Q8bF3YmYctLOJtSKfFnHEgtU+M9DY0bWox+lho61PyKJMbGH5NMdM8buGQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFIbSuXFQBoGMylYSFlNOlEZ0dpQRMB8GA1UdIwQY
MBaAFEZJUrwWVEHsbi4gEMkz3IMPNhcxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUmtsU3ZCWlVRZXh1TGlBUXlUUGNndzgyRnpFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8wMTA1OGEtNGE4Mi00ODE4LTk3MmQt
ODQyODU4MTIyYmJjLzEvaHRLNWNWQUdnWXpLVmhJV1UwNlVSblIybEJFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi8wMTA1OGEtNGE4Mi00ODE4LTk3MmQtODQyODU4MTIyYmJj
LzEvUmtsU3ZCWlVRZXh1TGlBUXlUUGNndzgyRnpFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAWSWLAwQA
vNbjMA0GCSqGSIb3DQEBCwUAA4IBAQBTAhxFlxJCAgfpmgoaYJXEmp0OFrGqDc7J
52h/vyQ06NvN+vNLlVW1ue+0XY4EwiRlh9t0mJ0iIwYHjURYCfHGUUkBwrv2DDZD
3zGL25/qiLocdHy5FllhQZteLLJLivR1muL66w50MBSb5LIBHQTOqpVXdJR0wcD6
1pck53ZTFmne/IO/35QbO+2dzdelkb6j8RKbzUbAXuReTOH/z2ghXE1Y+UUwVxWt
a2IMha4paDbgN8dg6yTsI5eSm8cc2QA/WFH4QrcewakNFjRDs1zbu96tod4vZOqN
Hvhpi30PM3Wem8tbYS7SQcnj9cS4DYt4RleXLG03PN1ujowDYQzQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:11 2024 by rpki-client on console-ams.rpki-client.org