Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/h_2xGUXgrHjVRuOL4M_WReBtxPA.roa
File: h_2xGUXgrHjVRuOL4M_WReBtxPA.roa (raw, json)
Hash identifier: afDF6mV6TWV3J5wWc/bfgVm6XWg1H2qlkXlSmjZxMYQ=
Subject key identifier: 87:FD:B1:19:45:E0:AC:78:D5:46:E3:8B:E0:CF:D6:45:E0:6D:C4:F0
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 0188D4452F98ECDF30E022357A0674F25495
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/h_2xGUXgrHjVRuOL4M_WReBtxPA.roa
Signing time: Mon 19 Jun 2023 15:28:03 +0000
ROA not before: Mon 19 Jun 2023 15:28:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57784
IP address blocks: 5.133.108.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d4:45:2f:98:ec:df:30:e0:22:35:7a:06:74:f2:54:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Jun 19 15:28:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=87fdb11945e0ac78d546e38be0cfd645e06dc4f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:49:2e:c9:28:79:94:9f:2a:a4:ca:5b:87:a0:
57:e7:c9:c3:88:1c:ac:14:5f:37:32:b5:ae:08:fe:
b2:fc:43:87:9a:ed:76:62:2f:89:9f:11:ca:a2:af:
a7:50:07:85:12:9d:c0:31:cf:15:4f:7b:3e:8a:8d:
3a:54:4f:7c:a5:6e:8a:1a:6d:68:da:54:4c:0c:aa:
77:00:cc:19:ea:b1:11:34:6f:5b:14:f8:21:de:16:
c9:15:da:77:7f:1c:4d:15:51:ed:7a:80:0a:0c:2d:
07:52:d1:8a:b6:9b:16:b8:75:cb:d6:b3:33:b5:6b:
29:3b:95:aa:15:83:d5:e2:de:1e:60:c0:03:04:f0:
ea:55:65:36:cf:85:35:e1:00:8d:9d:35:f8:30:2d:
3b:75:fc:7b:4e:ae:e9:b5:85:53:6a:6a:49:67:ea:
fb:e9:1b:d6:ab:40:e5:50:e6:c1:7f:9d:4b:15:1f:
81:5b:ca:cd:df:ce:08:07:9c:e9:67:ba:a5:67:0f:
1f:e0:13:e5:ee:3f:eb:67:8f:de:d2:3d:a7:c6:46:
b6:60:5a:06:94:e6:c8:62:46:6e:32:c5:ec:61:ea:
dd:05:a4:4f:18:57:64:c4:20:0c:08:f8:50:0d:b4:
2f:12:5c:35:6f:c7:23:51:47:0d:14:84:02:4a:32:
b8:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:FD:B1:19:45:E0:AC:78:D5:46:E3:8B:E0:CF:D6:45:E0:6D:C4:F0
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/h_2xGUXgrHjVRuOL4M_WReBtxPA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.133.108.0/24
Signature Algorithm: sha256WithRSAEncryption
06:b0:4c:a4:8a:9f:e6:03:b0:b6:3b:86:91:28:88:ac:fd:cd:
9f:b5:e5:b5:6e:fb:e0:70:4e:6e:e4:1e:f6:bb:94:cd:ca:e2:
ea:d3:22:cb:41:07:7d:b1:b6:e9:3d:32:17:fd:5e:b1:5c:92:
de:ed:33:90:b0:cb:1e:c1:e6:e5:2f:2f:4c:ce:4d:ab:9e:74:
76:a0:f4:6f:81:71:b4:4c:c2:a4:ce:6c:8d:97:f5:ce:10:8e:
29:c3:80:3e:66:e2:33:5f:f6:d7:2b:fd:4f:c3:b7:08:0e:68:
fc:2f:7e:a9:14:00:cd:5d:e0:69:a1:1a:6b:a4:e3:9a:ff:76:
59:46:66:b0:1e:53:36:fa:83:df:c2:a5:d3:74:65:c2:cf:d7:
7a:90:97:ab:98:43:93:fa:63:62:e4:8c:f0:64:2f:ca:f0:5b:
f4:87:56:69:2d:bf:ab:b0:70:74:62:24:f5:b6:35:9d:d1:53:
2c:93:ac:28:ce:0e:19:73:79:5a:a9:f7:1b:de:f4:f6:2a:29:
84:75:d1:28:d3:90:9a:4e:d0:e7:a9:8d:72:3b:b6:b1:6c:9b:
f3:98:d9:3e:df:75:6a:0b:e6:82:5c:c1:2a:a8:7c:95:00:80:
2e:38:bc:d3:b7:cb:1e:2b:e8:19:60:34:7e:4b:00:6c:a4:5a:
85:5e:60:66
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYjURS+Y7N8w4CI1egZ08lSVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxODQ3OGYxOThmZTU2OTAxMGMzZGY2MjE5MTQyZjUzMGM0
ZjVlNTYwHhcNMjMwNjE5MTUyODAzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4N2ZkYjExOTQ1ZTBhYzc4ZDU0NmUzOGJlMGNmZDY0NWUwNmRjNGYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA20kuySh5lJ8qpMpbh6BX58nDiBys
FF83MrWuCP6y/EOHmu12Yi+JnxHKoq+nUAeFEp3AMc8VT3s+io06VE98pW6KGm1o
2lRMDKp3AMwZ6rERNG9bFPgh3hbJFdp3fxxNFVHteoAKDC0HUtGKtpsWuHXL1rMz
tWspO5WqFYPV4t4eYMADBPDqVWU2z4U14QCNnTX4MC07dfx7Tq7ptYVTampJZ+r7
6RvWq0DlUObBf51LFR+BW8rN384IB5zpZ7qlZw8f4BPl7j/rZ4/e0j2nxka2YFoG
lObIYkZuMsXsYerdBaRPGFdkxCAMCPhQDbQvElw1b8cjUUcNFIQCSjK45QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIf9sRlF4Kx41Ubji+DP1kXgbcTwMB8GA1UdIwQY
MBaAFGGEePGY/laQEMPfYhkUL1MMT15WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEt
YmE5OGYxMTIyMTIxLzEvaF8yeEdVWGdySGpWUnVPTDRNX1dSZUJ0eFBBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEtYmE5OGYxMTIyMTIx
LzEvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABYVsMA0G
CSqGSIb3DQEBCwUAA4IBAQAGsEykip/mA7C2O4aRKIis/c2fteW1bvvgcE5u5B72
u5TNyuLq0yLLQQd9sbbpPTIX/V6xXJLe7TOQsMseweblLy9Mzk2rnnR2oPRvgXG0
TMKkzmyNl/XOEI4pw4A+ZuIzX/bXK/1Pw7cIDmj8L36pFADNXeBpoRprpOOa/3ZZ
RmawHlM2+oPfwqXTdGXCz9d6kJermEOT+mNi5IzwZC/K8Fv0h1ZpLb+rsHB0YiT1
tjWd0VMsk6wozg4Zc3laqfcb3vT2KimEddEo05CaTtDnqY1yO7axbJvzmNk+33Vq
C+aCXMEqqHyVAIAuOLzTt8seK+gZYDR+SwBspFqFXmBm
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:38 2024 by rpki-client on console-ams.rpki-client.org