Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/969463-7f6a-4503-abc4-d6b56aba3eb7/1/wrNL2aOvg_kVc14pWNTTI3Zl0R4.roa
File: wrNL2aOvg_kVc14pWNTTI3Zl0R4.roa (raw, json)
Hash identifier: a8SmQpbtJmOJpeL452LZJfelafSTGGYNmB63NV7/pOI=
Subject key identifier: C2:B3:4B:D9:A3:AF:83:F9:15:73:5E:29:58:D4:D3:23:76:65:D1:1E
Certificate issuer: /CN=5c92b9a92c7eb913c3da558002c673e8238db1c7
Certificate serial: 0185732836255D7A287DEB612BA36DF97D10
Authority key identifier: 5C:92:B9:A9:2C:7E:B9:13:C3:DA:55:80:02:C6:73:E8:23:8D:B1:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XJK5qSx-uRPD2lWAAsZz6CONscc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/969463-7f6a-4503-abc4-d6b56aba3eb7/1/wrNL2aOvg_kVc14pWNTTI3Zl0R4.roa
Signing time: Mon 02 Jan 2023 15:44:53 +0000
ROA not before: Mon 02 Jan 2023 15:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 194.35.240.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:28:36:25:5d:7a:28:7d:eb:61:2b:a3:6d:f9:7d:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c92b9a92c7eb913c3da558002c673e8238db1c7
Validity
Not Before: Jan 2 15:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c2b34bd9a3af83f915735e2958d4d3237665d11e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:80:25:2b:3e:1f:e7:16:6d:31:d7:bb:96:16:
75:32:74:0e:81:ab:8f:5f:7c:b9:70:89:75:ee:4c:
f5:7e:9e:61:67:f0:c0:67:14:cc:95:d8:bb:cf:a0:
c8:86:f9:b5:c1:23:b4:23:0d:1a:6c:3f:a1:a6:e0:
6c:13:43:e1:c4:78:fb:05:e0:bb:52:24:55:ba:cc:
70:f0:26:4d:3a:f0:1d:0c:03:96:20:b0:f5:76:77:
c7:50:09:3e:1d:a4:e6:e5:52:69:6a:3b:09:b0:8d:
3e:bc:5c:36:e7:fd:d1:0d:86:80:8a:27:8f:3b:95:
64:aa:16:88:b3:64:33:a3:79:05:1e:49:ba:ee:44:
f4:8c:e6:49:03:f7:2f:75:56:a9:34:25:f5:28:1b:
6e:00:6e:b1:09:75:37:fa:40:f9:5d:89:2e:61:26:
a4:3c:d2:54:20:0e:65:41:36:23:d5:d9:7e:c2:af:
71:6e:c9:d4:23:ac:ec:01:02:d6:56:15:0a:e1:ce:
a6:a7:af:16:9a:84:7e:82:c9:39:ea:03:0b:a0:39:
02:6d:4f:73:b5:5a:b8:ac:3f:dc:56:fc:ff:b8:16:
a4:c2:4c:52:5b:ff:51:37:eb:04:8b:98:dc:78:e6:
6f:68:59:99:91:eb:0d:55:36:d8:98:3f:b9:28:44:
2c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:B3:4B:D9:A3:AF:83:F9:15:73:5E:29:58:D4:D3:23:76:65:D1:1E
X509v3 Authority Key Identifier:
keyid:5C:92:B9:A9:2C:7E:B9:13:C3:DA:55:80:02:C6:73:E8:23:8D:B1:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XJK5qSx-uRPD2lWAAsZz6CONscc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/969463-7f6a-4503-abc4-d6b56aba3eb7/1/wrNL2aOvg_kVc14pWNTTI3Zl0R4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/969463-7f6a-4503-abc4-d6b56aba3eb7/1/XJK5qSx-uRPD2lWAAsZz6CONscc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.35.240.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:d1:1a:18:43:8a:cc:5a:40:3f:cc:fd:a4:cb:27:98:c4:ac:
58:96:70:f8:09:cf:c2:b2:16:1a:44:0b:bd:76:e5:a7:62:9a:
cc:d1:ff:71:9f:a1:d9:94:d0:7b:c1:4f:31:88:1e:d8:6e:48:
44:97:49:0c:5b:51:77:ac:e0:64:b3:67:7b:32:b4:bf:14:50:
1f:54:66:39:63:f2:6f:0e:ab:a7:6a:b5:35:d3:ed:41:85:d9:
76:d6:7a:10:9e:93:b5:34:f6:fe:09:f9:c0:d6:34:1b:a2:bc:
12:a4:72:0a:c8:8f:fa:46:88:63:8e:f7:4c:3f:13:4d:96:c5:
b6:1d:a3:8e:bf:f4:6a:f1:71:f5:24:d0:c3:af:94:44:24:c6:
8d:39:18:9f:15:2b:7d:ff:37:2c:ba:ff:e4:a8:68:c3:07:be:
99:ed:4e:74:06:9d:84:29:12:3a:68:6c:89:94:02:86:7e:e4:
b0:c8:9c:6c:40:f3:84:4a:f3:ad:05:4d:20:62:12:9a:51:56:
0d:a1:4d:a4:bd:f9:65:58:16:c6:15:39:9f:d2:cb:3c:ed:77:
69:7c:76:81:77:34:ae:62:9e:51:5d:3f:58:d1:23:ba:e5:8b:
f0:2a:2a:77:e2:f6:2e:4b:cc:80:80:47:f3:5f:a7:cc:60:ba:
75:59:db:65
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzKDYlXXoofethK6Nt+X0QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjOTJiOWE5MmM3ZWI5MTNjM2RhNTU4MDAyYzY3M2U4MjM4
ZGIxYzcwHhcNMjMwMTAyMTU0NDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMmIzNGJkOWEzYWY4M2Y5MTU3MzVlMjk1OGQ0ZDMyMzc2NjVkMTFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwIAlKz4f5xZtMde7lhZ1MnQOgauP
X3y5cIl17kz1fp5hZ/DAZxTMldi7z6DIhvm1wSO0Iw0abD+hpuBsE0PhxHj7BeC7
UiRVusxw8CZNOvAdDAOWILD1dnfHUAk+HaTm5VJpajsJsI0+vFw25/3RDYaAiieP
O5VkqhaIs2Qzo3kFHkm67kT0jOZJA/cvdVapNCX1KBtuAG6xCXU3+kD5XYkuYSak
PNJUIA5lQTYj1dl+wq9xbsnUI6zsAQLWVhUK4c6mp68WmoR+gsk56gMLoDkCbU9z
tVq4rD/cVvz/uBakwkxSW/9RN+sEi5jceOZvaFmZkesNVTbYmD+5KEQsZwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMKzS9mjr4P5FXNeKVjU0yN2ZdEeMB8GA1UdIwQY
MBaAFFySuaksfrkTw9pVgALGc+gjjbHHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWEpLNXFTeC11UlBEMmxXQUFzWno2Q09Oc2NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy85Njk0NjMtN2Y2YS00NTAzLWFiYzQt
ZDZiNTZhYmEzZWI3LzEvd3JOTDJhT3ZnX2tWYzE0cFdOVFRJM1psMFI0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMy85Njk0NjMtN2Y2YS00NTAzLWFiYzQtZDZiNTZhYmEzZWI3
LzEvWEpLNXFTeC11UlBEMmxXQUFzWno2Q09Oc2NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwiPwMA0G
CSqGSIb3DQEBCwUAA4IBAQAd0RoYQ4rMWkA/zP2kyyeYxKxYlnD4Cc/CshYaRAu9
duWnYprM0f9xn6HZlNB7wU8xiB7YbkhEl0kMW1F3rOBks2d7MrS/FFAfVGY5Y/Jv
DqunarU10+1Bhdl21noQnpO1NPb+CfnA1jQborwSpHIKyI/6RohjjvdMPxNNlsW2
HaOOv/Rq8XH1JNDDr5REJMaNORifFSt9/zcsuv/kqGjDB76Z7U50Bp2EKRI6aGyJ
lAKGfuSwyJxsQPOESvOtBU0gYhKaUVYNoU2kvfllWBbGFTmf0ss87XdpfHaBdzSu
Yp5RXT9Y0SO65YvwKip34vYuS8yAgEfzX6fMYLp1Wdtl
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:19 2024 by rpki-client on console-ams.rpki-client.org