Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/e197fc-7bf1-4ec5-ab4e-5cabe6d54c93/1/5K_yr71vzSTqmUD0Lc3Xhw-WPQA.roa
File: 5K_yr71vzSTqmUD0Lc3Xhw-WPQA.roa (raw, json)
Hash identifier: Wj0vjW0L9AcWk0WtKfDrvkQx2wo+sqS8wKTcaHekqLA=
Subject key identifier: E4:AF:F2:AF:BD:6F:CD:24:EA:99:40:F4:2D:CD:D7:87:0F:96:3D:00
Certificate issuer: /CN=f25b336456b47dfc0f39dc91a6b882a4aabbeab3
Certificate serial: 018774E8D347064FA459267400D730017C21
Authority key identifier: F2:5B:33:64:56:B4:7D:FC:0F:39:DC:91:A6:B8:82:A4:AA:BB:EA:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8lszZFa0ffwPOdyRpriCpKq76rM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/e197fc-7bf1-4ec5-ab4e-5cabe6d54c93/1/5K_yr71vzSTqmUD0Lc3Xhw-WPQA.roa
Signing time: Wed 12 Apr 2023 10:00:28 +0000
ROA not before: Wed 12 Apr 2023 10:00:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209372
IP address blocks: 194.76.217.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Apr 2023 11:37:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:74:e8:d3:47:06:4f:a4:59:26:74:00:d7:30:01:7c:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f25b336456b47dfc0f39dc91a6b882a4aabbeab3
Validity
Not Before: Apr 12 10:00:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4aff2afbd6fcd24ea9940f42dcdd7870f963d00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b9:e5:6e:f3:0a:0e:34:21:47:2f:11:80:3d:
f5:b6:4a:68:e6:9e:54:c3:c5:ad:fc:ba:d2:d7:c7:
ca:fc:af:c5:1a:a2:09:d6:40:b0:01:c6:3b:e6:45:
57:27:3a:be:81:9f:b9:a5:cd:64:b4:6f:0b:d9:ba:
8e:27:ba:f2:4b:ad:09:c6:2d:9f:7f:52:3f:bd:25:
62:2f:35:a0:74:4f:29:a0:dc:77:0a:51:05:4e:95:
4a:9a:c2:ee:e3:0d:f4:ce:92:79:72:93:44:1a:6e:
56:64:fc:e2:0c:3c:79:fe:1a:da:1b:e3:de:bd:3b:
58:bf:b4:52:2f:c3:6e:93:6d:0f:3c:7a:18:06:1c:
44:39:95:f8:06:0c:e8:b8:2e:3f:d5:85:22:af:1a:
da:c6:40:31:59:d7:36:a5:84:e8:e4:2e:78:4f:45:
22:07:ae:cc:b0:20:0c:30:5e:9f:1b:7d:80:42:bd:
60:55:d5:6c:3c:aa:55:8d:ca:cb:01:9b:23:c8:4a:
f9:bf:5e:0f:59:69:07:68:cb:2a:0f:da:cd:7a:d1:
4b:fe:6e:3b:ae:d6:05:fc:8d:ea:9d:67:5b:66:80:
70:16:68:da:df:8a:f5:50:87:90:10:76:03:a9:f0:
a8:0b:28:26:58:0a:64:f1:25:87:27:01:a7:34:1a:
86:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:AF:F2:AF:BD:6F:CD:24:EA:99:40:F4:2D:CD:D7:87:0F:96:3D:00
X509v3 Authority Key Identifier:
keyid:F2:5B:33:64:56:B4:7D:FC:0F:39:DC:91:A6:B8:82:A4:AA:BB:EA:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8lszZFa0ffwPOdyRpriCpKq76rM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/e197fc-7bf1-4ec5-ab4e-5cabe6d54c93/1/5K_yr71vzSTqmUD0Lc3Xhw-WPQA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/e197fc-7bf1-4ec5-ab4e-5cabe6d54c93/1/8lszZFa0ffwPOdyRpriCpKq76rM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.76.217.0/24
Signature Algorithm: sha256WithRSAEncryption
84:89:86:b7:68:d0:cb:da:78:0a:c0:78:db:fe:7b:fa:fb:18:
7d:69:51:b5:a0:02:04:c2:d2:2c:a2:ea:61:dc:1e:52:0a:86:
a8:00:04:5e:cf:f8:8d:9c:5d:d7:44:70:20:63:e1:02:78:4b:
6d:9d:ee:63:2b:cb:5b:d9:7a:39:c4:7e:63:c3:42:58:f3:4f:
46:78:b9:2a:40:c2:19:26:dc:9b:92:0f:dd:2b:dd:48:c7:40:
89:d3:68:e5:5e:a8:89:0c:a3:d1:63:2c:32:a3:69:22:6a:c9:
e3:9d:26:be:81:b0:09:28:f9:3a:40:8b:7b:0b:d7:4f:d1:05:
6a:b7:6f:c6:1a:43:ef:7c:57:5f:0d:be:28:c6:14:65:20:9a:
bc:92:e3:8f:26:7d:f3:8a:97:7c:4e:16:e1:43:d9:26:46:3c:
0a:3b:38:ae:f3:fa:ab:df:7e:52:d4:00:b2:52:bb:8c:91:2b:
3e:ae:40:ab:a9:2f:0d:8c:2c:02:51:49:66:93:43:92:d5:cb:
7f:6d:41:eb:63:4f:32:af:e2:d6:a9:67:1a:3e:2f:f3:f2:cd:
4e:ff:49:f8:0b:42:5f:a4:2a:2b:57:5a:1b:76:a9:7d:29:0d:
71:0a:30:9e:c9:62:cb:4a:4a:af:f1:84:18:17:51:f0:84:96:
9c:34:d0:0b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYd06NNHBk+kWSZ0ANcwAXwhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYyNWIzMzY0NTZiNDdkZmMwZjM5ZGM5MWE2Yjg4MmE0YWFi
YmVhYjMwHhcNMjMwNDEyMTAwMDI4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNGFmZjJhZmJkNmZjZDI0ZWE5OTQwZjQyZGNkZDc4NzBmOTYzZDAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt7nlbvMKDjQhRy8RgD31tkpo5p5U
w8Wt/LrS18fK/K/FGqIJ1kCwAcY75kVXJzq+gZ+5pc1ktG8L2bqOJ7ryS60Jxi2f
f1I/vSViLzWgdE8poNx3ClEFTpVKmsLu4w30zpJ5cpNEGm5WZPziDDx5/hraG+Pe
vTtYv7RSL8Nuk20PPHoYBhxEOZX4BgzouC4/1YUirxraxkAxWdc2pYTo5C54T0Ui
B67MsCAMMF6fG32AQr1gVdVsPKpVjcrLAZsjyEr5v14PWWkHaMsqD9rNetFL/m47
rtYF/I3qnWdbZoBwFmja34r1UIeQEHYDqfCoCygmWApk8SWHJwGnNBqGmQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOSv8q+9b80k6plA9C3N14cPlj0AMB8GA1UdIwQY
MBaAFPJbM2RWtH38Dznckaa4gqSqu+qzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOGxzelpGYTBmZndQT2R5UnByaUNwS3E3NnJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy9lMTk3ZmMtN2JmMS00ZWM1LWFiNGUt
NWNhYmU2ZDU0YzkzLzEvNUtfeXI3MXZ6U1RxbVVEMExjM1hody1XUFFBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMy9lMTk3ZmMtN2JmMS00ZWM1LWFiNGUtNWNhYmU2ZDU0Yzkz
LzEvOGxzelpGYTBmZndQT2R5UnByaUNwS3E3NnJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwkzZMA0G
CSqGSIb3DQEBCwUAA4IBAQCEiYa3aNDL2ngKwHjb/nv6+xh9aVG1oAIEwtIsouph
3B5SCoaoAARez/iNnF3XRHAgY+ECeEttne5jK8tb2Xo5xH5jw0JY809GeLkqQMIZ
Jtybkg/dK91Ix0CJ02jlXqiJDKPRYywyo2kiasnjnSa+gbAJKPk6QIt7C9dP0QVq
t2/GGkPvfFdfDb4oxhRlIJq8kuOPJn3zipd8ThbhQ9kmRjwKOziu8/qr335S1ACy
UruMkSs+rkCrqS8NjCwCUUlmk0OS1ct/bUHrY08yr+LWqWcaPi/z8s1O/0n4C0Jf
pCorV1obdql9KQ1xCjCeyWLLSkqv8YQYF1HwhJacNNAL
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:21 2024 by rpki-client on console-ams.rpki-client.org