Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/6cd5fc-60cc-45de-bd8a-1544b44d59ca/1/Wh-i7PoYTK-mehKmuHg2LY74FJM.roa
File: Wh-i7PoYTK-mehKmuHg2LY74FJM.roa (raw, json)
Hash identifier: 0nMD0KN68CEiGxkDukZAuqszg5qKmZXqrH0z0aOuhuc=
Subject key identifier: 5A:1F:A2:EC:FA:18:4C:AF:A6:7A:12:A6:B8:78:36:2D:8E:F8:14:93
Certificate issuer: /CN=c62d7cac1ffb2c3fbde284625bf1af4c6bae6b0e
Certificate serial: 01856F79889AE334A86AFB2B0526973B9B35
Authority key identifier: C6:2D:7C:AC:1F:FB:2C:3F:BD:E2:84:62:5B:F1:AF:4C:6B:AE:6B:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xi18rB_7LD-94oRiW_GvTGuuaw4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/6cd5fc-60cc-45de-bd8a-1544b44d59ca/1/Wh-i7PoYTK-mehKmuHg2LY74FJM.roa
Signing time: Sun 01 Jan 2023 22:35:13 +0000
ROA not before: Sun 01 Jan 2023 22:35:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3292
IP address blocks: 147.29.150.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 24 Feb 2023 12:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:88:9a:e3:34:a8:6a:fb:2b:05:26:97:3b:9b:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c62d7cac1ffb2c3fbde284625bf1af4c6bae6b0e
Validity
Not Before: Jan 1 22:35:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a1fa2ecfa184cafa67a12a6b878362d8ef81493
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:46:0d:ef:5a:a8:61:dc:4a:8b:7c:e9:51:b9:
eb:7b:19:a8:e7:4d:2c:f8:99:cd:07:9f:93:23:61:
57:85:ac:ff:37:1c:4a:c3:d8:b1:c3:6d:95:38:65:
75:bd:05:c4:38:1b:4e:bb:3a:d2:05:b3:74:c0:3d:
13:c2:35:75:1f:e7:54:a9:d9:56:85:2b:dd:4a:41:
7b:b1:fd:f8:09:d9:7a:b5:52:20:54:03:f7:ad:12:
3d:9e:20:ac:e8:f1:64:6b:d4:86:28:44:45:7d:f0:
65:e6:2a:0a:d5:89:ed:aa:55:f9:ce:8a:4b:66:60:
56:30:db:ab:97:28:c3:2a:3f:2b:58:38:2d:60:96:
fe:e1:d3:14:25:ca:f8:94:4b:a2:b1:73:8d:bf:40:
69:07:de:63:6f:0f:70:4c:ca:4b:20:e2:6b:74:b6:
90:c3:1c:7e:36:33:c1:c3:0b:0c:28:4e:d0:96:97:
0d:c7:43:8b:8d:78:2e:e4:22:0a:fc:c9:c4:5b:80:
39:57:67:31:83:a0:f6:07:49:81:0b:b0:d3:76:da:
61:cb:21:8c:8a:f8:72:82:20:ab:e0:68:7f:9b:a4:
44:b7:80:40:de:41:80:3d:94:53:8e:41:6a:d8:4b:
61:56:d7:02:e4:68:6a:ae:6f:6f:3d:a5:61:f4:68:
62:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:1F:A2:EC:FA:18:4C:AF:A6:7A:12:A6:B8:78:36:2D:8E:F8:14:93
X509v3 Authority Key Identifier:
keyid:C6:2D:7C:AC:1F:FB:2C:3F:BD:E2:84:62:5B:F1:AF:4C:6B:AE:6B:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xi18rB_7LD-94oRiW_GvTGuuaw4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6cd5fc-60cc-45de-bd8a-1544b44d59ca/1/Wh-i7PoYTK-mehKmuHg2LY74FJM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/6cd5fc-60cc-45de-bd8a-1544b44d59ca/1/xi18rB_7LD-94oRiW_GvTGuuaw4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.29.150.0/23
Signature Algorithm: sha256WithRSAEncryption
32:da:6a:00:ee:46:f5:83:3e:08:c1:0a:6c:2e:78:a9:fc:5a:
cc:5d:5a:8b:81:54:fc:47:c5:13:b4:83:9c:2b:6e:b9:c5:6c:
52:62:af:ef:c1:b7:3f:75:f4:21:ab:09:2c:f6:e5:72:6e:1b:
08:2b:c4:a7:19:63:b1:3c:13:91:58:9e:73:e1:70:9a:41:77:
8c:1c:7c:25:00:30:e3:8a:9b:6c:ff:2d:a9:47:0f:36:f4:c7:
54:47:a6:81:3d:ff:d3:78:27:01:35:59:79:d7:e2:bd:39:01:
d9:e3:06:ee:20:78:0a:fa:a0:d7:df:a2:93:60:fc:ab:2b:49:
ba:ef:87:68:cf:ac:cb:f8:0a:ec:f4:6d:b0:0b:9e:74:14:34:
42:0c:22:3f:75:d3:e0:9f:ce:64:3c:eb:e9:01:57:48:49:43:
a5:0b:f8:69:4a:fe:6f:fb:f9:9d:2b:c2:05:bf:56:15:3b:14:
86:8c:f7:65:d5:85:f1:cb:32:c3:04:13:5e:ec:7b:a9:7e:42:
b8:57:3d:cc:a6:1d:c6:67:4f:ae:61:22:c1:07:5a:07:79:25:
51:33:19:d5:be:f1:88:96:e7:3c:e2:72:ac:e4:46:b3:1a:8c:
71:1d:3e:32:37:8c:58:65:b6:c9:05:f8:7e:1f:40:56:56:e8:
3a:23:9d:cf
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVveYia4zSoavsrBSaXO5s1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2MmQ3Y2FjMWZmYjJjM2ZiZGUyODQ2MjViZjFhZjRjNmJh
ZTZiMGUwHhcNMjMwMTAxMjIzNTEzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YTFmYTJlY2ZhMTg0Y2FmYTY3YTEyYTZiODc4MzYyZDhlZjgxNDkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn0YN71qoYdxKi3zpUbnrexmo500s
+JnNB5+TI2FXhaz/NxxKw9ixw22VOGV1vQXEOBtOuzrSBbN0wD0TwjV1H+dUqdlW
hSvdSkF7sf34Cdl6tVIgVAP3rRI9niCs6PFka9SGKERFffBl5ioK1YntqlX5zopL
ZmBWMNurlyjDKj8rWDgtYJb+4dMUJcr4lEuisXONv0BpB95jbw9wTMpLIOJrdLaQ
wxx+NjPBwwsMKE7QlpcNx0OLjXgu5CIK/MnEW4A5V2cxg6D2B0mBC7DTdtphyyGM
ivhygiCr4Gh/m6REt4BA3kGAPZRTjkFq2EthVtcC5Ghqrm9vPaVh9GhiKwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFofouz6GEyvpnoSprh4Ni2O+BSTMB8GA1UdIwQY
MBaAFMYtfKwf+yw/veKEYlvxr0xrrmsOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGkxOHJCXzdMRC05NG9SaVdfR3ZUR3V1YXc0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi82Y2Q1ZmMtNjBjYy00NWRlLWJkOGEt
MTU0NGI0NGQ1OWNhLzEvV2gtaTdQb1lUSy1tZWhLbXVIZzJMWTc0RkpNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi82Y2Q1ZmMtNjBjYy00NWRlLWJkOGEtMTU0NGI0NGQ1OWNh
LzEveGkxOHJCXzdMRC05NG9SaVdfR3ZUR3V1YXc0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBkx2WMA0G
CSqGSIb3DQEBCwUAA4IBAQAy2moA7kb1gz4IwQpsLnip/FrMXVqLgVT8R8UTtIOc
K265xWxSYq/vwbc/dfQhqwks9uVybhsIK8SnGWOxPBORWJ5z4XCaQXeMHHwlADDj
ipts/y2pRw829MdUR6aBPf/TeCcBNVl51+K9OQHZ4wbuIHgK+qDX36KTYPyrK0m6
74doz6zL+Ars9G2wC550FDRCDCI/ddPgn85kPOvpAVdISUOlC/hpSv5v+/mdK8IF
v1YVOxSGjPdl1YXxyzLDBBNe7HupfkK4Vz3Mph3GZ0+uYSLBB1oHeSVRMxnVvvGI
luc84nKs5EazGoxxHT4yN4xYZbbJBfh+H0BWVug6I53P
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:27 2024 by rpki-client on console-fra.rpki-client.org