Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/82c0a2-804b-446d-ab24-4f38c656b256/1/5RTAQCrzc8SMPpxEDm-3QiXxDdU.roa
File: 5RTAQCrzc8SMPpxEDm-3QiXxDdU.roa (raw, json)
Hash identifier: xYRNlaEKXrQuDGJ9aAhbcV6DusCairCxcbJcngdK1Mg=
Subject key identifier: E5:14:C0:40:2A:F3:73:C4:8C:3E:9C:44:0E:6F:B7:42:25:F1:0D:D5
Certificate issuer: /CN=133cd7c1a9c79c82eee5c86a423c17c1d63c3413
Certificate serial: 018572D5BC0CD92D137842FC87F9A6B61F7D
Authority key identifier: 13:3C:D7:C1:A9:C7:9C:82:EE:E5:C8:6A:42:3C:17:C1:D6:3C:34:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EzzXwanHnILu5chqQjwXwdY8NBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/82c0a2-804b-446d-ab24-4f38c656b256/1/5RTAQCrzc8SMPpxEDm-3QiXxDdU.roa
Signing time: Mon 02 Jan 2023 14:14:47 +0000
ROA not before: Mon 02 Jan 2023 14:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30058
IP address blocks: 185.5.47.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:d5:bc:0c:d9:2d:13:78:42:fc:87:f9:a6:b6:1f:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=133cd7c1a9c79c82eee5c86a423c17c1d63c3413
Validity
Not Before: Jan 2 14:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e514c0402af373c48c3e9c440e6fb74225f10dd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:1d:ac:40:6f:43:f8:5d:eb:53:f8:af:63:e4:
27:f5:8d:0d:98:a4:af:81:fd:4a:5c:4e:fd:69:ec:
89:66:dc:60:69:3e:af:a1:8e:ac:e3:8b:ff:75:cf:
99:d4:78:1d:87:48:aa:b3:92:53:ca:35:39:cd:57:
2d:12:5b:e0:2e:a1:bb:ce:94:94:67:3b:72:53:0e:
be:68:dd:d1:de:c2:6f:c9:a2:6e:f5:9c:32:7b:9a:
c6:0d:fd:9b:cd:8e:6a:c2:2e:3d:c6:09:b8:f8:4b:
e0:07:90:ff:37:83:02:71:fa:fc:5e:b7:ec:8e:08:
28:a7:30:95:e4:16:16:05:e7:7f:43:80:37:b4:e1:
71:20:4c:59:ea:6b:c7:7e:15:74:b0:a5:9c:f0:71:
33:cd:dd:75:9b:da:53:d8:23:ad:ff:66:3f:a6:fe:
5a:73:a0:5c:d9:d8:32:0d:e1:76:06:98:6b:2d:d2:
62:bf:0d:ff:8a:2b:24:58:fe:f8:1f:18:7a:c8:6c:
de:25:56:8a:84:77:59:bd:81:3e:ad:41:ce:d5:6a:
df:c2:4f:ca:76:09:8c:58:0e:77:f8:dc:0d:6a:9a:
59:ab:b3:16:ee:6e:72:50:6c:a5:3e:1f:c5:95:82:
a9:f1:42:41:3a:0b:7a:cc:52:ac:0f:17:11:00:3d:
89:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:14:C0:40:2A:F3:73:C4:8C:3E:9C:44:0E:6F:B7:42:25:F1:0D:D5
X509v3 Authority Key Identifier:
keyid:13:3C:D7:C1:A9:C7:9C:82:EE:E5:C8:6A:42:3C:17:C1:D6:3C:34:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EzzXwanHnILu5chqQjwXwdY8NBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/82c0a2-804b-446d-ab24-4f38c656b256/1/5RTAQCrzc8SMPpxEDm-3QiXxDdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/82c0a2-804b-446d-ab24-4f38c656b256/1/EzzXwanHnILu5chqQjwXwdY8NBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.5.47.0/24
Signature Algorithm: sha256WithRSAEncryption
86:1b:ad:98:d4:ef:dc:e3:54:c8:4b:d9:43:ae:0f:c3:f2:e1:
32:d3:86:49:30:04:df:43:e7:b2:63:79:ad:60:ae:05:3f:77:
ab:ce:ce:93:12:72:5c:bd:d1:88:05:24:a3:27:fb:d1:68:88:
3e:2a:95:dc:bc:35:61:e5:d7:5d:aa:b1:9e:d6:5c:66:bf:fb:
ac:97:cf:9e:11:11:42:05:c8:98:23:32:90:04:bc:fd:d2:eb:
9a:90:d4:a3:e6:51:29:dd:d7:d7:ed:80:f7:b1:d4:8a:22:17:
8c:dc:f9:10:58:b5:ce:e6:f9:3f:e6:4a:6f:cd:84:bc:a6:61:
39:a4:27:fc:fd:41:d3:51:24:4c:5b:58:0b:92:45:3a:2d:00:
4f:a6:46:d0:e3:b2:78:50:ff:74:45:bb:bd:b6:b9:1d:92:63:
ca:f8:2a:d0:4e:22:50:1a:cc:24:47:a9:98:05:13:14:0b:03:
ca:f6:86:07:50:6b:fc:7b:ef:e5:47:e6:67:7f:cd:77:f6:2e:
2d:be:0c:a7:8b:82:e5:66:09:98:21:9b:ff:02:0a:12:ac:1b:
7c:6c:47:a1:50:95:27:55:ce:11:19:57:29:cc:91:ee:7f:6d:
1b:79:17:41:59:13:6f:91:49:b4:04:aa:3a:5f:b1:8d:0c:3e:
52:89:27:c9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVy1bwM2S0TeEL8h/mmth99MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEzM2NkN2MxYTljNzljODJlZWU1Yzg2YTQyM2MxN2MxZDYz
YzM0MTMwHhcNMjMwMTAyMTQxNDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNTE0YzA0MDJhZjM3M2M0OGMzZTljNDQwZTZmYjc0MjI1ZjEwZGQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtR2sQG9D+F3rU/ivY+Qn9Y0NmKSv
gf1KXE79aeyJZtxgaT6voY6s44v/dc+Z1Hgdh0iqs5JTyjU5zVctElvgLqG7zpSU
ZztyUw6+aN3R3sJvyaJu9Zwye5rGDf2bzY5qwi49xgm4+EvgB5D/N4MCcfr8Xrfs
jggopzCV5BYWBed/Q4A3tOFxIExZ6mvHfhV0sKWc8HEzzd11m9pT2COt/2Y/pv5a
c6Bc2dgyDeF2BphrLdJivw3/iiskWP74Hxh6yGzeJVaKhHdZvYE+rUHO1Wrfwk/K
dgmMWA53+NwNappZq7MW7m5yUGylPh/FlYKp8UJBOgt6zFKsDxcRAD2JawIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOUUwEAq83PEjD6cRA5vt0Il8Q3VMB8GA1UdIwQY
MBaAFBM818Gpx5yC7uXIakI8F8HWPDQTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRXp6WHdhbkhuSUx1NWNocVFqd1h3ZFk4TkJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC84MmMwYTItODA0Yi00NDZkLWFiMjQt
NGYzOGM2NTZiMjU2LzEvNVJUQVFDcnpjOFNNUHB4RURtLTNRaVh4RGRVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC84MmMwYTItODA0Yi00NDZkLWFiMjQtNGYzOGM2NTZiMjU2
LzEvRXp6WHdhbkhuSUx1NWNocVFqd1h3ZFk4TkJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuQUvMA0G
CSqGSIb3DQEBCwUAA4IBAQCGG62Y1O/c41TIS9lDrg/D8uEy04ZJMATfQ+eyY3mt
YK4FP3erzs6TEnJcvdGIBSSjJ/vRaIg+KpXcvDVh5dddqrGe1lxmv/usl8+eERFC
BciYIzKQBLz90uuakNSj5lEp3dfX7YD3sdSKIheM3PkQWLXO5vk/5kpvzYS8pmE5
pCf8/UHTUSRMW1gLkkU6LQBPpkbQ47J4UP90Rbu9trkdkmPK+CrQTiJQGswkR6mY
BRMUCwPK9oYHUGv8e+/lR+Znf8139i4tvgyni4LlZgmYIZv/AgoSrBt8bEehUJUn
Vc4RGVcpzJHuf20beRdBWRNvkUm0BKo6X7GNDD5SiSfJ
-----END CERTIFICATE-----
Generated at Mon Jan 1 15:15:45 2024 by rpki-client on console-fra.rpki-client.org