Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/5pTXxiZGLr625kQa6KW9CX9wgyM.roa
File: 5pTXxiZGLr625kQa6KW9CX9wgyM.roa (raw, json)
Hash identifier: HWyFBxoIFC2DzqYp6Qx+Us4F7CjmzlTi+ZCwIshekDs=
Subject key identifier: E6:94:D7:C6:26:46:2E:BE:B6:E6:44:1A:E8:A5:BD:09:7F:70:83:23
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 018E0F7E54CC66EE701F0D926A39A9468F9D
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/5pTXxiZGLr625kQa6KW9CX9wgyM.roa
Signing time: Tue 05 Mar 2024 16:42:01 +0000
ROA not before: Tue 05 Mar 2024 16:42:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51431
IP address blocks: 185.41.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Apr 2024 11:12:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:0f:7e:54:cc:66:ee:70:1f:0d:92:6a:39:a9:46:8f:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Mar 5 16:42:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e694d7c626462ebeb6e6441ae8a5bd097f708323
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:52:11:bf:70:50:ae:e3:09:8a:4d:5c:4f:44:
21:3d:a3:4c:b5:5a:e9:e7:fc:a4:e1:44:f1:be:0e:
aa:c0:c6:5e:c9:c2:cd:07:76:f9:c1:00:44:6b:cb:
e9:45:b1:10:91:87:28:89:9c:c7:6d:4a:49:b7:9a:
e8:9f:93:62:c0:21:bb:03:c9:cd:2a:d9:b2:24:e9:
1e:f2:13:e9:a2:6d:30:55:9f:ca:9b:1a:7d:31:d1:
33:d7:da:58:ab:b5:c6:e9:8c:0a:17:fe:7e:26:fc:
da:98:88:c3:ed:dd:1c:01:29:4a:6e:3e:3a:74:ec:
94:c3:b5:77:a9:cd:10:3a:e0:5d:4d:d2:6f:8c:c5:
0a:be:e8:2f:01:2a:cb:bd:ff:c1:d8:df:d9:d6:3b:
5b:ba:e0:e3:e6:be:e6:66:18:d4:c3:35:eb:8f:3f:
36:91:e6:37:c9:cd:cb:9a:f7:94:c5:01:91:f0:bc:
16:92:60:d9:49:67:ee:6b:a1:5a:43:4f:be:ae:e2:
b1:fa:ec:1f:6e:bc:9a:f1:b6:01:2b:57:d8:88:3f:
7f:72:a2:74:9c:1a:78:ce:db:23:bc:4e:f5:4e:39:
a2:27:c6:bd:44:bb:81:97:e8:ba:bb:b8:d3:e7:28:
90:66:ec:d7:90:c3:e4:47:b7:51:6b:d1:81:88:d5:
b7:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:94:D7:C6:26:46:2E:BE:B6:E6:44:1A:E8:A5:BD:09:7F:70:83:23
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/5pTXxiZGLr625kQa6KW9CX9wgyM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.41.0.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:18:06:20:f8:e9:a7:a4:6a:69:8e:76:04:35:17:e7:39:bf:
d7:05:6e:b3:72:c6:2d:8f:73:dc:14:82:d6:2b:6c:8b:3a:ca:
b2:fb:ac:51:6b:fe:6e:5b:87:e3:7c:92:38:15:75:60:37:05:
b1:90:c0:87:f5:f7:87:da:f0:b0:08:02:c6:a7:e8:9a:a3:97:
fe:d3:62:12:cd:5c:c6:45:27:94:cb:90:af:4c:3f:3e:7e:d6:
a3:99:6c:a3:ce:41:97:70:5b:80:b9:88:38:0f:e3:0a:0b:31:
02:6c:b4:98:52:df:19:ab:be:ac:89:1f:20:99:9c:a9:da:2b:
a3:80:93:ad:c1:0e:0a:71:15:15:68:e2:03:5c:39:52:fd:43:
34:40:6c:72:bb:bd:4d:9e:07:33:1c:d8:2c:10:ff:fa:16:c9:
f0:95:b1:ec:78:b0:8b:bb:d2:0b:0d:b1:8a:fe:a1:1a:45:25:
8f:75:f1:70:e6:0f:dd:6d:03:6d:d0:c6:0f:5b:5d:74:d6:e0:
f2:6d:67:3b:9e:5e:97:29:bd:44:0c:55:de:43:9a:e7:67:1d:
9c:64:d7:0c:c1:1e:6a:10:7b:32:b5:3b:71:41:f2:b8:12:ec:
6b:cd:59:19:56:fe:55:d6:1b:10:f2:97:27:a9:f1:55:68:d2:
76:2a:82:a0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY4PflTMZu5wHw2SajmpRo+dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkNWUzOTY1OGEzZWY2ZjEzY2EyMWNjMTFhNGUzM2ViY2Q5
NDY3MDIwHhcNMjQwMzA1MTY0MjAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNjk0ZDdjNjI2NDYyZWJlYjZlNjQ0MWFlOGE1YmQwOTdmNzA4MzIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAllIRv3BQruMJik1cT0QhPaNMtVrp
5/yk4UTxvg6qwMZeycLNB3b5wQBEa8vpRbEQkYcoiZzHbUpJt5ron5NiwCG7A8nN
KtmyJOke8hPpom0wVZ/Kmxp9MdEz19pYq7XG6YwKF/5+JvzamIjD7d0cASlKbj46
dOyUw7V3qc0QOuBdTdJvjMUKvugvASrLvf/B2N/Z1jtbuuDj5r7mZhjUwzXrjz82
keY3yc3LmveUxQGR8LwWkmDZSWfua6FaQ0++ruKx+uwfbrya8bYBK1fYiD9/cqJ0
nBp4ztsjvE71TjmiJ8a9RLuBl+i6u7jT5yiQZuzXkMPkR7dRa9GBiNW37QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOaU18YmRi6+tuZEGuilvQl/cIMjMB8GA1UdIwQY
MBaAFM1eOWWKPvbxPKIcwRpOM+vNlGcCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUt
NWQxZmE2NmMzNjNiLzEvNXBUWHhpWkdMcjYyNWtRYTZLVzlDWDl3Z3lNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUtNWQxZmE2NmMzNjNi
LzEvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuSkAMA0G
CSqGSIb3DQEBCwUAA4IBAQCgGAYg+OmnpGppjnYENRfnOb/XBW6zcsYtj3PcFILW
K2yLOsqy+6xRa/5uW4fjfJI4FXVgNwWxkMCH9feH2vCwCALGp+iao5f+02ISzVzG
RSeUy5CvTD8+ftajmWyjzkGXcFuAuYg4D+MKCzECbLSYUt8Zq76siR8gmZyp2iuj
gJOtwQ4KcRUVaOIDXDlS/UM0QGxyu71NngczHNgsEP/6FsnwlbHseLCLu9ILDbGK
/qEaRSWPdfFw5g/dbQNt0MYPW1101uDybWc7nl6XKb1EDFXeQ5rnZx2cZNcMwR5q
EHsytTtxQfK4EuxrzVkZVv5V1hsQ8pcnqfFVaNJ2KoKg
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:01 2024 by rpki-client on console-ams.rpki-client.org