Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS5650.roa
File: AS5650.roa (raw, json)
Hash identifier: ybvpfYK/BpItnr2v8GrqoLB30JwE1IHeA08yOhKUBBI=
Subject key identifier: 8C:A8:5E:C2:21:F2:A6:C3:37:4F:FA:F8:56:7E:28:D8:38:A6:66:B4
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 38DF80EED8204E3A7677C34E9542CCA70E2A9C57
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS5650.roa
Signing time: Fri 07 Jun 2024 14:41:21 +0000
ROA not before: Fri 07 Jun 2024 14:36:21 +0000
ROA not after: Fri 06 Jun 2025 14:41:21 +0000
asID: 5650
IP address blocks: 92.112.36.0/23 maxlen: 24
92.112.38.0/23 maxlen: 24
92.112.40.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 07 Oct 2024 00:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:df:80:ee:d8:20:4e:3a:76:77:c3:4e:95:42:cc:a7:0e:2a:9c:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Jun 7 14:36:21 2024 GMT
Not After : Jun 6 14:41:21 2025 GMT
Subject: CN=8CA85EC221F2A6C3374FFAF8567E28D838A666B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:70:e8:21:38:4b:d8:dd:a1:1a:1f:16:12:f6:
d8:30:9d:c6:4d:a1:90:1e:a8:85:34:ce:a2:6d:c7:
5f:c7:cb:c9:c5:78:cd:a6:d9:00:aa:16:77:57:bb:
7a:cd:ff:30:9a:60:01:a1:cf:88:13:20:74:79:20:
7c:0b:65:d7:3d:b2:76:d1:ef:ef:2a:10:7a:dd:b0:
c5:a7:2c:11:b6:00:07:55:ab:81:6d:0b:a9:e5:82:
25:ae:49:00:8d:54:b9:e5:94:27:6a:2f:ac:cc:1f:
af:2d:e9:e6:17:9f:5b:16:e8:fd:db:11:cf:8e:61:
49:b9:4f:38:02:46:c7:1a:ab:35:9a:3b:ac:8a:f7:
ba:2f:59:ff:63:93:05:b4:a0:32:2c:09:b7:ca:02:
53:c5:53:f6:ae:c9:24:7d:97:0f:3f:d3:97:35:c0:
0e:7d:00:0c:c0:f8:f2:47:70:5f:23:b3:e1:16:41:
cd:c7:9b:01:4b:d4:fb:5c:16:73:3f:45:4a:44:ca:
f7:63:08:ec:c8:9e:ac:ff:43:0a:0b:f2:b4:e4:9c:
92:17:22:17:c4:39:b4:25:fe:c1:c5:7c:e1:53:a7:
16:19:13:e1:83:ed:5b:86:d0:6c:ff:37:a3:db:c5:
b1:3e:f2:42:f4:3e:68:bf:36:87:f0:75:03:93:e4:
53:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:A8:5E:C2:21:F2:A6:C3:37:4F:FA:F8:56:7E:28:D8:38:A6:66:B4
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS5650.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.112.36.0-92.112.47.255
Signature Algorithm: sha256WithRSAEncryption
0c:36:d2:7b:99:75:7c:98:24:71:0b:72:86:f2:dd:da:e5:40:
4d:44:20:9a:a6:af:ae:18:f5:63:e3:42:06:54:6b:c0:36:64:
51:87:96:c0:96:db:4d:f9:4d:2e:de:f4:d1:d1:79:dc:8d:d4:
c0:1b:43:84:7e:aa:7c:94:41:0b:80:6b:c3:36:6b:35:8a:64:
60:b4:29:d7:1a:e1:4f:33:b2:51:b3:c3:87:b9:15:c8:02:9d:
d2:78:0d:31:11:07:f1:f8:61:bb:cd:51:3d:cb:c6:d8:15:39:
4a:ad:27:6d:ae:16:81:e3:9e:32:99:10:9d:7c:11:4a:a8:9b:
e7:c3:ff:8e:34:90:e5:e6:0a:e4:34:61:a1:02:04:88:71:ea:
cb:06:86:7a:fd:30:48:c7:f9:a4:31:93:66:e9:1c:72:6e:99:
ae:f0:a6:eb:db:e1:7e:fa:95:4c:be:a1:a7:29:bd:86:99:7f:
52:1e:eb:55:4a:b5:66:c3:24:82:75:09:70:af:98:68:92:ed:
6e:40:12:e8:61:4c:93:41:1f:59:6d:92:41:59:cb:99:98:0c:
cb:8b:e4:b5:9c:3f:cc:d4:d7:60:94:b9:c0:3e:80:af:db:7b:
a2:b0:95:c4:95:02:c3:28:24:fb:9f:ec:ce:0d:ce:6c:ea:07:
33:10:02:05
-----BEGIN CERTIFICATE-----
MIIFBjCCA+6gAwIBAgIUON+A7tggTjp2d8NOlULMpw4qnFcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOWJkODEzMzkxZTRhZjJhZTMxMDNjMTg5MWIyMjcyZDRk
NWMxM2I1ZjAeFw0yNDA2MDcxNDM2MjFaFw0yNTA2MDYxNDQxMjFaMDMxMTAvBgNV
BAMTKDhDQTg1RUMyMjFGMkE2QzMzNzRGRkFGODU2N0UyOEQ4MzhBNjY2QjQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClcOghOEvY3aEaHxYS9tgwncZN
oZAeqIU0zqJtx1/Hy8nFeM2m2QCqFndXu3rN/zCaYAGhz4gTIHR5IHwLZdc9snbR
7+8qEHrdsMWnLBG2AAdVq4FtC6nlgiWuSQCNVLnllCdqL6zMH68t6eYXn1sW6P3b
Ec+OYUm5TzgCRscaqzWaO6yK97ovWf9jkwW0oDIsCbfKAlPFU/auySR9lw8/05c1
wA59AAzA+PJHcF8js+EWQc3HmwFL1PtcFnM/RUpEyvdjCOzInqz/QwoL8rTknJIX
IhfEObQl/sHFfOFTpxYZE+GD7VuG0Gz/N6PbxbE+8kL0Pmi/NofwdQOT5FODAgMB
AAGjggIQMIICDDAdBgNVHQ4EFgQUjKhewiHypsM3T/r4Vn4o2DimZrQwHwYDVR0j
BBgwFoAUm9gTOR5K8q4xA8GJGyJy1NXBO18wDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvYzQ3OGY2ZjUtNDQ5YS00ODI3LTk5ZDUtYmY2YjkzYThm
NmI0LzAvOUJEODEzMzkxRTRBRjJBRTMxMDNDMTg5MUIyMjcyRDRENUMxM0I1Ri5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL205Z1RPUjVLOHE0eEE4R0pHeUp5MU5Y
Qk8xOC5jZXIweQYIKwYBBQUHAQsEbTBrMGkGCCsGAQUFBzALhl1yc3luYzovL3Jz
eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L2M0NzhmNmY1LTQ0OWEt
NDgyNy05OWQ1LWJmNmI5M2E4ZjZiNC8wL0FTNTY1MC5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAnBggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQCXHAk
AwQEXHAgMA0GCSqGSIb3DQEBCwUAA4IBAQAMNtJ7mXV8mCRxC3KG8t3a5UBNRCCa
pq+uGPVj40IGVGvANmRRh5bAlttN+U0u3vTR0XncjdTAG0OEfqp8lEELgGvDNms1
imRgtCnXGuFPM7JRs8OHuRXIAp3SeA0xEQfx+GG7zVE9y8bYFTlKrSdtrhaB454y
mRCdfBFKqJvnw/+ONJDl5grkNGGhAgSIcerLBoZ6/TBIx/mkMZNm6Rxybpmu8Kbr
2+F++pVMvqGnKb2GmX9SHutVSrVmwySCdQlwr5hoku1uQBLoYUyTQR9ZbZJBWcuZ
mAzLi+S1nD/M1NdglLnAPoCv23uisJXElQLDKCT7n+zODc5s6gczEAIF
Generated at Mon Oct 7 03:24:15 2024 by rpki-client on console-fra.rpki-client.org