Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/3SGxgMN198_emNbL2B1ELQWQVQk.roa
File: 3SGxgMN198_emNbL2B1ELQWQVQk.roa (raw, json)
Hash identifier: 12IrACJrvMCmWA0OrSNqbLhMYFWdUN2bmDa/Y4CUJdg=
Subject key identifier: DD:21:B1:80:C3:75:F7:CF:DE:98:D6:CB:D8:1D:44:2D:05:90:55:09
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0185A7A45BEDF2F6A086A63BBABA0A968543
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/3SGxgMN198_emNbL2B1ELQWQVQk.roa
Signing time: Thu 12 Jan 2023 20:20:44 +0000
ROA not before: Thu 12 Jan 2023 20:20:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200229
IP address blocks: 45.137.70.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a7:a4:5b:ed:f2:f6:a0:86:a6:3b:ba:ba:0a:96:85:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 12 20:20:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dd21b180c375f7cfde98d6cbd81d442d05905509
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ca:8a:67:f6:02:24:13:37:e6:b8:8c:f5:e2:
03:90:1d:db:24:de:d2:74:c8:92:e0:72:9a:0b:c5:
28:10:26:b7:d7:63:ec:1a:02:a7:1c:74:53:4a:f6:
d8:16:03:3e:08:b6:7f:46:a9:90:b2:99:7f:ff:67:
6b:f5:a9:1e:dd:36:b5:8a:8c:7f:e3:aa:e2:ba:e6:
fa:3a:ee:ad:8e:89:69:e0:5c:e7:57:3b:a3:b3:5b:
25:66:fd:ab:40:63:54:be:06:a6:37:23:72:0b:2a:
05:b4:22:d9:41:b3:4a:c9:f3:1b:02:e0:2c:ac:e6:
2b:a6:eb:ed:00:40:00:7a:f3:0b:30:32:09:21:ba:
e3:73:80:c8:e2:aa:1d:36:8f:4c:5d:88:b4:3d:d9:
7c:90:f6:0e:87:59:f1:be:16:f3:07:84:c2:e4:bf:
ae:b0:e3:97:cb:e8:e6:66:e2:13:11:2f:6c:7c:d5:
fb:7c:c5:c7:8e:8f:fa:51:7b:48:4a:4e:bf:08:5b:
de:cd:58:cf:87:61:5a:89:3c:fc:ff:b3:7c:d0:ca:
07:8a:f1:c8:f2:41:41:01:c4:b3:60:61:d0:18:22:
57:c2:1c:08:3b:af:66:30:52:e7:b2:91:ff:62:8a:
10:d2:74:6e:f1:0b:b4:56:91:d3:f6:d2:32:50:d9:
e2:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:21:B1:80:C3:75:F7:CF:DE:98:D6:CB:D8:1D:44:2D:05:90:55:09
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/3SGxgMN198_emNbL2B1ELQWQVQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.70.0/24
Signature Algorithm: sha256WithRSAEncryption
94:1c:85:87:5b:ec:8d:be:f4:cd:56:ac:0d:f5:43:de:40:60:
92:ab:bf:4a:75:62:1f:6a:3a:74:b0:5f:e0:34:99:53:d8:a7:
4f:bf:1d:ed:4a:c7:dd:71:db:aa:a0:f1:59:a8:75:9d:72:43:
94:fd:4e:2c:b0:db:6a:c9:d1:71:34:b2:f2:ac:26:75:81:ea:
77:4f:42:b7:c4:0f:ff:34:d3:d0:a9:26:93:e5:0c:f0:bc:55:
c5:23:bc:bd:38:75:94:96:e3:e8:40:0c:e8:5c:ac:bd:78:01:
78:fa:cc:41:6e:89:9b:65:46:4b:ec:97:10:10:1e:f9:c3:c1:
60:23:4e:48:b2:7a:10:0f:1e:03:eb:c7:51:14:4d:80:cd:0b:
8d:68:28:e9:22:c4:a6:a0:c4:a3:ea:64:76:26:17:b5:ea:78:
d0:a6:d7:4b:7b:2f:9b:9b:40:da:07:f9:e1:47:bf:23:38:94:
d6:b3:28:f7:d5:71:4d:fc:21:02:ac:26:05:0e:9a:b4:54:36:
6b:74:22:e0:d8:c1:99:a6:0e:0c:f1:42:cd:f2:e3:95:33:8d:
1a:a0:67:21:b5:7f:a1:f7:4b:f1:da:3e:4d:13:55:d3:cc:89:
58:2d:9c:ac:1f:63:53:ef:73:25:f2:3e:57:d6:e6:53:03:75:
3e:c0:7c:57
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYWnpFvt8vaghqY7uroKloVDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiMDQxNWJmYzQzYjM4ZTljZmQxYTEyOTk1MjAyZTg3NjM3
NTJmZGUwHhcNMjMwMTEyMjAyMDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZDIxYjE4MGMzNzVmN2NmZGU5OGQ2Y2JkODFkNDQyZDA1OTA1NTA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnsqKZ/YCJBM35riM9eIDkB3bJN7S
dMiS4HKaC8UoECa312PsGgKnHHRTSvbYFgM+CLZ/RqmQspl//2dr9ake3Ta1iox/
46riuub6Ou6tjolp4FznVzujs1slZv2rQGNUvgamNyNyCyoFtCLZQbNKyfMbAuAs
rOYrpuvtAEAAevMLMDIJIbrjc4DI4qodNo9MXYi0Pdl8kPYOh1nxvhbzB4TC5L+u
sOOXy+jmZuITES9sfNX7fMXHjo/6UXtISk6/CFvezVjPh2FaiTz8/7N80MoHivHI
8kFBAcSzYGHQGCJXwhwIO69mMFLnspH/YooQ0nRu8Qu0VpHT9tIyUNniVwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN0hsYDDdffP3pjWy9gdRC0FkFUJMB8GA1UdIwQY
MBaAFBsEFb/EOzjpz9GhKZUgLodjdS/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1Nzgt
YTNjYTBkYjgzMjU0LzEvM1NHeGdNTjE5OF9lbU5iTDJCMUVMUVdRVlFrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1NzgtYTNjYTBkYjgzMjU0
LzEvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYlGMA0G
CSqGSIb3DQEBCwUAA4IBAQCUHIWHW+yNvvTNVqwN9UPeQGCSq79KdWIfajp0sF/g
NJlT2KdPvx3tSsfdcduqoPFZqHWdckOU/U4ssNtqydFxNLLyrCZ1gep3T0K3xA//
NNPQqSaT5QzwvFXFI7y9OHWUluPoQAzoXKy9eAF4+sxBbombZUZL7JcQEB75w8Fg
I05IsnoQDx4D68dRFE2AzQuNaCjpIsSmoMSj6mR2Jhe16njQptdLey+bm0DaB/nh
R78jOJTWsyj31XFN/CECrCYFDpq0VDZrdCLg2MGZpg4M8ULN8uOVM40aoGchtX+h
90vx2j5NE1XTzIlYLZysH2NT73Ml8j5X1uZTA3U+wHxX
-----END CERTIFICATE-----
Generated at Tue Jan 2 11:51:13 2024 by rpki-client on console-fra.rpki-client.org