Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/3gGyVh3LS0bn8A7S-IEgEaPqqGU.roa
File: 3gGyVh3LS0bn8A7S-IEgEaPqqGU.roa (raw, json)
Hash identifier: 0fYrNypBdbroFSndJ40/srcAUXSpXIkTUrq5lXZvozI=
Subject key identifier: DE:01:B2:56:1D:CB:4B:46:E7:F0:0E:D2:F8:81:20:11:A3:EA:A8:65
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01856CE60B95B219790A7690B6C96F0D5120
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/3gGyVh3LS0bn8A7S-IEgEaPqqGU.roa
Signing time: Sun 01 Jan 2023 10:34:53 +0000
ROA not before: Sun 01 Jan 2023 10:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 10103
IP address blocks: 45.142.106.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:0b:95:b2:19:79:0a:76:90:b6:c9:6f:0d:51:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 1 10:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de01b2561dcb4b46e7f00ed2f8812011a3eaa865
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:20:4f:36:ff:92:67:3a:a9:c4:3b:e1:fc:b2:
70:e6:13:cc:30:d1:6d:81:08:7f:da:32:c3:28:04:
66:21:86:45:8c:23:77:5d:09:be:f5:8c:80:be:80:
21:11:b1:18:5f:d3:66:6a:42:f9:f5:f1:ae:00:d2:
d6:df:5a:62:26:cd:98:2b:38:e1:c3:1f:19:6c:07:
17:ce:97:c7:56:1a:cd:8f:85:3b:1a:cc:9e:3d:3d:
04:89:75:0c:47:68:bc:81:2e:34:3c:f1:22:19:6e:
d9:5a:3c:86:84:c2:5d:a5:71:47:3a:ff:81:b7:36:
82:ae:b2:83:9e:d8:cd:ef:df:af:f0:33:98:e0:63:
f8:a9:ff:3c:65:3d:3c:2b:0f:e6:98:3c:52:be:38:
e3:43:fa:17:b5:5a:f6:45:34:49:bd:bc:de:6d:5d:
28:52:5b:f8:47:07:73:22:14:0e:c1:dc:11:90:08:
b1:17:77:10:8d:97:aa:55:b4:0e:78:9a:c1:12:f9:
bc:9b:33:0f:15:bf:5a:c0:56:20:fb:65:ae:0f:e7:
89:d6:66:7f:84:26:cc:24:b6:25:31:1a:ae:da:0d:
40:55:4a:ea:fb:55:cf:14:94:f3:ab:72:ba:14:a4:
79:36:a2:41:d1:e1:b5:34:fa:99:ae:e8:f1:30:1c:
3b:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:01:B2:56:1D:CB:4B:46:E7:F0:0E:D2:F8:81:20:11:A3:EA:A8:65
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/3gGyVh3LS0bn8A7S-IEgEaPqqGU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.106.0/24
Signature Algorithm: sha256WithRSAEncryption
26:86:6a:13:ef:af:e8:09:e0:ff:e0:bc:5f:cc:13:98:f5:0b:
22:52:bd:09:a8:13:3d:da:0b:1a:e1:02:12:53:25:c6:1d:0d:
a8:ce:4a:29:96:b3:c7:40:c6:23:80:02:5a:4a:3b:d4:ab:8b:
14:24:e2:4f:e1:f2:8d:0f:ae:7f:e2:31:e2:f1:64:1e:aa:d6:
88:97:86:d4:c0:6c:41:d8:4c:d9:51:99:fc:3a:ee:4d:30:96:
98:79:56:39:36:b9:65:d6:78:13:dc:42:12:83:5f:22:93:f0:
8f:a9:23:1a:34:6e:4c:56:d1:d7:34:6b:74:1a:02:8a:c9:ed:
da:71:21:e9:eb:cc:25:42:9f:6f:56:b4:dd:a9:f5:9c:8f:2b:
48:ee:93:67:f2:2e:ef:f2:54:76:11:e5:6d:51:6d:e3:5b:0a:
22:99:0c:4f:52:a1:73:fd:7c:13:0a:f5:b7:85:01:c5:4a:c1:
02:0b:c2:2f:75:b1:f1:41:79:9f:4f:2d:e1:1d:21:52:9e:89:
19:cb:af:29:d0:2d:97:90:65:d4:d4:c8:db:9e:fe:1d:70:a1:
9b:ae:4b:77:47:f1:7b:ed:bc:66:2c:8b:8d:df:6c:3e:41:e6:
bd:73:98:73:5c:09:42:d3:99:17:d0:ce:ed:2f:4b:9c:34:cb:
d3:e8:d9:17
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVs5guVshl5CnaQtslvDVEgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiMDQxNWJmYzQzYjM4ZTljZmQxYTEyOTk1MjAyZTg3NjM3
NTJmZGUwHhcNMjMwMTAxMTAzNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZTAxYjI1NjFkY2I0YjQ2ZTdmMDBlZDJmODgxMjAxMWEzZWFhODY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAniBPNv+SZzqpxDvh/LJw5hPMMNFt
gQh/2jLDKARmIYZFjCN3XQm+9YyAvoAhEbEYX9NmakL59fGuANLW31piJs2YKzjh
wx8ZbAcXzpfHVhrNj4U7GsyePT0EiXUMR2i8gS40PPEiGW7ZWjyGhMJdpXFHOv+B
tzaCrrKDntjN79+v8DOY4GP4qf88ZT08Kw/mmDxSvjjjQ/oXtVr2RTRJvbzebV0o
Ulv4RwdzIhQOwdwRkAixF3cQjZeqVbQOeJrBEvm8mzMPFb9awFYg+2WuD+eJ1mZ/
hCbMJLYlMRqu2g1AVUrq+1XPFJTzq3K6FKR5NqJB0eG1NPqZrujxMBw7bwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN4BslYdy0tG5/AO0viBIBGj6qhlMB8GA1UdIwQY
MBaAFBsEFb/EOzjpz9GhKZUgLodjdS/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1Nzgt
YTNjYTBkYjgzMjU0LzEvM2dHeVZoM0xTMGJuOEE3Uy1JRWdFYVBxcUdVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1NzgtYTNjYTBkYjgzMjU0
LzEvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALY5qMA0G
CSqGSIb3DQEBCwUAA4IBAQAmhmoT76/oCeD/4LxfzBOY9QsiUr0JqBM92gsa4QIS
UyXGHQ2ozkoplrPHQMYjgAJaSjvUq4sUJOJP4fKND65/4jHi8WQeqtaIl4bUwGxB
2EzZUZn8Ou5NMJaYeVY5Nrll1ngT3EISg18ik/CPqSMaNG5MVtHXNGt0GgKKye3a
cSHp68wlQp9vVrTdqfWcjytI7pNn8i7v8lR2EeVtUW3jWwoimQxPUqFz/XwTCvW3
hQHFSsECC8IvdbHxQXmfTy3hHSFSnokZy68p0C2XkGXU1Mjbnv4dcKGbrkt3R/F7
7bxmLIuN32w+Qea9c5hzXAlC05kX0M7tL0ucNMvT6NkX
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:30 2023 by rpki-client on console-fra.rpki-client.org