Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/esG_RSdRCmP1n8PtRhpklOKifc0.roa
File: esG_RSdRCmP1n8PtRhpklOKifc0.roa (raw, json)
Hash identifier: NBgj5XzRF5R73Kkie696SlvZVaKHJSTuJzEwaXuvcQQ=
Subject key identifier: 7A:C1:BF:45:27:51:0A:63:F5:9F:C3:ED:46:1A:64:94:E2:A2:7D:CD
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018CC94E426716AAC8F67953F0E6E0FF8C07
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/esG_RSdRCmP1n8PtRhpklOKifc0.roa
Signing time: Tue 02 Jan 2024 08:33:18 +0000
ROA not before: Tue 02 Jan 2024 08:33:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212685
IP address blocks: 45.137.68.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Feb 2024 17:20:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:42:67:16:aa:c8:f6:79:53:f0:e6:e0:ff:8c:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 2 08:33:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7ac1bf4527510a63f59fc3ed461a6494e2a27dcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:22:ed:2a:f4:1a:02:8a:3e:cb:fe:7c:56:88:
7a:6a:6f:c5:63:9a:49:9b:ca:d8:f0:4c:1d:f6:25:
a5:3d:2b:ba:eb:da:69:b2:9b:28:1d:5c:8d:ff:f5:
43:9d:36:c5:5a:c8:50:5c:eb:03:de:4d:60:60:19:
59:a1:95:3c:45:b9:94:4e:fc:90:74:f8:48:0c:24:
03:53:4f:cf:4d:5b:cb:b8:03:e9:6f:69:78:02:df:
1f:a7:d2:35:6a:2d:33:e3:99:8a:f2:e2:57:36:13:
6a:3d:1e:65:9b:f3:be:f3:a2:52:62:4a:31:8c:39:
6e:15:95:01:93:57:c4:60:e5:af:5e:ab:19:ed:dc:
92:b0:94:59:da:3e:33:c0:54:de:32:e0:f1:cc:94:
eb:63:31:11:47:ab:1a:5f:d7:5b:62:6f:4f:1d:0d:
65:69:d7:0c:c9:ff:57:be:be:74:ed:61:ae:a0:6c:
a9:22:4d:b3:a3:01:e0:55:f8:e3:8f:f0:04:67:f6:
46:c2:c6:2f:32:a6:cb:5f:90:51:21:53:ab:b6:ec:
52:4a:de:78:12:75:e5:3b:78:d3:74:48:85:55:5c:
cf:43:d5:69:55:da:ec:07:04:20:08:78:43:1f:cd:
8f:dc:9a:7e:a1:78:7f:59:36:b5:a9:37:66:2a:c6:
d6:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:C1:BF:45:27:51:0A:63:F5:9F:C3:ED:46:1A:64:94:E2:A2:7D:CD
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/esG_RSdRCmP1n8PtRhpklOKifc0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.68.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:b7:1c:62:d0:53:b4:e3:89:75:8f:85:ac:d2:f4:fa:ea:01:
88:2c:df:60:d2:0e:4a:e9:27:10:24:da:dc:0b:4a:de:a4:d0:
ab:e7:12:bb:c0:86:36:e8:72:96:4d:71:47:c0:62:ff:e6:99:
53:c0:c1:5f:46:7a:3d:2f:d1:93:06:a4:7c:6c:a5:9e:3c:06:
45:f0:82:2c:e7:84:82:4b:61:77:ed:0e:72:00:4c:bf:15:45:
5d:17:c1:40:d9:e5:bd:5b:ef:4a:c9:d6:5a:6e:2f:a9:57:f9:
90:36:64:01:52:60:2e:f7:ee:e2:1c:47:d8:a8:fb:c2:9b:b6:
46:16:7f:dc:32:f8:f4:84:1e:f2:00:bf:80:05:e9:8c:75:31:
04:ba:69:bf:51:a5:2e:9b:b7:c7:cc:ae:5a:2d:35:ce:0a:3e:
ca:d8:de:9a:df:66:93:43:d1:e3:8d:bb:4f:8e:22:ce:e8:86:
97:92:d8:7e:50:94:f5:f0:b6:85:4f:7a:1a:28:bd:b9:c1:ab:
40:3d:a5:1a:90:fc:73:20:f8:d9:ce:99:a7:b1:fd:ac:d8:2a:
a9:af:10:f1:b9:d8:0f:7f:a6:53:0a:58:08:37:0e:12:2b:b7:
96:fe:5e:09:8a:fc:63:6d:8c:a2:cd:72:9c:76:ac:c9:e4:08:
3b:2b:4c:da
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzJTkJnFqrI9nlT8Obg/4wHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiMDQxNWJmYzQzYjM4ZTljZmQxYTEyOTk1MjAyZTg3NjM3
NTJmZGUwHhcNMjQwMTAyMDgzMzE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YWMxYmY0NTI3NTEwYTYzZjU5ZmMzZWQ0NjFhNjQ5NGUyYTI3ZGNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqCLtKvQaAoo+y/58Voh6am/FY5pJ
m8rY8Ewd9iWlPSu669ppspsoHVyN//VDnTbFWshQXOsD3k1gYBlZoZU8RbmUTvyQ
dPhIDCQDU0/PTVvLuAPpb2l4At8fp9I1ai0z45mK8uJXNhNqPR5lm/O+86JSYkox
jDluFZUBk1fEYOWvXqsZ7dySsJRZ2j4zwFTeMuDxzJTrYzERR6saX9dbYm9PHQ1l
adcMyf9Xvr507WGuoGypIk2zowHgVfjjj/AEZ/ZGwsYvMqbLX5BRIVOrtuxSSt54
EnXlO3jTdEiFVVzPQ9VpVdrsBwQgCHhDH82P3Jp+oXh/WTa1qTdmKsbWRQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHrBv0UnUQpj9Z/D7UYaZJTion3NMB8GA1UdIwQY
MBaAFBsEFb/EOzjpz9GhKZUgLodjdS/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1Nzgt
YTNjYTBkYjgzMjU0LzEvZXNHX1JTZFJDbVAxbjhQdFJocGtsT0tpZmMwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1NzgtYTNjYTBkYjgzMjU0
LzEvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYlEMA0G
CSqGSIb3DQEBCwUAA4IBAQA/txxi0FO044l1j4Ws0vT66gGILN9g0g5K6ScQJNrc
C0repNCr5xK7wIY26HKWTXFHwGL/5plTwMFfRno9L9GTBqR8bKWePAZF8IIs54SC
S2F37Q5yAEy/FUVdF8FA2eW9W+9KydZabi+pV/mQNmQBUmAu9+7iHEfYqPvCm7ZG
Fn/cMvj0hB7yAL+ABemMdTEEumm/UaUum7fHzK5aLTXOCj7K2N6a32aTQ9HjjbtP
jiLO6IaXkth+UJT18LaFT3oaKL25watAPaUakPxzIPjZzpmnsf2s2CqprxDxudgP
f6ZTClgINw4SK7eW/l4JivxjbYyizXKcdqzJ5Ag7K0za
-----END CERTIFICATE-----
Generated at Thu Feb 1 21:43:19 2024 by rpki-client on console-fra.rpki-client.org