Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/mG5MOtJpHnlnAagBBq9zDli2UwQ.roa
File: mG5MOtJpHnlnAagBBq9zDli2UwQ.roa (raw, json)
Hash identifier: +KvHvcV8Bo9KxBflE4v3gO6aFhaZV4XWTXLK5C14DNA=
Subject key identifier: 98:6E:4C:3A:D2:69:1E:79:67:01:A8:01:06:AF:73:0E:58:B6:53:04
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01856CE62B85E6BDEB6CA079DC535F084DDF
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/mG5MOtJpHnlnAagBBq9zDli2UwQ.roa
Signing time: Sun 01 Jan 2023 10:35:01 +0000
ROA not before: Sun 01 Jan 2023 10:35:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 395681
IP address blocks: 45.135.149.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:2b:85:e6:bd:eb:6c:a0:79:dc:53:5f:08:4d:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 1 10:35:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=986e4c3ad2691e796701a80106af730e58b65304
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:f6:01:e0:46:e3:4f:05:9d:7c:4c:82:11:57:
42:b8:48:06:9c:8b:17:44:84:b3:8d:ff:a1:68:45:
a5:60:10:c5:6f:ba:82:93:ca:74:9d:bb:3a:33:6d:
83:91:ff:2e:33:26:39:d6:95:51:32:db:af:10:ee:
bb:2e:72:07:5d:6a:20:73:6f:3b:5e:d5:48:cc:72:
c0:27:90:ae:5c:db:00:ef:91:15:60:75:9b:3b:ed:
83:74:51:74:22:a8:f9:27:f9:53:04:56:e5:85:a7:
02:80:11:c7:1e:74:88:82:e3:3d:42:0a:d9:20:f0:
c6:06:7d:7e:8e:bc:2c:7b:75:09:dc:ba:b5:4a:76:
37:e2:ee:77:1a:6c:63:b7:45:d5:96:5e:54:5b:08:
0a:c4:29:d8:0a:f8:e1:da:da:d4:52:cf:fd:ee:f0:
02:38:5b:d8:43:5f:2a:45:29:d9:69:15:c6:a9:b1:
9f:e2:b8:3f:d3:8f:a7:17:a7:cf:34:02:70:e2:07:
43:24:d8:a8:67:ab:27:80:3f:83:7e:27:06:1a:49:
d0:95:25:c8:30:40:f1:6f:74:7b:a8:c6:22:07:ce:
3e:99:a2:0b:ad:21:d7:61:7a:7c:29:da:48:43:fe:
4d:d5:42:54:ba:a0:2e:c4:e6:a7:3e:33:5e:9a:e9:
90:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:6E:4C:3A:D2:69:1E:79:67:01:A8:01:06:AF:73:0E:58:B6:53:04
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/mG5MOtJpHnlnAagBBq9zDli2UwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.149.0/24
Signature Algorithm: sha256WithRSAEncryption
31:5b:90:64:f0:ec:5e:bc:9d:2a:61:c8:fa:a2:af:d6:93:12:
da:ae:06:58:1d:47:a8:24:e6:70:de:d8:29:03:8f:dc:06:4a:
26:97:70:1b:16:22:2c:9f:81:a3:12:8f:3d:7d:c5:48:ac:96:
02:29:06:cf:1d:8b:3d:71:42:e1:da:a1:da:51:ad:36:a0:d8:
36:79:ce:3b:c1:06:e1:cd:f9:0c:94:03:be:15:a1:84:ed:ea:
29:11:a0:d5:d7:a9:c2:e2:2a:89:79:ea:63:f1:65:71:11:8e:
50:d2:f8:c3:4b:87:78:b3:02:4d:ca:77:b2:62:ba:89:00:39:
06:09:bb:0b:e3:d6:41:6b:26:51:85:b2:7b:8c:4d:2a:cd:b9:
7f:31:5a:bf:dd:99:56:42:31:78:62:e6:eb:df:81:e3:55:22:
04:5a:71:2d:fc:d3:d8:87:a8:dc:fb:90:d1:4e:ee:3f:96:d9:
07:86:33:8f:ec:5f:72:00:4a:fc:6c:00:e1:52:01:3e:41:5b:
00:16:bc:7d:94:8a:e2:9b:74:46:e3:bd:d6:70:bd:0c:44:96:
60:21:1e:69:f2:ef:44:fe:51:f4:03:85:2a:be:ce:5c:74:1a:
4b:0c:a3:58:3c:14:70:10:e4:f1:2a:91:72:6f:c8:f8:42:33:
23:b1:01:79
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVs5iuF5r3rbKB53FNfCE3fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiMDQxNWJmYzQzYjM4ZTljZmQxYTEyOTk1MjAyZTg3NjM3
NTJmZGUwHhcNMjMwMTAxMTAzNTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ODZlNGMzYWQyNjkxZTc5NjcwMWE4MDEwNmFmNzMwZTU4YjY1MzA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm/YB4EbjTwWdfEyCEVdCuEgGnIsX
RISzjf+haEWlYBDFb7qCk8p0nbs6M22Dkf8uMyY51pVRMtuvEO67LnIHXWogc287
XtVIzHLAJ5CuXNsA75EVYHWbO+2DdFF0Iqj5J/lTBFblhacCgBHHHnSIguM9QgrZ
IPDGBn1+jrwse3UJ3Lq1SnY34u53Gmxjt0XVll5UWwgKxCnYCvjh2trUUs/97vAC
OFvYQ18qRSnZaRXGqbGf4rg/04+nF6fPNAJw4gdDJNioZ6sngD+DficGGknQlSXI
MEDxb3R7qMYiB84+maILrSHXYXp8KdpIQ/5N1UJUuqAuxOanPjNemumQIQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJhuTDrSaR55ZwGoAQavcw5YtlMEMB8GA1UdIwQY
MBaAFBsEFb/EOzjpz9GhKZUgLodjdS/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1Nzgt
YTNjYTBkYjgzMjU0LzEvbUc1TU90SnBIbmxuQWFnQkJxOXpEbGkyVXdRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1NzgtYTNjYTBkYjgzMjU0
LzEvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYeVMA0G
CSqGSIb3DQEBCwUAA4IBAQAxW5Bk8OxevJ0qYcj6oq/WkxLargZYHUeoJOZw3tgp
A4/cBkoml3AbFiIsn4GjEo89fcVIrJYCKQbPHYs9cULh2qHaUa02oNg2ec47wQbh
zfkMlAO+FaGE7eopEaDV16nC4iqJeepj8WVxEY5Q0vjDS4d4swJNyneyYrqJADkG
CbsL49ZBayZRhbJ7jE0qzbl/MVq/3ZlWQjF4Yubr34HjVSIEWnEt/NPYh6jc+5DR
Tu4/ltkHhjOP7F9yAEr8bADhUgE+QVsAFrx9lIrim3RG473WcL0MRJZgIR5p8u9E
/lH0A4Uqvs5cdBpLDKNYPBRwEOTxKpFyb8j4QjMjsQF5
-----END CERTIFICATE-----
Generated at Tue Jan 2 11:34:25 2024 by rpki-client on console-ams.rpki-client.org