Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/Dn11lVbNW920b-1DWh4s4mdr0VM.roa
File: Dn11lVbNW920b-1DWh4s4mdr0VM.roa (raw, json)
Hash identifier: yoEc6wRuhpuoMo8GNFHG7bUIp6LtufcldmCzja9ZqEA=
Subject key identifier: 0E:7D:75:95:56:CD:5B:DD:B4:6F:ED:43:5A:1E:2C:E2:67:6B:D1:53
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018CC86F3D780E169CF6D1428BC652235EEA
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/Dn11lVbNW920b-1DWh4s4mdr0VM.roa
Signing time: Tue 02 Jan 2024 04:29:42 +0000
ROA not before: Tue 02 Jan 2024 04:29:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.144.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Feb 2024 00:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:3d:78:0e:16:9c:f6:d1:42:8b:c6:52:23:5e:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jan 2 04:29:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0e7d759556cd5bddb46fed435a1e2ce2676bd153
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d7:21:e4:2e:f0:d9:30:64:fc:e9:c1:b2:ab:
f1:db:61:9c:26:15:9f:5f:59:db:82:a1:6b:90:09:
24:4e:71:ee:41:b0:3a:c0:84:03:7e:42:1c:e8:88:
39:c9:b2:02:43:4f:56:a7:b4:4a:42:f4:48:d3:0a:
b1:ac:7f:59:ce:1d:6a:1f:20:f2:ee:96:31:eb:2d:
e3:a6:ce:33:1a:3d:62:2c:98:b8:68:79:20:d4:02:
3b:c2:63:f6:a4:ae:de:ec:b4:16:27:5b:0a:7d:d1:
95:fc:35:3b:d1:bf:df:c3:35:7f:d4:5c:cb:f7:33:
e6:ff:ac:3e:33:da:00:60:06:dc:77:88:4f:e4:03:
b2:78:ec:0f:d4:fd:75:d5:fc:09:59:be:20:b2:1d:
a8:36:a4:27:11:ca:45:86:df:b3:8d:62:10:3c:d5:
06:bc:89:9b:ad:66:c2:ff:d4:83:58:1c:2f:a5:fd:
d7:b1:39:75:41:0b:11:55:99:73:d9:cc:c2:ad:93:
ab:05:da:08:38:ea:7e:1d:8f:cc:7c:00:6b:52:79:
3f:bd:e4:1f:e7:3f:45:2c:79:fd:f6:8b:85:65:aa:
b1:76:c9:41:ac:49:30:c0:1f:03:e6:88:c5:29:0b:
4f:93:6b:d6:7c:44:ce:34:65:2d:21:24:ab:03:7b:
c1:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:7D:75:95:56:CD:5B:DD:B4:6F:ED:43:5A:1E:2C:E2:67:6B:D1:53
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/Dn11lVbNW920b-1DWh4s4mdr0VM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.215.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:ac:ed:d6:ef:40:60:cf:09:ab:63:a9:63:e3:85:e2:62:f0:
46:32:c7:03:a0:d4:de:1a:30:e8:e0:8c:3d:38:f0:3e:67:c8:
89:6e:4d:e0:47:1d:65:d2:7e:69:75:cf:2e:e7:73:10:73:14:
cc:4e:50:a9:4f:c2:e6:aa:8a:36:51:f7:22:6a:4a:2b:a6:7c:
93:6f:2d:25:98:a6:52:50:16:d2:6c:e1:7a:19:4f:a8:59:17:
26:0a:2b:b2:24:76:42:58:db:ef:ef:0c:57:67:56:cb:95:64:
a9:e1:26:e7:8a:3a:42:9a:19:42:2e:5e:a0:6f:91:82:74:01:
bc:d8:33:5b:66:7b:a6:a0:5e:1d:54:c0:9d:31:e2:44:59:0f:
76:ad:60:23:d2:22:19:91:77:7b:59:56:58:e1:e8:54:1b:4b:
66:56:28:f8:c5:c9:e7:25:95:57:10:36:75:3a:95:68:83:71:
60:d1:65:f8:40:29:d6:f2:48:d1:9d:36:56:25:bc:51:3d:d6:
fe:66:c2:82:4a:83:c5:af:2e:72:63:fc:d0:a6:5b:c5:f9:2e:
a5:7b:f0:f6:7e:12:08:78:24:e8:46:5c:93:ce:3d:3e:00:82:
5a:6b:13:32:4b:3d:89:cb:e7:8d:8c:1b:63:2d:ee:db:a3:5a:
6e:cd:48:b4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzIbz14Dhac9tFCi8ZSI17qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMmE0NzhiYjBiMDhlNjYxYjBiMmY5ZmJlODkzNWJjOWMy
YTI4YTEwHhcNMjQwMTAyMDQyOTQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZTdkNzU5NTU2Y2Q1YmRkYjQ2ZmVkNDM1YTFlMmNlMjY3NmJkMTUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs9ch5C7w2TBk/OnBsqvx22GcJhWf
X1nbgqFrkAkkTnHuQbA6wIQDfkIc6Ig5ybICQ09Wp7RKQvRI0wqxrH9Zzh1qHyDy
7pYx6y3jps4zGj1iLJi4aHkg1AI7wmP2pK7e7LQWJ1sKfdGV/DU70b/fwzV/1FzL
9zPm/6w+M9oAYAbcd4hP5AOyeOwP1P111fwJWb4gsh2oNqQnEcpFht+zjWIQPNUG
vImbrWbC/9SDWBwvpf3XsTl1QQsRVZlz2czCrZOrBdoIOOp+HY/MfABrUnk/veQf
5z9FLHn99ouFZaqxdslBrEkwwB8D5ojFKQtPk2vWfETONGUtISSrA3vB+wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA59dZVWzVvdtG/tQ1oeLOJna9FTMB8GA1UdIwQY
MBaAFJ0qR4uwsI5mGwsvn76JNbycKiihMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMt
ZWVmMzUxMWY2YzYwLzEvRG4xMWxWYk5XOTIwYi0xRFdoNHM0bWRyMFZNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMtZWVmMzUxMWY2YzYw
LzEvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZDXMA0G
CSqGSIb3DQEBCwUAA4IBAQBvrO3W70BgzwmrY6lj44XiYvBGMscDoNTeGjDo4Iw9
OPA+Z8iJbk3gRx1l0n5pdc8u53MQcxTMTlCpT8Lmqoo2UfciakorpnyTby0lmKZS
UBbSbOF6GU+oWRcmCiuyJHZCWNvv7wxXZ1bLlWSp4SbnijpCmhlCLl6gb5GCdAG8
2DNbZnumoF4dVMCdMeJEWQ92rWAj0iIZkXd7WVZY4ehUG0tmVij4xcnnJZVXEDZ1
OpVog3Fg0WX4QCnW8kjRnTZWJbxRPdb+ZsKCSoPFry5yY/zQplvF+S6le/D2fhII
eCToRlyTzj0+AIJaaxMySz2Jy+eNjBtjLe7bo1puzUi0
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:31 2024 by rpki-client on console-fra.rpki-client.org