Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/eGxnYTrOWylGBdLmF6gRUN-C_1s.roa
File: eGxnYTrOWylGBdLmF6gRUN-C_1s.roa (raw, json)
Hash identifier: YbZduKXNk6SW14csSizDlD9lvK+rRrSiFrJQZuDt9xY=
Subject key identifier: 78:6C:67:61:3A:CE:5B:29:46:05:D2:E6:17:A8:11:50:DF:82:FF:5B
Certificate issuer: /CN=a1d71853324eb060fbafc988233860499c96c53a
Certificate serial: 018CED3016BC3EBA560F7B54CE7E04356A2C
Authority key identifier: A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/eGxnYTrOWylGBdLmF6gRUN-C_1s.roa
Signing time: Tue 09 Jan 2024 07:46:40 +0000
ROA not before: Tue 09 Jan 2024 07:46:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.148.132.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Jan 2024 07:17:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ed:30:16:bc:3e:ba:56:0f:7b:54:ce:7e:04:35:6a:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1d71853324eb060fbafc988233860499c96c53a
Validity
Not Before: Jan 9 07:46:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=786c67613ace5b294605d2e617a81150df82ff5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:60:d6:08:01:81:0a:c1:3c:3f:4a:00:87:b5:
cc:39:7c:5e:37:7c:bc:a7:02:db:d7:45:61:18:f2:
da:74:2d:8f:15:f5:d3:b2:5e:f5:04:07:7d:1e:5e:
65:d2:3f:dc:50:e6:2b:75:8d:a0:da:f6:1f:a7:54:
a0:dc:08:31:37:10:fa:35:92:80:72:26:05:72:87:
cd:30:45:39:d0:b8:a5:aa:91:7a:88:98:75:2b:23:
6b:b1:e7:c2:0e:de:62:50:d8:91:91:77:5b:ef:4d:
59:57:70:20:8e:76:17:c2:58:c9:e1:11:2b:f8:51:
eb:c1:ef:ca:ad:15:36:ff:ad:fa:52:f7:ef:a2:2b:
6b:0c:07:1d:c6:0d:89:6e:c0:6f:fb:3c:33:eb:51:
cc:23:8b:d6:4e:65:ef:de:76:99:80:e6:8a:df:3c:
e8:3d:39:54:b7:c3:59:14:3b:6a:eb:f2:bd:b4:d7:
b3:c5:34:8d:b6:19:b6:36:ac:5a:f6:53:4e:9b:a7:
c8:e1:69:76:f5:ac:d8:86:b1:10:c2:c9:9e:f5:36:
34:71:13:d7:ab:6f:52:a0:41:cc:e5:59:5c:5e:74:
8a:8f:8a:ce:3a:c1:ab:06:89:d1:79:5d:32:82:4a:
c2:0c:50:35:e4:97:0f:b0:1f:a9:78:f7:e5:e7:4f:
b0:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:6C:67:61:3A:CE:5B:29:46:05:D2:E6:17:A8:11:50:DF:82:FF:5B
X509v3 Authority Key Identifier:
keyid:A1:D7:18:53:32:4E:B0:60:FB:AF:C9:88:23:38:60:49:9C:96:C5:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/odcYUzJOsGD7r8mIIzhgSZyWxTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/eGxnYTrOWylGBdLmF6gRUN-C_1s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/7656db-94a5-45be-9435-7061356bef1b/1/odcYUzJOsGD7r8mIIzhgSZyWxTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.132.0/24
Signature Algorithm: sha256WithRSAEncryption
09:de:1c:df:85:9d:60:77:50:66:11:c3:de:cb:94:5b:a0:6c:
5d:ad:dd:bd:10:ac:77:39:09:2d:0d:f2:d2:fc:57:32:ef:51:
83:46:19:0d:e9:a1:4a:c7:99:03:44:42:bb:47:fb:3e:ae:23:
1a:00:1f:38:00:b7:ed:9c:8c:35:2c:1b:b8:36:46:1c:4b:68:
02:14:ce:3b:fc:05:4e:5e:d0:e1:2e:01:6c:b7:91:f3:b4:e9:
dc:93:bc:2f:82:11:79:64:85:eb:8d:56:fd:45:bd:9a:74:53:
37:89:3a:c7:7f:de:e3:c6:d3:15:16:6e:4f:e9:a7:4e:93:cc:
86:23:68:3c:52:3f:bf:b2:c7:5f:9f:6d:17:da:98:da:ac:65:
b9:b0:71:4b:2a:ce:fb:82:32:27:17:dd:89:7b:1a:6d:e3:95:
e7:b2:df:37:7f:79:6c:80:97:63:77:3e:c7:79:d6:29:a6:d2:
85:7e:50:73:87:b5:7d:8c:93:8c:f7:24:f7:45:ff:8f:bc:22:
40:3f:e8:25:c3:66:3c:58:07:84:94:a4:8a:1e:87:37:f4:ee:
ac:0f:fd:49:16:0e:ab:4e:4b:4f:ae:cd:4e:01:79:01:6e:64:
fd:03:cc:31:01:9e:45:be:fc:6d:0b:08:b9:bc:80:c5:8b:b9:
10:bc:a2:bd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYztMBa8PrpWD3tUzn4ENWosMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExZDcxODUzMzI0ZWIwNjBmYmFmYzk4ODIzMzg2MDQ5OWM5
NmM1M2EwHhcNMjQwMTA5MDc0NjQwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ODZjNjc2MTNhY2U1YjI5NDYwNWQyZTYxN2E4MTE1MGRmODJmZjViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwmDWCAGBCsE8P0oAh7XMOXxeN3y8
pwLb10VhGPLadC2PFfXTsl71BAd9Hl5l0j/cUOYrdY2g2vYfp1Sg3AgxNxD6NZKA
ciYFcofNMEU50LilqpF6iJh1KyNrsefCDt5iUNiRkXdb701ZV3AgjnYXwljJ4REr
+FHrwe/KrRU2/636UvfvoitrDAcdxg2JbsBv+zwz61HMI4vWTmXv3naZgOaK3zzo
PTlUt8NZFDtq6/K9tNezxTSNthm2Nqxa9lNOm6fI4Wl29azYhrEQwsme9TY0cRPX
q29SoEHM5VlcXnSKj4rOOsGrBonReV0ygkrCDFA15JcPsB+pePfl50+w6wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHhsZ2E6zlspRgXS5heoEVDfgv9bMB8GA1UdIwQY
MBaAFKHXGFMyTrBg+6/JiCM4YEmclsU6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2RjWVV6Sk9zR0Q3cjhtSUl6aGdTWnlXeFRvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy83NjU2ZGItOTRhNS00NWJlLTk0MzUt
NzA2MTM1NmJlZjFiLzEvZUd4bllUck9XeWxHQmRMbUY2Z1JVTi1DXzFzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy83NjU2ZGItOTRhNS00NWJlLTk0MzUtNzA2MTM1NmJlZjFi
LzEvb2RjWVV6Sk9zR0Q3cjhtSUl6aGdTWnlXeFRvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZSEMA0G
CSqGSIb3DQEBCwUAA4IBAQAJ3hzfhZ1gd1BmEcPey5RboGxdrd29EKx3OQktDfLS
/Fcy71GDRhkN6aFKx5kDREK7R/s+riMaAB84ALftnIw1LBu4NkYcS2gCFM47/AVO
XtDhLgFst5HztOnck7wvghF5ZIXrjVb9Rb2adFM3iTrHf97jxtMVFm5P6adOk8yG
I2g8Uj+/ssdfn20X2pjarGW5sHFLKs77gjInF92Jexpt45Xnst83f3lsgJdjdz7H
edYpptKFflBzh7V9jJOM9yT3Rf+PvCJAP+glw2Y8WAeElKSKHoc39O6sD/1JFg6r
TktPrs1OAXkBbmT9A8wxAZ5FvvxtCwi5vIDFi7kQvKK9
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:51 2024 by rpki-client on console-fra.rpki-client.org