Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/5b92a7-2837-469e-8214-e811e23c1804/1/ceSlIhA8rCunocbN1AmHbXK3Bf8.roa
File: ceSlIhA8rCunocbN1AmHbXK3Bf8.roa (raw, json)
Hash identifier: JiXz/MuChj+O8cbwW4rOl0DN3XciP8kxFluSdIjzS+I=
Subject key identifier: 71:E4:A5:22:10:3C:AC:2B:A7:A1:C6:CD:D4:09:87:6D:72:B7:05:FF
Certificate issuer: /CN=918901662a8ec5ff4d3f48d29099230a0575ec8a
Certificate serial: 018577D0F8CA05B0A812455842E3A77E3099
Authority key identifier: 91:89:01:66:2A:8E:C5:FF:4D:3F:48:D2:90:99:23:0A:05:75:EC:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kYkBZiqOxf9NP0jSkJkjCgV17Io.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/5b92a7-2837-469e-8214-e811e23c1804/1/ceSlIhA8rCunocbN1AmHbXK3Bf8.roa
Signing time: Tue 03 Jan 2023 13:27:41 +0000
ROA not before: Tue 03 Jan 2023 13:27:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43824
IP address blocks: 45.142.136.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 Mar 2023 07:04:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:77:d0:f8:ca:05:b0:a8:12:45:58:42:e3:a7:7e:30:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918901662a8ec5ff4d3f48d29099230a0575ec8a
Validity
Not Before: Jan 3 13:27:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=71e4a522103cac2ba7a1c6cdd409876d72b705ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a0:72:af:25:9a:ae:0e:98:75:96:df:34:57:
8b:d8:47:a4:06:d3:a1:34:76:ab:06:00:ce:99:4b:
59:d0:8d:98:9d:8a:da:c9:77:20:33:ab:e4:68:94:
39:fa:5f:a1:f3:4c:f8:de:09:7f:e7:4d:27:d7:23:
c2:06:50:a8:e0:c8:cc:f1:cb:4d:de:d4:7e:18:5b:
9f:c1:fe:98:91:60:7f:3b:f0:45:00:fc:9f:01:9e:
0c:c1:a0:cb:44:e2:a0:b8:82:4b:a7:4d:b3:7b:b3:
0a:f5:a6:89:99:7e:81:0d:87:15:96:14:56:05:1f:
66:2a:09:ac:83:41:e5:cd:6d:57:9a:24:dd:c0:2c:
e7:da:3e:68:cd:2b:92:a4:ab:00:18:81:cd:c2:36:
43:17:65:83:06:b2:5b:0c:68:e3:8d:43:f0:fd:6b:
16:41:0e:da:d7:7c:f4:8d:71:87:78:68:c5:c7:b5:
86:e5:64:7d:43:5b:33:54:ab:6f:29:99:97:3c:4c:
79:49:44:50:68:94:21:a2:e6:d5:aa:c8:ec:a4:5e:
4d:50:01:79:01:76:13:71:59:a1:23:e8:77:10:fc:
8f:b1:98:65:b6:11:4c:e4:0d:b9:db:2d:f5:dd:88:
91:bb:b5:00:8c:88:14:30:2f:d8:3f:64:31:62:e8:
6a:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:E4:A5:22:10:3C:AC:2B:A7:A1:C6:CD:D4:09:87:6D:72:B7:05:FF
X509v3 Authority Key Identifier:
keyid:91:89:01:66:2A:8E:C5:FF:4D:3F:48:D2:90:99:23:0A:05:75:EC:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kYkBZiqOxf9NP0jSkJkjCgV17Io.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/5b92a7-2837-469e-8214-e811e23c1804/1/ceSlIhA8rCunocbN1AmHbXK3Bf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/5b92a7-2837-469e-8214-e811e23c1804/1/kYkBZiqOxf9NP0jSkJkjCgV17Io.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.136.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:98:ae:ff:aa:35:3c:b1:f7:8c:65:5e:79:ff:af:bf:a2:38:
70:d2:46:da:a9:0b:d5:73:f9:48:27:b0:3a:87:2a:e7:86:f8:
e9:a3:66:7d:35:73:59:6d:c4:e9:f7:81:c3:c0:fc:c7:ad:84:
6a:10:72:50:d8:14:af:8e:cb:92:e0:7d:71:f5:5f:e1:a4:a2:
91:51:7f:e1:e5:15:ed:96:a7:ce:82:ca:5a:fb:d2:c4:ff:d4:
8f:27:38:10:81:c6:af:5a:3f:47:54:6b:f5:c1:7b:8e:fe:9c:
1f:07:9a:64:08:ff:5b:1d:29:3f:ff:92:76:40:e4:44:57:cc:
ae:06:c7:47:6c:e1:0b:d1:32:0a:57:70:4a:45:7e:7f:a9:52:
8c:1a:d1:98:67:98:c4:94:53:c9:30:76:70:46:9d:b3:e7:d0:
ef:02:c1:81:f5:6c:f1:78:2a:56:dd:47:c9:9b:13:c9:b4:82:
22:f1:5b:38:1b:b2:fd:53:34:5f:a1:1e:d5:e8:7e:94:12:a2:
cb:b5:d9:38:4a:16:cc:e3:d5:68:42:68:c2:07:1a:11:4f:6e:
4f:1b:81:c3:2a:29:2c:b7:29:05:f2:7a:fd:43:c0:54:0a:07:
e8:da:a7:5b:93:75:6b:d1:48:3e:12:ca:91:8a:69:8e:18:dc:
6c:da:f4:bf
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYV30PjKBbCoEkVYQuOnfjCZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxODkwMTY2MmE4ZWM1ZmY0ZDNmNDhkMjkwOTkyMzBhMDU3
NWVjOGEwHhcNMjMwMTAzMTMyNzQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MWU0YTUyMjEwM2NhYzJiYTdhMWM2Y2RkNDA5ODc2ZDcyYjcwNWZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApKByryWarg6YdZbfNFeL2EekBtOh
NHarBgDOmUtZ0I2YnYrayXcgM6vkaJQ5+l+h80z43gl/500n1yPCBlCo4MjM8ctN
3tR+GFufwf6YkWB/O/BFAPyfAZ4MwaDLROKguIJLp02ze7MK9aaJmX6BDYcVlhRW
BR9mKgmsg0HlzW1XmiTdwCzn2j5ozSuSpKsAGIHNwjZDF2WDBrJbDGjjjUPw/WsW
QQ7a13z0jXGHeGjFx7WG5WR9Q1szVKtvKZmXPEx5SURQaJQhoubVqsjspF5NUAF5
AXYTcVmhI+h3EPyPsZhlthFM5A252y313YiRu7UAjIgUMC/YP2QxYuhqYwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHHkpSIQPKwrp6HGzdQJh21ytwX/MB8GA1UdIwQY
MBaAFJGJAWYqjsX/TT9I0pCZIwoFdeyKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1lrQlppcU94ZjlOUDBqU2tKa2pDZ1YxN0lvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC81YjkyYTctMjgzNy00NjllLTgyMTQt
ZTgxMWUyM2MxODA0LzEvY2VTbEloQThyQ3Vub2NiTjFBbUhiWEszQmY4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC81YjkyYTctMjgzNy00NjllLTgyMTQtZTgxMWUyM2MxODA0
LzEva1lrQlppcU94ZjlOUDBqU2tKa2pDZ1YxN0lvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALY6IMA0G
CSqGSIb3DQEBCwUAA4IBAQBcmK7/qjU8sfeMZV55/6+/ojhw0kbaqQvVc/lIJ7A6
hyrnhvjpo2Z9NXNZbcTp94HDwPzHrYRqEHJQ2BSvjsuS4H1x9V/hpKKRUX/h5RXt
lqfOgspa+9LE/9SPJzgQgcavWj9HVGv1wXuO/pwfB5pkCP9bHSk//5J2QOREV8yu
BsdHbOEL0TIKV3BKRX5/qVKMGtGYZ5jElFPJMHZwRp2z59DvAsGB9WzxeCpW3UfJ
mxPJtIIi8Vs4G7L9UzRfoR7V6H6UEqLLtdk4ShbM49VoQmjCBxoRT25PG4HDKiks
tykF8nr9Q8BUCgfo2qdbk3Vr0Ug+EsqRimmOGNxs2vS/
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:41 2024 by rpki-client on console-ams.rpki-client.org