Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/fdLfdbNn3zVCw7bnBya-UB1CR88.roa
File: fdLfdbNn3zVCw7bnBya-UB1CR88.roa (raw, json)
Hash identifier: w/nE92Fkhl9AGWQY3cLa0R9aThz7WcJH2kjIx+osL5c=
Subject key identifier: 7D:D2:DF:75:B3:67:DF:35:42:C3:B6:E7:07:26:BE:50:1D:42:47:CF
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 0185727A3E61CFEC929184EE35FD5E806BC6
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/fdLfdbNn3zVCw7bnBya-UB1CR88.roa
Signing time: Mon 02 Jan 2023 12:34:52 +0000
ROA not before: Mon 02 Jan 2023 12:34:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200019
IP address blocks: 45.137.180.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 14 Feb 2023 12:03:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:7a:3e:61:cf:ec:92:91:84:ee:35:fd:5e:80:6b:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jan 2 12:34:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7dd2df75b367df3542c3b6e70726be501d4247cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:00:90:d2:20:a5:94:a7:35:eb:2b:54:7d:11:
6f:0e:1e:18:f9:e3:cb:c7:03:88:0e:59:a9:9c:98:
1f:ca:91:a2:f0:87:12:48:85:1f:bf:c2:a9:3d:c8:
ea:18:b6:23:f0:32:cd:42:ed:70:db:39:48:85:32:
8f:5b:a1:92:61:5d:fe:f5:27:7c:08:d4:43:f3:aa:
f4:58:d2:d6:ff:f3:f4:fc:03:b0:f8:17:3b:97:0f:
4c:3c:ee:20:58:0d:56:14:fb:9d:e9:d5:40:42:a6:
94:0e:dd:00:6e:c1:9b:27:cc:cc:7c:76:82:ba:2b:
b6:ec:4b:a7:6b:fe:39:9c:e3:28:3a:6f:10:af:e7:
62:3e:3c:21:fe:4a:bb:68:ed:67:1d:0f:2f:e9:2e:
97:f6:c4:9b:29:59:41:54:b1:71:d6:38:f8:75:ae:
4b:e1:00:32:41:18:0e:35:a8:66:e8:3d:42:0f:f1:
3e:8c:0b:ca:01:e4:d3:d0:bd:74:3b:17:7c:ff:df:
f4:02:5e:09:09:ec:e1:87:6a:c9:51:ff:7e:ce:ca:
01:75:52:7d:c3:17:29:8b:c6:3a:94:87:1e:39:05:
d1:d9:1f:14:b3:0f:47:50:ac:95:9c:53:97:53:27:
39:cc:7f:b8:7a:ca:93:49:d1:61:c9:c9:03:21:ec:
a8:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:D2:DF:75:B3:67:DF:35:42:C3:B6:E7:07:26:BE:50:1D:42:47:CF
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/fdLfdbNn3zVCw7bnBya-UB1CR88.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.180.0/22
Signature Algorithm: sha256WithRSAEncryption
ba:78:a9:51:45:a5:78:54:39:3f:fb:ed:c8:15:a1:5a:be:cd:
27:fc:8e:81:a6:5e:73:db:20:a4:95:33:7e:eb:fe:44:aa:ac:
da:f1:50:2c:9c:ee:c6:48:e0:94:61:a6:26:aa:ec:d0:a6:97:
cc:fc:6d:8d:2d:53:9f:55:48:cb:d4:33:12:81:ca:88:de:96:
e2:40:eb:9a:fc:69:5c:a7:f9:ce:e0:09:f9:cd:81:82:38:21:
43:76:e3:49:cf:e5:12:50:fe:57:4b:04:c0:d7:be:72:b3:e0:
72:54:78:29:fb:dd:28:e9:f8:b8:a6:9c:cc:ad:04:4c:b4:67:
d4:e5:88:6d:00:c1:3a:6f:47:aa:a6:66:b8:e6:f0:c8:b7:8f:
77:e1:ba:84:3d:fc:01:ec:7e:63:76:c1:b3:4d:bd:a9:9c:36:
6c:2a:7a:43:70:11:8c:3b:36:be:02:49:ad:61:2d:b2:ec:ff:
e4:77:c8:70:3a:74:58:5f:d5:d4:48:6a:38:2e:e1:30:ef:93:
3d:7a:dd:03:b9:5d:6b:55:6b:33:8a:73:bd:3b:2f:7a:8d:57:
df:da:77:6b:0e:31:be:83:11:3a:e9:95:e2:b1:42:40:ac:51:
bc:95:21:e8:51:98:07:e5:6b:32:90:e8:dc:50:45:fb:d3:5e:
ac:cc:04:3b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyej5hz+ySkYTuNf1egGvGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhYzNkYWExYjE0ODUwZjJlNjFjNTkyYjIxOTE5MTVhNWU2
NWE0NzgwHhcNMjMwMTAyMTIzNDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZGQyZGY3NWIzNjdkZjM1NDJjM2I2ZTcwNzI2YmU1MDFkNDI0N2NmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkQCQ0iCllKc16ytUfRFvDh4Y+ePL
xwOIDlmpnJgfypGi8IcSSIUfv8KpPcjqGLYj8DLNQu1w2zlIhTKPW6GSYV3+9Sd8
CNRD86r0WNLW//P0/AOw+Bc7lw9MPO4gWA1WFPud6dVAQqaUDt0AbsGbJ8zMfHaC
uiu27Euna/45nOMoOm8Qr+diPjwh/kq7aO1nHQ8v6S6X9sSbKVlBVLFx1jj4da5L
4QAyQRgONahm6D1CD/E+jAvKAeTT0L10Oxd8/9/0Al4JCezhh2rJUf9+zsoBdVJ9
wxcpi8Y6lIceOQXR2R8Usw9HUKyVnFOXUyc5zH+4esqTSdFhyckDIeyogwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH3S33WzZ981QsO25wcmvlAdQkfPMB8GA1UdIwQY
MBaAFCrD2qGxSFDy5hxZKyGRkVpeZaR4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUt
ZmUwNjU5MTc2YTU2LzEvZmRMZmRiTm4zelZDdzdibkJ5YS1VQjFDUjg4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUtZmUwNjU5MTc2YTU2
LzEvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLYm0MA0G
CSqGSIb3DQEBCwUAA4IBAQC6eKlRRaV4VDk/++3IFaFavs0n/I6Bpl5z2yCklTN+
6/5Eqqza8VAsnO7GSOCUYaYmquzQppfM/G2NLVOfVUjL1DMSgcqI3pbiQOua/Glc
p/nO4An5zYGCOCFDduNJz+USUP5XSwTA175ys+ByVHgp+90o6fi4ppzMrQRMtGfU
5YhtAME6b0eqpma45vDIt4934bqEPfwB7H5jdsGzTb2pnDZsKnpDcBGMOza+Akmt
YS2y7P/kd8hwOnRYX9XUSGo4LuEw75M9et0DuV1rVWszinO9Oy96jVff2ndrDjG+
gxE66ZXisUJArFG8lSHoUZgH5WsykOjcUEX7016szAQ7
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:35 2024 by rpki-client on console-fra.rpki-client.org