Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/d3953b-b942-4b75-9c9d-985c64fe27ee/1/D9EhTsq5qVPsViusul-JTP76kOY.roa
File: D9EhTsq5qVPsViusul-JTP76kOY.roa (raw, json)
Hash identifier: TspZzKJFrfSX1pp89vOBEfWujGGT4XipEN/uH26JyPM=
Subject key identifier: 0F:D1:21:4E:CA:B9:A9:53:EC:56:2B:AC:BA:5F:89:4C:FE:FA:90:E6
Certificate issuer: /CN=9bbae6e3ed766de47aba6693bb5af8a648974310
Certificate serial: 018595E838483A894D50CF051B949A9514E6
Authority key identifier: 9B:BA:E6:E3:ED:76:6D:E4:7A:BA:66:93:BB:5A:F8:A6:48:97:43:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m7rm4-12beR6umaTu1r4pkiXQxA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/d3953b-b942-4b75-9c9d-985c64fe27ee/1/D9EhTsq5qVPsViusul-JTP76kOY.roa
Signing time: Mon 09 Jan 2023 09:41:41 +0000
ROA not before: Mon 09 Jan 2023 09:41:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206703
IP address blocks: 45.85.252.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:95:e8:38:48:3a:89:4d:50:cf:05:1b:94:9a:95:14:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bbae6e3ed766de47aba6693bb5af8a648974310
Validity
Not Before: Jan 9 09:41:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0fd1214ecab9a953ec562bacba5f894cfefa90e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e0:97:4f:15:80:77:38:64:2e:6f:a8:e1:e9:
84:5e:8b:f7:2d:96:fa:be:a8:b3:db:23:b9:5c:e9:
24:8a:4a:c4:03:1c:7a:53:9a:d1:a5:cc:d1:c5:c4:
2b:64:df:00:f5:51:56:39:55:a3:83:3d:6c:84:89:
5b:8d:c9:f7:80:80:b5:50:c9:dc:8a:a6:f3:85:16:
e5:cc:3a:a4:ab:46:51:02:8a:6f:7b:84:1a:3c:c7:
9f:29:37:f6:0c:a2:dc:33:1f:af:e6:13:e3:6f:50:
09:76:69:3f:e9:3d:fe:82:28:cc:f6:08:90:b4:d5:
ff:eb:e6:82:b6:3c:38:21:b5:48:f8:b0:27:4e:e4:
71:b2:12:89:1c:0c:86:e5:c2:b4:90:b4:f4:dc:ef:
c4:03:08:de:d8:dc:1a:1b:a2:f4:6e:a4:33:b7:4a:
3d:3b:06:b4:40:c7:df:95:2d:be:96:20:42:6c:62:
0d:aa:ad:50:d8:7b:50:e1:a0:35:21:f1:67:29:05:
34:7d:ee:3f:b3:2e:8a:8a:80:bc:02:7f:b3:b4:a1:
d2:c5:fa:8f:f0:f0:be:ea:e1:18:67:a7:3e:d6:f8:
0f:03:27:18:18:7d:56:82:2c:65:a4:76:51:63:1a:
b9:ed:61:bf:39:f3:49:6d:22:5c:65:ee:c6:7d:b8:
14:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:D1:21:4E:CA:B9:A9:53:EC:56:2B:AC:BA:5F:89:4C:FE:FA:90:E6
X509v3 Authority Key Identifier:
keyid:9B:BA:E6:E3:ED:76:6D:E4:7A:BA:66:93:BB:5A:F8:A6:48:97:43:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m7rm4-12beR6umaTu1r4pkiXQxA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/d3953b-b942-4b75-9c9d-985c64fe27ee/1/D9EhTsq5qVPsViusul-JTP76kOY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/d3953b-b942-4b75-9c9d-985c64fe27ee/1/m7rm4-12beR6umaTu1r4pkiXQxA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.252.0/22
Signature Algorithm: sha256WithRSAEncryption
97:66:37:bf:36:49:8a:4e:4c:76:54:a3:11:b8:eb:2d:8d:dc:
ab:08:85:6c:18:0a:fe:c3:28:19:7f:cb:3e:f0:ae:11:66:24:
ea:df:61:56:8c:0f:17:14:ba:08:aa:78:b4:15:c5:47:a1:22:
fe:51:a1:de:a6:91:b5:d8:54:19:6f:75:b0:a6:b6:0e:31:a0:
93:f4:8e:ab:ad:9c:6d:13:62:a3:80:09:c7:e4:b8:36:bc:29:
7b:93:57:34:45:f2:f9:4e:f8:db:fe:35:f8:de:e7:93:91:0e:
56:00:7f:ce:4e:f9:be:17:0b:aa:7a:38:3b:56:3b:76:e5:3b:
6f:65:8c:18:59:87:a7:d6:3f:46:92:4b:be:0f:03:96:dc:3e:
01:3e:70:0f:d0:2a:ce:95:bd:a5:00:3c:a5:db:a2:76:03:ca:
d0:64:4b:c0:7c:c1:f5:9f:8a:09:63:d7:d0:ee:19:df:84:77:
51:fd:2b:94:31:6e:ec:67:e1:8c:8a:bf:f6:cc:1a:2d:cb:d3:
08:5e:b9:68:4f:d4:ea:84:23:f3:35:93:50:1d:a7:fe:b4:6f:
ef:df:f5:da:f8:e7:e7:24:6a:94:e5:06:40:c9:a4:d6:c2:07:
a3:cd:b8:cd:33:99:0e:ea:12:aa:77:8f:9f:98:f3:9e:09:97:
ab:15:0e:24
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYWV6DhIOolNUM8FG5SalRTmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDliYmFlNmUzZWQ3NjZkZTQ3YWJhNjY5M2JiNWFmOGE2NDg5
NzQzMTAwHhcNMjMwMTA5MDk0MTQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZmQxMjE0ZWNhYjlhOTUzZWM1NjJiYWNiYTVmODk0Y2ZlZmE5MGU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxuCXTxWAdzhkLm+o4emEXov3LZb6
vqiz2yO5XOkkikrEAxx6U5rRpczRxcQrZN8A9VFWOVWjgz1shIlbjcn3gIC1UMnc
iqbzhRblzDqkq0ZRAopve4QaPMefKTf2DKLcMx+v5hPjb1AJdmk/6T3+gijM9giQ
tNX/6+aCtjw4IbVI+LAnTuRxshKJHAyG5cK0kLT03O/EAwje2NwaG6L0bqQzt0o9
Owa0QMfflS2+liBCbGINqq1Q2HtQ4aA1IfFnKQU0fe4/sy6KioC8An+ztKHSxfqP
8PC+6uEYZ6c+1vgPAycYGH1WgixlpHZRYxq57WG/OfNJbSJcZe7GfbgUkQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA/RIU7KualT7FYrrLpfiUz++pDmMB8GA1UdIwQY
MBaAFJu65uPtdm3kerpmk7ta+KZIl0MQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbTdybTQtMTJiZVI2dW1hVHUxcjRwa2lYUXhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS9kMzk1M2ItYjk0Mi00Yjc1LTljOWQt
OTg1YzY0ZmUyN2VlLzEvRDlFaFRzcTVxVlBzVml1c3VsLUpUUDc2a09ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS9kMzk1M2ItYjk0Mi00Yjc1LTljOWQtOTg1YzY0ZmUyN2Vl
LzEvbTdybTQtMTJiZVI2dW1hVHUxcjRwa2lYUXhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLVX8MA0G
CSqGSIb3DQEBCwUAA4IBAQCXZje/NkmKTkx2VKMRuOstjdyrCIVsGAr+wygZf8s+
8K4RZiTq32FWjA8XFLoIqni0FcVHoSL+UaHeppG12FQZb3WwprYOMaCT9I6rrZxt
E2KjgAnH5Lg2vCl7k1c0RfL5Tvjb/jX43ueTkQ5WAH/OTvm+Fwuqejg7Vjt25Ttv
ZYwYWYen1j9Gkku+DwOW3D4BPnAP0CrOlb2lADyl26J2A8rQZEvAfMH1n4oJY9fQ
7hnfhHdR/SuUMW7sZ+GMir/2zBoty9MIXrloT9TqhCPzNZNQHaf+tG/v3/Xa+Ofn
JGqU5QZAyaTWwgejzbjNM5kO6hKqd4+fmPOeCZerFQ4k
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:02 2024 by rpki-client on console-fra.rpki-client.org