Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/c12a7b-5caf-4e7c-970d-5c476e3325f5/1/JbPxtKSOKtQH151AjsXfHbK9Gg8.roa
File: JbPxtKSOKtQH151AjsXfHbK9Gg8.roa (raw, json)
Hash identifier: aeC2/emkcWq/vGtNyXbEjrBDD6EKAW+AhfVKpi7VduY=
Subject key identifier: 25:B3:F1:B4:A4:8E:2A:D4:07:D7:9D:40:8E:C5:DF:1D:B2:BD:1A:0F
Certificate issuer: /CN=465eba5c1a80f86a4589278edd9304b3f5169f83
Certificate serial: 018CCA2A3B943B815CEA7EE77B002EEB65D8
Authority key identifier: 46:5E:BA:5C:1A:80:F8:6A:45:89:27:8E:DD:93:04:B3:F5:16:9F:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rl66XBqA-GpFiSeO3ZMEs_UWn4M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/c12a7b-5caf-4e7c-970d-5c476e3325f5/1/JbPxtKSOKtQH151AjsXfHbK9Gg8.roa
Signing time: Tue 02 Jan 2024 12:33:34 +0000
ROA not before: Tue 02 Jan 2024 12:33:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41789
IP address blocks: 45.82.14.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 13 Feb 2024 07:39:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:3b:94:3b:81:5c:ea:7e:e7:7b:00:2e:eb:65:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=465eba5c1a80f86a4589278edd9304b3f5169f83
Validity
Not Before: Jan 2 12:33:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=25b3f1b4a48e2ad407d79d408ec5df1db2bd1a0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:9a:c9:b7:02:6d:5f:a5:4f:41:f1:38:42:12:
c5:23:b4:ba:59:16:ad:dd:34:99:6c:e3:08:86:c2:
2f:8d:56:ca:7b:48:48:d0:08:5e:19:7c:01:eb:5c:
53:d5:66:fd:1a:4a:ff:a4:be:d3:a2:ca:47:60:62:
c0:04:bf:eb:ac:52:29:27:92:64:ba:60:eb:5a:c4:
a6:dc:85:a4:d4:0d:48:7b:d7:f4:2b:0e:93:fe:64:
50:cc:5d:6d:6a:f9:10:2c:f2:1c:cb:45:76:ea:f4:
83:de:26:b0:51:5f:89:67:87:63:7c:84:52:b5:4c:
64:69:6a:61:a2:c1:24:a4:8c:4f:58:30:10:7b:36:
67:4e:46:1e:38:f8:74:80:43:5e:73:ba:4b:96:05:
f9:63:67:b3:1a:1c:61:5d:cf:bc:d8:65:f7:4b:6c:
26:21:c3:8e:35:13:db:fd:33:d1:26:d8:70:92:2c:
26:b6:a9:7b:c1:b1:5b:af:0b:96:3d:74:5c:e6:41:
51:2c:c9:7e:50:89:d5:d1:d7:05:6a:c7:e2:bb:16:
3f:93:1b:52:18:47:d0:f6:a9:c2:3f:e2:24:47:a6:
90:ce:08:69:dd:25:34:e5:48:f8:a8:92:fb:cd:85:
1f:62:af:bb:f0:84:3e:47:ce:c7:a8:9c:b2:c6:61:
4a:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:B3:F1:B4:A4:8E:2A:D4:07:D7:9D:40:8E:C5:DF:1D:B2:BD:1A:0F
X509v3 Authority Key Identifier:
keyid:46:5E:BA:5C:1A:80:F8:6A:45:89:27:8E:DD:93:04:B3:F5:16:9F:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rl66XBqA-GpFiSeO3ZMEs_UWn4M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/c12a7b-5caf-4e7c-970d-5c476e3325f5/1/JbPxtKSOKtQH151AjsXfHbK9Gg8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/c12a7b-5caf-4e7c-970d-5c476e3325f5/1/Rl66XBqA-GpFiSeO3ZMEs_UWn4M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.14.0/23
Signature Algorithm: sha256WithRSAEncryption
35:15:ee:47:e1:98:7e:b7:1d:b6:2f:3f:c8:af:7b:36:50:84:
15:f6:29:0c:36:38:d3:b4:31:ed:a4:68:ff:4c:12:a5:97:2c:
69:de:b0:b0:e4:fe:39:8e:ee:98:b2:01:29:5e:ca:c8:63:66:
34:20:b0:5e:4f:8d:26:c2:67:22:a8:0c:54:92:3d:96:79:53:
57:6d:cb:db:f9:f1:43:0e:80:ca:e4:71:25:ef:fc:86:e2:49:
93:97:1d:e0:8b:64:20:b6:32:70:9c:48:7b:a7:a4:ea:ae:1d:
31:f2:87:4f:27:dc:2f:79:b0:d5:08:45:1f:78:0e:bd:38:ac:
e9:be:6c:55:2e:1b:b3:cd:87:17:2b:bc:cf:c6:82:55:e8:a4:
cc:98:54:5b:99:df:81:ce:ab:db:c9:7c:a5:4f:6b:a8:6e:31:
b6:ad:24:3f:2e:e9:49:ca:c9:57:f9:3f:ab:72:14:e8:7e:c6:
95:68:68:91:95:ea:59:bc:c2:12:83:dc:1e:86:a3:e7:93:bb:
a2:9a:3c:62:2c:43:b1:ea:be:cd:47:3f:07:89:3e:95:66:62:
01:36:fa:81:bd:05:9c:a9:a1:bb:79:66:25:34:5b:5e:e9:b8:
ad:fa:67:a0:03:aa:95:1a:56:05:b7:01:1f:8f:a0:5b:c9:43:
9e:4c:4b:4b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzKKjuUO4Fc6n7newAu62XYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ2NWViYTVjMWE4MGY4NmE0NTg5Mjc4ZWRkOTMwNGIzZjUx
NjlmODMwHhcNMjQwMTAyMTIzMzM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNWIzZjFiNGE0OGUyYWQ0MDdkNzlkNDA4ZWM1ZGYxZGIyYmQxYTBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoprJtwJtX6VPQfE4QhLFI7S6WRat
3TSZbOMIhsIvjVbKe0hI0AheGXwB61xT1Wb9Gkr/pL7TospHYGLABL/rrFIpJ5Jk
umDrWsSm3IWk1A1Ie9f0Kw6T/mRQzF1tavkQLPIcy0V26vSD3iawUV+JZ4djfIRS
tUxkaWphosEkpIxPWDAQezZnTkYeOPh0gENec7pLlgX5Y2ezGhxhXc+82GX3S2wm
IcOONRPb/TPRJthwkiwmtql7wbFbrwuWPXRc5kFRLMl+UInV0dcFasfiuxY/kxtS
GEfQ9qnCP+IkR6aQzghp3SU05Uj4qJL7zYUfYq+78IQ+R87HqJyyxmFK2QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCWz8bSkjirUB9edQI7F3x2yvRoPMB8GA1UdIwQY
MBaAFEZeulwagPhqRYknjt2TBLP1Fp+DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUmw2NlhCcUEtR3BGaVNlTzNaTUVzX1VXbjRNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi9jMTJhN2ItNWNhZi00ZTdjLTk3MGQt
NWM0NzZlMzMyNWY1LzEvSmJQeHRLU09LdFFIMTUxQWpzWGZIYks5R2c4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi9jMTJhN2ItNWNhZi00ZTdjLTk3MGQtNWM0NzZlMzMyNWY1
LzEvUmw2NlhCcUEtR3BGaVNlTzNaTUVzX1VXbjRNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLVIOMA0G
CSqGSIb3DQEBCwUAA4IBAQA1Fe5H4Zh+tx22Lz/Ir3s2UIQV9ikMNjjTtDHtpGj/
TBKllyxp3rCw5P45ju6YsgEpXsrIY2Y0ILBeT40mwmciqAxUkj2WeVNXbcvb+fFD
DoDK5HEl7/yG4kmTlx3gi2QgtjJwnEh7p6Tqrh0x8odPJ9wvebDVCEUfeA69OKzp
vmxVLhuzzYcXK7zPxoJV6KTMmFRbmd+BzqvbyXylT2uobjG2rSQ/LulJyslX+T+r
chTofsaVaGiRlepZvMISg9wehqPnk7uimjxiLEOx6r7NRz8HiT6VZmIBNvqBvQWc
qaG7eWYlNFte6bit+megA6qVGlYFtwEfj6BbyUOeTEtL
-----END CERTIFICATE-----
Generated at Tue Feb 13 11:39:08 2024 by rpki-client on console-ams.rpki-client.org