Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/2DpqBzyOOuolM5ic0mLCykZdhXE.roa
File: 2DpqBzyOOuolM5ic0mLCykZdhXE.roa (raw, json)
Hash identifier: wGxce7PQk8VutJriJUCKkoAYlwq6tVnTq9GwK/a+294=
Subject key identifier: D8:3A:6A:07:3C:8E:3A:EA:25:33:98:9C:D2:62:C2:CA:46:5D:85:71
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 01856F79885C587C448A07B5A5571298E420
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/2DpqBzyOOuolM5ic0mLCykZdhXE.roa
Signing time: Sun 01 Jan 2023 22:35:13 +0000
ROA not before: Sun 01 Jan 2023 22:35:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 55286
IP address blocks: 45.91.23.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:88:5c:58:7c:44:8a:07:b5:a5:57:12:98:e4:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 22:35:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d83a6a073c8e3aea2533989cd262c2ca465d8571
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:04:32:51:28:8f:1c:fb:62:77:7a:8b:dc:f1:
a4:dd:29:88:f4:9f:1d:cd:4c:aa:bd:d0:5d:0e:e3:
98:b4:94:dd:86:56:91:ab:0d:29:16:b6:31:88:48:
f6:e9:ae:70:f6:a3:13:5d:29:f5:09:fc:94:0b:50:
03:b6:02:44:a8:1c:a9:8e:5a:c3:5c:45:7b:c6:5e:
fd:26:05:37:b7:55:fe:1d:b5:43:fa:99:1b:a6:04:
08:85:46:b7:bc:7a:7d:c1:e4:8b:20:0a:bf:0f:b4:
41:ee:f8:10:da:d9:4d:72:0e:10:df:6f:a4:f4:88:
f3:aa:2b:96:48:db:5d:a8:d8:97:c1:c6:9d:f2:5f:
6c:de:37:e6:95:8c:46:f2:79:34:d8:5e:ec:32:47:
df:59:f6:9a:0e:4f:b1:51:3b:34:64:20:5e:44:33:
91:98:64:77:e9:ce:fe:4e:d2:0b:5e:92:a4:16:82:
ce:8b:f2:94:43:45:ab:4f:7c:45:9b:9a:c1:fe:e9:
94:0f:2b:5a:f9:e1:28:87:25:5e:28:c0:e9:73:16:
6d:86:79:2b:99:ef:50:c3:d6:62:50:31:d7:b1:ab:
80:58:9f:f9:db:40:b0:38:6a:11:74:bd:ef:05:97:
cf:82:4a:2a:db:44:a2:7f:22:af:3a:ac:e0:f3:86:
47:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:3A:6A:07:3C:8E:3A:EA:25:33:98:9C:D2:62:C2:CA:46:5D:85:71
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/2DpqBzyOOuolM5ic0mLCykZdhXE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.23.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:64:c6:3e:8c:34:c3:8c:be:4d:2e:7a:a0:c3:96:f8:76:f4:
4f:62:03:64:19:68:0e:d1:9c:09:10:02:ff:a0:f3:21:db:8e:
f6:f0:1c:13:4f:3d:b9:9c:7c:0d:07:28:17:80:bd:fb:2e:ed:
fd:f7:a6:c6:ae:20:55:0c:6e:8b:47:6b:63:75:1c:17:64:c0:
93:9a:f5:ae:6f:60:4d:0e:81:b4:7e:76:17:f3:d8:29:68:3b:
14:02:0d:8f:01:05:c0:68:e6:8a:12:bc:96:06:94:ec:88:0f:
bf:68:ad:34:44:29:01:18:df:85:81:80:e8:24:d2:b7:90:93:
e5:f6:0e:b6:df:f3:cc:7a:4a:dd:14:37:5a:50:8c:45:9c:37:
c7:ec:b4:92:f8:28:8b:3f:39:2a:51:76:92:b7:9e:c9:40:9a:
b8:40:7e:5b:2d:5c:f2:77:ed:6d:a7:70:d5:e5:17:6f:cf:51:
db:22:80:fe:78:70:b1:27:4a:b0:49:62:a1:a9:7e:15:83:52:
fb:a6:dd:a7:bb:7c:30:2e:54:91:d1:23:45:63:29:86:8f:d7:
dc:97:ae:fd:77:7e:ac:8a:e0:f2:d4:2a:f3:be:24:c0:2a:42:
ad:ca:6f:35:36:30:42:e6:4f:bc:ac:e0:cf:62:b4:05:0b:d0:
c3:6e:c7:b4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVveYhcWHxEige1pVcSmOQgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxNTUwMDljM2RlNDIxY2M0ZTY3YjlhOWFlNDIzYmIzNWRl
MGI5MjYwHhcNMjMwMTAxMjIzNTEzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkODNhNmEwNzNjOGUzYWVhMjUzMzk4OWNkMjYyYzJjYTQ2NWQ4NTcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArwQyUSiPHPtid3qL3PGk3SmI9J8d
zUyqvdBdDuOYtJTdhlaRqw0pFrYxiEj26a5w9qMTXSn1CfyUC1ADtgJEqBypjlrD
XEV7xl79JgU3t1X+HbVD+pkbpgQIhUa3vHp9weSLIAq/D7RB7vgQ2tlNcg4Q32+k
9IjzqiuWSNtdqNiXwcad8l9s3jfmlYxG8nk02F7sMkffWfaaDk+xUTs0ZCBeRDOR
mGR36c7+TtILXpKkFoLOi/KUQ0WrT3xFm5rB/umUDyta+eEohyVeKMDpcxZthnkr
me9Qw9ZiUDHXsauAWJ/520CwOGoRdL3vBZfPgkoq20SifyKvOqzg84ZHRQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNg6agc8jjrqJTOYnNJiwspGXYVxMB8GA1UdIwQY
MBaAFLFVAJw95CHMTme5qa5CO7Nd4LkmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYt
NzM4NTZhZjQ5ZjNlLzEvMkRwcUJ6eU9PdW9sTTVpYzBtTEN5a1pkaFhFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYtNzM4NTZhZjQ5ZjNl
LzEvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVsXMA0G
CSqGSIb3DQEBCwUAA4IBAQAMZMY+jDTDjL5NLnqgw5b4dvRPYgNkGWgO0ZwJEAL/
oPMh24728BwTTz25nHwNBygXgL37Lu3996bGriBVDG6LR2tjdRwXZMCTmvWub2BN
DoG0fnYX89gpaDsUAg2PAQXAaOaKEryWBpTsiA+/aK00RCkBGN+FgYDoJNK3kJPl
9g623/PMekrdFDdaUIxFnDfH7LSS+CiLPzkqUXaSt57JQJq4QH5bLVzyd+1tp3DV
5Rdvz1HbIoD+eHCxJ0qwSWKhqX4Vg1L7pt2nu3wwLlSR0SNFYymGj9fcl679d36s
iuDy1CrzviTAKkKtym81NjBC5k+8rODPYrQFC9DDbse0
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:57 2024 by rpki-client on console-fra.rpki-client.org