Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/cOONklT7iI3gxBP3rVfLScFtTDA.roa
File: cOONklT7iI3gxBP3rVfLScFtTDA.roa (raw, json)
Hash identifier: v3lr7vcPdjGDWYlM4qgs3u5oV0ln43votloOCNSy7gI=
Subject key identifier: 70:E3:8D:92:54:FB:88:8D:E0:C4:13:F7:AD:57:CB:49:C1:6D:4C:30
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 018BB7C3157340980B6460B884CCD9F492FE
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/cOONklT7iI3gxBP3rVfLScFtTDA.roa
Signing time: Fri 10 Nov 2023 05:44:57 +0000
ROA not before: Fri 10 Nov 2023 05:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 147186
IP address blocks: 45.67.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b7:c3:15:73:40:98:0b:64:60:b8:84:cc:d9:f4:92:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Nov 10 05:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=70e38d9254fb888de0c413f7ad57cb49c16d4c30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:16:ee:3d:21:3c:38:a9:33:38:e6:ac:80:fd:
cd:f8:99:4c:f6:6c:42:e5:7c:ea:46:b2:e0:34:7d:
f6:75:e0:fb:52:55:3f:c1:31:11:07:90:3e:3e:83:
5b:8e:93:e2:8e:37:48:f6:13:25:3f:e3:ba:55:25:
9f:f0:9c:5f:81:75:a3:d2:27:db:23:0e:ca:f2:b0:
dd:a1:86:27:b6:6a:02:dc:84:d0:77:6d:fa:55:9b:
01:4f:68:16:8e:7a:b8:b3:c2:03:bb:0a:48:91:01:
65:47:68:80:79:a0:fa:86:cb:d1:11:d6:06:3f:48:
ee:74:67:67:a6:e1:59:11:d8:75:d7:19:2f:a0:ff:
aa:a4:81:5a:3c:17:9d:e5:b1:06:c1:4a:7a:0b:4a:
7f:a3:23:f6:38:c0:d8:ea:ea:df:00:a9:6d:85:e0:
8c:48:29:0b:06:94:fa:df:11:9e:6d:f8:7f:d9:23:
9c:03:cd:ef:b8:10:27:c6:94:fa:c6:69:8c:60:c0:
46:81:fa:95:49:ed:01:ba:6b:87:65:aa:3d:81:d9:
8c:59:f2:11:79:78:5a:f5:c3:c3:62:f0:92:f0:b1:
89:48:17:e6:53:62:dc:87:f5:d1:dc:83:f5:a4:51:
35:51:d0:ab:77:bf:dc:0c:60:c8:94:ef:6f:bb:a1:
45:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:E3:8D:92:54:FB:88:8D:E0:C4:13:F7:AD:57:CB:49:C1:6D:4C:30
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/cOONklT7iI3gxBP3rVfLScFtTDA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.203.0/24
Signature Algorithm: sha256WithRSAEncryption
86:bc:f1:e7:82:3f:81:54:aa:90:e4:4e:54:4d:36:2f:62:46:
a2:d0:54:c9:3a:88:84:e3:6b:3e:93:fb:60:6e:fd:e2:5c:3b:
11:56:ac:2c:a0:16:94:cb:54:10:09:b8:bc:f3:61:d7:b1:82:
36:c4:82:14:39:a4:69:c7:86:5e:98:bc:34:e9:b8:00:2e:c3:
a3:8b:78:cf:ed:19:a8:58:e0:c1:fc:39:1b:67:f3:da:90:78:
7f:c9:97:b8:ea:3b:0e:27:2a:03:7c:75:ff:c7:01:d7:b9:48:
fc:84:fe:de:44:4a:03:d3:45:bc:e3:38:3f:c2:f2:4f:8f:d8:
d1:e4:05:63:27:81:d8:0c:02:22:4b:74:44:0a:aa:31:19:a2:
13:03:44:8e:cf:c8:d1:25:8e:24:c6:7e:0c:65:cf:1e:56:eb:
34:b1:be:85:b6:f0:ae:00:d3:29:30:80:43:75:33:ad:0d:b8:
66:3a:ad:79:90:bb:6e:ec:44:73:73:ee:87:53:89:02:9f:95:
2e:99:f2:c6:de:dc:31:da:e8:2c:42:5a:22:24:c0:6a:6e:eb:
6d:b7:3a:ed:94:fb:df:55:7d:21:d0:f0:67:9d:7c:e7:b3:4a:
cc:9b:cf:20:f2:8b:1f:f7:dd:41:a7:87:19:13:4e:e4:93:8e:
ff:67:96:41
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYu3wxVzQJgLZGC4hMzZ9JL+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzNjc3ZDdjYjkyNzFjZTM2MTI1NmU5ODMzY2M3YjE0ZmQw
MjNlYmUwHhcNMjMxMTEwMDU0NDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MGUzOGQ5MjU0ZmI4ODhkZTBjNDEzZjdhZDU3Y2I0OWMxNmQ0YzMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsRbuPSE8OKkzOOasgP3N+JlM9mxC
5XzqRrLgNH32deD7UlU/wTERB5A+PoNbjpPijjdI9hMlP+O6VSWf8JxfgXWj0ifb
Iw7K8rDdoYYntmoC3ITQd236VZsBT2gWjnq4s8IDuwpIkQFlR2iAeaD6hsvREdYG
P0judGdnpuFZEdh11xkvoP+qpIFaPBed5bEGwUp6C0p/oyP2OMDY6urfAKltheCM
SCkLBpT63xGebfh/2SOcA83vuBAnxpT6xmmMYMBGgfqVSe0BumuHZao9gdmMWfIR
eXha9cPDYvCS8LGJSBfmU2Lch/XR3IP1pFE1UdCrd7/cDGDIlO9vu6FF2QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHDjjZJU+4iN4MQT961Xy0nBbUwwMB8GA1UdIwQY
MBaAFJNnfXy5JxzjYSVumDPMexT9Aj6+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYt
OTlhY2I5OWNlNzU0LzEvY09PTmtsVDdpSTNneEJQM3JWZkxTY0Z0VERBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYtOTlhY2I5OWNlNzU0
LzEvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALUPLMA0G
CSqGSIb3DQEBCwUAA4IBAQCGvPHngj+BVKqQ5E5UTTYvYkai0FTJOoiE42s+k/tg
bv3iXDsRVqwsoBaUy1QQCbi882HXsYI2xIIUOaRpx4ZemLw06bgALsOji3jP7Rmo
WODB/DkbZ/PakHh/yZe46jsOJyoDfHX/xwHXuUj8hP7eREoD00W84zg/wvJPj9jR
5AVjJ4HYDAIiS3RECqoxGaITA0SOz8jRJY4kxn4MZc8eVus0sb6FtvCuANMpMIBD
dTOtDbhmOq15kLtu7ERzc+6HU4kCn5UumfLG3twx2ugsQloiJMBqbutttzrtlPvf
VX0h0PBnnXzns0rMm88g8osf991Bp4cZE07kk47/Z5ZB
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org