Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/guUuEPGnbCeiZfJsbTKRx5R2jrQ.roa
File: guUuEPGnbCeiZfJsbTKRx5R2jrQ.roa (raw, json)
Hash identifier: 6UEfNhdoDrgZIxG4Fmw2S2LA+OZ2hp9dKS2FXeGzIuM=
Subject key identifier: 82:E5:2E:10:F1:A7:6C:27:A2:65:F2:6C:6D:32:91:C7:94:76:8E:B4
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 018DE4C713996EB8F1E26FA9EE7849091D0B
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/guUuEPGnbCeiZfJsbTKRx5R2jrQ.roa
Signing time: Mon 26 Feb 2024 09:37:48 +0000
ROA not before: Mon 26 Feb 2024 09:37:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205733
IP address blocks: 45.67.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 03 Mar 2024 14:48:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:e4:c7:13:99:6e:b8:f1:e2:6f:a9:ee:78:49:09:1d:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Feb 26 09:37:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=82e52e10f1a76c27a265f26c6d3291c794768eb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:df:bf:b7:d3:54:4b:f1:14:ac:b9:b9:f9:91:
6a:37:a7:4d:c0:01:cf:cf:51:14:1e:95:c5:8f:4f:
51:e7:b5:65:95:19:94:20:de:e1:7e:cf:30:90:8a:
3a:e3:ee:25:37:59:3b:bd:ed:3d:c0:6b:56:c8:8e:
92:24:7f:50:fb:34:b7:ee:9e:d4:89:b8:44:ee:a2:
d8:80:59:98:c9:e3:d5:cd:3a:d2:0f:f6:32:32:6a:
df:fe:4d:cf:44:57:ae:ba:ef:05:f5:9b:dc:cf:5b:
cb:95:b6:65:58:7e:62:43:2a:0b:28:00:e9:82:80:
92:07:5a:9c:ee:7e:b1:45:b9:ef:e3:ac:14:80:8f:
8f:08:34:fc:ee:3e:06:1e:90:ee:9c:a1:6c:c8:70:
2c:c1:66:36:54:80:52:eb:15:2e:ea:e1:3e:16:5a:
34:17:77:d9:7f:6a:6d:ed:79:0d:70:26:ad:dc:c9:
e1:7f:2c:da:e4:8d:74:3e:0f:10:a0:7c:42:0e:cc:
59:34:86:ab:88:b6:eb:b1:26:9f:a7:68:20:07:bf:
92:ee:5b:52:d0:9e:83:18:47:e4:20:71:17:9e:07:
9a:5d:72:5a:e6:9d:7f:74:ad:2a:dd:ae:7e:8b:a1:
e5:4f:7f:39:37:91:fe:f7:8b:04:5a:94:f9:22:c8:
2c:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:E5:2E:10:F1:A7:6C:27:A2:65:F2:6C:6D:32:91:C7:94:76:8E:B4
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/guUuEPGnbCeiZfJsbTKRx5R2jrQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.203.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:be:9f:f5:36:b7:36:df:37:1b:88:f7:1a:94:e0:38:f4:07:
f4:c6:a3:44:97:bd:94:bb:de:84:3a:12:98:b1:e7:90:b0:9e:
37:a3:21:5d:fd:ea:f3:a8:ea:10:4a:e0:13:b1:f6:a2:80:12:
1a:55:11:50:4d:11:d4:86:4a:2a:3a:c1:04:f0:f6:cb:f3:cf:
f9:c2:f4:d9:be:74:52:9e:7a:a4:a0:fc:1a:7b:28:9f:73:45:
9d:a4:57:29:a0:b6:ac:7b:49:fc:72:3e:e6:f2:45:01:f6:14:
cc:2f:ce:80:59:4e:1c:27:3b:bd:3b:f2:cd:24:7a:d4:61:08:
07:f6:26:74:d4:b5:6f:29:96:b3:16:c4:2a:3a:2b:a9:bc:af:
e1:e1:54:20:03:7c:70:c7:45:2c:2a:75:7e:34:81:92:f3:f8:
ac:f6:9e:cc:93:6e:ea:5f:e8:9a:a6:9b:3a:d3:40:e2:2f:2c:
75:e2:f4:f9:58:e5:e6:d7:03:5e:07:4a:ef:88:82:5e:eb:16:
be:8a:2b:aa:8d:e5:6f:fb:5d:c6:76:65:12:4e:1b:d4:38:dc:
8b:98:9a:76:03:cc:a8:27:5e:25:24:20:af:8f:db:51:4d:ac:
f6:9a:65:e2:12:46:9e:52:f0:ca:d2:b4:1e:e9:a0:74:ed:2a:
15:cb:3c:bf
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY3kxxOZbrjx4m+p7nhJCR0LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzNjc3ZDdjYjkyNzFjZTM2MTI1NmU5ODMzY2M3YjE0ZmQw
MjNlYmUwHhcNMjQwMjI2MDkzNzQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MmU1MmUxMGYxYTc2YzI3YTI2NWYyNmM2ZDMyOTFjNzk0NzY4ZWI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkd+/t9NUS/EUrLm5+ZFqN6dNwAHP
z1EUHpXFj09R57VllRmUIN7hfs8wkIo64+4lN1k7ve09wGtWyI6SJH9Q+zS37p7U
ibhE7qLYgFmYyePVzTrSD/YyMmrf/k3PRFeuuu8F9Zvcz1vLlbZlWH5iQyoLKADp
goCSB1qc7n6xRbnv46wUgI+PCDT87j4GHpDunKFsyHAswWY2VIBS6xUu6uE+Flo0
F3fZf2pt7XkNcCat3Mnhfyza5I10Pg8QoHxCDsxZNIariLbrsSafp2ggB7+S7ltS
0J6DGEfkIHEXngeaXXJa5p1/dK0q3a5+i6HlT385N5H+94sEWpT5IsgstwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFILlLhDxp2wnomXybG0ykceUdo60MB8GA1UdIwQY
MBaAFJNnfXy5JxzjYSVumDPMexT9Aj6+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYt
OTlhY2I5OWNlNzU0LzEvZ3VVdUVQR25iQ2VpWmZKc2JUS1J4NVIyanJRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYtOTlhY2I5OWNlNzU0
LzEvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALUPLMA0G
CSqGSIb3DQEBCwUAA4IBAQAKvp/1Nrc23zcbiPcalOA49Af0xqNEl72Uu96EOhKY
seeQsJ43oyFd/erzqOoQSuATsfaigBIaVRFQTRHUhkoqOsEE8PbL88/5wvTZvnRS
nnqkoPwaeyifc0WdpFcpoLase0n8cj7m8kUB9hTML86AWU4cJzu9O/LNJHrUYQgH
9iZ01LVvKZazFsQqOiupvK/h4VQgA3xwx0UsKnV+NIGS8/is9p7Mk27qX+iapps6
00DiLyx14vT5WOXm1wNeB0rviIJe6xa+iiuqjeVv+13GdmUSThvUONyLmJp2A8yo
J14lJCCvj9tRTaz2mmXiEkaeUvDK0rQe6aB07SoVyzy/
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org