Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/e64148-4c8c-4e84-925b-e022e3009a71/1/I26-PAXHKXzLpqq5NPVjaI2R0Tg.roa
File: I26-PAXHKXzLpqq5NPVjaI2R0Tg.roa (raw, json)
Hash identifier: 40ubz8q9VJP/Zq8trhuI9Eu05FUlcErb1UaiJwwxqcA=
Subject key identifier: 23:6E:BE:3C:05:C7:29:7C:CB:A6:AA:B9:34:F5:63:68:8D:91:D1:38
Certificate issuer: /CN=8069d9ffe048a70003f16f06e24d9bf2db85eb52
Certificate serial: 018570675AAC2DE5C9FE4C986CE61BA11952
Authority key identifier: 80:69:D9:FF:E0:48:A7:00:03:F1:6F:06:E2:4D:9B:F2:DB:85:EB:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gGnZ_-BIpwAD8W8G4k2b8tuF61I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/e64148-4c8c-4e84-925b-e022e3009a71/1/I26-PAXHKXzLpqq5NPVjaI2R0Tg.roa
Signing time: Mon 02 Jan 2023 02:54:59 +0000
ROA not before: Mon 02 Jan 2023 02:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210681
IP address blocks: 45.129.122.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:5a:ac:2d:e5:c9:fe:4c:98:6c:e6:1b:a1:19:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8069d9ffe048a70003f16f06e24d9bf2db85eb52
Validity
Not Before: Jan 2 02:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=236ebe3c05c7297ccba6aab934f563688d91d138
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:0a:46:87:23:b6:d3:18:e0:b3:f1:38:1a:8d:
49:24:92:6e:e2:8d:47:4b:fb:15:de:4b:a8:03:30:
00:89:9a:8d:4b:4f:57:9d:ca:30:de:83:a9:99:4d:
c3:7d:bc:df:18:cf:5f:be:ba:69:4d:50:c9:34:2f:
a9:c2:2d:8d:5e:ac:fc:a8:54:ef:80:61:41:65:47:
dc:35:ed:f2:9f:e8:b8:10:26:6b:9d:a5:72:63:66:
0f:87:94:54:50:7b:db:39:13:aa:cc:bc:d0:29:13:
fd:86:32:65:a6:70:bf:27:f7:42:3e:cb:80:21:6f:
41:6c:99:c6:72:df:4a:c2:94:82:a8:c4:6a:38:d5:
3b:06:b6:74:28:35:b1:cc:b8:93:72:5d:97:30:49:
6e:d6:c6:0f:c9:9e:c5:65:10:0c:e9:44:f9:fe:a6:
db:1d:8e:a6:95:9b:4c:ef:92:c3:3b:4c:08:53:1b:
90:4d:40:a4:37:1e:c2:8b:9e:f4:33:bb:56:b5:be:
72:7a:ba:4a:6e:8a:6b:70:7d:08:90:82:58:79:c8:
28:b2:f0:71:01:5f:d1:38:d4:39:53:b9:27:e5:5d:
5f:2a:16:c6:07:e4:83:39:51:d4:71:93:70:c3:48:
82:ea:d3:54:67:fe:a6:3d:fe:5a:3c:d7:12:10:08:
eb:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:6E:BE:3C:05:C7:29:7C:CB:A6:AA:B9:34:F5:63:68:8D:91:D1:38
X509v3 Authority Key Identifier:
keyid:80:69:D9:FF:E0:48:A7:00:03:F1:6F:06:E2:4D:9B:F2:DB:85:EB:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gGnZ_-BIpwAD8W8G4k2b8tuF61I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/e64148-4c8c-4e84-925b-e022e3009a71/1/I26-PAXHKXzLpqq5NPVjaI2R0Tg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/e64148-4c8c-4e84-925b-e022e3009a71/1/gGnZ_-BIpwAD8W8G4k2b8tuF61I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.122.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:aa:4b:90:38:24:dd:d6:cc:66:40:cb:ce:33:f9:7a:75:57:
0c:89:3a:14:fb:96:d5:07:57:52:64:20:7d:f1:df:02:76:bb:
aa:b0:a0:da:12:00:9b:07:4a:32:fb:11:00:4d:88:49:27:46:
ce:a2:a5:10:1b:3f:a2:80:21:0a:e7:af:3b:09:74:6f:c1:b4:
cd:5e:6b:4f:0f:19:27:a6:b7:0a:b5:af:af:85:1e:07:53:cf:
41:3c:52:b7:a4:86:5b:89:5f:bd:67:4d:9b:70:d4:dc:49:10:
c1:6c:c2:73:ea:8f:b4:0a:3e:96:42:14:5b:ac:af:b4:17:f1:
78:49:ca:52:ab:f8:63:0d:5f:72:44:7e:20:20:97:04:f2:f5:
6b:5c:8f:c0:39:07:68:3e:38:55:f3:59:ef:42:19:f1:52:88:
67:43:d8:3e:b6:09:32:33:ba:0f:5b:28:17:5f:8e:37:df:49:
d1:d4:d2:38:d6:bd:a4:a3:c2:40:02:19:61:2f:12:47:60:7d:
2a:71:70:5c:04:72:f0:f4:65:e2:95:c0:3f:96:e3:49:1b:87:
43:ac:87:58:c1:bd:b7:8a:2c:b6:5c:57:03:11:18:fd:e0:19:
c5:90:d1:1a:80:25:da:8a:ee:da:8c:96:0b:57:31:28:6d:c9:
ae:1f:3f:fd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwZ1qsLeXJ/kyYbOYboRlSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgwNjlkOWZmZTA0OGE3MDAwM2YxNmYwNmUyNGQ5YmYyZGI4
NWViNTIwHhcNMjMwMTAyMDI1NDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMzZlYmUzYzA1YzcyOTdjY2JhNmFhYjkzNGY1NjM2ODhkOTFkMTM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzApGhyO20xjgs/E4Go1JJJJu4o1H
S/sV3kuoAzAAiZqNS09Xncow3oOpmU3DfbzfGM9fvrppTVDJNC+pwi2NXqz8qFTv
gGFBZUfcNe3yn+i4ECZrnaVyY2YPh5RUUHvbOROqzLzQKRP9hjJlpnC/J/dCPsuA
IW9BbJnGct9KwpSCqMRqONU7BrZ0KDWxzLiTcl2XMElu1sYPyZ7FZRAM6UT5/qbb
HY6mlZtM75LDO0wIUxuQTUCkNx7Ci570M7tWtb5yerpKboprcH0IkIJYecgosvBx
AV/RONQ5U7kn5V1fKhbGB+SDOVHUcZNww0iC6tNUZ/6mPf5aPNcSEAjrfwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCNuvjwFxyl8y6aquTT1Y2iNkdE4MB8GA1UdIwQY
MBaAFIBp2f/gSKcAA/FvBuJNm/LbhetSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ0duWl8tQklwd0FEOFc4RzRrMmI4dHVGNjFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS9lNjQxNDgtNGM4Yy00ZTg0LTkyNWIt
ZTAyMmUzMDA5YTcxLzEvSTI2LVBBWEhLWHpMcHFxNU5QVmphSTJSMFRnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS9lNjQxNDgtNGM4Yy00ZTg0LTkyNWItZTAyMmUzMDA5YTcx
LzEvZ0duWl8tQklwd0FEOFc4RzRrMmI4dHVGNjFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYF6MA0G
CSqGSIb3DQEBCwUAA4IBAQCOqkuQOCTd1sxmQMvOM/l6dVcMiToU+5bVB1dSZCB9
8d8CdruqsKDaEgCbB0oy+xEATYhJJ0bOoqUQGz+igCEK5687CXRvwbTNXmtPDxkn
prcKta+vhR4HU89BPFK3pIZbiV+9Z02bcNTcSRDBbMJz6o+0Cj6WQhRbrK+0F/F4
ScpSq/hjDV9yRH4gIJcE8vVrXI/AOQdoPjhV81nvQhnxUohnQ9g+tgkyM7oPWygX
X44330nR1NI41r2ko8JAAhlhLxJHYH0qcXBcBHLw9GXilcA/luNJG4dDrIdYwb23
iiy2XFcDERj94BnFkNEagCXaiu7ajJYLVzEobcmuHz/9
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:58 2024 by rpki-client on console-fra.rpki-client.org