Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/jlIY01vSiALwcE80vTGOkAeoPkU.roa
File: jlIY01vSiALwcE80vTGOkAeoPkU.roa (raw, json)
Hash identifier: wVH/QHKAihtRMBriviNw6n8+QBG3EL6J75O/jcO3t4U=
Subject key identifier: 8E:52:18:D3:5B:D2:88:02:F0:70:4F:34:BD:31:8E:90:07:A8:3E:45
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 0185718C1C77B9340ED0D98053DE029CACAF
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/jlIY01vSiALwcE80vTGOkAeoPkU.roa
Signing time: Mon 02 Jan 2023 08:14:45 +0000
ROA not before: Mon 02 Jan 2023 08:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 395886
IP address blocks: 45.140.194.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 31 Aug 2023 04:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:8c:1c:77:b9:34:0e:d0:d9:80:53:de:02:9c:ac:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: Jan 2 08:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8e5218d35bd28802f0704f34bd318e9007a83e45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:aa:c6:9b:8e:d3:a5:22:b4:c9:a4:bc:d7:6f:
55:0a:e2:e7:14:df:90:25:ac:d8:24:bd:7f:40:c6:
e8:b3:4e:72:89:c5:83:ed:ad:3d:c2:c9:b3:5e:22:
0c:25:1e:65:f7:45:10:ed:f6:05:61:87:c4:75:c4:
03:17:8e:e6:57:7c:a4:6f:fa:f3:8a:bc:9b:61:a8:
3e:38:45:22:10:9e:7b:a0:8c:2d:5c:00:a0:32:27:
45:d1:4f:84:2c:fd:95:8a:7d:3a:c7:26:6f:7b:88:
6d:c7:ce:79:26:27:48:22:b9:3b:64:94:53:e7:6b:
27:fc:3c:be:44:6d:13:bd:37:1c:8e:db:bc:fd:71:
47:b1:59:43:e4:c0:55:e8:fa:bb:6c:3c:57:4b:0d:
8d:0f:ad:df:5e:83:d0:1f:6e:ef:e1:8c:c5:49:61:
46:d6:c9:bc:e0:80:d9:5f:3e:7b:2d:55:3b:dc:bd:
4d:a4:fe:e5:28:79:a0:45:70:e6:2f:43:89:a7:2d:
c0:07:fd:7c:d6:ff:5d:54:42:e5:21:49:75:45:e1:
55:df:b7:c3:42:43:45:a4:5a:73:40:82:13:09:08:
1d:a7:8f:57:64:c0:8f:17:0e:fb:eb:be:c2:31:24:
63:58:75:ec:e3:cf:6f:b9:b0:9c:e8:22:e0:b0:66:
07:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:52:18:D3:5B:D2:88:02:F0:70:4F:34:BD:31:8E:90:07:A8:3E:45
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/jlIY01vSiALwcE80vTGOkAeoPkU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.194.0/24
Signature Algorithm: sha256WithRSAEncryption
cf:3d:5b:d3:f4:ec:1b:69:28:54:8e:eb:c4:29:a5:26:68:eb:
0e:cf:2c:75:12:54:8e:e3:f7:6e:ae:5f:5e:32:ed:c4:38:04:
5f:26:1d:7c:b9:03:25:c3:48:53:a4:c0:dd:79:2b:de:7b:68:
14:07:cf:46:56:92:99:4c:2b:60:5e:c9:5a:2d:f6:bb:df:f6:
70:90:1d:c5:82:91:60:39:08:65:70:09:04:a3:0e:1e:ea:d2:
2d:ef:07:04:f1:16:42:a0:fb:5d:99:df:cc:4a:11:fa:f5:37:
a5:cf:a5:5e:41:33:25:2e:c0:60:d7:ca:d5:e5:75:5e:8c:b1:
95:8f:6b:92:84:27:4a:c3:ff:26:06:a1:44:b0:df:57:4c:7f:
98:d0:bf:19:ef:33:b5:f8:fc:51:34:9c:f4:4e:a0:19:ce:2a:
44:be:17:a5:60:d9:59:2e:55:b4:bf:74:0b:ea:b6:4f:2e:6c:
c4:06:1b:9d:fe:a7:49:c8:d3:67:cb:f2:af:b2:47:36:24:5b:
c3:b6:85:da:30:c7:6d:51:23:71:99:35:d4:38:83:5f:ca:92:
cb:bd:a9:80:23:3d:38:27:b4:ba:02:2b:05:31:4c:fc:2e:88:
8e:05:37:0f:b3:63:1d:f0:a5:4a:e4:e1:13:f9:4e:a6:ad:95:
07:36:8d:9a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxjBx3uTQO0NmAU94CnKyvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjZDk4YzJjNTRiMGNiZWExMzRlMjdhOTgxY2ZkZGU3MzIz
NmUwNTUwHhcNMjMwMTAyMDgxNDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZTUyMThkMzViZDI4ODAyZjA3MDRmMzRiZDMxOGU5MDA3YTgzZTQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApKrGm47TpSK0yaS8129VCuLnFN+Q
JazYJL1/QMbos05yicWD7a09wsmzXiIMJR5l90UQ7fYFYYfEdcQDF47mV3ykb/rz
irybYag+OEUiEJ57oIwtXACgMidF0U+ELP2Vin06xyZve4htx855JidIIrk7ZJRT
52sn/Dy+RG0TvTccjtu8/XFHsVlD5MBV6Pq7bDxXSw2ND63fXoPQH27v4YzFSWFG
1sm84IDZXz57LVU73L1NpP7lKHmgRXDmL0OJpy3AB/181v9dVELlIUl1ReFV37fD
QkNFpFpzQIITCQgdp49XZMCPFw77677CMSRjWHXs489vubCc6CLgsGYHpQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFI5SGNNb0ogC8HBPNL0xjpAHqD5FMB8GA1UdIwQY
MBaAFGzZjCxUsMvqE04nqYHP3ecyNuBVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYk5tTUxGU3d5LW9UVGllcGdjX2Q1ekkyNEZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS8wMTYzOGMtNmNiOS00NTg5LTkwOWIt
ZDM3ZGY2MzRhOTI5LzEvamxJWTAxdlNpQUx3Y0U4MHZUR09rQWVvUGtVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS8wMTYzOGMtNmNiOS00NTg5LTkwOWItZDM3ZGY2MzRhOTI5
LzEvYk5tTUxGU3d5LW9UVGllcGdjX2Q1ekkyNEZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYzCMA0G
CSqGSIb3DQEBCwUAA4IBAQDPPVvT9OwbaShUjuvEKaUmaOsOzyx1ElSO4/durl9e
Mu3EOARfJh18uQMlw0hTpMDdeSvee2gUB89GVpKZTCtgXslaLfa73/ZwkB3FgpFg
OQhlcAkEow4e6tIt7wcE8RZCoPtdmd/MShH69Telz6VeQTMlLsBg18rV5XVejLGV
j2uShCdKw/8mBqFEsN9XTH+Y0L8Z7zO1+PxRNJz0TqAZzipEvhelYNlZLlW0v3QL
6rZPLmzEBhud/qdJyNNny/Kvskc2JFvDtoXaMMdtUSNxmTXUOINfypLLvamAIz04
J7S6AisFMUz8LoiOBTcPs2Md8KVK5OET+U6mrZUHNo2a
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:45 2024 by rpki-client on console-ams.rpki-client.org