Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/ec5208-f695-4bdb-9bb2-e18fa658055a/1/SmD5vae7srCehMvQo8a3pp-hV_g.roa
File: SmD5vae7srCehMvQo8a3pp-hV_g.roa (raw, json)
Hash identifier: 1Q16RN0HO/Ra7rBMzvJxRNMO0bjfNcnvPZolYA/hebQ=
Subject key identifier: 4A:60:F9:BD:A7:BB:B2:B0:9E:84:CB:D0:A3:C6:B7:A6:9F:A1:57:F8
Certificate issuer: /CN=49722a0ca8bbc94d48a5cb48ccc92efef845a7e3
Certificate serial: 01856D53F17ADBD728DBE8FFA132B7581735
Authority key identifier: 49:72:2A:0C:A8:BB:C9:4D:48:A5:CB:48:CC:C9:2E:FE:F8:45:A7:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SXIqDKi7yU1IpctIzMku_vhFp-M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/ec5208-f695-4bdb-9bb2-e18fa658055a/1/SmD5vae7srCehMvQo8a3pp-hV_g.roa
Signing time: Sun 01 Jan 2023 12:34:55 +0000
ROA not before: Sun 01 Jan 2023 12:34:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44486
IP address blocks: 45.81.232.0/22 maxlen: 24
2a0e:66c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:53:f1:7a:db:d7:28:db:e8:ff:a1:32:b7:58:17:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49722a0ca8bbc94d48a5cb48ccc92efef845a7e3
Validity
Not Before: Jan 1 12:34:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a60f9bda7bbb2b09e84cbd0a3c6b7a69fa157f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:0a:4a:9e:ee:9d:a7:2d:5a:d7:70:e3:83:a1:
58:27:7e:23:2b:83:f6:c2:22:38:7f:53:08:ed:1a:
fe:32:48:0f:5f:60:f4:d3:de:57:8f:d9:93:91:37:
63:32:f6:bf:1a:59:66:60:33:80:ed:4c:84:b0:bb:
95:3e:20:bc:58:cd:95:20:7b:ff:63:dc:95:0c:bf:
a5:9c:8a:f7:04:a6:e4:71:77:66:ff:54:fe:da:cd:
fd:4b:e4:f2:88:ee:3c:f1:de:a4:44:86:00:ad:b8:
4e:7f:c7:15:80:3b:af:9f:63:ad:8b:a9:9b:c7:f2:
05:2f:5a:f5:6e:ad:1a:e1:8b:4d:84:b2:75:60:67:
d0:b2:48:6c:b5:c4:00:6f:5f:c9:bd:cd:5f:1a:b9:
5c:a1:30:43:fb:65:52:62:28:9f:cd:d6:13:dc:01:
1b:9d:c0:6e:77:52:8d:70:31:c3:ed:d6:7a:3b:d8:
66:83:5b:9a:08:a3:43:c7:5c:2a:a4:54:28:ac:e8:
5c:06:09:1d:cf:70:cf:67:7e:30:ee:44:85:93:1f:
be:c9:64:3f:5f:cf:a6:08:7d:8a:a6:b0:e2:74:bf:
48:19:fe:5f:03:47:3a:e2:5d:31:14:c9:d1:a5:0a:
5c:37:bc:eb:a8:f6:d0:e3:a3:db:b8:e7:5f:3e:8a:
66:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:60:F9:BD:A7:BB:B2:B0:9E:84:CB:D0:A3:C6:B7:A6:9F:A1:57:F8
X509v3 Authority Key Identifier:
keyid:49:72:2A:0C:A8:BB:C9:4D:48:A5:CB:48:CC:C9:2E:FE:F8:45:A7:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SXIqDKi7yU1IpctIzMku_vhFp-M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/ec5208-f695-4bdb-9bb2-e18fa658055a/1/SmD5vae7srCehMvQo8a3pp-hV_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/ec5208-f695-4bdb-9bb2-e18fa658055a/1/SXIqDKi7yU1IpctIzMku_vhFp-M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.232.0/22
IPv6:
2a0e:66c0::/29
Signature Algorithm: sha256WithRSAEncryption
42:e6:9a:42:66:b4:3d:ac:de:2f:78:0d:55:d3:3e:74:b1:f3:
3f:28:81:c0:20:cf:e5:92:50:42:6a:55:f4:9a:a8:49:07:58:
00:16:7e:15:74:af:3f:06:eb:e0:bb:de:d4:48:17:dd:e0:f6:
0c:f8:f7:52:d7:08:66:94:59:1e:12:62:36:40:f9:c4:c2:62:
50:fb:65:50:92:55:a2:fd:7f:f5:74:29:8a:9b:91:06:3f:75:
f2:e7:4f:60:f3:83:74:9b:b4:51:33:4a:95:c7:c6:81:9b:f4:
03:ba:71:0e:0f:44:ca:a0:d7:72:d1:01:a9:f5:4b:19:61:93:
e5:9c:ca:dc:26:d2:08:fc:fc:57:ec:ad:9d:a0:a3:56:18:f7:
72:ff:1f:06:00:21:4c:b1:ea:f1:15:f7:7f:ce:d3:f5:bd:cd:
de:cc:8c:59:d5:c2:8f:5f:a8:81:f6:65:81:65:de:74:de:9b:
31:52:71:4b:7b:68:4a:0d:a8:06:c0:dd:86:3d:52:4d:8c:6d:
64:da:9e:c7:b7:16:22:2b:71:74:67:b0:0b:2c:d6:4c:fe:54:
32:24:e7:80:4e:d1:d6:93:ae:1e:68:27:9b:55:4f:1d:a6:48:
38:58:79:62:71:f0:3e:bf:0a:e1:91:2f:a0:02:4a:ca:b6:4c:
0d:d6:c2:28
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVtU/F629co2+j/oTK3WBc1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5NzIyYTBjYThiYmM5NGQ0OGE1Y2I0OGNjYzkyZWZlZjg0
NWE3ZTMwHhcNMjMwMTAxMTIzNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YTYwZjliZGE3YmJiMmIwOWU4NGNiZDBhM2M2YjdhNjlmYTE1N2Y4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApwpKnu6dpy1a13Djg6FYJ34jK4P2
wiI4f1MI7Rr+MkgPX2D0095Xj9mTkTdjMva/GllmYDOA7UyEsLuVPiC8WM2VIHv/
Y9yVDL+lnIr3BKbkcXdm/1T+2s39S+TyiO488d6kRIYArbhOf8cVgDuvn2Oti6mb
x/IFL1r1bq0a4YtNhLJ1YGfQskhstcQAb1/Jvc1fGrlcoTBD+2VSYiifzdYT3AEb
ncBud1KNcDHD7dZ6O9hmg1uaCKNDx1wqpFQorOhcBgkdz3DPZ34w7kSFkx++yWQ/
X8+mCH2KprDidL9IGf5fA0c64l0xFMnRpQpcN7zrqPbQ46PbuOdfPopmzQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFEpg+b2nu7KwnoTL0KPGt6afoVf4MB8GA1UdIwQY
MBaAFElyKgyou8lNSKXLSMzJLv74RafjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU1hJcURLaTd5VTFJcGN0SXpNa3VfdmhGcC1NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi9lYzUyMDgtZjY5NS00YmRiLTliYjIt
ZTE4ZmE2NTgwNTVhLzEvU21ENXZhZTdzckNlaE12UW84YTNwcC1oVl9nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi9lYzUyMDgtZjY5NS00YmRiLTliYjItZTE4ZmE2NTgwNTVh
LzEvU1hJcURLaTd5VTFJcGN0SXpNa3VfdmhGcC1NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCLVHoMA0E
AgACMAcDBQMqDmbAMA0GCSqGSIb3DQEBCwUAA4IBAQBC5ppCZrQ9rN4veA1V0z50
sfM/KIHAIM/lklBCalX0mqhJB1gAFn4VdK8/Buvgu97USBfd4PYM+PdS1whmlFke
EmI2QPnEwmJQ+2VQklWi/X/1dCmKm5EGP3Xy509g84N0m7RRM0qVx8aBm/QDunEO
D0TKoNdy0QGp9UsZYZPlnMrcJtII/PxX7K2doKNWGPdy/x8GACFMserxFfd/ztP1
vc3ezIxZ1cKPX6iB9mWBZd503psxUnFLe2hKDagGwN2GPVJNjG1k2p7HtxYiK3F0
Z7ALLNZM/lQyJOeATtHWk64eaCebVU8dpkg4WHlicfA+vwrhkS+gAkrKtkwN1sIo
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:14 2024 by rpki-client on console-fra.rpki-client.org