Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/54317d-094e-4820-9651-6219b32122d0/1/scQKlSP_5WLzKXW7JatJh30SwAg.roa
File: scQKlSP_5WLzKXW7JatJh30SwAg.roa (raw, json)
Hash identifier: JZbpt/Gk2IbnaiQkCtK/NBdJx6Ds79fx8qzcwWn2OhM=
Subject key identifier: B1:C4:0A:95:23:FF:E5:62:F3:29:75:BB:25:AB:49:87:7D:12:C0:08
Certificate issuer: /CN=b7785a30d8512d0d8ab637812b79fa4529a1ef1b
Certificate serial: 018572B41131C0A36D53C47455F716AD8A73
Authority key identifier: B7:78:5A:30:D8:51:2D:0D:8A:B6:37:81:2B:79:FA:45:29:A1:EF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t3haMNhRLQ2KtjeBK3n6RSmh7xs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/54317d-094e-4820-9651-6219b32122d0/1/scQKlSP_5WLzKXW7JatJh30SwAg.roa
Signing time: Mon 02 Jan 2023 13:38:01 +0000
ROA not before: Mon 02 Jan 2023 13:38:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202468
IP address blocks: 45.82.136.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:11:31:c0:a3:6d:53:c4:74:55:f7:16:ad:8a:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7785a30d8512d0d8ab637812b79fa4529a1ef1b
Validity
Not Before: Jan 2 13:38:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1c40a9523ffe562f32975bb25ab49877d12c008
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:e9:bd:22:1d:10:d3:ff:6c:62:61:9e:c1:d5:
b7:e0:de:69:7e:0b:61:ba:b9:4e:56:0a:9a:e4:4c:
f2:52:73:d1:b5:a6:ba:5d:f1:c5:3d:0d:02:a8:14:
da:79:8f:96:ed:d2:3c:f8:4a:6e:3e:44:ba:8a:cc:
dd:58:d7:71:b3:25:ec:a9:24:d1:0e:11:31:7f:1d:
b9:3d:00:f7:c6:4c:45:44:aa:30:b6:28:84:08:69:
38:82:4f:7b:04:dc:c9:56:c1:0d:a0:e0:6b:a8:08:
0e:ae:f0:c5:c5:ae:7e:a6:00:9f:99:f5:88:04:3c:
0c:cf:89:16:ef:b2:8d:91:a2:2e:a0:61:82:9a:af:
22:39:b9:e1:34:d6:19:98:72:39:39:f7:15:a2:b8:
4c:e3:04:9c:69:f5:f4:d2:99:7e:8a:8f:12:f5:cb:
c8:23:f5:69:f7:35:8f:89:f2:66:e0:c9:67:65:84:
6f:65:e3:78:af:19:80:e0:7b:d2:f9:47:22:95:99:
b3:c1:27:98:92:42:9a:a1:57:1c:be:07:63:4f:97:
db:cc:13:0e:db:bd:3f:2a:45:6e:94:cd:79:08:51:
08:da:77:b8:3a:dc:ab:12:22:b1:65:63:6a:db:53:
e5:84:24:64:9c:3e:65:5e:2b:a4:1c:a0:08:c6:80:
84:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:C4:0A:95:23:FF:E5:62:F3:29:75:BB:25:AB:49:87:7D:12:C0:08
X509v3 Authority Key Identifier:
keyid:B7:78:5A:30:D8:51:2D:0D:8A:B6:37:81:2B:79:FA:45:29:A1:EF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t3haMNhRLQ2KtjeBK3n6RSmh7xs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/54317d-094e-4820-9651-6219b32122d0/1/scQKlSP_5WLzKXW7JatJh30SwAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/54317d-094e-4820-9651-6219b32122d0/1/t3haMNhRLQ2KtjeBK3n6RSmh7xs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.136.0/22
Signature Algorithm: sha256WithRSAEncryption
af:4b:84:72:c1:15:4e:9d:9c:38:b1:a6:6d:41:35:52:9b:d7:
69:f1:19:35:05:d0:4c:16:aa:22:c2:ca:d1:d2:26:24:c1:87:
bc:fc:f0:76:45:4d:c0:ef:9a:86:0c:a8:17:c0:ed:66:e9:1e:
24:cd:f4:c5:7a:ae:a5:b8:55:68:9f:bc:46:ad:c3:37:42:8f:
31:f8:3c:28:65:a7:d1:a3:2e:d1:3b:c3:86:ed:0e:0c:bf:1d:
5f:8b:78:9d:a9:57:31:2b:a7:c5:0e:b0:cf:91:de:f0:af:e6:
2d:2c:cd:1f:10:ff:16:eb:fd:72:bf:1a:34:c3:5f:1c:73:e8:
13:8a:8d:88:79:6c:49:35:89:ef:8c:4b:7f:1e:26:1c:a7:a2:
2d:81:6b:c8:d3:c5:d6:af:74:a5:2b:0a:20:78:ac:b1:94:29:
84:fb:e5:b7:4d:fe:5b:7e:57:64:5e:56:f9:19:70:9f:d2:e3:
9d:bf:2b:6e:72:a7:ab:c4:1d:78:8a:16:42:68:5f:68:8a:57:
b4:a1:66:dd:1f:be:43:5b:cf:a0:fa:71:ae:bb:44:5b:51:ed:
4d:31:48:78:0a:34:a5:34:b2:01:b7:5b:f8:03:d1:72:bd:27:
1d:e9:24:32:bb:78:9a:53:5c:c3:e1:6f:1c:5a:58:c1:31:88:
fc:b7:36:f8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVytBExwKNtU8R0VfcWrYpzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3Nzg1YTMwZDg1MTJkMGQ4YWI2Mzc4MTJiNzlmYTQ1Mjlh
MWVmMWIwHhcNMjMwMTAyMTMzODAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMWM0MGE5NTIzZmZlNTYyZjMyOTc1YmIyNWFiNDk4NzdkMTJjMDA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgOm9Ih0Q0/9sYmGewdW34N5pfgth
urlOVgqa5EzyUnPRtaa6XfHFPQ0CqBTaeY+W7dI8+EpuPkS6iszdWNdxsyXsqSTR
DhExfx25PQD3xkxFRKowtiiECGk4gk97BNzJVsENoOBrqAgOrvDFxa5+pgCfmfWI
BDwMz4kW77KNkaIuoGGCmq8iObnhNNYZmHI5OfcVorhM4wScafX00pl+io8S9cvI
I/Vp9zWPifJm4MlnZYRvZeN4rxmA4HvS+UcilZmzwSeYkkKaoVccvgdjT5fbzBMO
270/KkVulM15CFEI2ne4OtyrEiKxZWNq21PlhCRknD5lXiukHKAIxoCEvQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLHECpUj/+Vi8yl1uyWrSYd9EsAIMB8GA1UdIwQY
MBaAFLd4WjDYUS0NirY3gSt5+kUpoe8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdDNoYU1OaFJMUTJLdGplQkszbjZSU21oN3hzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy81NDMxN2QtMDk0ZS00ODIwLTk2NTEt
NjIxOWIzMjEyMmQwLzEvc2NRS2xTUF81V0x6S1hXN0phdEpoMzBTd0FnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy81NDMxN2QtMDk0ZS00ODIwLTk2NTEtNjIxOWIzMjEyMmQw
LzEvdDNoYU1OaFJMUTJLdGplQkszbjZSU21oN3hzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLVKIMA0G
CSqGSIb3DQEBCwUAA4IBAQCvS4RywRVOnZw4saZtQTVSm9dp8Rk1BdBMFqoiwsrR
0iYkwYe8/PB2RU3A75qGDKgXwO1m6R4kzfTFeq6luFVon7xGrcM3Qo8x+DwoZafR
oy7RO8OG7Q4Mvx1fi3idqVcxK6fFDrDPkd7wr+YtLM0fEP8W6/1yvxo0w18cc+gT
io2IeWxJNYnvjEt/HiYcp6ItgWvI08XWr3SlKwogeKyxlCmE++W3Tf5bfldkXlb5
GXCf0uOdvytucqerxB14ihZCaF9oile0oWbdH75DW8+g+nGuu0RbUe1NMUh4CjSl
NLIBt1v4A9FyvScd6SQyu3iaU1zD4W8cWljBMYj8tzb4
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:00 2024 by rpki-client on console-ams.rpki-client.org