Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/c43b2f-10ba-4170-b521-c722217e53b6/1/pfp2M9vCBGCodsRGGkBLonCovrQ.roa
File: pfp2M9vCBGCodsRGGkBLonCovrQ.roa (raw, json)
Hash identifier: yhxU4WJBjk8CWmkVGsJo5v6RNAIklygXfPZLjreqFGk=
Subject key identifier: A5:FA:76:33:DB:C2:04:60:A8:76:C4:46:1A:40:4B:A2:70:A8:BE:B4
Certificate issuer: /CN=61877f4ce0d361617724d4b289a8918c5c6d722d
Certificate serial: 0185703047FAF1ABAE64702DD40F9EFD177A
Authority key identifier: 61:87:7F:4C:E0:D3:61:61:77:24:D4:B2:89:A8:91:8C:5C:6D:72:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYd_TODTYWF3JNSyiaiRjFxtci0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/c43b2f-10ba-4170-b521-c722217e53b6/1/pfp2M9vCBGCodsRGGkBLonCovrQ.roa
Signing time: Mon 02 Jan 2023 01:54:50 +0000
ROA not before: Mon 02 Jan 2023 01:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35625
IP address blocks: 45.86.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:47:fa:f1:ab:ae:64:70:2d:d4:0f:9e:fd:17:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61877f4ce0d361617724d4b289a8918c5c6d722d
Validity
Not Before: Jan 2 01:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a5fa7633dbc20460a876c4461a404ba270a8beb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:74:8d:16:22:fa:62:e3:4b:3b:23:f2:56:0f:
4a:a5:18:4f:1a:29:24:32:32:57:04:1e:ec:10:f8:
f4:c2:bc:59:4e:e2:ac:eb:d4:11:ce:88:4a:b3:a3:
a8:e4:d6:dd:c4:a3:c3:70:8f:21:c7:1c:29:ed:bb:
5e:da:56:6f:6b:43:23:23:fa:30:91:56:5e:ad:a5:
e7:b5:46:81:d0:66:ab:54:1c:86:3c:97:c0:d1:9a:
02:e0:43:79:02:d8:a5:10:76:c7:6a:1f:d1:7c:4d:
fd:6c:d1:1f:aa:3d:54:3b:e0:dd:76:39:f6:6b:22:
28:9c:72:af:04:2c:5c:33:cf:99:ad:93:db:dc:4a:
45:01:a3:f8:38:6c:4b:a4:2e:96:02:85:5a:ce:fc:
1c:22:1d:8f:7d:78:4d:14:88:ab:e4:62:03:80:16:
85:3e:68:82:4c:80:7b:92:12:cb:9e:67:b5:49:63:
9d:cd:a3:c7:08:cc:55:f6:1c:05:ba:cb:df:8c:46:
c7:8d:fa:4c:86:98:09:61:f1:f6:d5:c0:60:4f:ce:
e9:b8:3d:81:34:e8:50:b6:85:83:27:24:95:5c:00:
d6:c5:e1:0b:a5:96:d9:3d:e2:b9:fb:6e:6d:31:e2:
f2:58:e5:91:12:2d:80:f7:7e:4a:5b:d1:2c:2a:21:
84:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:FA:76:33:DB:C2:04:60:A8:76:C4:46:1A:40:4B:A2:70:A8:BE:B4
X509v3 Authority Key Identifier:
keyid:61:87:7F:4C:E0:D3:61:61:77:24:D4:B2:89:A8:91:8C:5C:6D:72:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYd_TODTYWF3JNSyiaiRjFxtci0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c43b2f-10ba-4170-b521-c722217e53b6/1/pfp2M9vCBGCodsRGGkBLonCovrQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c43b2f-10ba-4170-b521-c722217e53b6/1/YYd_TODTYWF3JNSyiaiRjFxtci0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.205.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:47:02:f0:da:e5:ae:d1:20:d5:99:f9:e4:8a:e5:98:18:e3:
d0:64:d7:a5:f2:f3:4d:aa:a4:93:34:fe:b4:e9:5a:93:49:d2:
c8:67:cd:70:60:3f:dc:8c:73:06:6b:96:55:8f:06:9c:fe:c4:
69:7f:f6:79:e5:bb:69:9c:7b:2f:39:9f:e9:7f:9c:de:33:94:
dd:d4:05:61:3e:c4:05:4b:6a:d5:ae:c8:19:c1:61:a0:b2:df:
72:7c:4b:ec:92:26:59:0c:91:71:29:c1:47:7a:ab:56:f4:2e:
a6:a1:d0:db:0f:63:5b:7a:f8:9f:68:c1:74:67:29:55:96:30:
56:17:ab:bd:ad:a8:e4:97:28:28:6b:ed:8e:94:11:c9:15:9c:
42:99:82:64:aa:dc:34:10:65:d2:dc:dd:1e:c8:38:8f:e1:1a:
9d:23:61:33:91:b2:22:8b:ec:26:ab:42:39:93:32:cd:4d:cb:
c8:2f:ba:70:d7:71:88:75:a4:fd:a6:47:74:b3:3c:67:a1:73:
5c:df:7c:b4:db:f8:34:cd:4e:44:73:1d:44:88:b7:c7:bc:10:
c4:e2:c8:65:b1:e2:58:96:b9:ae:2c:14:0d:6f:89:09:04:ed:
e8:29:8f:db:9b:24:65:90:09:db:23:12:91:85:f6:30:cb:96:
9c:57:36:d4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwMEf68auuZHAt1A+e/Rd6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxODc3ZjRjZTBkMzYxNjE3NzI0ZDRiMjg5YTg5MThjNWM2
ZDcyMmQwHhcNMjMwMTAyMDE1NDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNWZhNzYzM2RiYzIwNDYwYTg3NmM0NDYxYTQwNGJhMjcwYThiZWI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr3SNFiL6YuNLOyPyVg9KpRhPGikk
MjJXBB7sEPj0wrxZTuKs69QRzohKs6Oo5NbdxKPDcI8hxxwp7bte2lZva0MjI/ow
kVZeraXntUaB0GarVByGPJfA0ZoC4EN5AtilEHbHah/RfE39bNEfqj1UO+Dddjn2
ayIonHKvBCxcM8+ZrZPb3EpFAaP4OGxLpC6WAoVazvwcIh2PfXhNFIir5GIDgBaF
PmiCTIB7khLLnme1SWOdzaPHCMxV9hwFusvfjEbHjfpMhpgJYfH21cBgT87puD2B
NOhQtoWDJySVXADWxeELpZbZPeK5+25tMeLyWOWREi2A935KW9EsKiGEkQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKX6djPbwgRgqHbERhpAS6JwqL60MB8GA1UdIwQY
MBaAFGGHf0zg02FhdyTUsomokYxcbXItMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWVlkX1RPRFRZV0YzSk5TeWlhaVJqRnh0Y2kwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9jNDNiMmYtMTBiYS00MTcwLWI1MjEt
YzcyMjIxN2U1M2I2LzEvcGZwMk05dkNCR0NvZHNSR0drQkxvbkNvdnJRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS9jNDNiMmYtMTBiYS00MTcwLWI1MjEtYzcyMjIxN2U1M2I2
LzEvWVlkX1RPRFRZV0YzSk5TeWlhaVJqRnh0Y2kwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVbNMA0G
CSqGSIb3DQEBCwUAA4IBAQAuRwLw2uWu0SDVmfnkiuWYGOPQZNel8vNNqqSTNP60
6VqTSdLIZ81wYD/cjHMGa5ZVjwac/sRpf/Z55btpnHsvOZ/pf5zeM5Td1AVhPsQF
S2rVrsgZwWGgst9yfEvskiZZDJFxKcFHeqtW9C6modDbD2NbevifaMF0ZylVljBW
F6u9rajklygoa+2OlBHJFZxCmYJkqtw0EGXS3N0eyDiP4RqdI2EzkbIii+wmq0I5
kzLNTcvIL7pw13GIdaT9pkd0szxnoXNc33y02/g0zU5Ecx1EiLfHvBDE4shlseJY
lrmuLBQNb4kJBO3oKY/bmyRlkAnbIxKRhfYwy5acVzbU
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:09 2024 by rpki-client on console-ams.rpki-client.org