Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/mPAO5rUlfYmDCgumQGDy_jZYNCc.roa
File: mPAO5rUlfYmDCgumQGDy_jZYNCc.roa (raw, json)
Hash identifier: 4KXLIjo099Ez3f9xRvSlsJDr6+ORU5NhuDW8kbP0yMU=
Subject key identifier: 98:F0:0E:E6:B5:25:7D:89:83:0A:0B:A6:40:60:F2:FE:36:58:34:27
Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Certificate serial: 01857054CEEE5CC004BAB550BBD5BC01FEAA
Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/mPAO5rUlfYmDCgumQGDy_jZYNCc.roa
Signing time: Mon 02 Jan 2023 02:34:44 +0000
ROA not before: Mon 02 Jan 2023 02:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62005
IP address blocks: 45.66.249.0/24 maxlen: 24
45.66.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:54:ce:ee:5c:c0:04:ba:b5:50:bb:d5:bc:01:fe:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Validity
Not Before: Jan 2 02:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=98f00ee6b5257d89830a0ba64060f2fe36583427
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:00:38:ba:7a:25:25:bb:48:92:f3:be:6c:87:
f8:74:ea:e1:22:4c:04:b6:a1:59:5b:3a:d9:97:ea:
dd:55:5b:79:84:30:53:33:46:98:c2:e4:dc:d3:0c:
b2:6d:59:97:b1:0c:2a:5d:7d:b1:cf:90:56:c2:b5:
99:31:9f:16:98:15:a8:4b:20:56:17:0b:d5:e6:08:
2a:dc:04:83:f1:4c:2d:f6:1f:fd:30:32:d9:c1:6b:
10:27:75:28:41:f1:60:73:ae:d6:9d:0b:bf:a9:d9:
b3:d2:ba:2c:fc:a2:96:84:7d:ff:95:36:1e:39:ec:
b0:48:d0:6e:68:fe:79:f3:56:56:f9:61:f9:14:fd:
85:0d:21:36:f8:03:fa:d6:9a:10:0f:a1:f0:d1:a8:
c7:4b:78:be:20:d4:c7:66:8e:3c:7e:de:28:1d:ea:
c8:c4:d6:48:1a:89:f7:d5:a6:7f:90:01:7b:bd:c9:
ff:a7:81:a6:4b:f3:4e:32:0a:8c:f6:3a:73:1b:ae:
43:58:62:f4:be:88:08:1c:ee:d4:9e:26:42:ce:69:
7b:04:ff:cf:cc:29:c7:a2:ea:97:e6:d9:73:a6:da:
e5:cf:fc:51:10:56:56:2d:fa:aa:60:7f:66:ee:83:
f8:25:ab:79:c3:7c:e4:51:fe:8c:fd:62:dd:e7:6b:
2d:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:F0:0E:E6:B5:25:7D:89:83:0A:0B:A6:40:60:F2:FE:36:58:34:27
X509v3 Authority Key Identifier:
keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/mPAO5rUlfYmDCgumQGDy_jZYNCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.248.0/23
Signature Algorithm: sha256WithRSAEncryption
40:af:a9:a6:69:b6:93:ad:e4:94:16:08:2f:17:0d:48:e0:f1:
04:bb:48:33:aa:e9:6e:9b:37:7d:33:ef:a9:b3:79:2d:07:bb:
c2:07:ff:71:43:8b:86:30:4a:b8:96:15:c7:01:f8:8a:83:4f:
b6:0f:b5:cd:52:7c:0c:49:20:50:ca:00:0e:30:80:a4:5b:c3:
ba:64:40:37:4f:a2:44:a4:c4:d2:7e:51:1d:a8:6d:d1:1c:de:
21:9b:d0:49:d8:43:5e:98:19:e3:0e:71:1a:65:d1:44:78:bb:
82:f7:34:51:0e:f2:61:f6:74:c6:d6:8b:d4:d7:6a:f6:2c:fc:
ad:da:73:f1:47:3d:7a:d3:52:b8:3d:5b:90:92:0b:63:f0:98:
51:24:27:2d:9f:70:9f:30:f2:a6:e0:49:04:b9:d3:9c:71:7e:
fc:c2:ce:62:46:8f:a9:3e:36:03:ea:ea:aa:5c:21:1d:dc:0e:
58:cd:bb:61:f8:45:c3:64:1d:3c:28:38:ec:6a:6e:b4:ae:4c:
f0:5f:4b:03:59:70:67:0b:3d:1f:d5:49:eb:0f:1e:a1:2a:cc:
9e:1f:84:44:9e:2b:56:19:13:48:4c:17:73:94:8c:9d:59:d7:
8d:64:4f:4a:a2:c2:ab:45:96:72:39:41:85:9e:30:38:1a:58:
27:61:c1:aa
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwVM7uXMAEurVQu9W8Af6qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkMjBkZGQzOThkYWM4ZjYyY2MxMjUyNjMyNWYxODIxZmI3
MjRmNzUwHhcNMjMwMTAyMDIzNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OGYwMGVlNmI1MjU3ZDg5ODMwYTBiYTY0MDYwZjJmZTM2NTgzNDI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApQA4unolJbtIkvO+bIf4dOrhIkwE
tqFZWzrZl+rdVVt5hDBTM0aYwuTc0wyybVmXsQwqXX2xz5BWwrWZMZ8WmBWoSyBW
FwvV5ggq3ASD8Uwt9h/9MDLZwWsQJ3UoQfFgc67WnQu/qdmz0ros/KKWhH3/lTYe
OeywSNBuaP5581ZW+WH5FP2FDSE2+AP61poQD6Hw0ajHS3i+INTHZo48ft4oHerI
xNZIGon31aZ/kAF7vcn/p4GmS/NOMgqM9jpzG65DWGL0vogIHO7UniZCzml7BP/P
zCnHouqX5tlzptrlz/xREFZWLfqqYH9m7oP4Jat5w3zkUf6M/WLd52stFQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJjwDua1JX2JgwoLpkBg8v42WDQnMB8GA1UdIwQY
MBaAFG0g3dOY2sj2LMElJjJfGCH7ck91MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmIt
MzZkZTY1NzIzMmJlLzEvbVBBTzVyVWxmWW1EQ2d1bVFHRHlfalpZTkNjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmItMzZkZTY1NzIzMmJl
LzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLUL4MA0G
CSqGSIb3DQEBCwUAA4IBAQBAr6mmabaTreSUFggvFw1I4PEEu0gzqulumzd9M++p
s3ktB7vCB/9xQ4uGMEq4lhXHAfiKg0+2D7XNUnwMSSBQygAOMICkW8O6ZEA3T6JE
pMTSflEdqG3RHN4hm9BJ2ENemBnjDnEaZdFEeLuC9zRRDvJh9nTG1ovU12r2LPyt
2nPxRz1601K4PVuQkgtj8JhRJCctn3CfMPKm4EkEudOccX78ws5iRo+pPjYD6uqq
XCEd3A5Yzbth+EXDZB08KDjsam60rkzwX0sDWXBnCz0f1UnrDx6hKsyeH4REnitW
GRNITBdzlIydWdeNZE9KosKrRZZyOUGFnjA4GlgnYcGq
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:37 2024 by rpki-client on console-fra.rpki-client.org