Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/a9AiUo5lDc2EAOwHWpgeiWLvVqo.roa
File: a9AiUo5lDc2EAOwHWpgeiWLvVqo.roa (raw, json)
Hash identifier: Om5XOuSz2wFaqmCkhUJRh7KfpiWLzoMgneVcVu3uCz8=
Subject key identifier: 6B:D0:22:52:8E:65:0D:CD:84:00:EC:07:5A:98:1E:89:62:EF:56:AA
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018EECD688C4C0275F7CB49018C5D65A6645
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/a9AiUo5lDc2EAOwHWpgeiWLvVqo.roa
Signing time: Wed 17 Apr 2024 16:14:26 +0000
ROA not before: Wed 17 Apr 2024 16:14:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215208
IP address blocks: 45.8.92.0/24 maxlen: 24
45.128.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 Apr 2024 08:23:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:ec:d6:88:c4:c0:27:5f:7c:b4:90:18:c5:d6:5a:66:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Apr 17 16:14:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6bd022528e650dcd8400ec075a981e8962ef56aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:87:87:7a:9d:38:5e:78:7a:36:6d:c7:6f:2d:
50:ec:50:04:ce:ad:eb:c8:4f:fe:94:f5:d7:c4:18:
c2:d2:54:6c:f1:c7:fc:b9:8c:bf:74:9c:fa:55:2b:
97:83:9f:eb:3f:2a:5d:8a:1a:81:2c:ea:9b:13:36:
5c:de:50:61:6a:38:c0:b1:11:50:35:58:fd:1f:5f:
f6:68:16:62:ee:b1:33:bd:05:f2:89:5c:cc:f4:72:
e1:6a:1c:fb:ac:8b:5f:3c:0a:a7:00:66:cb:a3:78:
80:06:66:d3:41:f2:9b:0d:6d:b6:1a:bc:7e:3e:74:
6b:5c:42:b0:c3:93:42:91:53:8a:5c:5a:cf:b6:ba:
75:8c:7d:0f:05:24:7e:e0:97:dc:27:dd:8a:6b:58:
60:09:8d:36:35:b5:f8:e7:aa:d5:09:01:c7:0e:23:
fc:6b:76:01:a8:af:e0:ca:68:af:f5:da:69:58:d5:
92:ce:e5:7f:6d:5a:60:de:d9:1e:7e:5a:ab:c9:0d:
85:60:05:79:ca:4e:a0:08:ec:e5:d8:6a:af:df:16:
22:28:82:a4:7c:20:d5:72:b2:c9:50:5e:ff:26:a4:
70:88:36:97:ed:ac:38:a8:ec:35:68:69:48:26:33:
e0:a4:c7:d6:17:da:0f:c7:87:5b:f5:b6:f4:d5:ef:
c3:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:D0:22:52:8E:65:0D:CD:84:00:EC:07:5A:98:1E:89:62:EF:56:AA
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/a9AiUo5lDc2EAOwHWpgeiWLvVqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.92.0/24
45.128.96.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:11:d7:32:4d:df:93:65:59:bb:c7:87:09:c5:e9:82:bc:dd:
fc:e6:a9:a0:5f:e4:0b:13:30:27:b1:0f:aa:25:35:06:6c:59:
29:1e:41:42:01:fe:ef:29:40:37:ac:ed:42:68:15:55:ee:d7:
c3:2d:fc:17:0e:4d:e7:0f:29:90:99:9a:66:e4:a5:b3:5f:9a:
07:29:87:44:4f:bf:27:33:b8:43:4c:1e:92:7a:8d:ef:da:dd:
22:46:a9:58:0e:74:2a:fd:6c:ee:e4:7e:e7:3b:f2:36:00:cd:
06:5d:df:9e:18:67:e8:dd:bd:f6:61:3c:92:56:ff:27:b7:5d:
56:e4:f7:f4:d1:ee:89:2c:0a:4a:3c:d9:16:51:b1:0c:ff:85:
32:1e:9a:fb:9f:cf:e5:9f:e1:f2:0f:de:36:ce:5d:22:14:b6:
47:0e:37:53:90:57:bb:dc:21:c7:96:d4:99:82:35:de:a6:73:
4c:b0:26:5e:76:1f:33:ec:c0:4f:a0:3a:db:18:a3:dc:51:a4:
82:05:1b:87:49:21:f8:71:f5:d2:0e:ca:b5:43:a5:2c:8a:e5:
f2:c5:92:22:33:0a:e5:9e:12:e3:cc:30:13:b2:d8:6f:cf:b7:
c0:6e:d5:69:6d:b9:87:4c:a7:f0:95:27:25:7c:e2:bc:a5:67:
13:d5:fa:6b
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY7s1ojEwCdffLSQGMXWWmZFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjQwNDE3MTYxNDI2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YmQwMjI1MjhlNjUwZGNkODQwMGVjMDc1YTk4MWU4OTYyZWY1NmFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyIeHep04Xnh6Nm3Hby1Q7FAEzq3r
yE/+lPXXxBjC0lRs8cf8uYy/dJz6VSuXg5/rPypdihqBLOqbEzZc3lBhajjAsRFQ
NVj9H1/2aBZi7rEzvQXyiVzM9HLhahz7rItfPAqnAGbLo3iABmbTQfKbDW22Grx+
PnRrXEKww5NCkVOKXFrPtrp1jH0PBSR+4JfcJ92Ka1hgCY02NbX456rVCQHHDiP8
a3YBqK/gymiv9dppWNWSzuV/bVpg3tkeflqryQ2FYAV5yk6gCOzl2Gqv3xYiKIKk
fCDVcrLJUF7/JqRwiDaX7aw4qOw1aGlIJjPgpMfWF9oPx4db9bb01e/DRQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFGvQIlKOZQ3NhADsB1qYHoli71aqMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvYTlBaVVvNWxEYzJFQU93SFdwZ2VpV0x2VnFvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALQhcAwQA
LYBgMA0GCSqGSIb3DQEBCwUAA4IBAQB6EdcyTd+TZVm7x4cJxemCvN385qmgX+QL
EzAnsQ+qJTUGbFkpHkFCAf7vKUA3rO1CaBVV7tfDLfwXDk3nDymQmZpm5KWzX5oH
KYdET78nM7hDTB6Seo3v2t0iRqlYDnQq/Wzu5H7nO/I2AM0GXd+eGGfo3b32YTyS
Vv8nt11W5Pf00e6JLApKPNkWUbEM/4UyHpr7n8/ln+HyD942zl0iFLZHDjdTkFe7
3CHHltSZgjXepnNMsCZedh8z7MBPoDrbGKPcUaSCBRuHSSH4cfXSDsq1Q6UsiuXy
xZIiMwrlnhLjzDATsthvz7fAbtVpbbmHTKfwlSclfOK8pWcT1fpr
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:14 2024 by rpki-client on console-fra.rpki-client.org