Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/vp2CaLsJh1mQH9xxGIsSadrZpio.roa
File: vp2CaLsJh1mQH9xxGIsSadrZpio.roa (raw, json)
Hash identifier: g09wJqS2uDK3LA1wU3UOHzDYAL2vOaDMt0+Ag17hHho=
Subject key identifier: BE:9D:82:68:BB:09:87:59:90:1F:DC:71:18:8B:12:69:DA:D9:A6:2A
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0189AC293088181D16E8DE5430B74D8FA89F
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/vp2CaLsJh1mQH9xxGIsSadrZpio.roa
Signing time: Mon 31 Jul 2023 13:35:27 +0000
ROA not before: Mon 31 Jul 2023 13:35:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.14.167.0/24 maxlen: 24
93.123.75.0/24 maxlen: 24
83.219.96.0/24 maxlen: 24
83.219.99.0/24 maxlen: 24
45.129.85.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 02 Aug 2023 00:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ac:29:30:88:18:1d:16:e8:de:54:30:b7:4d:8f:a8:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jul 31 13:35:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be9d8268bb098759901fdc71188b1269dad9a62a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c0:33:05:a2:db:5e:e1:6b:42:56:ef:19:16:
13:83:a1:6d:96:ea:be:23:1b:76:dd:ea:2e:13:03:
cf:19:01:59:aa:a0:ef:7a:53:d9:74:5f:a0:00:29:
71:f0:b0:1e:d6:fa:2b:1c:c0:d2:58:ec:93:62:45:
dd:db:1c:cc:37:8b:99:73:bc:c8:9d:4d:16:64:54:
3d:8c:72:4f:63:09:62:80:6d:ee:26:61:22:be:bc:
09:e1:2b:05:4c:8c:2d:9a:73:da:02:08:99:b8:d4:
d6:40:a4:2f:bb:83:10:87:8a:e8:12:27:3f:17:70:
e7:3a:c3:39:b8:16:1a:3a:0c:c5:2f:78:f3:8a:1f:
15:3e:9e:84:df:b0:c1:fe:f2:fd:7d:c8:59:bb:69:
e7:06:2e:20:f9:35:53:d2:66:12:99:35:0a:5d:93:
c2:77:fc:ad:e6:e9:00:8f:9d:5d:38:df:6a:25:43:
d4:a0:f0:aa:c6:e2:51:e2:30:db:f2:79:50:54:55:
f4:72:12:64:e6:8c:2a:52:8d:ec:bf:f7:70:98:e2:
72:10:12:ff:c6:a5:00:c1:4d:ef:bc:f5:07:28:cc:
28:c7:3d:e9:4d:6e:f9:67:89:25:18:99:6a:28:13:
d1:3f:f2:7f:75:4c:0f:07:e8:b4:91:00:e7:6e:6e:
bc:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:9D:82:68:BB:09:87:59:90:1F:DC:71:18:8B:12:69:DA:D9:A6:2A
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/vp2CaLsJh1mQH9xxGIsSadrZpio.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.167.0/24
45.129.85.0/24
83.219.96.0/24
83.219.99.0/24
93.123.75.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:6b:59:36:88:9c:be:24:df:e8:a4:3a:42:b8:48:0f:9b:52:
72:bb:33:d7:f5:8f:de:16:3a:d4:05:db:ed:a3:38:6b:e9:9a:
f0:39:db:c2:da:ff:eb:56:58:b3:55:49:8f:35:d2:58:8f:8d:
30:27:91:c1:94:3e:11:30:ee:e8:b8:bf:ac:af:6c:a0:93:5e:
b0:99:24:cc:2d:eb:7d:92:9e:78:cd:85:33:38:4d:05:47:48:
29:a6:97:f8:6e:1d:cd:8a:0e:ba:68:78:c8:05:9d:1e:8e:42:
b6:8a:31:06:45:57:4c:51:72:7a:b7:bf:94:c8:dd:ae:6a:2c:
ac:42:de:3b:9c:c0:24:8c:6a:b3:d1:b6:37:83:5e:ba:06:b1:
12:77:1e:2e:2f:c6:78:18:33:5f:a0:d8:36:58:69:6d:cb:72:
37:f6:e7:51:3d:3e:f5:fc:fe:0f:8e:14:36:81:99:02:6e:2d:
f8:4a:02:9c:54:ed:e7:b5:f1:8b:4c:be:a8:3b:eb:ba:2b:40:
02:25:31:8e:3f:68:13:7e:bb:7c:66:e7:67:26:87:71:cb:3b:
78:d7:7a:7c:2e:a0:54:bc:ba:54:81:68:06:44:50:e7:c2:83:
7c:98:2c:ed:b6:63:d4:54:31:b6:4a:a3:6f:2a:54:f3:d1:e9:
8c:f7:66:d9
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAYmsKTCIGB0W6N5UMLdNj6ifMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjMwNzMxMTMzNTI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZTlkODI2OGJiMDk4NzU5OTAxZmRjNzExODhiMTI2OWRhZDlhNjJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApcAzBaLbXuFrQlbvGRYTg6Ftluq+
Ixt23eouEwPPGQFZqqDvelPZdF+gAClx8LAe1vorHMDSWOyTYkXd2xzMN4uZc7zI
nU0WZFQ9jHJPYwligG3uJmEivrwJ4SsFTIwtmnPaAgiZuNTWQKQvu4MQh4roEic/
F3DnOsM5uBYaOgzFL3jzih8VPp6E37DB/vL9fchZu2nnBi4g+TVT0mYSmTUKXZPC
d/yt5ukAj51dON9qJUPUoPCqxuJR4jDb8nlQVFX0chJk5owqUo3sv/dwmOJyEBL/
xqUAwU3vvPUHKMwoxz3pTW75Z4klGJlqKBPRP/J/dUwPB+i0kQDnbm684wIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFL6dgmi7CYdZkB/ccRiLEmna2aYqMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvdnAyQ2FMc0poMW1RSDl4eEdJc1NhZHJacGlvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQALQ6nAwQA
LYFVAwQAU9tgAwQAU9tjAwQAXXtLMA0GCSqGSIb3DQEBCwUAA4IBAQCoa1k2iJy+
JN/opDpCuEgPm1JyuzPX9Y/eFjrUBdvtozhr6ZrwOdvC2v/rVlizVUmPNdJYj40w
J5HBlD4RMO7ouL+sr2ygk16wmSTMLet9kp54zYUzOE0FR0gpppf4bh3Nig66aHjI
BZ0ejkK2ijEGRVdMUXJ6t7+UyN2uaiysQt47nMAkjGqz0bY3g166BrESdx4uL8Z4
GDNfoNg2WGlty3I39udRPT71/P4PjhQ2gZkCbi34SgKcVO3ntfGLTL6oO+u6K0AC
JTGOP2gTfrt8ZudnJodxyzt413p8LqBUvLpUgWgGRFDnwoN8mCzttmPUVDG2SqNv
KlTz0emM92bZ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:21 2024 by rpki-client on console-fra.rpki-client.org