Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/e0472a-3adf-43cd-bf30-73923daef114/1/1zOUv1mJgGYmIH4NVVN_sbyh8Dw.roa
File: 1zOUv1mJgGYmIH4NVVN_sbyh8Dw.roa (raw, json)
Hash identifier: UZjOvGKpzVkYlqpwfodjrpWKOMn6O+heTSMt9ugMMV0=
Subject key identifier: D7:33:94:BF:59:89:80:66:26:20:7E:0D:55:53:7F:B1:BC:A1:F0:3C
Certificate issuer: /CN=8533ef46116fd9d21bfb533e44bde517890c24dc
Certificate serial: 0188EF41A7B68DC60EDAFB871F810F1CBA7E
Authority key identifier: 85:33:EF:46:11:6F:D9:D2:1B:FB:53:3E:44:BD:E5:17:89:0C:24:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hTPvRhFv2dIb-1M-RL3lF4kMJNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/e0472a-3adf-43cd-bf30-73923daef114/1/1zOUv1mJgGYmIH4NVVN_sbyh8Dw.roa
Signing time: Sat 24 Jun 2023 21:13:57 +0000
ROA not before: Sat 24 Jun 2023 21:13:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 45.14.81.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:ef:41:a7:b6:8d:c6:0e:da:fb:87:1f:81:0f:1c:ba:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8533ef46116fd9d21bfb533e44bde517890c24dc
Validity
Not Before: Jun 24 21:13:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d73394bf5989806626207e0d55537fb1bca1f03c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:e3:3d:b0:c6:71:de:03:0b:71:d7:81:3e:50:
b7:32:13:e3:e6:a0:6b:da:40:14:54:21:46:46:6b:
92:5e:b0:55:76:a1:34:91:55:1a:15:b8:c7:60:bf:
64:96:f6:cc:eb:e8:58:f2:67:53:7f:25:8a:49:41:
2a:08:d1:3d:c9:37:7a:53:0a:a0:d1:7d:f0:18:7c:
9d:16:e3:08:64:cb:45:d0:ee:70:be:74:1b:73:39:
fc:3f:fd:6b:46:95:2f:fc:d9:48:14:af:25:3d:e3:
1e:4d:2b:38:0b:04:79:95:f8:55:d9:03:b7:1e:dc:
4e:f9:68:89:4c:4c:52:89:d2:b0:72:ae:34:e7:c1:
9f:5d:d6:97:69:3c:a7:c8:bc:3f:1c:9b:e4:19:8d:
12:f4:5a:fc:88:07:a1:27:9f:97:9c:df:40:85:bf:
67:29:51:c6:3d:37:06:92:d3:3e:d4:6e:1b:6f:32:
92:cf:c8:f5:fe:78:87:00:ad:2c:12:02:8e:52:c2:
88:f4:21:18:27:72:5d:07:e6:7a:13:b1:4f:66:07:
bb:71:04:4c:a7:07:eb:69:f8:1d:9a:14:39:9f:67:
29:0f:25:e8:98:e2:5e:02:1e:43:f4:85:8f:95:29:
b6:43:f4:31:03:b4:55:87:c7:10:2c:5b:4b:fc:6b:
da:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:33:94:BF:59:89:80:66:26:20:7E:0D:55:53:7F:B1:BC:A1:F0:3C
X509v3 Authority Key Identifier:
keyid:85:33:EF:46:11:6F:D9:D2:1B:FB:53:3E:44:BD:E5:17:89:0C:24:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hTPvRhFv2dIb-1M-RL3lF4kMJNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/e0472a-3adf-43cd-bf30-73923daef114/1/1zOUv1mJgGYmIH4NVVN_sbyh8Dw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/e0472a-3adf-43cd-bf30-73923daef114/1/hTPvRhFv2dIb-1M-RL3lF4kMJNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.81.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:7d:e6:fa:60:d0:f0:2f:5c:1b:a1:21:4f:9f:00:5c:8f:5d:
5d:aa:bd:c6:2d:df:80:74:d2:0c:5d:08:4a:4f:b1:19:16:67:
04:4b:e6:37:69:c8:88:50:aa:85:1a:14:10:db:6d:f4:36:8f:
41:78:8d:c2:c6:da:ca:8e:65:76:41:b1:9e:2a:48:cb:d5:59:
7e:e8:49:e2:d2:55:0c:20:7a:11:43:f1:ea:fe:da:4b:fa:26:
93:de:a4:16:7d:01:48:c2:e3:c9:26:80:69:e7:55:8a:22:bf:
20:00:18:f5:a8:d5:ba:62:ab:c3:76:3e:31:35:1f:54:a1:f6:
7a:eb:73:f1:e9:35:be:de:16:5c:c7:6e:e2:6a:88:6c:27:a5:
08:aa:90:db:95:94:7d:fb:a9:a2:93:38:e8:d3:a4:67:54:34:
0f:b3:ed:17:4b:e1:ef:32:e8:93:4e:32:9a:1f:d5:eb:47:80:
f8:5d:ef:18:3e:2e:9d:37:3e:fb:c4:a0:b2:97:a3:63:f5:b0:
fe:59:34:aa:6e:c5:79:7e:28:2d:33:c1:88:e9:07:eb:13:4c:
61:72:63:23:05:32:75:36:04:bc:5d:53:b3:28:1a:41:45:bd:
08:de:47:c1:7b:4a:72:cc:7c:0c:3a:a2:04:84:9f:ea:4a:08:
26:d4:c5:2d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYjvQae2jcYO2vuHH4EPHLp+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1MzNlZjQ2MTE2ZmQ5ZDIxYmZiNTMzZTQ0YmRlNTE3ODkw
YzI0ZGMwHhcNMjMwNjI0MjExMzU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNzMzOTRiZjU5ODk4MDY2MjYyMDdlMGQ1NTUzN2ZiMWJjYTFmMDNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnOM9sMZx3gMLcdeBPlC3MhPj5qBr
2kAUVCFGRmuSXrBVdqE0kVUaFbjHYL9klvbM6+hY8mdTfyWKSUEqCNE9yTd6Uwqg
0X3wGHydFuMIZMtF0O5wvnQbczn8P/1rRpUv/NlIFK8lPeMeTSs4CwR5lfhV2QO3
HtxO+WiJTExSidKwcq4058GfXdaXaTynyLw/HJvkGY0S9Fr8iAehJ5+XnN9Ahb9n
KVHGPTcGktM+1G4bbzKSz8j1/niHAK0sEgKOUsKI9CEYJ3JdB+Z6E7FPZge7cQRM
pwfrafgdmhQ5n2cpDyXomOJeAh5D9IWPlSm2Q/QxA7RVh8cQLFtL/GvaMQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNczlL9ZiYBmJiB+DVVTf7G8ofA8MB8GA1UdIwQY
MBaAFIUz70YRb9nSG/tTPkS95ReJDCTcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFRQdlJoRnYyZEliLTFNLVJMM2xGNGtNSk53LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy9lMDQ3MmEtM2FkZi00M2NkLWJmMzAt
NzM5MjNkYWVmMTE0LzEvMXpPVXYxbUpnR1ltSUg0TlZWTl9zYnloOER3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy9lMDQ3MmEtM2FkZi00M2NkLWJmMzAtNzM5MjNkYWVmMTE0
LzEvaFRQdlJoRnYyZEliLTFNLVJMM2xGNGtNSk53LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQ5RMA0G
CSqGSIb3DQEBCwUAA4IBAQAvfeb6YNDwL1wboSFPnwBcj11dqr3GLd+AdNIMXQhK
T7EZFmcES+Y3aciIUKqFGhQQ2230No9BeI3CxtrKjmV2QbGeKkjL1Vl+6Eni0lUM
IHoRQ/Hq/tpL+iaT3qQWfQFIwuPJJoBp51WKIr8gABj1qNW6YqvDdj4xNR9UofZ6
63Px6TW+3hZcx27iaohsJ6UIqpDblZR9+6mikzjo06RnVDQPs+0XS+HvMuiTTjKa
H9XrR4D4Xe8YPi6dNz77xKCyl6Nj9bD+WTSqbsV5figtM8GI6QfrE0xhcmMjBTJ1
NgS8XVOzKBpBRb0I3kfBe0pyzHwMOqIEhJ/qSggm1MUt
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:24 2024 by rpki-client on console-fra.rpki-client.org