Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/zz7CK8Mbmh-6fJA1Wv4BxJ_J0Bg.roa
File: zz7CK8Mbmh-6fJA1Wv4BxJ_J0Bg.roa (raw, json)
Hash identifier: 4mom1G1fO0ypn02Vm/hhXkEh3555lO8eHMI2ZKHPRgQ=
Subject key identifier: CF:3E:C2:2B:C3:1B:9A:1F:BA:7C:90:35:5A:FE:01:C4:9F:C9:D0:18
Certificate issuer: /CN=0bf543e23e29fb03748d0939726f30fe9affa19e
Certificate serial: 01899D23F5A3466C303ECAD37059C21B5692
Authority key identifier: 0B:F5:43:E2:3E:29:FB:03:74:8D:09:39:72:6F:30:FE:9A:FF:A1:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/zz7CK8Mbmh-6fJA1Wv4BxJ_J0Bg.roa
Signing time: Fri 28 Jul 2023 15:35:26 +0000
ROA not before: Fri 28 Jul 2023 15:35:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202564
IP address blocks: 45.66.54.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:9d:23:f5:a3:46:6c:30:3e:ca:d3:70:59:c2:1b:56:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bf543e23e29fb03748d0939726f30fe9affa19e
Validity
Not Before: Jul 28 15:35:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cf3ec22bc31b9a1fba7c90355afe01c49fc9d018
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:9e:ed:d9:19:c4:1e:86:0e:4d:27:1b:78:48:
75:4d:80:e4:a9:df:3d:e0:ee:f4:d8:36:d8:49:9b:
e4:fe:96:e7:c7:9a:97:96:ab:14:a5:84:84:de:18:
5e:2a:4b:60:43:a2:6b:89:34:fa:fa:06:3a:fe:cf:
55:96:5f:c9:7e:f3:e7:a2:cd:1d:fa:c6:c3:b3:f8:
98:a1:07:eb:e8:54:80:de:e9:f4:41:43:2b:9c:8c:
eb:b1:00:68:07:0f:4e:15:fe:38:d6:45:71:d2:16:
b2:a9:d2:38:ef:c6:a5:25:2a:93:7b:74:e7:42:d8:
27:a7:cd:23:a2:14:f6:5b:53:64:68:f9:a1:bf:5d:
16:30:69:0f:37:72:be:f4:b7:4f:29:61:57:4d:0f:
0a:84:1a:d7:01:c6:c6:ac:3e:16:03:dc:f8:6e:c7:
ad:70:27:83:0a:58:5d:b3:12:21:aa:31:7a:f3:5f:
0a:43:8b:76:a8:6e:e3:e1:d4:92:3b:25:10:32:5c:
3b:b8:a6:68:43:5e:d5:89:a0:58:d6:a6:22:01:c6:
b1:6d:c7:1c:a0:ec:c1:06:61:8d:e6:05:41:04:a6:
5c:fe:94:d8:68:ff:73:5c:91:09:46:ba:be:fe:01:
ad:fb:49:4a:1b:b8:12:4c:75:a8:65:aa:6f:f2:3b:
29:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:3E:C2:2B:C3:1B:9A:1F:BA:7C:90:35:5A:FE:01:C4:9F:C9:D0:18
X509v3 Authority Key Identifier:
keyid:0B:F5:43:E2:3E:29:FB:03:74:8D:09:39:72:6F:30:FE:9A:FF:A1:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/zz7CK8Mbmh-6fJA1Wv4BxJ_J0Bg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.54.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:0c:42:d4:67:b9:6c:00:04:b5:61:16:5f:4f:9c:20:ef:b3:
67:f5:07:78:69:16:68:33:88:2d:d0:3f:d6:a4:2f:20:b7:b6:
c8:1b:8a:46:5e:96:95:c9:8b:a6:ff:6b:4c:cd:27:f3:f3:37:
ca:f5:8c:ae:83:17:e8:f7:a1:3b:5f:d5:0a:bd:db:f8:f2:71:
bb:c9:7d:43:52:79:6f:39:0d:96:1b:9b:12:2f:3b:78:5a:15:
fe:b0:1a:0e:c8:4a:e1:26:c8:1e:f0:fc:0d:10:f4:77:64:32:
a0:5a:e8:a8:d4:31:b7:eb:91:97:16:25:cd:5b:4f:8a:3c:8b:
e1:61:53:08:31:e4:b6:fb:57:35:ef:55:93:06:a3:22:05:60:
b4:c9:a2:8d:ff:23:08:59:32:a9:9b:37:07:95:8a:b9:1d:5c:
18:da:d4:c5:64:18:1a:8a:4f:a1:a8:46:c9:41:23:48:8e:15:
c0:be:83:78:72:68:b9:37:15:ff:63:c9:90:51:ce:bb:f3:f6:
d1:f9:da:38:ff:bf:e2:2e:ba:ab:cf:13:9b:18:e6:f4:04:88:
bc:3f:a2:d7:8c:b5:90:65:e9:01:8f:94:35:56:d3:b8:2d:18:
f3:c3:57:fd:39:c2:cd:bb:4f:ad:dd:e9:2a:1f:d2:cb:e7:02:
2d:a5:79:f1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYmdI/WjRmwwPsrTcFnCG1aSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBiZjU0M2UyM2UyOWZiMDM3NDhkMDkzOTcyNmYzMGZlOWFm
ZmExOWUwHhcNMjMwNzI4MTUzNTI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZjNlYzIyYmMzMWI5YTFmYmE3YzkwMzU1YWZlMDFjNDlmYzlkMDE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmJ7t2RnEHoYOTScbeEh1TYDkqd89
4O702DbYSZvk/pbnx5qXlqsUpYSE3hheKktgQ6JriTT6+gY6/s9Vll/JfvPnos0d
+sbDs/iYoQfr6FSA3un0QUMrnIzrsQBoBw9OFf441kVx0hayqdI478alJSqTe3Tn
Qtgnp80johT2W1NkaPmhv10WMGkPN3K+9LdPKWFXTQ8KhBrXAcbGrD4WA9z4bset
cCeDClhdsxIhqjF6818KQ4t2qG7j4dSSOyUQMlw7uKZoQ17ViaBY1qYiAcaxbccc
oOzBBmGN5gVBBKZc/pTYaP9zXJEJRrq+/gGt+0lKG7gSTHWoZapv8jspKQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFM8+wivDG5ofunyQNVr+AcSfydAYMB8GA1UdIwQY
MBaAFAv1Q+I+KfsDdI0JOXJvMP6a/6GeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ19WRDRqNHAtd04walFrNWNtOHdfcHJfb1o0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS9hZmEzNGMtZjNmMC00MDVjLWIwODMt
YTM1ZmM0MzhkNGNhLzEveno3Q0s4TWJtaC02ZkpBMVd2NEJ4Sl9KMEJnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS9hZmEzNGMtZjNmMC00MDVjLWIwODMtYTM1ZmM0MzhkNGNh
LzEvQ19WRDRqNHAtd04walFrNWNtOHdfcHJfb1o0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALUI2MA0G
CSqGSIb3DQEBCwUAA4IBAQCzDELUZ7lsAAS1YRZfT5wg77Nn9Qd4aRZoM4gt0D/W
pC8gt7bIG4pGXpaVyYum/2tMzSfz8zfK9Yyugxfo96E7X9UKvdv48nG7yX1DUnlv
OQ2WG5sSLzt4WhX+sBoOyErhJsge8PwNEPR3ZDKgWuio1DG365GXFiXNW0+KPIvh
YVMIMeS2+1c171WTBqMiBWC0yaKN/yMIWTKpmzcHlYq5HVwY2tTFZBgaik+hqEbJ
QSNIjhXAvoN4cmi5NxX/Y8mQUc678/bR+do4/7/iLrqrzxObGOb0BIi8P6LXjLWQ
ZekBj5Q1VtO4LRjzw1f9OcLNu0+t3ekqH9LL5wItpXnx
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:38 2024 by rpki-client on console-fra.rpki-client.org