Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/vMSkV1AlH2kUQf15O3oerTe_gLE.roa
File: vMSkV1AlH2kUQf15O3oerTe_gLE.roa (raw, json)
Hash identifier: Pk+8i75BFgTjNUuSbksCLv2M+1FGmhcV3qRw8LzGupo=
Subject key identifier: BC:C4:A4:57:50:25:1F:69:14:41:FD:79:3B:7A:1E:AD:37:BF:80:B1
Certificate issuer: /CN=1f61aa5d1befd7a0fe3e4dfe3aa8da73efcfba34
Certificate serial: 01856DD4199C0C7BE100FDC06A3F1F341D91
Authority key identifier: 1F:61:AA:5D:1B:EF:D7:A0:FE:3E:4D:FE:3A:A8:DA:73:EF:CF:BA:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/vMSkV1AlH2kUQf15O3oerTe_gLE.roa
Signing time: Sun 01 Jan 2023 14:54:54 +0000
ROA not before: Sun 01 Jan 2023 14:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 45.95.205.0/24 maxlen: 24
45.95.206.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 14 Feb 2023 10:56:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:d4:19:9c:0c:7b:e1:00:fd:c0:6a:3f:1f:34:1d:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f61aa5d1befd7a0fe3e4dfe3aa8da73efcfba34
Validity
Not Before: Jan 1 14:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bcc4a45750251f691441fd793b7a1ead37bf80b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:7e:ff:36:5e:c0:3c:ef:8d:72:04:75:66:8d:
6d:69:ba:9a:26:ad:52:6d:26:af:65:1d:02:f2:0d:
16:fe:88:21:7c:7f:7b:c5:cd:53:06:6b:ea:63:56:
06:f6:37:cd:07:c3:ed:9b:42:bf:a2:d1:b8:74:cb:
22:f4:3d:f6:5c:4a:43:47:b4:04:80:d0:62:01:8b:
af:f3:58:8d:48:a6:20:e3:20:a2:80:9a:6b:78:38:
f5:c2:88:93:c0:c8:31:92:de:56:09:a3:f3:64:69:
be:63:51:fe:7b:a9:ea:a7:f1:7c:ac:0b:9a:ad:73:
b8:01:a3:e9:cf:f0:f0:0a:77:ad:c5:eb:6a:d6:b2:
e8:c6:4b:0b:a7:42:e5:a9:02:25:63:2e:49:12:a2:
2f:87:0c:8f:4b:b4:1b:a6:00:84:88:55:b8:d1:52:
93:ba:d1:a3:55:09:c4:09:a9:24:0c:63:c0:2a:0f:
84:7b:21:a2:84:b1:73:c2:4b:fc:34:d4:19:90:54:
2b:bb:12:ba:ac:52:f2:fa:d7:68:0e:8d:54:d1:3a:
98:1b:2b:a8:4a:01:f5:17:04:fe:fe:4c:87:68:3c:
81:21:29:61:dc:44:d9:be:2f:0c:e9:bf:b3:f4:91:
51:bf:ed:69:0f:e7:5d:69:fa:b9:1f:73:fc:b1:4e:
d8:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:C4:A4:57:50:25:1F:69:14:41:FD:79:3B:7A:1E:AD:37:BF:80:B1
X509v3 Authority Key Identifier:
keyid:1F:61:AA:5D:1B:EF:D7:A0:FE:3E:4D:FE:3A:A8:DA:73:EF:CF:BA:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/vMSkV1AlH2kUQf15O3oerTe_gLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.205.0-45.95.206.255
Signature Algorithm: sha256WithRSAEncryption
0e:a2:b5:90:f1:af:58:c3:48:c0:37:73:93:05:14:f2:f5:07:
9f:09:d7:fc:26:85:65:ba:84:42:23:df:5b:7c:6a:b7:0c:a4:
c4:19:e8:46:22:dc:f9:0c:c6:da:2f:61:48:fb:8c:f0:35:6b:
05:a2:7e:a6:bc:fa:07:c0:3d:62:73:5f:de:6c:5b:4f:8e:80:
5e:14:d9:34:af:d6:24:8d:a5:36:40:5e:04:38:9f:5a:78:e6:
16:c7:73:47:12:6b:22:e0:7e:6a:d7:0d:d2:87:cb:dd:a7:f9:
4d:4c:5c:1c:e2:d0:f8:b8:f5:cc:22:a2:42:3f:1c:da:c7:79:
59:62:b5:66:5b:ac:ba:f1:0f:35:e7:aa:9b:ba:4f:58:ca:df:
b1:82:f6:59:b9:0c:4e:77:14:22:74:b6:09:6d:f2:e1:45:a0:
29:79:40:ed:01:6b:f6:3b:de:2b:e7:df:c5:6e:95:6c:cf:72:
1a:92:14:95:e7:5e:1c:9e:44:5d:5a:4f:86:2e:46:88:1e:93:
cb:3a:da:88:da:c8:a1:9c:9b:eb:f3:5c:4d:80:66:f3:e2:84:
6b:78:25:b3:10:80:8c:04:a6:08:e9:08:67:9a:c1:b5:b1:f2:
d2:0f:fb:39:32:38:2d:dd:73:8d:15:8c:a6:9e:a6:b2:fc:ba:
b0:f0:7d:21
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYVt1BmcDHvhAP3Aaj8fNB2RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmNjFhYTVkMWJlZmQ3YTBmZTNlNGRmZTNhYThkYTczZWZj
ZmJhMzQwHhcNMjMwMTAxMTQ1NDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiY2M0YTQ1NzUwMjUxZjY5MTQ0MWZkNzkzYjdhMWVhZDM3YmY4MGIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgX7/Nl7APO+NcgR1Zo1tabqaJq1S
bSavZR0C8g0W/oghfH97xc1TBmvqY1YG9jfNB8Ptm0K/otG4dMsi9D32XEpDR7QE
gNBiAYuv81iNSKYg4yCigJpreDj1woiTwMgxkt5WCaPzZGm+Y1H+e6nqp/F8rAua
rXO4AaPpz/DwCnetxetq1rLoxksLp0LlqQIlYy5JEqIvhwyPS7QbpgCEiFW40VKT
utGjVQnECakkDGPAKg+EeyGihLFzwkv8NNQZkFQruxK6rFLy+tdoDo1U0TqYGyuo
SgH1FwT+/kyHaDyBISlh3ETZvi8M6b+z9JFRv+1pD+ddafq5H3P8sU7YiQIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFLzEpFdQJR9pFEH9eTt6Hq03v4CxMB8GA1UdIwQY
MBaAFB9hql0b79eg/j5N/jqo2nPvz7o0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDJHcVhSdnYxNkQtUGszLU9xamFjLV9QdWpRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy8wYWQ0MTQtM2RmMS00YjM4LTg2OWUt
YzYyMWU4ZGY5NWZmLzEvdk1Ta1YxQWxIMmtVUWYxNU8zb2VyVGVfZ0xFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy8wYWQ0MTQtM2RmMS00YjM4LTg2OWUtYzYyMWU4ZGY5NWZm
LzEvSDJHcVhSdnYxNkQtUGszLU9xamFjLV9QdWpRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAAtX80D
BAAtX84wDQYJKoZIhvcNAQELBQADggEBAA6itZDxr1jDSMA3c5MFFPL1B58J1/wm
hWW6hEIj31t8arcMpMQZ6EYi3PkMxtovYUj7jPA1awWifqa8+gfAPWJzX95sW0+O
gF4U2TSv1iSNpTZAXgQ4n1p45hbHc0cSayLgfmrXDdKHy92n+U1MXBzi0Pi49cwi
okI/HNrHeVlitWZbrLrxDzXnqpu6T1jK37GC9lm5DE53FCJ0tglt8uFFoCl5QO0B
a/Y73ivn38VulWzPchqSFJXnXhyeRF1aT4YuRogek8s62ojayKGcm+vzXE2AZvPi
hGt4JbMQgIwEpgjpCGeawbWx8tIP+zkyOC3dc40VjKaeprL8urDwfSE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:47 2024 by rpki-client on console-fra.rpki-client.org