Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/92fbd9-b9ee-42fc-aac1-fb97ddd54891/1/5Gjwhzqf_I3-pGAFNA0-fRW3ZTs.roa
File: 5Gjwhzqf_I3-pGAFNA0-fRW3ZTs.roa (raw, json)
Hash identifier: fWj8tdNTM8wOBoWQMMPTO2aaFW/kP9pESTLei3zNPHo=
Subject key identifier: E4:68:F0:87:3A:9F:FC:8D:FE:A4:60:05:34:0D:3E:7D:15:B7:65:3B
Certificate issuer: /CN=03d602b9e1da2b568df544bda50e415799bbb1e2
Certificate serial: 0190B2D9C45F0464F026C3BACC9EE4FAE984
Authority key identifier: 03:D6:02:B9:E1:DA:2B:56:8D:F5:44:BD:A5:0E:41:57:99:BB:B1:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A9YCueHaK1aN9US9pQ5BV5m7seI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/92fbd9-b9ee-42fc-aac1-fb97ddd54891/1/5Gjwhzqf_I3-pGAFNA0-fRW3ZTs.roa
Signing time: Sun 14 Jul 2024 20:05:34 +0000
ROA not before: Sun 14 Jul 2024 20:05:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.10.38.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Jul 2024 11:49:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:b2:d9:c4:5f:04:64:f0:26:c3:ba:cc:9e:e4:fa:e9:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03d602b9e1da2b568df544bda50e415799bbb1e2
Validity
Not Before: Jul 14 20:05:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e468f0873a9ffc8dfea46005340d3e7d15b7653b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ef:5a:d7:44:5d:09:2c:98:bb:58:f1:9c:59:
63:81:31:1a:04:7f:2f:ca:23:fe:f4:b6:fd:6f:72:
bb:22:6a:58:5d:11:58:e7:51:8e:c2:f4:35:7a:2d:
cb:62:4d:7e:4e:fc:c7:04:9e:55:59:dc:57:7d:f9:
c0:3a:f8:5f:cc:cf:e9:6c:2a:4a:45:85:31:20:57:
e8:c9:fa:57:68:1c:6f:6c:c3:2d:6c:ea:12:8b:61:
6b:36:14:5c:42:ab:c3:fc:7f:a2:ab:8d:83:7b:73:
5e:43:0c:2a:9e:68:e6:8a:b1:94:b5:88:3e:b0:6b:
d1:e5:e4:23:52:f2:39:2c:df:d6:58:03:7a:90:68:
37:7c:f8:1c:a9:7d:57:72:a8:6f:85:31:f9:1b:ec:
fb:9d:7c:ee:05:70:46:c6:73:64:04:8b:f7:74:e6:
c4:0d:d1:6f:07:38:b7:e0:6a:29:5e:68:58:ae:4d:
cf:80:3c:2d:30:e2:8e:bd:64:11:94:9c:e5:c6:46:
a6:9b:29:1c:f5:02:1b:02:16:01:e5:c0:7e:bb:27:
af:b6:c6:cb:c4:d8:32:c6:fe:0d:14:95:67:70:cb:
1f:86:3d:d8:1a:df:41:17:61:32:3d:14:45:4f:da:
1e:ac:15:9c:ee:97:4f:a7:e0:7e:ec:4e:e6:92:d8:
38:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:68:F0:87:3A:9F:FC:8D:FE:A4:60:05:34:0D:3E:7D:15:B7:65:3B
X509v3 Authority Key Identifier:
keyid:03:D6:02:B9:E1:DA:2B:56:8D:F5:44:BD:A5:0E:41:57:99:BB:B1:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A9YCueHaK1aN9US9pQ5BV5m7seI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/92fbd9-b9ee-42fc-aac1-fb97ddd54891/1/5Gjwhzqf_I3-pGAFNA0-fRW3ZTs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/92fbd9-b9ee-42fc-aac1-fb97ddd54891/1/A9YCueHaK1aN9US9pQ5BV5m7seI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.38.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:2a:05:17:41:e5:8a:1b:78:4b:ab:e7:26:bb:3b:e3:ab:83:
c7:fc:c0:83:93:61:d1:d2:68:06:ca:76:38:77:86:2c:f6:e3:
d5:df:61:cf:bb:18:08:57:45:b7:de:94:1f:32:2f:23:e6:ae:
96:94:57:a4:07:c9:5f:31:66:88:65:01:03:53:f0:fe:f8:58:
4d:35:ec:3f:a5:44:c5:a0:18:7a:ee:db:48:8d:cf:1b:2e:81:
dd:3c:76:f0:c1:e1:0c:0c:af:14:fb:78:90:b3:60:f8:db:b7:
87:e8:28:21:f8:51:86:7d:3b:e7:bf:a6:e1:d6:f7:a8:62:67:
81:5e:d8:f3:9a:8d:98:3b:85:ce:1e:a5:c2:20:6f:38:3d:3e:
ab:71:5a:f8:08:1d:a1:d5:b3:11:ac:eb:2c:6e:79:2a:1d:e2:
a3:32:a7:13:bb:dc:62:e1:01:dc:75:08:95:14:3c:06:49:4d:
e0:f8:49:af:e6:52:ae:79:82:7e:85:23:af:aa:d7:9c:f9:71:
9d:11:ce:11:8f:c2:e4:fd:5a:70:2f:a4:e5:50:13:f2:3a:52:
ba:07:89:53:13:4e:2d:f4:a2:bf:19:96:af:d3:95:68:2b:27:
35:7b:22:2b:77:81:91:23:51:86:a2:77:9d:c5:30:44:f0:34:
91:04:96:06
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZCy2cRfBGTwJsO6zJ7k+umEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAzZDYwMmI5ZTFkYTJiNTY4ZGY1NDRiZGE1MGU0MTU3OTli
YmIxZTIwHhcNMjQwNzE0MjAwNTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNDY4ZjA4NzNhOWZmYzhkZmVhNDYwMDUzNDBkM2U3ZDE1Yjc2NTNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtO9a10RdCSyYu1jxnFljgTEaBH8v
yiP+9Lb9b3K7ImpYXRFY51GOwvQ1ei3LYk1+TvzHBJ5VWdxXffnAOvhfzM/pbCpK
RYUxIFfoyfpXaBxvbMMtbOoSi2FrNhRcQqvD/H+iq42De3NeQwwqnmjmirGUtYg+
sGvR5eQjUvI5LN/WWAN6kGg3fPgcqX1XcqhvhTH5G+z7nXzuBXBGxnNkBIv3dObE
DdFvBzi34GopXmhYrk3PgDwtMOKOvWQRlJzlxkammykc9QIbAhYB5cB+uyevtsbL
xNgyxv4NFJVncMsfhj3YGt9BF2EyPRRFT9oerBWc7pdPp+B+7E7mktg4TQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFORo8Ic6n/yN/qRgBTQNPn0Vt2U7MB8GA1UdIwQY
MBaAFAPWArnh2itWjfVEvaUOQVeZu7HiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQTlZQ3VlSGFLMWFOOVVTOXBRNUJWNW03c2VJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy85MmZiZDktYjllZS00MmZjLWFhYzEt
ZmI5N2RkZDU0ODkxLzEvNUdqd2h6cWZfSTMtcEdBRk5BMC1mUlczWlRzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy85MmZiZDktYjllZS00MmZjLWFhYzEtZmI5N2RkZDU0ODkx
LzEvQTlZQ3VlSGFLMWFOOVVTOXBRNUJWNW03c2VJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQomMA0G
CSqGSIb3DQEBCwUAA4IBAQCjKgUXQeWKG3hLq+cmuzvjq4PH/MCDk2HR0mgGynY4
d4Ys9uPV32HPuxgIV0W33pQfMi8j5q6WlFekB8lfMWaIZQEDU/D++FhNNew/pUTF
oBh67ttIjc8bLoHdPHbwweEMDK8U+3iQs2D427eH6Cgh+FGGfTvnv6bh1veoYmeB
Xtjzmo2YO4XOHqXCIG84PT6rcVr4CB2h1bMRrOssbnkqHeKjMqcTu9xi4QHcdQiV
FDwGSU3g+Emv5lKueYJ+hSOvqtec+XGdEc4Rj8Lk/VpwL6TlUBPyOlK6B4lTE04t
9KK/GZav05VoKyc1eyIrd4GRI1GGonedxTBE8DSRBJYG
-----END CERTIFICATE-----
Generated at Tue Jul 16 15:47:31 2024 by rpki-client on console-ams.rpki-client.org