Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/B6hharh8Dwyq_4AP-8Q_99Pbodo.roa
File: B6hharh8Dwyq_4AP-8Q_99Pbodo.roa (raw, json)
Hash identifier: 4Mvs7eo42NYElEXPWT0jQc3/GYszJemSZyekx0GfQm8=
Subject key identifier: 07:A8:61:6A:B8:7C:0F:0C:AA:FF:80:0F:FB:C4:3F:F7:D3:DB:A1:DA
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018F81A4606F217C4CBD8E51CC3E7468618D
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/B6hharh8Dwyq_4AP-8Q_99Pbodo.roa
Signing time: Thu 16 May 2024 13:43:04 +0000
ROA not before: Thu 16 May 2024 13:43:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 174
IP address blocks: 45.141.204.0/23 maxlen: 23
45.148.51.0/24 maxlen: 24
45.149.90.0/23 maxlen: 23
195.88.191.0/24 maxlen: 24
195.88.210.0/23 maxlen: 24
2a0f:3b80::/32 maxlen: 32
2a0f:3b81::/32 maxlen: 32
2a0f:3b82::/32 maxlen: 32
2a0f:3b83::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 14 Oct 2024 10:09:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:81:a4:60:6f:21:7c:4c:bd:8e:51:cc:3e:74:68:61:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: May 16 13:43:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=07a8616ab87c0f0caaff800ffbc43ff7d3dba1da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e1:f4:2e:d7:73:e8:8b:42:24:fc:72:f6:bf:
e5:5f:10:b0:6e:97:22:95:b2:5c:77:95:49:ba:8f:
74:92:19:dd:bb:01:54:a4:2d:24:1b:78:a8:76:f2:
5d:9a:f9:b2:a3:5a:d4:29:8d:1b:c2:8a:90:21:3e:
b4:29:fc:e1:f7:74:c3:f3:b1:7f:c1:3d:4b:92:95:
41:57:12:b6:2d:9e:90:ec:25:10:2a:b4:8e:4e:59:
5a:4a:87:2c:67:4c:93:e9:d8:df:5d:df:3d:62:2a:
cd:89:1f:66:5d:5f:35:cb:d5:69:fa:65:85:83:8f:
8c:9c:d9:6a:d5:d4:d0:c0:5d:22:86:b1:20:b0:cf:
fc:47:67:dd:51:4d:0e:19:55:16:d0:6d:ef:45:d1:
d5:53:ff:20:fa:fa:63:4b:16:6b:a6:08:76:92:d6:
61:b9:a4:df:33:70:56:09:a3:92:f2:74:09:fe:dc:
ae:a0:ca:5c:11:54:43:6a:99:f0:48:2a:b0:77:9e:
2e:f5:ac:a7:3a:6d:86:e4:04:84:40:60:e6:3b:de:
80:53:1d:c3:dc:20:2c:81:61:da:66:36:bf:20:d6:
92:07:18:29:52:a5:42:c4:fc:eb:4f:73:40:f8:8e:
88:49:5a:a5:7f:36:22:8e:46:33:f8:63:25:31:89:
f8:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:A8:61:6A:B8:7C:0F:0C:AA:FF:80:0F:FB:C4:3F:F7:D3:DB:A1:DA
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/B6hharh8Dwyq_4AP-8Q_99Pbodo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.204.0/23
45.148.51.0/24
45.149.90.0/23
195.88.191.0/24
195.88.210.0/23
IPv6:
2a0f:3b80::/30
Signature Algorithm: sha256WithRSAEncryption
7d:00:d1:90:a2:82:36:3d:09:d4:7d:16:ea:44:42:da:ce:b3:
25:1e:d1:60:b8:32:ed:a9:62:b6:30:be:42:79:88:77:5b:3f:
b2:c3:f0:10:b7:29:04:1d:f3:c7:6a:26:a0:8c:7d:52:0f:ea:
8e:6b:5c:c2:b1:11:7d:d0:8a:33:53:66:6e:19:4e:1a:f1:32:
94:27:2a:9c:e2:26:ad:f2:4d:51:97:3d:ac:75:48:75:97:d7:
11:a2:be:ee:b1:6b:4d:dc:77:61:2f:3d:60:83:1e:2c:82:a5:
f8:da:ac:ca:6c:d3:ca:e4:58:43:f6:e4:47:29:53:a7:34:39:
33:73:56:90:99:8b:ce:c1:d5:17:cb:e3:da:af:2d:72:25:7c:
90:23:99:f6:96:68:1e:cb:84:16:94:0e:64:66:50:9b:96:62:
b9:f7:fe:78:1f:c8:83:0a:65:c7:be:91:70:da:02:95:7c:e9:
9f:ca:1d:dc:23:89:a1:c0:28:b6:6f:a0:58:c4:97:cf:ba:ca:
20:d5:01:4d:71:fb:f2:5d:be:d7:3f:03:e4:5a:8b:6e:ad:cb:
bd:09:46:3d:65:05:68:24:26:14:11:5f:be:08:e8:5d:7e:ea:
42:b0:78:00:75:45:0f:bd:39:e3:33:2d:12:8b:a5:9e:be:ef:
d0:d8:7b:eb
-----BEGIN CERTIFICATE-----
MIIFJDCCBAygAwIBAgISAY+BpGBvIXxMvY5RzD50aGGNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NTdjY2Q0M2FmZTgxNmU0OTUzMjI4YmYxNGE3NWRjMjkw
MTRiOGQwHhcNMjQwNTE2MTM0MzA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwN2E4NjE2YWI4N2MwZjBjYWFmZjgwMGZmYmM0M2ZmN2QzZGJhMWRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAweH0Ltdz6ItCJPxy9r/lXxCwbpci
lbJcd5VJuo90khnduwFUpC0kG3iodvJdmvmyo1rUKY0bwoqQIT60Kfzh93TD87F/
wT1LkpVBVxK2LZ6Q7CUQKrSOTllaSocsZ0yT6djfXd89YirNiR9mXV81y9Vp+mWF
g4+MnNlq1dTQwF0ihrEgsM/8R2fdUU0OGVUW0G3vRdHVU/8g+vpjSxZrpgh2ktZh
uaTfM3BWCaOS8nQJ/tyuoMpcEVRDapnwSCqwd54u9aynOm2G5ASEQGDmO96AUx3D
3CAsgWHaZja/INaSBxgpUqVCxPzrT3NA+I6ISVqlfzYijkYz+GMlMYn4oQIDAQAB
o4ICMDCCAiwwHQYDVR0OBBYEFAeoYWq4fA8Mqv+AD/vEP/fT26HaMB8GA1UdIwQY
MBaAFLVXzNQ6/oFuSVMii/FKddwpAUuNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUt
NmJjNzU1NzhiNGMzLzEvQjZoaGFyaDhEd3lxXzRBUC04UV85OVBib2RvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUtNmJjNzU1NzhiNGMz
LzEvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQBLY3MAwQA
LZQzAwQBLZVaAwQAw1i/AwQBw1jSMA0EAgACMAcDBQIqDzuAMA0GCSqGSIb3DQEB
CwUAA4IBAQB9ANGQooI2PQnUfRbqRELazrMlHtFguDLtqWK2ML5CeYh3Wz+yw/AQ
tykEHfPHaiagjH1SD+qOa1zCsRF90IozU2ZuGU4a8TKUJyqc4iat8k1Rlz2sdUh1
l9cRor7usWtN3HdhLz1ggx4sgqX42qzKbNPK5FhD9uRHKVOnNDkzc1aQmYvOwdUX
y+Pary1yJXyQI5n2lmgey4QWlA5kZlCblmK59/54H8iDCmXHvpFw2gKVfOmfyh3c
I4mhwCi2b6BYxJfPusog1QFNcfvyXb7XPwPkWoturcu9CUY9ZQVoJCYUEV++COhd
fupCsHgAdUUPvTnjMy0Si6Wevu/Q2Hvr
-----END CERTIFICATE-----
Generated at Mon Oct 14 14:17:45 2024 by rpki-client on console-ams.rpki-client.org