Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/SGk_gq3CQZ_apRLFwcoMMlI0x_Q.roa
File: SGk_gq3CQZ_apRLFwcoMMlI0x_Q.roa (raw, json)
Hash identifier: EO2eMYOxXyS8y1Kc4x6KX5VotLMZEchfY+Mt6zkHV/A=
Subject key identifier: 48:69:3F:82:AD:C2:41:9F:DA:A5:12:C5:C1:CA:0C:32:52:34:C7:F4
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 0185706767C0D3660D223C6768E649390011
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/SGk_gq3CQZ_apRLFwcoMMlI0x_Q.roa
Signing time: Mon 02 Jan 2023 02:55:03 +0000
ROA not before: Mon 02 Jan 2023 02:55:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41327
IP address blocks: 45.154.236.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:67:c0:d3:66:0d:22:3c:67:68:e6:49:39:00:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Jan 2 02:55:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=48693f82adc2419fdaa512c5c1ca0c325234c7f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:59:a7:e7:1b:c7:04:06:01:7c:e5:14:19:c2:
88:f5:98:ce:48:be:df:3c:b1:cb:1b:e8:f8:37:e6:
62:35:27:47:68:ae:bd:e9:ab:47:2a:ff:a7:2e:5c:
5a:31:16:fa:68:d0:ff:ea:af:34:9a:0c:42:5c:3c:
b5:86:b8:3c:63:4c:7b:d1:3a:53:d8:3e:59:44:b2:
2e:d7:45:f8:04:ed:2f:3c:8a:8e:ff:6c:81:72:c1:
ff:b5:d5:46:a8:b8:d5:1c:11:e6:ab:81:cf:08:44:
91:db:11:b7:e8:b5:0a:b6:9f:9a:f7:6f:d5:12:d7:
be:62:f2:db:78:71:a9:d7:a9:27:4f:7e:9d:93:08:
d1:ed:bb:29:2b:ed:57:fc:56:ac:a1:b4:a4:72:81:
f3:37:7e:38:b7:43:66:ef:5f:57:f6:9d:60:c5:7a:
aa:08:12:ae:d8:9e:b0:87:62:53:51:e7:57:77:be:
30:32:e6:1e:d4:84:d6:fd:ee:99:2a:30:ad:e6:b9:
08:65:ed:78:40:4c:0c:d9:ad:f7:eb:cd:3b:c2:3c:
ab:c1:d3:e8:f0:f7:af:42:52:3b:64:ab:d6:0e:e7:
78:0c:15:ff:b6:4f:72:08:f1:5f:8f:cc:be:68:a8:
b0:f4:0d:9a:0d:51:55:f2:29:d7:fa:43:54:82:f6:
75:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:69:3F:82:AD:C2:41:9F:DA:A5:12:C5:C1:CA:0C:32:52:34:C7:F4
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/SGk_gq3CQZ_apRLFwcoMMlI0x_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.236.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:77:ee:84:b8:43:02:e7:63:65:48:27:cc:9e:75:b2:85:f8:
0e:98:da:ff:cd:10:a3:28:4e:36:33:82:88:64:8e:3d:22:e6:
3e:bd:57:b4:54:9e:ac:81:23:5d:a9:f1:68:01:c1:68:5e:82:
51:79:84:fd:fd:35:23:c4:62:9f:34:e0:67:7e:73:36:47:e8:
69:04:5a:03:af:78:1f:dc:a7:71:42:8a:1d:19:b2:dd:d8:cc:
4f:6d:1e:60:a6:fe:7b:01:e4:ed:ef:52:b0:12:8a:bf:7b:70:
0a:8e:7b:53:9f:3e:db:1a:f5:8f:8a:b8:65:6b:9b:82:6a:1e:
09:fb:2d:31:61:64:05:66:a1:22:61:cf:36:d7:18:cc:3a:78:
00:42:f6:55:a3:6c:c1:2d:24:90:60:06:9c:95:f8:fb:9c:de:
33:1e:9d:c1:e5:a0:0e:c3:0a:e4:4e:91:4f:7a:a5:32:bc:97:
60:a2:33:93:33:3a:b4:34:76:e6:e4:e7:9f:92:ab:1e:4b:6f:
61:2e:27:ec:4b:1c:c7:a6:b9:5f:b3:a5:9c:92:9b:36:a0:c3:
e8:73:92:31:3f:a2:6c:ee:53:fd:23:5f:49:a4:c0:33:a4:32:
40:1c:fe:d8:6a:69:6c:81:4d:02:05:f1:8d:6b:14:58:48:95:
de:9e:b1:ad
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwZ2fA02YNIjxnaOZJOQARMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NTdjY2Q0M2FmZTgxNmU0OTUzMjI4YmYxNGE3NWRjMjkw
MTRiOGQwHhcNMjMwMTAyMDI1NTAzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ODY5M2Y4MmFkYzI0MTlmZGFhNTEyYzVjMWNhMGMzMjUyMzRjN2Y0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlFmn5xvHBAYBfOUUGcKI9ZjOSL7f
PLHLG+j4N+ZiNSdHaK696atHKv+nLlxaMRb6aND/6q80mgxCXDy1hrg8Y0x70TpT
2D5ZRLIu10X4BO0vPIqO/2yBcsH/tdVGqLjVHBHmq4HPCESR2xG36LUKtp+a92/V
Ete+YvLbeHGp16knT36dkwjR7bspK+1X/FasobSkcoHzN344t0Nm719X9p1gxXqq
CBKu2J6wh2JTUedXd74wMuYe1ITW/e6ZKjCt5rkIZe14QEwM2a336807wjyrwdPo
8PevQlI7ZKvWDud4DBX/tk9yCPFfj8y+aKiw9A2aDVFV8inX+kNUgvZ1TQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEhpP4KtwkGf2qUSxcHKDDJSNMf0MB8GA1UdIwQY
MBaAFLVXzNQ6/oFuSVMii/FKddwpAUuNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUt
NmJjNzU1NzhiNGMzLzEvU0drX2dxM0NRWl9hcFJMRndjb01NbEkweF9RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUtNmJjNzU1NzhiNGMz
LzEvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZrsMA0G
CSqGSIb3DQEBCwUAA4IBAQCad+6EuEMC52NlSCfMnnWyhfgOmNr/zRCjKE42M4KI
ZI49IuY+vVe0VJ6sgSNdqfFoAcFoXoJReYT9/TUjxGKfNOBnfnM2R+hpBFoDr3gf
3KdxQoodGbLd2MxPbR5gpv57AeTt71KwEoq/e3AKjntTnz7bGvWPirhla5uCah4J
+y0xYWQFZqEiYc821xjMOngAQvZVo2zBLSSQYAaclfj7nN4zHp3B5aAOwwrkTpFP
eqUyvJdgojOTMzq0NHbm5OefkqseS29hLifsSxzHprlfs6Wckps2oMPoc5IxP6Js
7lP9I19JpMAzpDJAHP7YamlsgU0CBfGNaxRYSJXenrGt
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:17 2024 by rpki-client on console-ams.rpki-client.org