Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/wsC1JCVn77kQGIXs_mHtPbkhiyI.roa
File: wsC1JCVn77kQGIXs_mHtPbkhiyI.roa (raw, json)
Hash identifier: uXW4XZ3/qo36U8FdAljq4YrzOcLVWRvfJdwFB57Q1jk=
Subject key identifier: C2:C0:B5:24:25:67:EF:B9:10:18:85:EC:FE:61:ED:3D:B9:21:8B:22
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 0191C6A9CDFFC9D298229382A94112B2E3C5
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/wsC1JCVn77kQGIXs_mHtPbkhiyI.roa
Signing time: Fri 06 Sep 2024 09:28:22 +0000
ROA not before: Fri 06 Sep 2024 09:28:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 11750
IP address blocks: 45.128.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 07 Sep 2024 17:38:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:c6:a9:cd:ff:c9:d2:98:22:93:82:a9:41:12:b2:e3:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Sep 6 09:28:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c2c0b5242567efb9101885ecfe61ed3db9218b22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d4:f5:df:32:96:58:a6:8e:60:3c:1f:60:65:
fc:31:40:79:07:79:7e:58:87:b3:c0:57:49:ea:cc:
ae:a2:f9:f4:3a:f0:da:ce:c6:e1:48:80:5b:39:76:
a6:a8:66:02:ea:a7:55:0a:9e:f2:ef:e5:f6:c6:29:
42:d8:0a:84:de:e6:5f:4c:04:65:06:ee:e3:63:8a:
19:ed:f7:0d:34:6b:b4:25:3c:ef:68:4e:40:e1:1c:
03:6b:8d:69:44:c6:1f:8a:d5:be:2b:33:6e:6f:ea:
23:1f:40:7e:20:13:f5:6d:1d:ee:ad:ab:34:37:b0:
54:95:5d:39:1c:ad:11:ce:9e:5a:47:5b:fe:6a:a4:
a4:32:38:6a:13:49:ef:4d:eb:e0:06:df:d2:e4:cb:
d2:33:de:ef:73:03:55:64:ad:15:77:db:e0:3e:7b:
c4:67:cd:ea:27:3b:1e:14:87:3b:fc:67:8f:38:d9:
81:c8:ef:3d:fc:ab:39:90:74:22:bb:95:18:a9:5a:
ae:4a:8a:b2:d2:e1:9d:b2:ea:c6:ef:09:8b:1e:63:
b8:4b:71:a3:97:87:18:fa:87:ae:f7:e7:22:5c:ce:
92:4e:b8:3e:8a:c3:5f:a6:14:ca:18:46:5f:2e:e9:
b7:44:23:68:4b:61:98:69:ce:89:4a:6b:77:35:5d:
3a:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:C0:B5:24:25:67:EF:B9:10:18:85:EC:FE:61:ED:3D:B9:21:8B:22
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/wsC1JCVn77kQGIXs_mHtPbkhiyI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.158.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:a6:76:30:42:97:69:dc:15:10:ab:75:27:be:82:9b:0b:ea:
b0:82:20:32:d1:36:6a:87:10:c5:24:68:bf:8a:74:d4:8e:e3:
52:a3:f8:64:ec:2f:84:8f:15:b9:ba:38:36:30:48:bd:02:0c:
ad:74:85:04:dc:ed:76:0e:43:74:10:3e:04:eb:5f:4c:8b:26:
ba:7a:9c:80:29:0a:ab:bd:c8:58:5c:f8:16:f4:8f:3c:c0:f2:
0c:42:d4:8a:01:ae:bb:11:00:68:8e:cd:fb:b5:e1:f8:b6:cc:
c8:57:66:bd:36:62:81:52:5b:b0:05:51:0b:6d:c8:b2:aa:00:
69:62:e9:77:bb:71:2e:05:a6:9f:fe:2e:6c:3d:9c:75:42:a7:
ba:00:fe:f1:2c:d7:dd:17:c0:34:e6:1e:69:e6:da:e0:83:c5:
63:51:8d:b4:c7:3c:f6:44:8c:33:b3:c6:67:6b:6a:2c:d9:48:
e5:d0:b2:ec:29:cf:89:31:7d:64:8e:a5:8c:1c:20:1d:d3:99:
4a:4d:21:83:7e:8d:6e:06:17:72:9c:a6:a6:7a:be:e1:8c:09:
b7:02:6b:5b:9b:43:32:e0:03:40:c2:cb:53:08:ad:f6:4c:8e:
4d:7e:20:5d:71:93:90:5d:3e:1c:cf:0f:e1:2c:82:ba:9f:c5:
4c:8c:9f:b8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZHGqc3/ydKYIpOCqUESsuPFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NTdjY2Q0M2FmZTgxNmU0OTUzMjI4YmYxNGE3NWRjMjkw
MTRiOGQwHhcNMjQwOTA2MDkyODIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMmMwYjUyNDI1NjdlZmI5MTAxODg1ZWNmZTYxZWQzZGI5MjE4YjIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqtT13zKWWKaOYDwfYGX8MUB5B3l+
WIezwFdJ6syuovn0OvDazsbhSIBbOXamqGYC6qdVCp7y7+X2xilC2AqE3uZfTARl
Bu7jY4oZ7fcNNGu0JTzvaE5A4RwDa41pRMYfitW+KzNub+ojH0B+IBP1bR3uras0
N7BUlV05HK0Rzp5aR1v+aqSkMjhqE0nvTevgBt/S5MvSM97vcwNVZK0Vd9vgPnvE
Z83qJzseFIc7/GePONmByO89/Ks5kHQiu5UYqVquSoqy0uGdsurG7wmLHmO4S3Gj
l4cY+oeu9+ciXM6STrg+isNfphTKGEZfLum3RCNoS2GYac6JSmt3NV06lwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMLAtSQlZ++5EBiF7P5h7T25IYsiMB8GA1UdIwQY
MBaAFLVXzNQ6/oFuSVMii/FKddwpAUuNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUt
NmJjNzU1NzhiNGMzLzEvd3NDMUpDVm43N2tRR0lYc19tSHRQYmtoaXlJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUtNmJjNzU1NzhiNGMz
LzEvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYCeMA0G
CSqGSIb3DQEBCwUAA4IBAQBdpnYwQpdp3BUQq3UnvoKbC+qwgiAy0TZqhxDFJGi/
inTUjuNSo/hk7C+EjxW5ujg2MEi9AgytdIUE3O12DkN0ED4E619Miya6epyAKQqr
vchYXPgW9I88wPIMQtSKAa67EQBojs37teH4tszIV2a9NmKBUluwBVELbciyqgBp
Yul3u3EuBaaf/i5sPZx1Qqe6AP7xLNfdF8A05h5p5trgg8VjUY20xzz2RIwzs8Zn
a2os2Ujl0LLsKc+JMX1kjqWMHCAd05lKTSGDfo1uBhdynKamer7hjAm3Amtbm0My
4ANAwstTCK32TI5NfiBdcZOQXT4czw/hLIK6n8VMjJ+4
-----END CERTIFICATE-----
Generated at Sat Sep 7 18:18:04 2024 by rpki-client on console-fra.rpki-client.org