Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/XdPG5EhKAYoG79MzYkN_vSX-mSc.roa
File: XdPG5EhKAYoG79MzYkN_vSX-mSc.roa (raw, json)
Hash identifier: yQ5UgDeqIAET0JitXeikrHXaQsEoCH+s3EuaikklIho=
Subject key identifier: 5D:D3:C6:E4:48:4A:01:8A:06:EF:D3:33:62:43:7F:BD:25:FE:99:27
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 018CC79529211EC94C3339C0BB3C10CF8ED7
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/XdPG5EhKAYoG79MzYkN_vSX-mSc.roa
Signing time: Tue 02 Jan 2024 00:31:30 +0000
ROA not before: Tue 02 Jan 2024 00:31:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49532
IP address blocks: 147.45.124.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Mar 2024 13:51:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:29:21:1e:c9:4c:33:39:c0:bb:3c:10:cf:8e:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 2 00:31:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5dd3c6e4484a018a06efd33362437fbd25fe9927
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:32:84:ec:1b:03:de:16:b6:d5:1b:bc:8c:a5:
7c:30:b6:e3:8c:10:c3:ea:ca:0b:dc:48:51:f6:a1:
c5:dd:1c:7f:55:c7:e8:a8:a0:06:b3:37:29:3a:af:
a0:60:5c:23:0b:3e:c2:86:1b:c0:c3:eb:f9:ab:c8:
23:b3:06:7e:62:34:1b:23:c7:21:9b:be:3a:f1:30:
22:9a:76:0c:94:bc:c6:e5:70:0a:31:6a:00:27:bf:
ac:64:76:90:bb:75:a9:97:5d:94:20:72:76:51:c4:
c7:45:ca:33:be:f4:c7:4d:f1:67:f8:4b:95:9c:a4:
c8:99:33:11:d7:bf:ee:b8:57:b4:20:34:5d:41:99:
87:b7:3d:c7:0f:ef:2f:6b:40:d4:29:f9:33:e0:87:
62:c5:15:1a:50:de:39:72:4c:86:33:18:b3:81:72:
f2:65:a8:17:dd:99:ac:a3:56:ba:1a:f4:e6:e2:cb:
37:f9:a7:6e:fb:b4:a0:8f:0a:74:60:01:b7:bc:ad:
e8:e3:82:f7:36:20:e6:cb:3f:46:ed:9f:4b:b0:74:
d7:15:e9:86:95:96:4a:ad:f0:a0:0e:34:08:6f:29:
99:f8:d7:79:d2:7b:bc:73:57:1a:b7:9b:e8:6a:7b:
f7:fa:28:da:a1:eb:56:f9:23:3f:8f:ac:fb:8c:32:
38:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:D3:C6:E4:48:4A:01:8A:06:EF:D3:33:62:43:7F:BD:25:FE:99:27
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/XdPG5EhKAYoG79MzYkN_vSX-mSc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.45.124.0/22
Signature Algorithm: sha256WithRSAEncryption
57:cf:fc:5d:df:f1:45:19:e5:0b:9d:90:17:ef:b5:99:16:e0:
2c:2e:60:e9:b0:ce:16:c3:cb:d9:3a:b2:b7:85:f6:7a:f5:59:
00:55:65:fb:00:b0:19:cc:cf:a2:3b:a7:39:a3:98:00:c7:f7:
d5:f4:2e:ef:da:90:44:5d:69:da:9a:e7:76:19:4b:2b:0f:6c:
94:8e:9e:29:de:c8:44:78:e6:73:5a:9e:c1:ad:9d:44:31:b9:
7a:c4:9b:51:98:70:4b:f4:e6:6e:b4:3b:b7:b8:e1:1d:ec:0f:
ed:66:4d:5d:d3:cc:36:bd:aa:78:ce:49:55:7f:f3:ff:1f:14:
9f:1d:e6:fd:c1:ea:e8:48:ab:49:33:a7:9f:17:15:40:f1:f9:
a5:b2:a1:a7:29:e8:76:fa:b0:1d:40:70:25:b9:29:4e:87:b5:
e3:9f:0d:25:60:d9:77:1b:3b:28:96:99:9a:d6:c6:9e:89:07:
2d:5a:91:ec:ec:c8:f4:c6:3b:62:c2:67:3c:81:f1:a6:e7:3c:
69:e9:13:26:23:1d:b6:a5:8d:99:63:60:32:8a:19:a6:fd:ce:
3d:ba:94:01:ac:8e:5d:56:e8:5c:8f:c9:1d:35:d6:a7:ee:24:
eb:aa:c2:58:29:6f:59:7c:d2:3a:ba:e6:41:af:9f:2d:34:44:
a9:ce:9f:34
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzHlSkhHslMMznAuzwQz47XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2ZDY0OGJkYmE5NjU0NjFiMWU4YzExYjlkZDQzNmM2MTM4
Mjg3M2MwHhcNMjQwMTAyMDAzMTMwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZGQzYzZlNDQ4NGEwMThhMDZlZmQzMzM2MjQzN2ZiZDI1ZmU5OTI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgDKE7BsD3ha21Ru8jKV8MLbjjBDD
6soL3EhR9qHF3Rx/VcfoqKAGszcpOq+gYFwjCz7ChhvAw+v5q8gjswZ+YjQbI8ch
m7468TAimnYMlLzG5XAKMWoAJ7+sZHaQu3Wpl12UIHJ2UcTHRcozvvTHTfFn+EuV
nKTImTMR17/uuFe0IDRdQZmHtz3HD+8va0DUKfkz4IdixRUaUN45ckyGMxizgXLy
ZagX3Zmso1a6GvTm4ss3+adu+7Sgjwp0YAG3vK3o44L3NiDmyz9G7Z9LsHTXFemG
lZZKrfCgDjQIbymZ+Nd50nu8c1cat5voanv3+ijaoetW+SM/j6z7jDI4bwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF3TxuRISgGKBu/TM2JDf70l/pknMB8GA1UdIwQY
MBaAFIbWSL26llRhsejBG53UNsYTgoc8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmIt
NGRlYzRkYWZlZTQ5LzEvWGRQRzVFaEtBWW9HNzlNellrTl92U1gtbVNjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9hYzU4ZWEtYzQ1OS00OGNhLWI4MmItNGRlYzRkYWZlZTQ5
LzEvaHRaSXZicVdWR0d4Nk1FYm5kUTJ4aE9DaHp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCky18MA0G
CSqGSIb3DQEBCwUAA4IBAQBXz/xd3/FFGeULnZAX77WZFuAsLmDpsM4Ww8vZOrK3
hfZ69VkAVWX7ALAZzM+iO6c5o5gAx/fV9C7v2pBEXWnamud2GUsrD2yUjp4p3shE
eOZzWp7BrZ1EMbl6xJtRmHBL9OZutDu3uOEd7A/tZk1d08w2vap4zklVf/P/HxSf
Heb9weroSKtJM6efFxVA8fmlsqGnKeh2+rAdQHAluSlOh7Xjnw0lYNl3Gzsolpma
1saeiQctWpHs7Mj0xjtiwmc8gfGm5zxp6RMmIx22pY2ZY2Ayihmm/c49upQBrI5d
Vuhcj8kdNdan7iTrqsJYKW9ZfNI6uuZBr58tNESpzp80
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:32 2024 by rpki-client on console-ams.rpki-client.org