Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/TpWHMTGW4Gv2eFIcsPjIGGLozDs.roa
File: TpWHMTGW4Gv2eFIcsPjIGGLozDs.roa (raw, json)
Hash identifier: c9XxNY7pCnHbdc8UWMo+3bnmONSZeNn3ymxsc/vsZgY=
Subject key identifier: 4E:95:87:31:31:96:E0:6B:F6:78:52:1C:B0:F8:C8:18:62:E8:CC:3B
Certificate issuer: /CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc
Certificate serial: 018CC56DEF6C23944BE5C910DEA5916007AB
Authority key identifier: E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/TpWHMTGW4Gv2eFIcsPjIGGLozDs.roa
Signing time: Mon 01 Jan 2024 14:29:25 +0000
ROA not before: Mon 01 Jan 2024 14:29:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 46261
IP address blocks: 45.135.138.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Feb 2024 22:05:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6d:ef:6c:23:94:4b:e5:c9:10:de:a5:91:60:07:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc
Validity
Not Before: Jan 1 14:29:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4e9587313196e06bf678521cb0f8c81862e8cc3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:4a:3e:22:ae:6c:38:ee:a2:55:23:b7:97:ba:
a1:e2:d2:bb:5f:d0:ba:bb:f8:5e:08:11:a1:29:ab:
b8:de:06:3e:fc:35:b3:e2:18:e6:6f:b0:3c:7e:6c:
0f:dc:74:42:9c:d3:f5:45:65:d3:88:27:f1:20:12:
d1:7a:f8:cf:50:43:62:8a:0a:e5:c8:38:14:d7:62:
da:4c:d3:de:1c:d8:91:fc:e0:0e:ae:ac:15:ab:1b:
aa:f0:95:a2:04:f8:66:75:3b:b4:6b:11:0b:ea:64:
99:66:b5:81:02:5c:e1:4b:a1:22:23:c8:e0:02:dc:
70:e2:9d:f2:99:f6:45:42:fe:b7:e3:76:79:98:b7:
2d:41:81:70:4e:b6:92:f2:8e:4e:1c:0a:df:57:36:
b0:60:cf:83:0b:20:86:3c:f9:2f:f9:c9:0f:56:a6:
16:da:a9:18:9b:fe:ab:6a:6b:bb:d9:fe:12:a5:a1:
36:85:b5:2e:25:1b:02:24:9b:7c:ba:ce:38:8b:71:
a8:5d:08:f2:85:2b:b7:c4:a7:72:ac:ab:62:df:6c:
20:20:bc:85:fb:2c:97:15:e3:51:bf:3d:b9:55:61:
f3:e6:cc:50:48:99:e0:b9:60:63:bf:b7:ff:15:d5:
db:a1:be:d9:03:31:15:58:ce:d8:e9:75:02:f4:41:
0c:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:95:87:31:31:96:E0:6B:F6:78:52:1C:B0:F8:C8:18:62:E8:CC:3B
X509v3 Authority Key Identifier:
keyid:E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/TpWHMTGW4Gv2eFIcsPjIGGLozDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.138.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:96:9f:01:ab:a4:5b:1e:a2:83:b0:14:c2:7f:0a:e9:95:f5:
00:2f:2b:2f:f3:9b:b6:eb:75:0b:f8:1c:fb:03:e3:b8:58:68:
f1:76:74:3d:ad:90:b8:13:d2:06:c6:f2:04:67:27:c4:d2:7c:
d7:42:64:6d:20:21:29:a6:22:06:f9:66:61:e0:95:80:88:2b:
05:42:34:9e:e3:bb:91:92:b2:8f:a0:50:7a:4e:17:b4:12:36:
d1:d1:f7:e9:71:90:69:27:3c:fc:e9:d5:d5:0c:0f:bf:9a:6d:
f0:9e:85:38:d8:95:18:a3:2b:6d:8f:71:63:13:ef:fc:f5:b2:
6b:16:0d:52:60:1d:65:56:81:28:a3:f8:85:1b:9d:f3:5a:c4:
90:ee:0c:b8:df:10:55:4a:19:ed:03:af:33:82:00:db:82:90:
9c:27:40:54:07:91:b1:88:0f:09:87:25:a7:31:78:97:30:ee:
54:84:58:d1:b5:85:80:be:eb:3d:2f:6a:2f:39:bc:e9:a8:9a:
12:05:eb:40:a4:ee:a7:e8:06:8d:77:02:03:81:a2:84:42:92:
53:b4:bd:60:1b:8f:7b:f2:32:18:e3:99:aa:6a:72:d4:0f:6b:
d3:cb:c2:66:e8:fb:04:54:84:99:ef:83:2b:28:03:2a:b4:50:
24:50:3f:91
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzFbe9sI5RL5ckQ3qWRYAerMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3NmQwZGFiMzQ3YTM4ZTJiODdiNWEyMmEyZjdjOWUyMWMx
OGM5YmMwHhcNMjQwMTAxMTQyOTI1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZTk1ODczMTMxOTZlMDZiZjY3ODUyMWNiMGY4YzgxODYyZThjYzNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoUo+Iq5sOO6iVSO3l7qh4tK7X9C6
u/heCBGhKau43gY+/DWz4hjmb7A8fmwP3HRCnNP1RWXTiCfxIBLRevjPUENiigrl
yDgU12LaTNPeHNiR/OAOrqwVqxuq8JWiBPhmdTu0axEL6mSZZrWBAlzhS6EiI8jg
Atxw4p3ymfZFQv6343Z5mLctQYFwTraS8o5OHArfVzawYM+DCyCGPPkv+ckPVqYW
2qkYm/6ramu72f4SpaE2hbUuJRsCJJt8us44i3GoXQjyhSu3xKdyrKti32wgILyF
+yyXFeNRvz25VWHz5sxQSJnguWBjv7f/FdXbob7ZAzEVWM7Y6XUC9EEMWwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE6VhzExluBr9nhSHLD4yBhi6Mw7MB8GA1UdIwQY
MBaAFOdtDas0ejjiuHtaIqL3yeIcGMm8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDkt
YmQzYmZjOTliZGE5LzEvVHBXSE1UR1c0R3YyZUZJY3NQaklHR0xvekRzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDktYmQzYmZjOTliZGE5
LzEvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYeKMA0G
CSqGSIb3DQEBCwUAA4IBAQCdlp8Bq6RbHqKDsBTCfwrplfUALysv85u263UL+Bz7
A+O4WGjxdnQ9rZC4E9IGxvIEZyfE0nzXQmRtICEppiIG+WZh4JWAiCsFQjSe47uR
krKPoFB6The0EjbR0ffpcZBpJzz86dXVDA+/mm3wnoU42JUYoyttj3FjE+/89bJr
Fg1SYB1lVoEoo/iFG53zWsSQ7gy43xBVShntA68zggDbgpCcJ0BUB5GxiA8JhyWn
MXiXMO5UhFjRtYWAvus9L2ovObzpqJoSBetApO6n6AaNdwIDgaKEQpJTtL1gG497
8jIY45mqanLUD2vTy8Jm6PsEVISZ74MrKAMqtFAkUD+R
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:01 2024 by rpki-client on console-fra.rpki-client.org