Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/bMcpN8TgTrQ2aIAjooS5QPTO65k.roa
File: bMcpN8TgTrQ2aIAjooS5QPTO65k.roa (raw, json)
Hash identifier: +zraNtIM+IusOYXmG+PhUumMJ5JKFw1x0/R4PqNb+Xo=
Subject key identifier: 6C:C7:29:37:C4:E0:4E:B4:36:68:80:23:A2:84:B9:40:F4:CE:EB:99
Certificate issuer: /CN=ed30a131718560a34ab3493884e858ec431f6ad1
Certificate serial: 018D193E05FB1C411EB9A328AAF8B050B926
Authority key identifier: ED:30:A1:31:71:85:60:A3:4A:B3:49:38:84:E8:58:EC:43:1F:6A:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/bMcpN8TgTrQ2aIAjooS5QPTO65k.roa
Signing time: Wed 17 Jan 2024 21:05:11 +0000
ROA not before: Wed 17 Jan 2024 21:05:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47430
IP address blocks: 45.139.8.0/24 maxlen: 24
194.180.209.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 27 Jan 2024 10:34:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:19:3e:05:fb:1c:41:1e:b9:a3:28:aa:f8:b0:50:b9:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed30a131718560a34ab3493884e858ec431f6ad1
Validity
Not Before: Jan 17 21:05:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6cc72937c4e04eb436688023a284b940f4ceeb99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d6:47:a5:96:fd:52:77:17:44:c6:ac:6f:e7:
0a:f8:a4:29:ea:df:0b:e7:99:70:79:6f:f0:95:db:
de:b2:69:cf:82:02:48:05:70:62:cd:c0:5f:dd:1d:
a4:30:ca:33:30:f3:d7:45:ca:5d:14:54:07:a6:40:
28:b7:3e:d1:65:67:04:26:2f:ad:d2:a9:1f:80:fa:
87:56:46:24:56:8e:3d:43:59:94:57:74:69:62:46:
7b:59:24:c8:2d:96:14:82:64:af:d4:3a:18:43:52:
49:b3:fd:a7:55:cf:c7:1d:3f:8e:b3:8b:8e:bc:94:
20:f6:da:f6:3a:f5:66:71:9d:9b:8e:e4:5e:1b:01:
2f:77:d7:56:68:93:94:12:0e:b9:6a:9b:ef:b8:be:
fc:0a:fd:d1:68:70:71:50:77:25:7b:a1:51:98:e0:
d1:fd:22:d7:34:f3:62:d9:dc:99:2f:12:0f:0f:24:
5a:36:79:a4:03:95:0b:da:83:00:bf:02:d3:12:da:
11:95:4a:85:91:7c:8f:9a:b8:0e:3a:b4:93:c9:20:
2e:f2:ec:0d:b5:42:bf:fa:25:ba:a1:8a:dd:23:26:
71:e8:90:09:c6:4d:a6:c1:c4:d7:ba:e9:7a:8d:7e:
24:96:69:23:ff:4a:28:22:ca:43:d3:7f:cf:40:7e:
60:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:C7:29:37:C4:E0:4E:B4:36:68:80:23:A2:84:B9:40:F4:CE:EB:99
X509v3 Authority Key Identifier:
keyid:ED:30:A1:31:71:85:60:A3:4A:B3:49:38:84:E8:58:EC:43:1F:6A:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7TChMXGFYKNKs0k4hOhY7EMfatE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/bMcpN8TgTrQ2aIAjooS5QPTO65k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/5b0702-16e7-4627-ae19-4b3b1b63b6ab/1/7TChMXGFYKNKs0k4hOhY7EMfatE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.8.0/24
194.180.209.0/24
Signature Algorithm: sha256WithRSAEncryption
65:30:0a:e0:af:88:c2:02:c6:7e:14:bd:aa:c2:bc:a3:5e:ab:
79:6e:18:28:73:b4:b6:d3:7e:06:2a:53:fd:aa:71:4e:d6:0b:
bc:ae:64:99:79:a9:d9:03:6f:42:2d:4f:26:7a:71:d2:41:85:
c4:c0:1f:03:98:a2:de:77:c0:2a:16:99:f5:ae:09:df:f0:78:
8b:ff:89:68:31:0b:24:f7:b8:3a:e4:2e:66:0b:2f:e9:15:48:
17:08:76:c0:17:0b:43:c7:9e:0c:87:38:e0:68:ee:3b:a0:e2:
9e:08:ec:6d:c7:bc:f2:b2:2c:ee:6c:a9:1f:b2:79:87:ab:af:
6d:da:31:4c:f3:5c:cd:f6:4f:59:17:48:b7:6c:89:27:5b:29:
31:ff:64:38:d9:c4:8b:0e:70:21:fd:c8:ff:d8:d0:d0:7c:c4:
29:27:0a:fe:61:7f:2f:8b:cd:20:8f:dc:fe:42:8f:df:cb:29:
2e:07:cd:ad:bc:da:1a:f7:ff:6c:88:08:db:16:cb:d7:38:62:
09:bf:be:8a:63:4c:4f:e7:39:8c:f5:eb:b9:33:07:08:06:e9:
b9:98:fd:b8:5a:07:a5:a8:49:22:e2:3c:2a:39:09:29:00:59:
1b:9c:d5:16:91:27:99:42:28:50:0f:fb:bf:03:ef:e5:e2:23:
09:eb:d7:20
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY0ZPgX7HEEeuaMoqviwULkmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVkMzBhMTMxNzE4NTYwYTM0YWIzNDkzODg0ZTg1OGVjNDMx
ZjZhZDEwHhcNMjQwMTE3MjEwNTExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2Y2M3MjkzN2M0ZTA0ZWI0MzY2ODgwMjNhMjg0Yjk0MGY0Y2VlYjk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAltZHpZb9UncXRMasb+cK+KQp6t8L
55lweW/wldvesmnPggJIBXBizcBf3R2kMMozMPPXRcpdFFQHpkAotz7RZWcEJi+t
0qkfgPqHVkYkVo49Q1mUV3RpYkZ7WSTILZYUgmSv1DoYQ1JJs/2nVc/HHT+Os4uO
vJQg9tr2OvVmcZ2bjuReGwEvd9dWaJOUEg65apvvuL78Cv3RaHBxUHcle6FRmODR
/SLXNPNi2dyZLxIPDyRaNnmkA5UL2oMAvwLTEtoRlUqFkXyPmrgOOrSTySAu8uwN
tUK/+iW6oYrdIyZx6JAJxk2mwcTXuul6jX4klmkj/0ooIspD03/PQH5gAwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFGzHKTfE4E60NmiAI6KEuUD0zuuZMB8GA1UdIwQY
MBaAFO0woTFxhWCjSrNJOIToWOxDH2rRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN1RDaE1YR0ZZS05LczBrNGhPaFk3RU1mYXRFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi81YjA3MDItMTZlNy00NjI3LWFlMTkt
NGIzYjFiNjNiNmFiLzEvYk1jcE44VGdUclEyYUlBam9vUzVRUFRPNjVrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi81YjA3MDItMTZlNy00NjI3LWFlMTktNGIzYjFiNjNiNmFi
LzEvN1RDaE1YR0ZZS05LczBrNGhPaFk3RU1mYXRFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALYsIAwQA
wrTRMA0GCSqGSIb3DQEBCwUAA4IBAQBlMArgr4jCAsZ+FL2qwryjXqt5bhgoc7S2
034GKlP9qnFO1gu8rmSZeanZA29CLU8menHSQYXEwB8DmKLed8AqFpn1rgnf8HiL
/4loMQsk97g65C5mCy/pFUgXCHbAFwtDx54MhzjgaO47oOKeCOxtx7zysizubKkf
snmHq69t2jFM81zN9k9ZF0i3bIknWykx/2Q42cSLDnAh/cj/2NDQfMQpJwr+YX8v
i80gj9z+Qo/fyykuB82tvNoa9/9siAjbFsvXOGIJv76KY0xP5zmM9eu5MwcIBum5
mP24WgelqEki4jwqOQkpAFkbnNUWkSeZQihQD/u/A+/l4iMJ69cg
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:15 2024 by rpki-client on console-ams.rpki-client.org