Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/d2mURSTJe3dcy3XRKqow6628zPc.roa
File: d2mURSTJe3dcy3XRKqow6628zPc.roa (raw, json)
Hash identifier: lqIKkYwvzkpmsFiL37TdeKqIsxtdOUADsxX/0GVV6I4=
Subject key identifier: 77:69:94:45:24:C9:7B:77:5C:CB:75:D1:2A:AA:30:EB:AD:BC:CC:F7
Certificate issuer: /CN=c741c44a9cd58e1256906637d935c3190f7feb1a
Certificate serial: 01856EA67C352A79D524B2420A941BAE716A
Authority key identifier: C7:41:C4:4A:9C:D5:8E:12:56:90:66:37:D9:35:C3:19:0F:7F:EB:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0HESpzVjhJWkGY32TXDGQ9_6xo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/d2mURSTJe3dcy3XRKqow6628zPc.roa
Signing time: Sun 01 Jan 2023 18:44:42 +0000
ROA not before: Sun 01 Jan 2023 18:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212649
IP address blocks: 194.152.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:7c:35:2a:79:d5:24:b2:42:0a:94:1b:ae:71:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c741c44a9cd58e1256906637d935c3190f7feb1a
Validity
Not Before: Jan 1 18:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7769944524c97b775ccb75d12aaa30ebadbcccf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:b0:53:50:64:c2:bf:c2:a1:73:43:8f:11:d4:
0b:89:cb:93:66:f5:c2:b9:06:89:c1:bb:0c:6b:20:
f3:59:3d:71:55:53:cc:2e:0a:88:77:d1:69:13:6f:
5a:dc:99:57:e4:8a:d0:0f:39:0b:ae:64:30:d1:7f:
b9:bb:4c:4e:f1:71:35:93:07:2f:3c:e7:76:2d:49:
db:8d:aa:e4:8d:9d:12:2c:58:44:b0:e1:88:5d:81:
27:e4:8f:ae:35:8b:b9:14:e7:a9:c0:d4:5b:b1:e8:
bf:0d:1e:73:e9:2f:20:90:4b:79:94:5c:ed:cf:38:
54:0d:f0:a6:3c:a5:5f:7e:12:dc:ab:cd:2c:dd:91:
c9:b8:19:3d:46:3e:d6:1c:81:ee:b0:4f:85:84:e3:
9c:8f:ed:4f:6e:31:d6:39:0e:e5:92:b0:30:67:eb:
74:25:d9:b7:64:a2:df:e4:d5:8d:9e:63:72:9b:33:
b5:8c:fb:66:67:41:5d:ad:b7:ab:32:9e:3b:9a:e0:
90:cf:be:d6:78:62:d7:c4:37:00:48:84:4f:8e:b4:
67:d8:37:51:09:b9:6d:0f:84:61:fb:a7:ba:f8:22:
d0:ec:75:85:cb:fa:3d:0d:67:29:da:b3:ab:4c:7c:
7d:52:01:cb:84:61:6d:a0:de:3d:17:65:82:76:6e:
be:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:69:94:45:24:C9:7B:77:5C:CB:75:D1:2A:AA:30:EB:AD:BC:CC:F7
X509v3 Authority Key Identifier:
keyid:C7:41:C4:4A:9C:D5:8E:12:56:90:66:37:D9:35:C3:19:0F:7F:EB:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0HESpzVjhJWkGY32TXDGQ9_6xo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/d2mURSTJe3dcy3XRKqow6628zPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/1ebcb2-4ef0-42ff-81b5-9b17def9c233/1/x0HESpzVjhJWkGY32TXDGQ9_6xo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.152.45.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:5e:76:ba:4f:78:fe:11:f6:f3:08:ca:16:f0:be:ac:24:35:
f2:3d:57:ee:c9:b6:88:de:a8:b2:85:be:ef:52:86:9b:14:9d:
d6:b1:d3:8a:d4:cf:1a:6d:f2:3d:38:8b:c7:97:1a:82:a9:78:
60:63:72:27:d8:bb:40:e3:12:7f:59:f6:0b:ab:26:e6:d9:ee:
c9:4a:11:01:05:0e:03:63:12:05:ff:92:a1:4a:c2:ee:21:ad:
5a:ae:1e:07:93:40:76:31:9a:7f:56:72:fa:b1:06:34:1b:06:
c0:ea:49:8f:83:13:03:1e:40:21:78:8c:15:92:78:a7:5a:5b:
47:b9:ba:d0:45:06:52:51:26:b8:6a:bc:4f:d0:46:e6:42:fa:
92:4a:81:74:5a:a0:fe:c6:1f:fa:eb:b1:ae:dd:b5:2b:fc:8b:
c3:1e:8d:58:4c:c5:39:8d:0d:18:9e:30:5c:5f:a8:6d:e9:7f:
a7:0d:19:17:89:84:62:cb:7d:a0:59:0d:b1:0c:b8:73:62:8a:
a8:14:69:4b:95:39:39:82:b6:c4:fe:19:b1:8b:6f:b7:38:16:
ef:c5:d0:bc:c3:16:82:a5:c0:2c:e9:64:07:81:45:1b:7a:a2:
f5:10:2a:9d:5f:98:56:ee:09:a0:78:d3:9e:49:c5:67:54:f7:
2e:57:27:5c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVupnw1KnnVJLJCCpQbrnFqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM3NDFjNDRhOWNkNThlMTI1NjkwNjYzN2Q5MzVjMzE5MGY3
ZmViMWEwHhcNMjMwMTAxMTg0NDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NzY5OTQ0NTI0Yzk3Yjc3NWNjYjc1ZDEyYWFhMzBlYmFkYmNjY2Y3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3bBTUGTCv8Khc0OPEdQLicuTZvXC
uQaJwbsMayDzWT1xVVPMLgqId9FpE29a3JlX5IrQDzkLrmQw0X+5u0xO8XE1kwcv
POd2LUnbjarkjZ0SLFhEsOGIXYEn5I+uNYu5FOepwNRbsei/DR5z6S8gkEt5lFzt
zzhUDfCmPKVffhLcq80s3ZHJuBk9Rj7WHIHusE+FhOOcj+1PbjHWOQ7lkrAwZ+t0
Jdm3ZKLf5NWNnmNymzO1jPtmZ0FdrberMp47muCQz77WeGLXxDcASIRPjrRn2DdR
CbltD4Rh+6e6+CLQ7HWFy/o9DWcp2rOrTHx9UgHLhGFtoN49F2WCdm6+oQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHdplEUkyXt3XMt10SqqMOutvMz3MB8GA1UdIwQY
MBaAFMdBxEqc1Y4SVpBmN9k1wxkPf+saMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveDBIRVNwelZqaEpXa0dZMzJUWERHUTlfNnhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS8xZWJjYjItNGVmMC00MmZmLTgxYjUt
OWIxN2RlZjljMjMzLzEvZDJtVVJTVEplM2RjeTNYUktxb3c2NjI4elBjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS8xZWJjYjItNGVmMC00MmZmLTgxYjUtOWIxN2RlZjljMjMz
LzEveDBIRVNwelZqaEpXa0dZMzJUWERHUTlfNnhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwpgtMA0G
CSqGSIb3DQEBCwUAA4IBAQCqXna6T3j+EfbzCMoW8L6sJDXyPVfuybaI3qiyhb7v
UoabFJ3WsdOK1M8abfI9OIvHlxqCqXhgY3In2LtA4xJ/WfYLqybm2e7JShEBBQ4D
YxIF/5KhSsLuIa1arh4Hk0B2MZp/VnL6sQY0GwbA6kmPgxMDHkAheIwVkninWltH
ubrQRQZSUSa4arxP0EbmQvqSSoF0WqD+xh/667Gu3bUr/IvDHo1YTMU5jQ0YnjBc
X6ht6X+nDRkXiYRiy32gWQ2xDLhzYoqoFGlLlTk5grbE/hmxi2+3OBbvxdC8wxaC
pcAs6WQHgUUbeqL1ECqdX5hW7gmgeNOeScVnVPcuVydc
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:59 2024 by rpki-client on console-ams.rpki-client.org