Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/2w-GjBnf44ojGKZ6ywpg9LDoGA8.roa
File: 2w-GjBnf44ojGKZ6ywpg9LDoGA8.roa (raw, json)
Hash identifier: b92WiKAhthA6flKaX1wJ+U0YHfWWhr5aaIy1cE7qWHw=
Subject key identifier: DB:0F:86:8C:19:DF:E3:8A:23:18:A6:7A:CB:0A:60:F4:B0:E8:18:0F
Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Certificate serial: 018570F0A4C77A548ED066AD6A56FF6CBB3B
Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/2w-GjBnf44ojGKZ6ywpg9LDoGA8.roa
Signing time: Mon 02 Jan 2023 05:24:57 +0000
ROA not before: Mon 02 Jan 2023 05:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205659
IP address blocks: 45.14.74.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:a4:c7:7a:54:8e:d0:66:ad:6a:56:ff:6c:bb:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Validity
Not Before: Jan 2 05:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db0f868c19dfe38a2318a67acb0a60f4b0e8180f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:d5:0f:ea:cd:80:15:58:e0:9b:a4:b2:13:b0:
46:93:81:2e:c1:79:8f:7f:f1:16:74:ce:09:19:22:
3a:b3:85:1a:a0:99:5f:ec:77:28:43:1d:05:dd:b2:
50:56:e1:7e:d0:0f:18:a5:8f:da:b5:8d:14:8d:eb:
24:4f:c2:99:76:77:59:32:1a:08:90:6d:ff:eb:e7:
ed:f8:90:eb:b9:b9:b9:92:03:2d:15:22:33:0a:cf:
83:4b:ee:dc:66:6c:92:d7:be:6a:ff:e4:d1:c8:72:
6d:d2:d4:95:fb:92:b6:98:c5:1e:00:44:67:c5:e4:
5f:c1:ab:3b:41:20:a6:03:dc:bb:32:1b:da:51:db:
0a:1b:3b:bb:20:df:3d:5d:15:52:19:a3:7f:a2:c2:
9c:e0:85:9f:a6:9e:0c:b2:58:4c:8e:14:9d:e1:17:
8e:93:15:24:b8:cc:47:8d:25:6f:e4:57:47:8e:52:
e1:bb:2c:23:24:78:3d:de:3b:9a:4f:2d:ce:4f:5e:
6c:6b:82:b8:28:af:78:82:06:18:39:1b:4f:2c:44:
d7:96:e0:3f:0a:d7:8f:32:f5:8a:d3:ac:41:93:43:
b7:bd:b8:86:74:43:3e:89:9e:63:2f:9d:55:b3:b5:
75:f3:c5:17:ba:6f:aa:1c:2f:0c:12:2a:c4:7e:e7:
9b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:0F:86:8C:19:DF:E3:8A:23:18:A6:7A:CB:0A:60:F4:B0:E8:18:0F
X509v3 Authority Key Identifier:
keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/2w-GjBnf44ojGKZ6ywpg9LDoGA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.74.0/23
Signature Algorithm: sha256WithRSAEncryption
61:34:ed:15:29:c1:bb:9a:5a:a4:b8:7a:61:6d:d0:24:19:24:
ec:4c:cf:4a:7c:e2:87:0f:80:07:6d:28:7b:39:e4:02:c2:9f:
b7:28:6d:e6:c5:54:7e:80:06:1e:36:5b:d4:a3:9b:0c:ca:60:
54:64:a6:bf:61:41:fd:b9:fa:b5:cb:de:fc:47:1f:9a:02:78:
a9:80:65:d8:85:88:ef:68:e6:0f:c0:28:23:39:e6:86:b5:6b:
06:03:b9:b7:a6:0a:68:29:ab:27:35:f6:b9:8c:fc:0b:22:9f:
bf:cf:73:93:e3:90:a2:8b:35:c6:cf:d1:c9:58:87:32:07:88:
10:99:91:8b:07:fd:82:c9:95:42:3e:f3:87:dc:48:da:43:23:
66:28:0f:2b:cc:bc:fe:71:b4:7c:c8:68:28:2c:e9:e9:e3:cf:
f7:f4:d1:5b:07:7a:8f:1e:5d:48:74:f6:b4:2f:cf:61:f4:77:
bd:3d:87:97:40:92:90:8c:7e:42:a1:64:71:be:39:f7:bd:3c:
8b:fc:60:45:c8:66:2e:84:b5:1c:58:e2:a4:3c:07:0a:4b:8a:
03:5a:df:2b:28:d1:eb:6a:7d:6c:1c:eb:aa:0f:60:e5:13:1d:
b5:4b:e7:29:9b:a3:ec:2f:47:e8:8f:0d:a3:56:bb:8b:6f:c8:
65:2c:8e:05
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVw8KTHelSO0Gatalb/bLs7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx
MTliZDcwHhcNMjMwMTAyMDUyNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYjBmODY4YzE5ZGZlMzhhMjMxOGE2N2FjYjBhNjBmNGIwZTgxODBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiNUP6s2AFVjgm6SyE7BGk4EuwXmP
f/EWdM4JGSI6s4UaoJlf7HcoQx0F3bJQVuF+0A8YpY/atY0UjeskT8KZdndZMhoI
kG3/6+ft+JDrubm5kgMtFSIzCs+DS+7cZmyS175q/+TRyHJt0tSV+5K2mMUeAERn
xeRfwas7QSCmA9y7MhvaUdsKGzu7IN89XRVSGaN/osKc4IWfpp4MslhMjhSd4ReO
kxUkuMxHjSVv5FdHjlLhuywjJHg93juaTy3OT15sa4K4KK94ggYYORtPLETXluA/
CtePMvWK06xBk0O3vbiGdEM+iZ5jL51Vs7V188UXum+qHC8MEirEfuebewIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNsPhowZ3+OKIximessKYPSw6BgPMB8GA1UdIwQY
MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt
YjZmMmFjODZlZjI3LzEvMnctR2pCbmY0NG9qR0taNnl3cGc5TERvR0E4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3
LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLQ5KMA0G
CSqGSIb3DQEBCwUAA4IBAQBhNO0VKcG7mlqkuHphbdAkGSTsTM9KfOKHD4AHbSh7
OeQCwp+3KG3mxVR+gAYeNlvUo5sMymBUZKa/YUH9ufq1y978Rx+aAnipgGXYhYjv
aOYPwCgjOeaGtWsGA7m3pgpoKasnNfa5jPwLIp+/z3OT45CiizXGz9HJWIcyB4gQ
mZGLB/2CyZVCPvOH3EjaQyNmKA8rzLz+cbR8yGgoLOnp48/39NFbB3qPHl1IdPa0
L89h9He9PYeXQJKQjH5CoWRxvjn3vTyL/GBFyGYuhLUcWOKkPAcKS4oDWt8rKNHr
an1sHOuqD2DlEx21S+cpm6PsL0fojw2jVruLb8hlLI4F
-----END CERTIFICATE-----
Generated at Mon Jan 1 23:37:04 2024 by rpki-client on console-fra.rpki-client.org