Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/XxM9JNjYlatAQMvW32tWntnyxWY.roa
File: XxM9JNjYlatAQMvW32tWntnyxWY.roa (raw, json)
Hash identifier: dMGbxIQOFaf5D3N7GxoDk/+8uCJQElztzbxSVMrKmKk=
Subject key identifier: 5F:13:3D:24:D8:D8:95:AB:40:40:CB:D6:DF:6B:56:9E:D9:F2:C5:66
Certificate issuer: /CN=1e14eb1eef66c2d349f3f7d7bafa68e49fbfec9c
Certificate serial: 01856EC1FB5FF6D8DC3D87B8CB948C9D00AB
Authority key identifier: 1E:14:EB:1E:EF:66:C2:D3:49:F3:F7:D7:BA:FA:68:E4:9F:BF:EC:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HhTrHu9mwtNJ8_fXuvpo5J-_7Jw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/XxM9JNjYlatAQMvW32tWntnyxWY.roa
Signing time: Sun 01 Jan 2023 19:14:44 +0000
ROA not before: Sun 01 Jan 2023 19:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203666
IP address blocks: 94.45.151.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:c1:fb:5f:f6:d8:dc:3d:87:b8:cb:94:8c:9d:00:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e14eb1eef66c2d349f3f7d7bafa68e49fbfec9c
Validity
Not Before: Jan 1 19:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f133d24d8d895ab4040cbd6df6b569ed9f2c566
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:8b:d8:3a:48:a2:4c:8e:17:e3:0b:1e:db:20:
af:24:9f:af:9f:a5:a7:2c:1d:e0:a3:b4:3e:44:38:
8c:62:2a:f1:ca:30:23:59:d6:30:23:86:f8:36:e3:
2a:19:f5:eb:ee:dc:5c:e8:82:6d:b5:94:9d:1d:09:
78:46:75:cc:91:2b:96:2d:65:c9:e6:f8:26:81:ad:
ea:56:89:91:11:1d:29:7c:8c:24:e3:72:c8:61:0c:
69:37:86:48:df:29:2a:80:56:0c:6d:c5:d5:0e:da:
f9:8f:b5:d8:b4:63:16:40:f4:ba:81:13:e3:5f:0f:
9d:b4:b1:5d:8f:f1:14:ec:30:b8:c2:5e:39:75:a2:
e4:cc:bd:33:fc:c4:25:22:1e:e4:bd:38:b9:47:2d:
da:7c:c6:98:c2:7f:cf:77:c9:a8:ae:a0:99:cd:22:
4e:42:f3:17:63:89:2a:af:61:07:af:fd:6c:5e:8c:
e5:f5:16:73:dd:5f:6d:2b:30:d8:13:22:41:73:3a:
f6:4f:c0:54:06:e0:2a:92:2f:3b:f2:84:34:15:ca:
b4:d1:5c:a3:f7:18:0b:34:d4:27:0d:b3:a4:4f:c0:
5a:24:26:cf:6c:8a:57:79:6c:83:59:13:48:c9:4d:
88:ab:fd:03:ea:e2:0b:30:0f:8f:89:65:6d:47:dd:
c0:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:13:3D:24:D8:D8:95:AB:40:40:CB:D6:DF:6B:56:9E:D9:F2:C5:66
X509v3 Authority Key Identifier:
keyid:1E:14:EB:1E:EF:66:C2:D3:49:F3:F7:D7:BA:FA:68:E4:9F:BF:EC:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HhTrHu9mwtNJ8_fXuvpo5J-_7Jw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/XxM9JNjYlatAQMvW32tWntnyxWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/333ab1-af9b-434c-8d13-9ca98f4950cf/1/HhTrHu9mwtNJ8_fXuvpo5J-_7Jw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.45.151.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:b5:a6:16:c2:46:7f:6b:3a:55:82:a8:8c:82:ef:79:56:b7:
06:1e:29:2a:29:c0:67:cd:90:bf:a7:2f:0d:6e:30:45:34:42:
f0:19:9d:51:d8:8a:bb:41:28:74:1a:ad:76:1e:90:3f:eb:6a:
33:dc:75:ac:c2:4d:3e:40:41:ba:6e:5d:7e:01:9f:14:3a:78:
71:d1:bc:ea:d7:fe:b0:71:78:94:ef:72:b3:f9:23:55:dc:df:
c7:6c:b7:e4:fb:24:92:6b:f7:1a:07:54:65:f8:f0:b9:27:2b:
8e:b7:7e:ce:d7:b6:03:54:23:03:36:33:1a:b5:4b:fd:e6:3e:
9e:16:05:a0:e1:5a:d7:e3:bd:ea:aa:e2:ec:43:a2:c7:d6:00:
2a:cc:9e:82:b2:5d:fe:76:9c:30:7e:da:8a:7d:27:91:c4:65:
ce:94:97:55:68:2d:59:a9:88:3b:d6:4f:80:25:f7:84:3b:db:
3c:4c:d8:59:e2:9d:6a:38:9d:6c:16:63:37:5b:75:c1:bd:c0:
cf:44:49:43:49:73:c0:9c:1a:13:12:f9:0d:9d:a5:e8:05:73:
ad:63:e3:3f:0d:c8:6b:4e:68:65:a2:ad:f2:69:57:95:d9:16:
c2:6f:7d:78:81:ba:ae:66:15:ed:e7:72:e3:44:db:89:39:cf:
d3:3e:e8:28
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuwftf9tjcPYe4y5SMnQCrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlMTRlYjFlZWY2NmMyZDM0OWYzZjdkN2JhZmE2OGU0OWZi
ZmVjOWMwHhcNMjMwMTAxMTkxNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZjEzM2QyNGQ4ZDg5NWFiNDA0MGNiZDZkZjZiNTY5ZWQ5ZjJjNTY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgYvYOkiiTI4X4wse2yCvJJ+vn6Wn
LB3go7Q+RDiMYirxyjAjWdYwI4b4NuMqGfXr7txc6IJttZSdHQl4RnXMkSuWLWXJ
5vgmga3qVomRER0pfIwk43LIYQxpN4ZI3ykqgFYMbcXVDtr5j7XYtGMWQPS6gRPj
Xw+dtLFdj/EU7DC4wl45daLkzL0z/MQlIh7kvTi5Ry3afMaYwn/Pd8morqCZzSJO
QvMXY4kqr2EHr/1sXozl9RZz3V9tKzDYEyJBczr2T8BUBuAqki878oQ0Fcq00Vyj
9xgLNNQnDbOkT8BaJCbPbIpXeWyDWRNIyU2Iq/0D6uILMA+PiWVtR93AEwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF8TPSTY2JWrQEDL1t9rVp7Z8sVmMB8GA1UdIwQY
MBaAFB4U6x7vZsLTSfP317r6aOSfv+ycMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGhUckh1OW13dE5KOF9mWHV2cG81Si1fN0p3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy8zMzNhYjEtYWY5Yi00MzRjLThkMTMt
OWNhOThmNDk1MGNmLzEvWHhNOUpOallsYXRBUU12VzMydFdudG55eFdZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy8zMzNhYjEtYWY5Yi00MzRjLThkMTMtOWNhOThmNDk1MGNm
LzEvSGhUckh1OW13dE5KOF9mWHV2cG81Si1fN0p3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAXi2XMA0G
CSqGSIb3DQEBCwUAA4IBAQChtaYWwkZ/azpVgqiMgu95VrcGHikqKcBnzZC/py8N
bjBFNELwGZ1R2Iq7QSh0Gq12HpA/62oz3HWswk0+QEG6bl1+AZ8UOnhx0bzq1/6w
cXiU73Kz+SNV3N/HbLfk+ySSa/caB1Rl+PC5JyuOt37O17YDVCMDNjMatUv95j6e
FgWg4VrX473qquLsQ6LH1gAqzJ6Csl3+dpwwftqKfSeRxGXOlJdVaC1ZqYg71k+A
JfeEO9s8TNhZ4p1qOJ1sFmM3W3XBvcDPRElDSXPAnBoTEvkNnaXoBXOtY+M/Dchr
Tmhloq3yaVeV2RbCb314gbquZhXt53LjRNuJOc/TPugo
-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:03 2024 by rpki-client on console-fra.rpki-client.org