Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/FarYoLEg8UfZ93hDbiwqXiljKLg.roa
File: FarYoLEg8UfZ93hDbiwqXiljKLg.roa (raw, json)
Hash identifier: q9OYV9Wtzgeu84nlcGIc1cMfenZooc2B2XV/N9LLZ2U=
Subject key identifier: 15:AA:D8:A0:B1:20:F1:47:D9:F7:78:43:6E:2C:2A:5E:29:63:28:B8
Certificate issuer: /CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Certificate serial: 018F9A352239612B24CC323B0D8DADAEA422
Authority key identifier: 7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/FarYoLEg8UfZ93hDbiwqXiljKLg.roa
Signing time: Tue 21 May 2024 08:12:04 +0000
ROA not before: Tue 21 May 2024 08:12:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205220
IP address blocks: 45.11.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Sep 2024 09:58:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:9a:35:22:39:61:2b:24:cc:32:3b:0d:8d:ad:ae:a4:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Validity
Not Before: May 21 08:12:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=15aad8a0b120f147d9f778436e2c2a5e296328b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:0e:c2:4b:3c:24:06:f0:39:66:41:f4:2e:9a:
31:22:9c:d2:cc:f2:9f:b6:f0:e8:ef:25:d9:df:2b:
e1:69:ba:06:8b:e0:d9:2c:2a:c0:83:4d:59:87:ec:
67:11:90:53:b3:b6:d6:23:2b:65:e0:32:c8:83:d2:
d7:26:67:7c:3c:77:5d:a0:4c:40:cc:69:33:b8:b4:
79:3b:3e:02:79:86:ea:40:67:fd:a7:4a:09:d5:49:
c7:89:66:7d:c5:10:10:56:ab:1a:98:cd:a8:cd:36:
2b:10:ce:38:03:56:94:3c:f6:50:35:9c:db:19:e8:
ae:74:c2:e1:57:85:b5:66:8d:bd:14:68:69:bc:ac:
96:1e:f8:c2:87:15:3d:5d:d4:eb:55:f9:da:30:d7:
a3:a8:c9:25:6e:1a:e9:3e:03:35:55:72:d1:d1:5b:
96:4b:16:9e:bd:65:cd:14:94:ef:35:95:af:80:0d:
c1:32:3f:eb:93:18:2d:c3:db:69:e9:13:ba:6a:1a:
5f:2a:77:06:77:7c:40:db:9b:bc:78:e5:17:45:06:
04:ef:cc:8f:a5:76:61:38:0f:9a:79:61:97:86:75:
3e:77:e3:c1:eb:82:71:89:97:f4:ff:41:bf:dc:14:
2b:46:c6:dd:2b:84:3c:53:a3:f1:6e:09:5c:54:50:
9d:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:AA:D8:A0:B1:20:F1:47:D9:F7:78:43:6E:2C:2A:5E:29:63:28:B8
X509v3 Authority Key Identifier:
keyid:7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/FarYoLEg8UfZ93hDbiwqXiljKLg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/fVaVeG-EUNEEHciK2JLLtXDVlys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.173.0/24
Signature Algorithm: sha256WithRSAEncryption
42:c2:5a:22:5d:41:34:45:ec:24:45:22:ae:49:50:ec:6d:52:
01:09:99:02:c5:6b:87:4e:1a:e4:2e:d0:98:05:cc:6a:39:02:
96:62:ce:9f:5f:7b:87:ce:cb:a4:9c:4a:1a:7c:30:f9:64:1b:
c9:7f:81:72:a1:d4:1b:83:b1:3c:bf:f3:d4:97:28:78:55:97:
bf:c4:c8:68:ce:31:cc:5e:d4:8d:2c:d8:4e:58:39:32:f4:a4:
e4:4a:a0:46:13:7a:67:e8:1b:ef:b1:c4:81:4c:9c:fe:d1:cf:
b0:3a:c3:c9:b8:b6:8e:97:e6:6c:db:6c:90:0a:9d:b7:2f:7d:
11:a4:59:29:b3:52:ae:cb:a0:12:bd:25:02:ec:e8:b3:02:85:
0b:1f:bd:de:99:fa:c1:64:0b:87:90:9e:59:b0:e5:83:85:94:
97:cf:ea:f7:21:c5:51:1c:22:cb:54:ad:82:ec:56:18:c5:06:
cc:57:b1:30:1a:eb:28:61:09:db:65:88:41:69:c7:76:30:0c:
c8:2a:16:0a:36:2c:f5:f6:90:bf:ed:4b:ea:90:c2:47:10:2a:
3b:e7:c8:3a:8b:bc:bf:62:43:10:48:a4:62:49:42:51:df:2f:
a1:80:ff:6b:bb:b6:5e:fa:f8:62:1f:6b:59:bc:43:b3:bf:ac:
6b:8b:ae:89
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY+aNSI5YSskzDI7DY2trqQiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTY5NTc4NmY4NDUwZDEwNDFkYzg4YWQ4OTJjYmI1NzBk
NTk3MmIwHhcNMjQwNTIxMDgxMjA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNWFhZDhhMGIxMjBmMTQ3ZDlmNzc4NDM2ZTJjMmE1ZTI5NjMyOGI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2A7CSzwkBvA5ZkH0LpoxIpzSzPKf
tvDo7yXZ3yvhaboGi+DZLCrAg01Zh+xnEZBTs7bWIytl4DLIg9LXJmd8PHddoExA
zGkzuLR5Oz4CeYbqQGf9p0oJ1UnHiWZ9xRAQVqsamM2ozTYrEM44A1aUPPZQNZzb
GeiudMLhV4W1Zo29FGhpvKyWHvjChxU9XdTrVfnaMNejqMklbhrpPgM1VXLR0VuW
SxaevWXNFJTvNZWvgA3BMj/rkxgtw9tp6RO6ahpfKncGd3xA25u8eOUXRQYE78yP
pXZhOA+aeWGXhnU+d+PB64JxiZf0/0G/3BQrRsbdK4Q8U6PxbglcVFCd+QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBWq2KCxIPFH2fd4Q24sKl4pYyi4MB8GA1UdIwQY
MBaAFH1WlXhvhFDRBB3IitiSy7Vw1ZcrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZhVmVHLUVVTkVFSGNpSzJKTEx0WERWbHlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8zMTdhYTctZTJhZC00YTg1LWIzZDIt
NjNiMzM4MDhhNmE4LzEvRmFyWW9MRWc4VWZaOTNoRGJpd3FYaWxqS0xnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC8zMTdhYTctZTJhZC00YTg1LWIzZDItNjNiMzM4MDhhNmE4
LzEvZlZhVmVHLUVVTkVFSGNpSzJKTEx0WERWbHlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQutMA0G
CSqGSIb3DQEBCwUAA4IBAQBCwloiXUE0RewkRSKuSVDsbVIBCZkCxWuHThrkLtCY
BcxqOQKWYs6fX3uHzsuknEoafDD5ZBvJf4FyodQbg7E8v/PUlyh4VZe/xMhozjHM
XtSNLNhOWDky9KTkSqBGE3pn6BvvscSBTJz+0c+wOsPJuLaOl+Zs22yQCp23L30R
pFkps1Kuy6ASvSUC7OizAoULH73emfrBZAuHkJ5ZsOWDhZSXz+r3IcVRHCLLVK2C
7FYYxQbMV7EwGusoYQnbZYhBacd2MAzIKhYKNiz19pC/7UvqkMJHECo758g6i7y/
YkMQSKRiSUJR3y+hgP9ru7Ze+vhiH2tZvEOzv6xri66J
-----END CERTIFICATE-----
Generated at Thu Sep 5 13:05:01 2024 by rpki-client on console-fra.rpki-client.org