Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/eET4SAWoOCaRGexmQthvSGmUdwQ.roa
File: eET4SAWoOCaRGexmQthvSGmUdwQ.roa (raw, json)
Hash identifier: BKBxWt7le26O6tI8zRUTTm4YWyhVRIrOOrpvcExkBm4=
Subject key identifier: 78:44:F8:48:05:A8:38:26:91:19:EC:66:42:D8:6F:48:69:94:77:04
Certificate issuer: /CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Certificate serial: 018E8048E6BFB5ED08AED5572A29FC29D8E1
Authority key identifier: 7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/eET4SAWoOCaRGexmQthvSGmUdwQ.roa
Signing time: Wed 27 Mar 2024 14:20:45 +0000
ROA not before: Wed 27 Mar 2024 14:20:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.11.172.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Apr 2024 20:37:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:80:48:e6:bf:b5:ed:08:ae:d5:57:2a:29:fc:29:d8:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Validity
Not Before: Mar 27 14:20:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7844f84805a838269119ec6642d86f4869947704
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d5:e8:5d:e8:3f:2b:36:2c:8f:ab:7b:38:6d:
9c:e4:2f:84:c4:df:19:e4:42:8a:13:83:cf:5f:11:
98:e7:1d:62:ef:bf:65:8c:64:26:70:45:bb:88:ee:
2d:bb:94:fa:3b:17:e3:0c:cc:43:6d:41:80:68:d2:
f6:28:22:b6:66:47:ca:6e:54:12:7a:57:eb:9a:48:
1f:6b:50:75:89:16:b9:2e:b4:7e:3f:be:f2:bf:1b:
b9:bf:05:58:6e:82:53:90:a1:de:40:b0:c7:b4:bf:
36:d3:33:8b:ab:a4:83:ab:73:9a:0b:e3:39:8b:35:
4b:f9:1e:f9:8c:c1:71:f8:a6:4c:d0:8e:09:95:fa:
d4:67:3f:c8:01:54:84:f6:73:8e:05:d0:5d:8a:df:
7d:72:56:4d:4f:48:6f:2b:14:05:63:03:f4:b6:0b:
c1:46:4f:a5:5d:7b:c6:6d:6b:e5:ea:51:8b:03:c1:
11:18:15:2d:57:49:b4:2d:fe:ec:83:24:99:d5:05:
a0:52:ec:13:d8:2a:c4:28:9a:3d:a7:8b:2e:7b:e5:
29:5f:1a:a1:3b:d0:e3:4a:cf:b4:97:a3:01:34:09:
1f:20:f7:69:37:88:2f:d2:3c:39:db:e4:e5:e0:67:
f1:13:4a:d8:be:24:c5:fe:61:70:c9:e6:de:a6:93:
d0:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:44:F8:48:05:A8:38:26:91:19:EC:66:42:D8:6F:48:69:94:77:04
X509v3 Authority Key Identifier:
keyid:7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/eET4SAWoOCaRGexmQthvSGmUdwQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/fVaVeG-EUNEEHciK2JLLtXDVlys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.172.0/23
Signature Algorithm: sha256WithRSAEncryption
83:22:72:1f:c2:19:24:35:a0:f7:65:31:b5:8c:54:3b:d1:9c:
ba:ca:20:ec:af:ae:b6:75:f7:7d:dd:0c:22:63:2c:f9:ac:47:
3b:85:57:30:a1:ab:c5:4d:12:28:c8:a7:7c:fa:e2:14:4e:8c:
0c:9a:df:ff:b6:53:b1:ab:8f:5d:06:41:76:1e:1e:38:62:76:
3c:29:7e:1b:96:d1:21:4f:30:e7:70:fb:56:60:eb:0a:66:c7:
ec:8a:24:94:8e:bf:32:19:93:36:ba:b6:81:4f:81:95:cc:d4:
0f:ea:fa:6f:b9:8d:9c:28:59:0b:5c:ac:64:33:45:ef:86:80:
b3:bd:a7:0a:d2:59:ac:79:be:08:23:77:5f:9b:79:73:6d:e4:
87:de:c7:46:03:f8:64:0e:7a:f6:c6:e2:08:48:71:fa:59:8b:
23:2e:e8:0b:df:a4:a1:ed:36:b0:dd:b8:71:46:73:3c:a4:5d:
5e:52:45:4f:1c:c4:b0:5b:aa:56:90:c7:9c:34:33:f1:c4:44:
ed:43:4c:e4:3b:3a:cf:c1:5f:df:d8:e3:7e:09:aa:ca:71:b8:
92:4d:90:8b:59:cb:d8:1f:89:df:07:3c:72:16:5c:80:07:60:
94:9f:10:68:f0:3d:fa:2b:54:3d:62:71:0e:46:3b:70:62:40:
56:d7:a3:76
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY6ASOa/te0IrtVXKin8KdjhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTY5NTc4NmY4NDUwZDEwNDFkYzg4YWQ4OTJjYmI1NzBk
NTk3MmIwHhcNMjQwMzI3MTQyMDQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ODQ0Zjg0ODA1YTgzODI2OTExOWVjNjY0MmQ4NmY0ODY5OTQ3NzA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApdXoXeg/KzYsj6t7OG2c5C+ExN8Z
5EKKE4PPXxGY5x1i779ljGQmcEW7iO4tu5T6OxfjDMxDbUGAaNL2KCK2ZkfKblQS
elfrmkgfa1B1iRa5LrR+P77yvxu5vwVYboJTkKHeQLDHtL820zOLq6SDq3OaC+M5
izVL+R75jMFx+KZM0I4JlfrUZz/IAVSE9nOOBdBdit99clZNT0hvKxQFYwP0tgvB
Rk+lXXvGbWvl6lGLA8ERGBUtV0m0Lf7sgySZ1QWgUuwT2CrEKJo9p4sue+UpXxqh
O9DjSs+0l6MBNAkfIPdpN4gv0jw52+Tl4GfxE0rYviTF/mFwyebeppPQ5QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHhE+EgFqDgmkRnsZkLYb0hplHcEMB8GA1UdIwQY
MBaAFH1WlXhvhFDRBB3IitiSy7Vw1ZcrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZhVmVHLUVVTkVFSGNpSzJKTEx0WERWbHlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8zMTdhYTctZTJhZC00YTg1LWIzZDIt
NjNiMzM4MDhhNmE4LzEvZUVUNFNBV29PQ2FSR2V4bVF0aHZTR21VZHdRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC8zMTdhYTctZTJhZC00YTg1LWIzZDItNjNiMzM4MDhhNmE4
LzEvZlZhVmVHLUVVTkVFSGNpSzJKTEx0WERWbHlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLQusMA0G
CSqGSIb3DQEBCwUAA4IBAQCDInIfwhkkNaD3ZTG1jFQ70Zy6yiDsr662dfd93Qwi
Yyz5rEc7hVcwoavFTRIoyKd8+uIUTowMmt//tlOxq49dBkF2Hh44YnY8KX4bltEh
TzDncPtWYOsKZsfsiiSUjr8yGZM2uraBT4GVzNQP6vpvuY2cKFkLXKxkM0XvhoCz
vacK0lmseb4II3dfm3lzbeSH3sdGA/hkDnr2xuIISHH6WYsjLugL36Sh7Taw3bhx
RnM8pF1eUkVPHMSwW6pWkMecNDPxxETtQ0zkOzrPwV/f2ON+CarKcbiSTZCLWcvY
H4nfBzxyFlyAB2CUnxBo8D36K1Q9YnEORjtwYkBW16N2
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:42 2024 by rpki-client on console-ams.rpki-client.org