Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/dd394b-6bc4-4e47-b012-518f2c8f846b/1/F9zSWayypCXruIW3hQV4cEy1wvM.roa
File: F9zSWayypCXruIW3hQV4cEy1wvM.roa (raw, json)
Hash identifier: m7UiXhc9JHDyQZA+9Odts4XT8/Nn4slOUY9JSF70ga0=
Subject key identifier: 17:DC:D2:59:AC:B2:A4:25:EB:B8:85:B7:85:05:78:70:4C:B5:C2:F3
Certificate issuer: /CN=23329cb3abe4e940cfc62a20e2a6e2c28fc28329
Certificate serial: 018D188288BA2F45CDF208A4A63A95798625
Authority key identifier: 23:32:9C:B3:AB:E4:E9:40:CF:C6:2A:20:E2:A6:E2:C2:8F:C2:83:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IzKcs6vk6UDPxiog4qbiwo_Cgyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/dd394b-6bc4-4e47-b012-518f2c8f846b/1/F9zSWayypCXruIW3hQV4cEy1wvM.roa
Signing time: Wed 17 Jan 2024 17:40:24 +0000
ROA not before: Wed 17 Jan 2024 17:40:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 45.15.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Mar 2024 13:16:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:18:82:88:ba:2f:45:cd:f2:08:a4:a6:3a:95:79:86:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23329cb3abe4e940cfc62a20e2a6e2c28fc28329
Validity
Not Before: Jan 17 17:40:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=17dcd259acb2a425ebb885b7850578704cb5c2f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e0:8b:93:e6:c7:d0:50:68:eb:2f:87:37:86:
8d:38:da:2a:b0:fb:c7:cf:75:c1:cd:e2:d4:a5:40:
11:13:e6:e1:58:08:80:e2:77:60:a5:1a:87:5e:1c:
1b:e5:77:80:14:d3:62:06:12:df:1e:9e:bf:4e:7e:
4c:46:e8:5d:27:d9:7a:9b:e4:c7:3b:35:07:01:7e:
cd:d1:dd:ee:26:cf:15:64:33:56:6b:68:a2:39:c0:
8c:f4:dc:71:7f:66:ed:58:ba:60:3e:79:e4:06:64:
8f:3b:c7:20:0f:42:b9:18:07:81:28:84:c6:0e:38:
1a:02:fa:86:8c:7a:5f:d1:32:52:e5:22:04:5a:83:
e0:ea:1c:0f:da:66:f9:e2:bc:4a:79:c1:22:35:e2:
a8:07:fa:38:60:ff:cc:4b:c2:a1:3a:3b:ac:1b:03:
6a:5d:69:b2:25:32:36:3d:4d:2f:9b:e1:07:52:82:
22:b3:9e:77:1c:98:e8:aa:63:73:c7:ff:ea:dc:9e:
a4:b7:1a:dd:f2:26:a9:99:b1:cf:0a:1d:e4:d9:21:
8e:1e:53:e4:9b:99:b4:12:a9:da:df:b9:f3:7c:96:
68:b9:aa:4e:7d:c8:d0:63:4e:7a:e5:94:5f:58:22:
1a:49:15:59:1d:99:ba:0b:77:9b:d7:9d:90:c7:60:
1f:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:DC:D2:59:AC:B2:A4:25:EB:B8:85:B7:85:05:78:70:4C:B5:C2:F3
X509v3 Authority Key Identifier:
keyid:23:32:9C:B3:AB:E4:E9:40:CF:C6:2A:20:E2:A6:E2:C2:8F:C2:83:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IzKcs6vk6UDPxiog4qbiwo_Cgyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/dd394b-6bc4-4e47-b012-518f2c8f846b/1/F9zSWayypCXruIW3hQV4cEy1wvM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/dd394b-6bc4-4e47-b012-518f2c8f846b/1/IzKcs6vk6UDPxiog4qbiwo_Cgyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.41.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:20:4d:e8:d3:9a:7d:a9:b7:9d:be:b6:7c:41:9e:be:ad:03:
1f:42:79:21:da:3d:d8:61:9f:40:d6:a5:59:a0:ce:dd:15:20:
be:b1:e3:c9:31:a7:dc:1c:0e:a2:23:7f:1a:97:66:72:6b:86:
0f:32:9f:b7:64:be:c6:b2:55:29:2d:ec:46:e2:e6:fb:6b:dd:
86:b2:12:2c:0b:93:e1:53:f2:ac:ac:41:8c:1b:8d:5f:5c:7e:
e9:9b:06:bd:df:81:e9:cf:11:44:db:00:6a:9d:72:58:85:c4:
55:fc:9e:a2:31:9d:cc:4b:64:57:79:34:fa:3f:2b:20:c4:da:
a8:56:23:d9:7a:96:a5:47:cf:90:99:07:54:2f:7b:8f:fb:32:
19:6c:6b:ca:eb:92:a1:19:1f:f9:78:29:51:e6:13:95:95:35:
ab:81:3a:72:ec:37:25:c7:d5:79:d9:dc:ea:c8:e7:60:56:01:
68:64:f4:5f:7b:a5:bf:72:5a:42:e5:db:9f:66:12:f0:5a:2d:
2d:64:9f:44:f9:53:ec:1a:3d:56:49:ce:62:26:25:ad:42:76:
89:d6:c9:3d:98:b8:a6:8f:a3:39:be:6e:c4:45:20:f2:cb:a0:
8e:4c:5e:46:61:85:73:b0:be:50:bb:83:e7:80:1f:53:a6:63:
79:10:13:75
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY0Ygoi6L0XN8gikpjqVeYYlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzMzI5Y2IzYWJlNGU5NDBjZmM2MmEyMGUyYTZlMmMyOGZj
MjgzMjkwHhcNMjQwMTE3MTc0MDI0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxN2RjZDI1OWFjYjJhNDI1ZWJiODg1Yjc4NTA1Nzg3MDRjYjVjMmYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAleCLk+bH0FBo6y+HN4aNONoqsPvH
z3XBzeLUpUARE+bhWAiA4ndgpRqHXhwb5XeAFNNiBhLfHp6/Tn5MRuhdJ9l6m+TH
OzUHAX7N0d3uJs8VZDNWa2iiOcCM9Nxxf2btWLpgPnnkBmSPO8cgD0K5GAeBKITG
DjgaAvqGjHpf0TJS5SIEWoPg6hwP2mb54rxKecEiNeKoB/o4YP/MS8KhOjusGwNq
XWmyJTI2PU0vm+EHUoIis553HJjoqmNzx//q3J6ktxrd8iapmbHPCh3k2SGOHlPk
m5m0Eqna37nzfJZouapOfcjQY0565ZRfWCIaSRVZHZm6C3eb152Qx2Af2wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBfc0lmssqQl67iFt4UFeHBMtcLzMB8GA1UdIwQY
MBaAFCMynLOr5OlAz8YqIOKm4sKPwoMpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXpLY3M2dms2VURQeGlvZzRxYml3b19DZ3lrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS9kZDM5NGItNmJjNC00ZTQ3LWIwMTIt
NTE4ZjJjOGY4NDZiLzEvRjl6U1dheXlwQ1hydUlXM2hRVjRjRXkxd3ZNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS9kZDM5NGItNmJjNC00ZTQ3LWIwMTItNTE4ZjJjOGY4NDZi
LzEvSXpLY3M2dms2VURQeGlvZzRxYml3b19DZ3lrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQ8pMA0G
CSqGSIb3DQEBCwUAA4IBAQCyIE3o05p9qbedvrZ8QZ6+rQMfQnkh2j3YYZ9A1qVZ
oM7dFSC+sePJMafcHA6iI38al2Zya4YPMp+3ZL7GslUpLexG4ub7a92GshIsC5Ph
U/KsrEGMG41fXH7pmwa934HpzxFE2wBqnXJYhcRV/J6iMZ3MS2RXeTT6PysgxNqo
ViPZepalR8+QmQdUL3uP+zIZbGvK65KhGR/5eClR5hOVlTWrgTpy7Dclx9V52dzq
yOdgVgFoZPRfe6W/clpC5dufZhLwWi0tZJ9E+VPsGj1WSc5iJiWtQnaJ1sk9mLim
j6M5vm7ERSDyy6COTF5GYYVzsL5Qu4PngB9TpmN5EBN1
-----END CERTIFICATE-----
Generated at Thu Apr 17 22:38:42 2025 by rpki-client