Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/4XCG_OqE-Zu8_mAkvQKEn38-eoc.roa
File: 4XCG_OqE-Zu8_mAkvQKEn38-eoc.roa (raw, json)
Hash identifier: xlIl2tQouOcBTBbnkTxISFuTA49+WsrqLbnKFAF/o94=
Subject key identifier: E1:70:86:FC:EA:84:F9:9B:BC:FE:60:24:BD:02:84:9F:7F:3E:7A:87
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01856CE625F31DB2EC1F34F7CE4E1482F261
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/4XCG_OqE-Zu8_mAkvQKEn38-eoc.roa
Signing time: Sun 01 Jan 2023 10:35:00 +0000
ROA not before: Sun 01 Jan 2023 10:35:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204422
IP address blocks: 45.153.24.0/22 maxlen: 22
45.137.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Mar 2023 13:02:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:25:f3:1d:b2:ec:1f:34:f7:ce:4e:14:82:f2:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 1 10:35:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e17086fcea84f99bbcfe6024bd02849f7f3e7a87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:4a:c9:41:24:21:79:31:3d:95:77:5c:55:92:
68:08:c9:c4:ef:75:e5:84:f2:f1:cf:25:11:8f:42:
1c:c3:45:1e:e7:97:b0:77:7c:c2:1c:ea:ed:f4:95:
75:bf:9c:c7:95:1a:ed:79:88:ba:fc:93:26:f6:8a:
7f:fa:b6:9d:76:0e:ca:3c:0b:33:dd:1d:31:d5:d8:
23:28:a6:4c:c3:85:bb:98:dd:68:0f:b0:e8:ee:00:
b0:ff:6e:1d:d4:51:17:d8:a0:ca:de:d1:ea:8d:ff:
10:9b:5a:b8:c5:ec:f3:6d:4b:fd:a4:bc:67:e5:09:
3c:d4:ea:cd:9a:f5:4d:7b:ff:c2:c2:0d:5b:0f:39:
0e:a8:bf:1c:f2:55:31:a8:62:21:fa:99:ab:62:dd:
93:d3:cc:ce:04:e1:e9:f8:97:65:5a:ca:63:0e:6a:
4a:0f:ca:01:9f:9f:44:ff:35:bd:15:16:fb:a1:db:
84:b2:de:b5:5f:9e:a5:80:06:ba:97:72:a0:8d:9b:
9c:c2:6f:7b:7d:0d:40:c4:61:b9:b8:6e:35:3b:74:
10:0a:c8:bf:55:f6:04:c7:3e:ba:41:91:21:6b:83:
54:69:56:ba:6a:b6:b1:7c:c7:37:58:93:8c:29:8d:
8d:43:27:88:1a:04:41:d8:5f:7c:c9:80:22:c2:45:
5c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:70:86:FC:EA:84:F9:9B:BC:FE:60:24:BD:02:84:9F:7F:3E:7A:87
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/4XCG_OqE-Zu8_mAkvQKEn38-eoc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.203.0/24
45.153.24.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:2e:cf:06:90:d1:91:8c:2f:de:13:54:1a:2b:df:b8:fa:fc:
78:8c:1b:c5:73:b1:70:a5:b2:df:32:43:52:85:bb:8e:da:b6:
92:42:ec:90:67:68:6e:77:4a:40:a1:61:12:57:b1:dc:d2:6e:
af:9a:2b:49:39:0e:65:8a:75:35:92:33:cf:54:ca:fd:95:80:
77:f7:be:64:cb:de:57:ff:0b:3f:c0:7a:a1:3f:a3:99:07:66:
85:41:82:10:ed:2b:6c:53:f2:65:4e:11:61:4f:7f:c5:3b:b2:
71:82:1d:51:ed:f9:06:4e:a8:ee:33:2a:c4:de:c2:52:bf:f9:
1c:e3:aa:75:4c:68:da:6e:02:ac:c0:f8:1b:df:44:b6:33:e4:
ad:f8:ce:c4:1c:c8:31:8f:0f:76:64:fb:5a:c0:29:5a:2d:88:
fa:65:96:61:64:54:03:b8:51:66:af:5e:e9:72:8c:48:cd:22:
d0:41:1a:c8:a1:66:d2:95:b2:a6:cf:55:d7:88:fd:de:34:c1:
00:e1:fe:2d:ad:b7:73:d6:99:3b:35:6c:79:1f:86:ed:af:90:
39:f7:9a:25:49:0d:08:3d:72:cd:9a:81:4a:50:3a:98:04:99:
f1:ec:73:fd:98:05:2f:2e:d5:e7:da:39:4f:b6:17:4a:44:1e:
00:75:c8:cf
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVs5iXzHbLsHzT3zk4UgvJhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiMDQxNWJmYzQzYjM4ZTljZmQxYTEyOTk1MjAyZTg3NjM3
NTJmZGUwHhcNMjMwMTAxMTAzNTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMTcwODZmY2VhODRmOTliYmNmZTYwMjRiZDAyODQ5ZjdmM2U3YTg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhErJQSQheTE9lXdcVZJoCMnE73Xl
hPLxzyURj0Icw0Ue55ewd3zCHOrt9JV1v5zHlRrteYi6/JMm9op/+raddg7KPAsz
3R0x1dgjKKZMw4W7mN1oD7Do7gCw/24d1FEX2KDK3tHqjf8Qm1q4xezzbUv9pLxn
5Qk81OrNmvVNe//Cwg1bDzkOqL8c8lUxqGIh+pmrYt2T08zOBOHp+JdlWspjDmpK
D8oBn59E/zW9FRb7oduEst61X56lgAa6l3KgjZucwm97fQ1AxGG5uG41O3QQCsi/
VfYExz66QZEha4NUaVa6araxfMc3WJOMKY2NQyeIGgRB2F98yYAiwkVcVQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFOFwhvzqhPmbvP5gJL0ChJ9/PnqHMB8GA1UdIwQY
MBaAFBsEFb/EOzjpz9GhKZUgLodjdS/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1Nzgt
YTNjYTBkYjgzMjU0LzEvNFhDR19PcUUtWnU4X21Ba3ZRS0VuMzgtZW9jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1NzgtYTNjYTBkYjgzMjU0
LzEvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALYnLAwQC
LZkYMA0GCSqGSIb3DQEBCwUAA4IBAQBeLs8GkNGRjC/eE1QaK9+4+vx4jBvFc7Fw
pbLfMkNShbuO2raSQuyQZ2hud0pAoWESV7Hc0m6vmitJOQ5linU1kjPPVMr9lYB3
975ky95X/ws/wHqhP6OZB2aFQYIQ7StsU/JlThFhT3/FO7Jxgh1R7fkGTqjuMyrE
3sJSv/kc46p1TGjabgKswPgb30S2M+St+M7EHMgxjw92ZPtawClaLYj6ZZZhZFQD
uFFmr17pcoxIzSLQQRrIoWbSlbKmz1XXiP3eNMEA4f4trbdz1pk7NWx5H4btr5A5
95olSQ0IPXLNmoFKUDqYBJnx7HP9mAUvLtXn2jlPthdKRB4AdcjP
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:27 2024 by rpki-client on console-fra.rpki-client.org