Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/Zld1D-cqfDidbxw7KOwW3z1BDlA.roa
File: Zld1D-cqfDidbxw7KOwW3z1BDlA.roa (raw, json)
Hash identifier: jPYAgKYd9dX7QJ5gpWCVGp4NvNMBQcDRA4b5i72O/IA=
Subject key identifier: 66:57:75:0F:E7:2A:7C:38:9D:6F:1C:3B:28:EC:16:DF:3D:41:0E:50
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0188B92EFA744DDCBAB7356013455FC85248
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/Zld1D-cqfDidbxw7KOwW3z1BDlA.roa
Signing time: Wed 14 Jun 2023 09:14:03 +0000
ROA not before: Wed 14 Jun 2023 09:14:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40065
IP address blocks: 45.142.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b9:2e:fa:74:4d:dc:ba:b7:35:60:13:45:5f:c8:52:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jun 14 09:14:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6657750fe72a7c389d6f1c3b28ec16df3d410e50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:0e:d0:c8:e0:aa:d5:bc:c1:16:43:09:a1:a0:
b0:95:25:a0:12:90:14:ad:e7:35:fb:ff:cc:99:6f:
ed:8c:ee:77:0c:b2:b8:c6:36:ba:a5:fb:03:4b:89:
22:a0:73:17:11:cb:01:56:f3:49:17:09:3a:1d:f0:
2e:7c:61:17:2d:4f:91:19:9a:fb:6e:cb:93:2f:66:
7f:de:95:ab:40:e7:9c:2a:80:4c:e4:5d:e3:94:1e:
0a:43:a1:c6:d6:db:5b:89:43:ea:8d:18:82:e1:cd:
78:85:de:12:f2:a5:b7:2a:ef:82:96:76:05:21:51:
f8:8f:73:12:16:34:50:c4:23:a2:a2:45:45:a5:d3:
de:cd:bb:0b:a9:4b:87:e6:e5:42:19:1a:57:10:2b:
0a:91:48:cf:86:ef:c6:af:74:f4:55:ea:40:1e:6a:
a1:76:0c:4f:24:a6:d4:ed:ad:cd:54:f3:39:04:61:
e2:49:bd:93:2d:d4:0c:58:eb:86:16:24:8c:06:dd:
aa:ff:69:bb:58:40:5c:a0:3a:86:66:7f:e8:f0:92:
8b:bc:fe:ca:f5:55:84:a6:dc:40:47:14:30:3a:e5:
4e:4f:bd:e7:21:3c:18:3e:19:f0:5b:97:5d:f9:8c:
02:ae:b5:34:38:ae:a7:e2:04:d4:42:f3:79:9d:4b:
46:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:57:75:0F:E7:2A:7C:38:9D:6F:1C:3B:28:EC:16:DF:3D:41:0E:50
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/Zld1D-cqfDidbxw7KOwW3z1BDlA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.106.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:22:d7:c2:62:3f:68:b7:2f:8b:24:67:51:b4:43:44:22:36:
89:6d:d9:47:d6:e8:50:66:cd:f5:e0:e9:1b:dd:fc:49:62:0e:
47:5f:8e:1d:e7:20:77:6d:d3:1e:95:60:15:2b:81:84:5b:68:
71:ab:4e:b6:58:e1:2b:d0:ed:34:1a:08:eb:78:4a:9c:b6:51:
36:95:58:4f:dd:d2:a1:a8:85:cb:95:62:68:ba:75:d1:90:00:
ec:68:c7:71:ea:a0:34:2e:2a:81:57:44:25:76:10:38:30:9b:
8e:cf:35:03:15:2f:0f:ad:11:e9:5b:25:21:85:f8:88:e4:93:
97:2f:84:0f:29:da:dc:76:85:51:63:0d:51:c7:dc:0d:1a:42:
0f:0b:86:60:8e:04:01:b4:07:d7:3e:86:9c:8d:bf:cf:83:24:
aa:4a:e7:94:58:7a:f6:c5:b9:92:05:d4:44:c0:cb:1f:75:0a:
45:cc:f7:78:34:e9:d2:66:25:b2:2c:48:f2:ef:d6:df:af:98:
3a:c4:70:05:c7:93:af:a2:da:1d:4a:2c:52:60:fc:e5:0d:31:
be:1f:25:c1:b9:11:26:9a:11:f7:06:27:5a:40:fe:de:50:af:
d4:d1:a0:7c:d4:61:bb:ad:c0:ac:04:04:81:1f:4e:ce:97:d1:
5b:95:91:48
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYi5Lvp0Tdy6tzVgE0VfyFJIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiMDQxNWJmYzQzYjM4ZTljZmQxYTEyOTk1MjAyZTg3NjM3
NTJmZGUwHhcNMjMwNjE0MDkxNDAzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NjU3NzUwZmU3MmE3YzM4OWQ2ZjFjM2IyOGVjMTZkZjNkNDEwZTUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6Q7QyOCq1bzBFkMJoaCwlSWgEpAU
rec1+//MmW/tjO53DLK4xja6pfsDS4kioHMXEcsBVvNJFwk6HfAufGEXLU+RGZr7
bsuTL2Z/3pWrQOecKoBM5F3jlB4KQ6HG1ttbiUPqjRiC4c14hd4S8qW3Ku+ClnYF
IVH4j3MSFjRQxCOiokVFpdPezbsLqUuH5uVCGRpXECsKkUjPhu/Gr3T0VepAHmqh
dgxPJKbU7a3NVPM5BGHiSb2TLdQMWOuGFiSMBt2q/2m7WEBcoDqGZn/o8JKLvP7K
9VWEptxARxQwOuVOT73nITwYPhnwW5dd+YwCrrU0OK6n4gTUQvN5nUtG1QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGZXdQ/nKnw4nW8cOyjsFt89QQ5QMB8GA1UdIwQY
MBaAFBsEFb/EOzjpz9GhKZUgLodjdS/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1Nzgt
YTNjYTBkYjgzMjU0LzEvWmxkMUQtY3FmRGlkYnh3N0tPd1czejFCRGxBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1NzgtYTNjYTBkYjgzMjU0
LzEvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALY5qMA0G
CSqGSIb3DQEBCwUAA4IBAQChItfCYj9oty+LJGdRtENEIjaJbdlH1uhQZs314Okb
3fxJYg5HX44d5yB3bdMelWAVK4GEW2hxq062WOEr0O00GgjreEqctlE2lVhP3dKh
qIXLlWJounXRkADsaMdx6qA0LiqBV0QldhA4MJuOzzUDFS8PrRHpWyUhhfiI5JOX
L4QPKdrcdoVRYw1Rx9wNGkIPC4ZgjgQBtAfXPoacjb/PgySqSueUWHr2xbmSBdRE
wMsfdQpFzPd4NOnSZiWyLEjy79bfr5g6xHAFx5OvotodSixSYPzlDTG+HyXBuREm
mhH3BidaQP7eUK/U0aB81GG7rcCsBASBH07Ol9FblZFI
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:28 2024 by rpki-client on console-fra.rpki-client.org