Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/t2h39AKi9RJG5Gtgq7ASDKEZMqw.roa
File: t2h39AKi9RJG5Gtgq7ASDKEZMqw.roa (raw, json)
Hash identifier: N9GHD91sVku5QMopk30IAI89NQm8+dJwDNUgXJnQVac=
Subject key identifier: B7:68:77:F4:02:A2:F5:12:46:E4:6B:60:AB:B0:12:0C:A1:19:32:AC
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01856CE60D41E8A35CA335D3CAC8D0E78A31
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/t2h39AKi9RJG5Gtgq7ASDKEZMqw.roa
Signing time: Sun 01 Jan 2023 10:34:54 +0000
ROA not before: Sun 01 Jan 2023 10:34:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19844
IP address blocks: 45.133.72.0/24 maxlen: 24
45.137.68.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 24 Apr 2023 09:53:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:0d:41:e8:a3:5c:a3:35:d3:ca:c8:d0:e7:8a:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 1 10:34:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b76877f402a2f51246e46b60abb0120ca11932ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:8d:1f:bd:58:94:71:c4:3d:86:99:64:14:22:
f8:c9:81:3d:81:d8:1a:56:c4:bb:70:d6:ad:2b:d5:
0e:b7:2a:79:03:8e:a8:68:fc:b0:26:85:49:cf:2d:
7a:51:d2:45:01:7a:e0:64:38:64:9d:fe:2a:cc:6d:
2a:98:6d:ce:b9:16:c0:2f:8b:dc:41:2c:a9:e3:d8:
7a:ff:a4:47:1c:37:37:41:d2:41:7f:29:2f:93:90:
da:e0:e5:0a:07:2f:b3:c5:40:b2:e5:c5:7f:9a:f0:
25:1a:8a:78:a8:13:be:0f:03:09:6d:18:28:8b:6d:
46:3e:5d:66:38:d4:af:c3:cc:3e:c7:42:34:80:63:
fd:a4:e2:a9:00:fa:68:5c:a4:de:78:4f:e8:7f:b0:
79:57:b4:69:97:5d:64:7b:ea:8b:48:70:77:a2:3d:
4e:90:d3:34:5b:2f:ea:22:f6:f3:50:37:e9:c0:40:
ad:b3:a4:93:a9:4d:b6:d4:24:61:56:69:45:7c:2a:
9b:f1:07:24:e4:a1:98:4c:f0:bd:6d:93:a3:fc:3e:
58:e1:bc:cd:d7:a9:0a:5b:50:93:f6:aa:55:c6:5a:
a5:4d:96:b5:10:93:76:07:42:99:3c:56:06:ac:41:
ee:38:5f:4d:32:24:ce:7a:71:c7:31:29:b8:69:03:
3c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:68:77:F4:02:A2:F5:12:46:E4:6B:60:AB:B0:12:0C:A1:19:32:AC
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/t2h39AKi9RJG5Gtgq7ASDKEZMqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.72.0/24
45.137.68.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:54:16:d6:db:b4:ab:d3:c2:00:4f:ac:e9:82:a2:0a:47:14:
8a:88:10:19:cb:92:6d:06:b1:47:a1:9a:e1:18:c0:b9:94:1e:
19:fd:d2:17:68:b6:57:c9:6a:94:3e:db:bf:32:a7:cb:cb:5a:
c9:c3:2f:f8:c6:c2:70:d2:7f:fe:3c:ff:bb:6a:cd:0b:1e:88:
58:07:f6:97:78:c0:ed:51:71:b1:65:de:96:b9:6b:c4:7c:59:
fc:1e:bc:25:5b:c3:0c:87:47:e5:be:ed:43:1d:e7:1b:a5:d4:
d3:88:dd:8a:a7:dd:74:3d:78:6c:b2:81:b2:5d:e7:cc:93:ab:
6c:c1:ef:c2:6f:27:a8:3d:96:27:05:d7:07:8c:b7:37:de:10:
20:44:07:97:82:f3:5d:df:a3:25:2c:ec:6d:8d:3a:d7:2e:f7:
fd:fc:17:ee:e9:aa:73:e5:22:fd:31:06:92:f7:87:22:40:19:
77:8a:29:6d:3d:e1:b8:ca:49:1d:75:4f:a2:29:a8:10:74:8c:
3d:3b:d7:f2:b2:c8:b1:f2:4b:9e:6d:76:bd:bd:10:46:d3:10:
2a:dd:47:6e:17:c1:53:b9:3e:c2:40:35:26:a0:e6:3f:39:d8:
ba:c1:c0:cc:5a:9f:3f:81:9f:c6:6e:2f:9f:e2:07:0c:4a:89:
51:8c:0d:8f
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVs5g1B6KNcozXTysjQ54oxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiMDQxNWJmYzQzYjM4ZTljZmQxYTEyOTk1MjAyZTg3NjM3
NTJmZGUwHhcNMjMwMTAxMTAzNDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNzY4NzdmNDAyYTJmNTEyNDZlNDZiNjBhYmIwMTIwY2ExMTkzMmFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyo0fvViUccQ9hplkFCL4yYE9gdga
VsS7cNatK9UOtyp5A46oaPywJoVJzy16UdJFAXrgZDhknf4qzG0qmG3OuRbAL4vc
QSyp49h6/6RHHDc3QdJBfykvk5Da4OUKBy+zxUCy5cV/mvAlGop4qBO+DwMJbRgo
i21GPl1mONSvw8w+x0I0gGP9pOKpAPpoXKTeeE/of7B5V7Rpl11ke+qLSHB3oj1O
kNM0Wy/qIvbzUDfpwECts6STqU221CRhVmlFfCqb8Qck5KGYTPC9bZOj/D5Y4bzN
16kKW1CT9qpVxlqlTZa1EJN2B0KZPFYGrEHuOF9NMiTOenHHMSm4aQM8pQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFLdod/QCovUSRuRrYKuwEgyhGTKsMB8GA1UdIwQY
MBaAFBsEFb/EOzjpz9GhKZUgLodjdS/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1Nzgt
YTNjYTBkYjgzMjU0LzEvdDJoMzlBS2k5UkpHNUd0Z3E3QVNES0VaTXF3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1NzgtYTNjYTBkYjgzMjU0
LzEvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALYVIAwQA
LYlEMA0GCSqGSIb3DQEBCwUAA4IBAQCOVBbW27Sr08IAT6zpgqIKRxSKiBAZy5Jt
BrFHoZrhGMC5lB4Z/dIXaLZXyWqUPtu/MqfLy1rJwy/4xsJw0n/+PP+7as0LHohY
B/aXeMDtUXGxZd6WuWvEfFn8HrwlW8MMh0flvu1DHecbpdTTiN2Kp910PXhssoGy
XefMk6tswe/CbyeoPZYnBdcHjLc33hAgRAeXgvNd36MlLOxtjTrXLvf9/Bfu6apz
5SL9MQaS94ciQBl3iiltPeG4ykkddU+iKagQdIw9O9fyssix8kuebXa9vRBG0xAq
3UduF8FTuT7CQDUmoOY/Odi6wcDMWp8/gZ/Gbi+f4gcMSolRjA2P
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:28 2024 by rpki-client on console-fra.rpki-client.org