Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/w7yA5HoJEd0ToTu1M4nGyMlbyco.roa
File: w7yA5HoJEd0ToTu1M4nGyMlbyco.roa (raw, json)
Hash identifier: X/QBYhb/GsyKgYfO+hqKpR7hAJsuDtH9ltw8V0+v8QU=
Subject key identifier: C3:BC:80:E4:7A:09:11:DD:13:A1:3B:B5:33:89:C6:C8:C9:5B:C9:CA
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0186920D1251CFF6909FC2475B5102E33314
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/w7yA5HoJEd0ToTu1M4nGyMlbyco.roa
Signing time: Mon 27 Feb 2023 08:46:15 +0000
ROA not before: Mon 27 Feb 2023 08:46:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197071
IP address blocks: 45.86.155.0/24 maxlen: 24
185.117.0.0/24 maxlen: 24
45.67.139.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 Mar 2023 16:43:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:92:0d:12:51:cf:f6:90:9f:c2:47:5b:51:02:e3:33:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Feb 27 08:46:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c3bc80e47a0911dd13a13bb53389c6c8c95bc9ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:ad:42:9a:1e:25:78:78:09:f7:d7:fb:8f:32:
9e:a1:58:05:7c:d1:e0:5a:cc:7e:ee:e4:cc:1d:b7:
a3:cc:33:4a:ed:3b:43:d8:db:5c:51:17:41:ea:84:
50:47:3d:77:1e:5f:b3:e9:05:aa:94:35:22:a0:0a:
70:44:0c:61:b6:66:76:eb:cd:61:27:14:1c:a9:38:
78:c6:26:a3:6d:53:a6:ac:b6:70:b2:7b:00:b7:66:
a9:fb:f4:53:f7:eb:68:c0:a5:50:df:50:55:78:72:
47:87:eb:21:28:4c:8d:cd:43:cc:b3:44:cf:b4:3a:
a7:39:89:7a:24:de:01:d4:18:a5:52:2d:61:b8:4b:
b8:10:5c:93:fd:49:e7:74:bd:56:d1:99:92:59:6f:
10:3f:b7:71:65:d9:cf:ce:a8:41:ea:f9:0d:9b:3a:
31:08:de:ef:50:97:92:bc:b8:16:25:ca:34:bf:14:
6b:37:f1:bb:79:c9:e8:5e:c9:b7:14:28:5a:1f:e6:
00:72:df:22:0c:cb:d9:ce:1a:94:c5:d0:3d:33:65:
11:75:c2:7a:88:99:29:23:2f:d8:c5:1d:8d:61:d0:
b5:3f:13:ce:49:3a:33:44:a0:7b:57:59:e3:be:90:
8e:97:d8:ba:ba:b5:a6:32:a2:b7:5f:a4:5f:95:83:
4a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:BC:80:E4:7A:09:11:DD:13:A1:3B:B5:33:89:C6:C8:C9:5B:C9:CA
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/w7yA5HoJEd0ToTu1M4nGyMlbyco.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.139.0/24
45.86.155.0/24
185.117.0.0/24
Signature Algorithm: sha256WithRSAEncryption
36:a0:b9:38:37:ce:a7:f7:4c:46:49:a1:52:4f:54:bc:f6:c4:
ac:04:05:42:d8:81:27:83:6c:b2:6a:9c:1b:0c:e4:36:e2:19:
15:bb:9a:92:9a:63:90:88:2a:a6:87:73:6d:c5:b4:a3:53:2d:
90:a0:ef:f2:40:90:8f:7a:bb:3d:1e:f4:f6:40:7f:ac:b0:43:
f5:2c:07:45:38:2b:f1:e4:e1:e0:04:ba:e0:42:b6:2c:e9:1e:
3a:36:d7:38:a7:cf:2d:91:f8:55:92:02:ff:fa:1b:6c:bc:64:
f1:e5:7a:b2:2b:f6:78:65:25:a1:d8:0e:bb:2c:f6:f3:7c:ef:
3a:20:10:ad:4b:39:3e:de:ef:51:a1:c0:ce:70:2e:e2:48:ef:
a5:99:f9:f3:ab:14:2b:29:55:e2:bc:08:54:69:b9:5d:5b:2c:
1e:a1:c6:d5:d6:31:79:d3:10:3e:6a:93:34:f8:df:58:08:d9:
33:94:f0:cb:c3:c2:ec:40:04:08:1a:07:ec:c6:bf:89:8a:26:
4c:fa:6c:00:91:c6:15:dd:ed:df:13:4e:92:7f:ce:5c:c0:0e:
29:68:cb:22:66:4e:e6:7d:af:60:34:ad:1a:aa:25:a5:b7:cc:
0c:60:d3:2d:23:bd:94:00:04:09:a6:4c:96:ed:d3:84:99:4e:
88:b1:26:df
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYaSDRJRz/aQn8JHW1EC4zMUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiMDQxNWJmYzQzYjM4ZTljZmQxYTEyOTk1MjAyZTg3NjM3
NTJmZGUwHhcNMjMwMjI3MDg0NjE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjM2JjODBlNDdhMDkxMWRkMTNhMTNiYjUzMzg5YzZjOGM5NWJjOWNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgK1Cmh4leHgJ99f7jzKeoVgFfNHg
Wsx+7uTMHbejzDNK7TtD2NtcURdB6oRQRz13Hl+z6QWqlDUioApwRAxhtmZ2681h
JxQcqTh4xiajbVOmrLZwsnsAt2ap+/RT9+towKVQ31BVeHJHh+shKEyNzUPMs0TP
tDqnOYl6JN4B1BilUi1huEu4EFyT/UnndL1W0ZmSWW8QP7dxZdnPzqhB6vkNmzox
CN7vUJeSvLgWJco0vxRrN/G7ecnoXsm3FChaH+YAct8iDMvZzhqUxdA9M2URdcJ6
iJkpIy/YxR2NYdC1PxPOSTozRKB7V1njvpCOl9i6urWmMqK3X6RflYNKTwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFMO8gOR6CRHdE6E7tTOJxsjJW8nKMB8GA1UdIwQY
MBaAFBsEFb/EOzjpz9GhKZUgLodjdS/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1Nzgt
YTNjYTBkYjgzMjU0LzEvdzd5QTVIb0pFZDBUb1R1MU00bkd5TWxieWNvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1NzgtYTNjYTBkYjgzMjU0
LzEvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQALUOLAwQA
LVabAwQAuXUAMA0GCSqGSIb3DQEBCwUAA4IBAQA2oLk4N86n90xGSaFST1S89sSs
BAVC2IEng2yyapwbDOQ24hkVu5qSmmOQiCqmh3NtxbSjUy2QoO/yQJCPers9HvT2
QH+ssEP1LAdFOCvx5OHgBLrgQrYs6R46Ntc4p88tkfhVkgL/+htsvGTx5XqyK/Z4
ZSWh2A67LPbzfO86IBCtSzk+3u9RocDOcC7iSO+lmfnzqxQrKVXivAhUabldWywe
ocbV1jF50xA+apM0+N9YCNkzlPDLw8LsQAQIGgfsxr+JiiZM+mwAkcYV3e3fE06S
f85cwA4paMsiZk7mfa9gNK0aqiWlt8wMYNMtI72UAAQJpkyW7dOEmU6IsSbf
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:28 2024 by rpki-client on console-fra.rpki-client.org