Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/hDTUbdcLRWECY1JZfUM9963BaYc.roa
File: hDTUbdcLRWECY1JZfUM9963BaYc.roa (raw, json)
Hash identifier: Cq1BD4q4bksoPKhh3mih6ulphDAzbvknC5LiM3Mv8zQ=
Subject key identifier: 84:34:D4:6D:D7:0B:45:61:02:63:52:59:7D:43:3D:F7:AD:C1:69:87
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018571E88FCF54D75BCEB5BC4EAD9DEC6039
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/hDTUbdcLRWECY1JZfUM9963BaYc.roa
Signing time: Mon 02 Jan 2023 09:55:44 +0000
ROA not before: Mon 02 Jan 2023 09:55:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207459
IP address blocks: 45.138.183.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Apr 2023 15:39:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:e8:8f:cf:54:d7:5b:ce:b5:bc:4e:ad:9d:ec:60:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jan 2 09:55:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8434d46dd70b4561026352597d433df7adc16987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c1:dc:70:d1:73:de:4f:d6:a8:d6:9f:3b:5c:
d7:fa:07:36:a0:f2:0e:5a:de:1c:66:4f:44:7a:88:
75:ff:6f:36:dc:09:ad:d5:dc:31:4e:5b:49:c2:a2:
e2:28:6d:84:f3:26:5c:a0:1a:7d:c2:d0:52:e1:64:
e0:90:dd:d3:20:db:36:98:34:63:8e:fe:09:30:76:
4d:46:94:be:e3:0e:3e:04:60:ce:51:97:1a:5f:e9:
2d:35:9e:ca:1c:eb:d4:09:fa:d6:47:42:ee:86:ef:
23:c3:68:7f:ca:1d:19:9c:bc:aa:f1:9e:98:38:92:
c1:2f:9a:ca:83:3b:8e:65:05:06:7d:e7:6e:ef:f7:
2b:4a:55:52:b7:05:21:22:f4:67:c9:3e:71:20:fd:
de:32:6d:ca:99:d8:92:90:7a:3c:cb:f6:11:c8:ab:
c5:80:a4:03:df:13:62:ef:84:4a:23:c0:7b:c1:ca:
2b:64:61:bf:0e:4c:a5:6f:a3:4e:fd:f5:71:4a:73:
58:f4:18:a8:71:71:48:08:6b:6a:7e:bb:6b:b2:30:
e7:77:6d:79:34:76:bd:2b:be:db:19:c4:0b:83:38:
8d:42:ae:12:18:ab:dc:1e:f1:58:23:ff:05:6c:71:
6b:b2:64:a1:da:c3:fe:e3:cb:91:41:8c:b5:c7:99:
85:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:34:D4:6D:D7:0B:45:61:02:63:52:59:7D:43:3D:F7:AD:C1:69:87
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/hDTUbdcLRWECY1JZfUM9963BaYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.183.0/24
Signature Algorithm: sha256WithRSAEncryption
17:e9:65:7c:1b:e4:36:0a:52:93:eb:ca:ab:c5:4f:53:9a:64:
dd:e8:98:8b:50:74:0d:59:64:9e:78:e1:f5:6f:48:93:a3:9a:
cb:1b:cb:71:a1:77:d5:22:a3:34:45:69:08:bf:c8:1c:50:cb:
10:c2:88:b3:07:45:9b:7b:ed:0c:6b:2e:d0:d2:44:cb:1f:8d:
a7:ea:7b:0e:27:f3:e5:f0:9d:cb:b9:31:2f:31:ec:15:7b:4e:
63:ee:e6:53:c2:1a:1f:d2:44:ae:29:1d:86:38:ed:02:8a:85:
86:86:8e:78:6a:87:80:4d:ad:42:39:a4:dd:a5:df:4c:38:ff:
f8:5f:23:47:3b:37:41:dd:e7:89:6a:e4:b2:85:39:cd:74:76:
e8:2a:cf:ea:a8:bc:dc:86:63:99:62:26:f6:2f:da:9f:2c:cc:
17:28:74:e0:52:99:ae:7e:43:74:b6:41:58:c2:eb:2f:b4:47:
79:ec:52:f5:72:07:8f:83:de:b6:c4:b3:bc:5f:b7:a2:1a:6f:
7d:23:74:dd:e0:cc:ef:09:ed:5a:14:2d:79:4f:b4:bd:dc:98:
24:81:49:4a:c2:cd:1f:45:b8:6e:ae:81:53:ab:70:0a:8b:d2:
d5:97:b2:6a:84:ed:bb:d3:65:9e:e6:81:f7:1f:8f:a6:44:d9:
da:83:d0:ed
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVx6I/PVNdbzrW8Tq2d7GA5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMmE0NzhiYjBiMDhlNjYxYjBiMmY5ZmJlODkzNWJjOWMy
YTI4YTEwHhcNMjMwMTAyMDk1NTQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NDM0ZDQ2ZGQ3MGI0NTYxMDI2MzUyNTk3ZDQzM2RmN2FkYzE2OTg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvsHccNFz3k/WqNafO1zX+gc2oPIO
Wt4cZk9Eeoh1/2823Amt1dwxTltJwqLiKG2E8yZcoBp9wtBS4WTgkN3TINs2mDRj
jv4JMHZNRpS+4w4+BGDOUZcaX+ktNZ7KHOvUCfrWR0Luhu8jw2h/yh0ZnLyq8Z6Y
OJLBL5rKgzuOZQUGfedu7/crSlVStwUhIvRnyT5xIP3eMm3KmdiSkHo8y/YRyKvF
gKQD3xNi74RKI8B7wcorZGG/Dkylb6NO/fVxSnNY9BiocXFICGtqfrtrsjDnd215
NHa9K77bGcQLgziNQq4SGKvcHvFYI/8FbHFrsmSh2sP+48uRQYy1x5mF6wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIQ01G3XC0VhAmNSWX1DPfetwWmHMB8GA1UdIwQY
MBaAFJ0qR4uwsI5mGwsvn76JNbycKiihMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMt
ZWVmMzUxMWY2YzYwLzEvaERUVWJkY0xSV0VDWTFKWmZVTTk5NjNCYVljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMtZWVmMzUxMWY2YzYw
LzEvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYq3MA0G
CSqGSIb3DQEBCwUAA4IBAQAX6WV8G+Q2ClKT68qrxU9TmmTd6JiLUHQNWWSeeOH1
b0iTo5rLG8txoXfVIqM0RWkIv8gcUMsQwoizB0Wbe+0May7Q0kTLH42n6nsOJ/Pl
8J3LuTEvMewVe05j7uZTwhof0kSuKR2GOO0CioWGho54aoeATa1COaTdpd9MOP/4
XyNHOzdB3eeJauSyhTnNdHboKs/qqLzchmOZYib2L9qfLMwXKHTgUpmufkN0tkFY
wusvtEd57FL1cgePg962xLO8X7eiGm99I3Td4MzvCe1aFC15T7S93JgkgUlKws0f
RbhuroFTq3AKi9LVl7JqhO2702We5oH3H4+mRNnag9Dt
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:32 2024 by rpki-client on console-fra.rpki-client.org