Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/cffff8-3530-4e5b-a5e2-c77905fbba7b/1/_bZjnYbnrh2q1wI4qorDTpHEAkk.roa
File: _bZjnYbnrh2q1wI4qorDTpHEAkk.roa (raw, json)
Hash identifier: tcFeFbij8pi9QRfa7xsTOwt+WZVyNcLha8E0ZgahxpI=
Subject key identifier: FD:B6:63:9D:86:E7:AE:1D:AA:D7:02:38:AA:8A:C3:4E:91:C4:02:49
Certificate issuer: /CN=45bbd2193642530a017f4f1cbe562e2170b3dfbd
Certificate serial: 018CC8DCF0D5AB2890C923959FBD2DAE7FB6
Authority key identifier: 45:BB:D2:19:36:42:53:0A:01:7F:4F:1C:BE:56:2E:21:70:B3:DF:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RbvSGTZCUwoBf08cvlYuIXCz370.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/cffff8-3530-4e5b-a5e2-c77905fbba7b/1/_bZjnYbnrh2q1wI4qorDTpHEAkk.roa
Signing time: Tue 02 Jan 2024 06:29:31 +0000
ROA not before: Tue 02 Jan 2024 06:29:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39855
IP address blocks: 45.157.138.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Jan 2024 18:25:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:dc:f0:d5:ab:28:90:c9:23:95:9f:bd:2d:ae:7f:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45bbd2193642530a017f4f1cbe562e2170b3dfbd
Validity
Not Before: Jan 2 06:29:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fdb6639d86e7ae1daad70238aa8ac34e91c40249
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:06:8f:3c:4c:3b:8d:46:89:a4:82:3a:23:31:
2d:a1:36:c3:dd:05:c7:56:a8:aa:94:e5:06:1c:ad:
5e:dc:bd:be:f7:17:af:00:82:ea:d0:fb:a5:db:65:
6c:86:88:e8:2c:0d:ac:9a:83:45:95:9d:62:42:e7:
eb:f1:30:ac:16:b4:06:2c:42:13:7b:49:c7:de:ce:
f9:0d:cf:75:be:03:93:78:74:59:d3:88:61:67:da:
11:5f:bb:a2:02:04:9a:8a:42:22:04:ac:65:16:b0:
75:31:68:24:21:53:32:8c:39:25:70:c6:97:11:96:
e7:ff:4a:c8:a9:37:df:35:c0:72:fa:97:a7:2f:ec:
62:5e:b3:ad:75:33:57:bb:92:d1:ca:ad:75:e4:3e:
4b:16:41:62:cf:09:5d:b1:46:b6:c2:c0:df:8b:a2:
4e:31:7b:2e:3d:00:4a:a3:5e:a7:ac:47:83:d2:33:
21:26:66:ae:9c:0b:6f:34:bd:6b:5f:28:ca:03:f0:
9c:89:c0:5e:6d:3d:95:32:fa:42:d5:5d:bf:22:9e:
ce:9a:e5:87:ed:b6:bb:cd:cc:e3:be:77:20:f9:ec:
c1:f6:9a:0d:cf:7e:50:97:c3:bc:77:7a:29:a3:35:
81:6e:c3:3d:17:9f:1a:c9:7b:c9:84:df:44:b9:e2:
ec:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:B6:63:9D:86:E7:AE:1D:AA:D7:02:38:AA:8A:C3:4E:91:C4:02:49
X509v3 Authority Key Identifier:
keyid:45:BB:D2:19:36:42:53:0A:01:7F:4F:1C:BE:56:2E:21:70:B3:DF:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RbvSGTZCUwoBf08cvlYuIXCz370.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/cffff8-3530-4e5b-a5e2-c77905fbba7b/1/_bZjnYbnrh2q1wI4qorDTpHEAkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/cffff8-3530-4e5b-a5e2-c77905fbba7b/1/RbvSGTZCUwoBf08cvlYuIXCz370.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.138.0/24
Signature Algorithm: sha256WithRSAEncryption
08:b6:75:1c:c9:08:2a:ec:a9:47:c3:21:28:aa:30:18:19:28:
0d:50:eb:13:f3:08:b2:ff:52:2b:5f:da:82:31:3e:3e:35:88:
15:a3:4a:b7:73:a3:55:be:0f:d2:66:e2:a7:f2:83:35:16:d0:
04:ba:37:7e:c9:ab:e3:12:9b:6e:85:d7:de:13:98:d7:63:53:
2b:d5:8b:cc:36:d5:fe:8a:5e:21:b4:3e:78:29:60:6c:bf:76:
03:94:bd:b8:c8:8e:4d:b9:15:0a:fb:48:fa:e4:ee:a9:a8:34:
ad:57:6d:76:5d:07:bb:61:0a:dc:1f:51:b1:ca:32:da:25:32:
3d:28:bc:0d:f3:68:54:9a:4a:e4:1a:e0:33:51:1b:82:6b:74:
df:c9:3f:0d:bd:79:a6:8c:05:1c:4f:13:75:cd:97:ed:12:75:
46:b2:9a:92:c2:ce:5e:14:f1:c2:a0:7e:4d:20:ce:d6:2c:e0:
dd:b9:e7:fb:7a:d6:38:58:a6:26:c7:27:b9:e8:6b:08:03:af:
d4:31:1f:c5:c5:c4:f7:15:ee:4e:09:bf:5f:19:bc:ce:a7:73:
04:ef:05:c4:84:26:1e:50:5c:04:70:25:e7:0d:8a:bb:3d:93:
f2:cf:53:0f:63:ce:55:c2:fc:06:2b:ed:89:c2:8c:c2:ce:9c:
ee:54:8b:28
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzI3PDVqyiQySOVn70trn+2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ1YmJkMjE5MzY0MjUzMGEwMTdmNGYxY2JlNTYyZTIxNzBi
M2RmYmQwHhcNMjQwMTAyMDYyOTMxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZGI2NjM5ZDg2ZTdhZTFkYWFkNzAyMzhhYThhYzM0ZTkxYzQwMjQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuQaPPEw7jUaJpII6IzEtoTbD3QXH
VqiqlOUGHK1e3L2+9xevAILq0Pul22VshojoLA2smoNFlZ1iQufr8TCsFrQGLEIT
e0nH3s75Dc91vgOTeHRZ04hhZ9oRX7uiAgSaikIiBKxlFrB1MWgkIVMyjDklcMaX
EZbn/0rIqTffNcBy+penL+xiXrOtdTNXu5LRyq115D5LFkFizwldsUa2wsDfi6JO
MXsuPQBKo16nrEeD0jMhJmaunAtvNL1rXyjKA/CcicBebT2VMvpC1V2/Ip7OmuWH
7ba7zczjvncg+ezB9poNz35Ql8O8d3opozWBbsM9F58ayXvJhN9EueLsywIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP22Y52G564dqtcCOKqKw06RxAJJMB8GA1UdIwQY
MBaAFEW70hk2QlMKAX9PHL5WLiFws9+9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUmJ2U0dUWkNVd29CZjA4Y3ZsWXVJWEN6MzcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9jZmZmZjgtMzUzMC00ZTViLWE1ZTIt
Yzc3OTA1ZmJiYTdiLzEvX2Jaam5ZYm5yaDJxMXdJNHFvckRUcEhFQWtrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9jZmZmZjgtMzUzMC00ZTViLWE1ZTItYzc3OTA1ZmJiYTdi
LzEvUmJ2U0dUWkNVd29CZjA4Y3ZsWXVJWEN6MzcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZ2KMA0G
CSqGSIb3DQEBCwUAA4IBAQAItnUcyQgq7KlHwyEoqjAYGSgNUOsT8wiy/1IrX9qC
MT4+NYgVo0q3c6NVvg/SZuKn8oM1FtAEujd+yavjEptuhdfeE5jXY1Mr1YvMNtX+
il4htD54KWBsv3YDlL24yI5NuRUK+0j65O6pqDStV212XQe7YQrcH1GxyjLaJTI9
KLwN82hUmkrkGuAzURuCa3TfyT8NvXmmjAUcTxN1zZftEnVGspqSws5eFPHCoH5N
IM7WLODduef7etY4WKYmxye56GsIA6/UMR/FxcT3Fe5OCb9fGbzOp3ME7wXEhCYe
UFwEcCXnDYq7PZPyz1MPY85VwvwGK+2JwozCzpzuVIso
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:37 2024 by rpki-client on console-ams.rpki-client.org