Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/cffff8-3530-4e5b-a5e2-c77905fbba7b/1/pylp_Uh4qb4EWwpwQMs7BXBY9S8.roa
File: pylp_Uh4qb4EWwpwQMs7BXBY9S8.roa (raw, json)
Hash identifier: b5rkFnieOmYt3pd0q9/8p2kLsuHtSku8RP8TsBs6gZw=
Subject key identifier: A7:29:69:FD:48:78:A9:BE:04:5B:0A:70:40:CB:3B:05:70:58:F5:2F
Certificate issuer: /CN=45bbd2193642530a017f4f1cbe562e2170b3dfbd
Certificate serial: 01856F9DD015B2D30921BCD12FF0499DE894
Authority key identifier: 45:BB:D2:19:36:42:53:0A:01:7F:4F:1C:BE:56:2E:21:70:B3:DF:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RbvSGTZCUwoBf08cvlYuIXCz370.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/cffff8-3530-4e5b-a5e2-c77905fbba7b/1/pylp_Uh4qb4EWwpwQMs7BXBY9S8.roa
Signing time: Sun 01 Jan 2023 23:14:51 +0000
ROA not before: Sun 01 Jan 2023 23:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39855
IP address blocks: 45.157.138.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:d0:15:b2:d3:09:21:bc:d1:2f:f0:49:9d:e8:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45bbd2193642530a017f4f1cbe562e2170b3dfbd
Validity
Not Before: Jan 1 23:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a72969fd4878a9be045b0a7040cb3b057058f52f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:fe:df:42:28:34:61:f4:8b:68:eb:08:33:a1:
23:52:84:dc:e1:dd:34:d8:c8:2e:04:91:3d:76:6b:
4f:51:3e:2f:a5:62:cd:5b:da:63:d9:30:de:83:96:
f9:59:44:64:52:5f:c8:6e:5b:32:b8:3a:7c:54:50:
8a:82:89:b8:7f:e2:bc:11:0b:d5:2f:22:c9:dc:55:
00:bc:60:bf:25:88:10:13:59:a0:40:b5:78:7e:7f:
72:39:2a:2b:70:f3:06:8d:e9:59:8f:a2:9d:59:f0:
70:cf:e4:d9:46:4d:74:92:fc:60:c9:a6:41:56:5a:
18:57:cb:68:7a:7b:ac:b8:e2:cc:26:5d:2d:dc:60:
0c:d5:e2:5a:75:46:4f:8e:27:18:b9:13:50:cf:ff:
48:1d:7d:6a:d2:3d:8b:4a:09:a7:e2:93:34:e7:8e:
f7:d2:e7:72:56:57:0b:7c:f7:da:be:5e:76:bd:6b:
ad:41:d9:a6:8f:25:18:7d:bf:85:5f:6e:52:90:55:
3a:d5:09:0d:77:ab:19:fe:01:06:d6:9d:34:d9:6a:
4d:6e:c4:fd:83:89:27:95:52:c1:00:d7:8c:ba:47:
2a:2d:ea:bb:59:5f:22:40:bd:ab:fd:5f:e5:dc:91:
3c:fc:f9:22:06:37:ba:97:8f:7e:98:a4:65:4c:4c:
dc:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:29:69:FD:48:78:A9:BE:04:5B:0A:70:40:CB:3B:05:70:58:F5:2F
X509v3 Authority Key Identifier:
keyid:45:BB:D2:19:36:42:53:0A:01:7F:4F:1C:BE:56:2E:21:70:B3:DF:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RbvSGTZCUwoBf08cvlYuIXCz370.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/cffff8-3530-4e5b-a5e2-c77905fbba7b/1/pylp_Uh4qb4EWwpwQMs7BXBY9S8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/cffff8-3530-4e5b-a5e2-c77905fbba7b/1/RbvSGTZCUwoBf08cvlYuIXCz370.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.138.0/24
Signature Algorithm: sha256WithRSAEncryption
be:d6:42:cd:1a:dd:ce:28:83:91:ef:57:19:0e:ac:a6:83:71:
00:06:48:71:c7:b5:79:bd:9d:41:e4:1f:d1:72:c2:25:51:2e:
87:2f:7c:6e:f6:db:0d:cd:f4:98:37:25:97:f5:7d:05:fe:8e:
66:d4:48:8d:71:58:b1:87:6f:e2:b8:d6:4d:14:37:eb:12:ee:
68:0d:07:8e:15:42:23:95:8e:7d:6b:93:a0:3d:e8:14:b1:d4:
3d:51:0e:1b:38:79:c1:b4:04:7a:19:23:5a:92:37:df:87:b5:
7a:58:56:d9:fe:1b:c3:a2:64:19:82:df:eb:98:9f:94:db:9a:
2b:98:b7:02:26:c1:ad:55:b4:e5:f9:a9:66:8e:7e:e8:01:33:
21:61:da:2d:58:10:c1:41:c3:33:e5:ec:fc:e9:9a:2f:50:59:
b3:5f:e1:b1:3d:6e:18:1d:d4:b7:8f:5b:f6:6d:62:a7:b9:d7:
8c:c3:c9:f1:fb:4f:de:7b:93:31:c9:06:f8:ea:5d:03:61:ce:
2e:a9:38:f1:b6:f7:8e:a9:14:ba:f6:27:fc:e5:5e:2f:21:55:
0e:b1:84:23:e2:38:5e:7c:5e:17:1b:49:9f:d7:9a:35:cb:13:
18:01:df:cb:b6:47:e3:8c:50:7a:23:94:b1:27:bc:8a:2d:e1:
38:70:73:89
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvndAVstMJIbzRL/BJneiUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ1YmJkMjE5MzY0MjUzMGEwMTdmNGYxY2JlNTYyZTIxNzBi
M2RmYmQwHhcNMjMwMTAxMjMxNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNzI5NjlmZDQ4NzhhOWJlMDQ1YjBhNzA0MGNiM2IwNTcwNThmNTJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv/7fQig0YfSLaOsIM6EjUoTc4d00
2MguBJE9dmtPUT4vpWLNW9pj2TDeg5b5WURkUl/IblsyuDp8VFCKgom4f+K8EQvV
LyLJ3FUAvGC/JYgQE1mgQLV4fn9yOSorcPMGjelZj6KdWfBwz+TZRk10kvxgyaZB
VloYV8toenusuOLMJl0t3GAM1eJadUZPjicYuRNQz/9IHX1q0j2LSgmn4pM05473
0udyVlcLfPfavl52vWutQdmmjyUYfb+FX25SkFU61QkNd6sZ/gEG1p002WpNbsT9
g4knlVLBANeMukcqLeq7WV8iQL2r/V/l3JE8/PkiBje6l49+mKRlTEzc5QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKcpaf1IeKm+BFsKcEDLOwVwWPUvMB8GA1UdIwQY
MBaAFEW70hk2QlMKAX9PHL5WLiFws9+9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUmJ2U0dUWkNVd29CZjA4Y3ZsWXVJWEN6MzcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9jZmZmZjgtMzUzMC00ZTViLWE1ZTIt
Yzc3OTA1ZmJiYTdiLzEvcHlscF9VaDRxYjRFV3dwd1FNczdCWEJZOVM4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9jZmZmZjgtMzUzMC00ZTViLWE1ZTItYzc3OTA1ZmJiYTdi
LzEvUmJ2U0dUWkNVd29CZjA4Y3ZsWXVJWEN6MzcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZ2KMA0G
CSqGSIb3DQEBCwUAA4IBAQC+1kLNGt3OKIOR71cZDqymg3EABkhxx7V5vZ1B5B/R
csIlUS6HL3xu9tsNzfSYNyWX9X0F/o5m1EiNcVixh2/iuNZNFDfrEu5oDQeOFUIj
lY59a5OgPegUsdQ9UQ4bOHnBtAR6GSNakjffh7V6WFbZ/hvDomQZgt/rmJ+U25or
mLcCJsGtVbTl+almjn7oATMhYdotWBDBQcMz5ez86ZovUFmzX+GxPW4YHdS3j1v2
bWKnudeMw8nx+0/ee5MxyQb46l0DYc4uqTjxtveOqRS69if85V4vIVUOsYQj4jhe
fF4XG0mf15o1yxMYAd/LtkfjjFB6I5SxJ7yKLeE4cHOJ
-----END CERTIFICATE-----
Generated at Tue Jan 2 09:18:57 2024 by rpki-client on console-fra.rpki-client.org