Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/lhDh3LJ9oGmhm__DvVu-Nj1eTnY.roa
File: lhDh3LJ9oGmhm__DvVu-Nj1eTnY.roa (raw, json)
Hash identifier: w05bfwdFLLMLI03rru0QqptT/tv27/I2gizOdVre9u0=
Subject key identifier: 96:10:E1:DC:B2:7D:A0:69:A1:9B:FF:C3:BD:5B:BE:36:3D:5E:4E:76
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 018A0991CFE2838E635558369085D2F638BA
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/lhDh3LJ9oGmhm__DvVu-Nj1eTnY.roa
Signing time: Fri 18 Aug 2023 16:54:25 +0000
ROA not before: Fri 18 Aug 2023 16:54:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216456
IP address blocks: 45.81.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Sep 2023 15:35:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:09:91:cf:e2:83:8e:63:55:58:36:90:85:d2:f6:38:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Aug 18 16:54:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9610e1dcb27da069a19bffc3bd5bbe363d5e4e76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:12:37:a4:4c:6d:b9:a5:99:f7:fe:9e:eb:26:
a4:f6:1e:87:bc:5c:b8:70:7a:d2:44:5d:a2:c7:01:
73:5e:e2:c4:75:ac:68:91:a3:ba:7a:3c:48:ce:18:
34:07:90:80:9d:76:da:64:1d:f9:b8:f2:0f:12:d1:
b4:69:d5:45:eb:a2:33:48:d8:08:e9:c2:cb:67:97:
bb:46:85:8d:75:aa:1c:be:b0:47:9a:0a:81:69:fa:
8f:55:de:a1:23:50:ec:e8:a0:56:b9:18:8f:25:b4:
53:ac:bd:d9:da:89:a6:db:d3:1d:1e:e0:37:0f:e8:
95:6b:06:b6:a4:9c:bd:f9:42:73:c7:00:3b:b4:bf:
6d:0f:1a:07:05:d8:d9:ce:ab:53:f7:58:ef:ab:f1:
e5:e8:3a:7d:c6:27:97:20:c8:63:3d:09:9a:70:8c:
89:f1:17:77:55:ff:c1:8d:75:6f:58:9a:69:c7:43:
2c:7e:59:37:7f:ab:e2:da:34:dc:b2:f1:66:c1:7f:
fa:52:ac:03:a6:d3:df:d9:45:0e:dc:6c:35:ca:fc:
bb:a4:df:51:89:50:8a:98:ca:d8:d4:8a:95:bb:97:
b2:b5:89:a1:5d:95:a6:4e:9c:c2:ba:69:9d:fb:47:
09:90:41:0b:69:ab:51:f8:28:35:a0:e2:0b:58:4e:
06:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:10:E1:DC:B2:7D:A0:69:A1:9B:FF:C3:BD:5B:BE:36:3D:5E:4E:76
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/lhDh3LJ9oGmhm__DvVu-Nj1eTnY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.20.0/24
Signature Algorithm: sha256WithRSAEncryption
93:3e:27:ff:42:7d:ef:7c:ce:93:00:6f:31:42:73:de:b7:b7:
b3:13:e2:a8:5a:de:f1:2f:b7:f4:6e:d6:9b:80:93:a4:f3:b3:
09:4b:67:f9:19:a4:35:19:5f:45:98:de:d7:fe:2e:71:73:77:
68:40:0a:16:43:2e:0c:0c:9d:96:de:21:9e:6f:3d:50:72:9e:
a6:42:6f:8e:3a:41:21:0e:5f:64:c5:5c:b5:db:0a:ac:94:0e:
f5:ec:59:b1:c8:61:74:1e:09:41:de:ae:92:e8:fe:3b:9e:60:
60:b4:0a:5f:22:6e:c5:47:0d:0e:b4:58:45:0d:03:60:ed:2f:
73:15:66:d3:12:f5:3b:15:5b:28:62:55:20:4b:c0:5c:2c:62:
b6:97:1d:b7:9c:e8:99:35:54:87:a6:e6:c0:41:90:fc:30:14:
2a:4e:41:09:e2:a6:44:b4:52:cb:4b:7f:13:59:d3:f0:13:fe:
c9:87:82:c6:c2:81:b6:05:a4:9d:04:55:f4:9b:f6:d8:07:8a:
3f:c2:71:1d:f2:77:d6:21:a5:15:07:59:2f:d4:d7:50:6a:17:
d8:01:67:69:96:53:10:b4:be:65:7d:ca:e8:e1:3e:5b:6f:4d:
14:d7:89:57:1f:2a:fc:8a:f2:ae:32:4d:c6:22:62:2b:94:71:
33:a8:89:8c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYoJkc/ig45jVVg2kIXS9ji6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxYTdiMGQ4ZGU4MjUxZDM2ZDdjODNmYWY2YmM3ZWZlYzcz
YjUwMzQwHhcNMjMwODE4MTY1NDI1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NjEwZTFkY2IyN2RhMDY5YTE5YmZmYzNiZDViYmUzNjNkNWU0ZTc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArhI3pExtuaWZ9/6e6yak9h6HvFy4
cHrSRF2ixwFzXuLEdaxokaO6ejxIzhg0B5CAnXbaZB35uPIPEtG0adVF66IzSNgI
6cLLZ5e7RoWNdaocvrBHmgqBafqPVd6hI1Ds6KBWuRiPJbRTrL3Z2omm29MdHuA3
D+iVawa2pJy9+UJzxwA7tL9tDxoHBdjZzqtT91jvq/Hl6Dp9xieXIMhjPQmacIyJ
8Rd3Vf/BjXVvWJppx0Msflk3f6vi2jTcsvFmwX/6UqwDptPf2UUO3Gw1yvy7pN9R
iVCKmMrY1IqVu5eytYmhXZWmTpzCummd+0cJkEELaatR+Cg1oOILWE4GQwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJYQ4dyyfaBpoZv/w71bvjY9Xk52MB8GA1UdIwQY
MBaAFLGnsNjeglHTbXyD+va8fv7HO1A0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2It
Mzk0YWNkMjFmMzliLzEvbGhEaDNMSjlvR21obV9fRHZWdS1OajFlVG5ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2ItMzk0YWNkMjFmMzli
LzEvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVEUMA0G
CSqGSIb3DQEBCwUAA4IBAQCTPif/Qn3vfM6TAG8xQnPet7ezE+KoWt7xL7f0btab
gJOk87MJS2f5GaQ1GV9FmN7X/i5xc3doQAoWQy4MDJ2W3iGebz1Qcp6mQm+OOkEh
Dl9kxVy12wqslA717FmxyGF0HglB3q6S6P47nmBgtApfIm7FRw0OtFhFDQNg7S9z
FWbTEvU7FVsoYlUgS8BcLGK2lx23nOiZNVSHpubAQZD8MBQqTkEJ4qZEtFLLS38T
WdPwE/7Jh4LGwoG2BaSdBFX0m/bYB4o/wnEd8nfWIaUVB1kv1NdQahfYAWdpllMQ
tL5lfcro4T5bb00U14lXHyr8ivKuMk3GImIrlHEzqImM
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:49 2024 by rpki-client on console-fra.rpki-client.org