Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/44a155-4d02-4002-8f3d-c36d1c460e2f/1/een0sCG8JFH8A_Eyn-tNnczqzsM.roa
File: een0sCG8JFH8A_Eyn-tNnczqzsM.roa (raw, json)
Hash identifier: fqdMXuU00W75HgDMtMjOuAC/tBOG1iW35aOmF5n+xeE=
Subject key identifier: 79:E9:F4:B0:21:BC:24:51:FC:03:F1:32:9F:EB:4D:9D:CC:EA:CE:C3
Certificate issuer: /CN=5c61dcd3eb50c83d68060bcba4af152204193503
Certificate serial: 0189BBE33CC83224AD4ABB255F1943551932
Authority key identifier: 5C:61:DC:D3:EB:50:C8:3D:68:06:0B:CB:A4:AF:15:22:04:19:35:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGHc0-tQyD1oBgvLpK8VIgQZNQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/44a155-4d02-4002-8f3d-c36d1c460e2f/1/een0sCG8JFH8A_Eyn-tNnczqzsM.roa
Signing time: Thu 03 Aug 2023 14:52:58 +0000
ROA not before: Thu 03 Aug 2023 14:52:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208570
IP address blocks: 45.128.120.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:bb:e3:3c:c8:32:24:ad:4a:bb:25:5f:19:43:55:19:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c61dcd3eb50c83d68060bcba4af152204193503
Validity
Not Before: Aug 3 14:52:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=79e9f4b021bc2451fc03f1329feb4d9dcceacec3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:9f:56:86:b2:f0:56:be:e7:f1:db:06:79:ba:
fb:ca:70:6d:40:4c:67:11:6c:7d:d2:08:00:2f:55:
d5:60:01:1f:1c:6e:fd:15:7b:08:2e:0c:25:70:e1:
2f:7f:ba:89:76:c6:4d:c6:08:10:24:b6:37:3c:7b:
59:66:34:5b:63:4a:34:33:5b:6a:48:61:ea:f8:ca:
62:5c:a6:a0:4f:d4:2d:c0:ee:4d:b6:77:42:18:55:
cb:d0:e2:93:9d:32:cf:0a:45:1b:13:11:92:54:c8:
18:28:00:64:a9:75:2c:72:85:44:20:04:b0:35:49:
f4:68:26:f9:c4:c0:55:55:36:a9:b6:6d:b1:32:0e:
33:ef:12:69:5d:f1:0e:23:d7:50:1e:27:0b:76:2a:
ed:24:c7:76:a1:2f:11:9a:52:fb:28:32:2a:fd:bc:
8a:00:6e:f7:6c:d0:63:66:92:b2:7b:ad:7f:cf:48:
f4:f1:1f:62:f6:0f:28:29:ec:07:ef:67:43:7e:31:
b6:37:c5:9b:05:ab:1a:5a:0e:b7:83:09:b4:fd:4f:
e8:fe:5b:65:6d:24:04:d3:b8:f9:ee:96:8c:68:52:
e8:23:55:aa:58:f1:c3:c9:a2:72:79:96:61:e7:e0:
e0:95:88:bc:b3:95:de:7d:e9:05:20:eb:35:2b:f3:
ad:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:E9:F4:B0:21:BC:24:51:FC:03:F1:32:9F:EB:4D:9D:CC:EA:CE:C3
X509v3 Authority Key Identifier:
keyid:5C:61:DC:D3:EB:50:C8:3D:68:06:0B:CB:A4:AF:15:22:04:19:35:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGHc0-tQyD1oBgvLpK8VIgQZNQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/44a155-4d02-4002-8f3d-c36d1c460e2f/1/een0sCG8JFH8A_Eyn-tNnczqzsM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/44a155-4d02-4002-8f3d-c36d1c460e2f/1/XGHc0-tQyD1oBgvLpK8VIgQZNQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.120.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:b3:4b:39:df:96:d8:92:f8:3f:05:ff:e0:a4:42:0b:be:73:
f7:99:11:e0:e4:be:29:dc:93:ae:6f:6e:9d:1e:ea:de:fb:69:
0a:1e:12:46:63:aa:b9:2a:43:04:04:c0:25:fa:34:fd:3a:92:
ac:20:35:96:ec:a8:49:b9:b1:8c:ed:7a:7b:19:3b:24:12:fb:
ff:b0:1f:5d:67:a1:7d:73:f2:e5:bf:3e:4d:c2:c9:42:fc:0a:
f5:d1:ff:3c:c3:c8:55:d0:07:ba:f2:78:42:28:f2:1f:7b:22:
61:14:32:57:31:4c:45:7b:74:b7:b8:02:ed:ef:0f:0b:6c:83:
d1:b3:30:ec:09:0a:c8:b0:48:fa:07:33:db:c7:b6:17:f1:78:
8d:2b:90:8a:d8:54:b5:5d:8f:1b:72:e8:4b:47:cb:5f:30:c5:
af:bd:1b:c3:48:29:79:0a:9e:f5:ae:ae:1a:33:cb:9d:40:d9:
ed:e0:66:4a:9d:3d:c3:5f:24:d2:01:19:e4:f6:06:ca:4b:6c:
4b:23:72:08:d1:7e:30:ea:94:4f:67:1a:a5:d9:aa:a5:1b:a1:
d1:15:46:3a:ac:56:72:df:6e:1c:ae:ce:10:96:50:20:be:f1:
30:64:f1:a5:b0:e2:5e:dd:b5:1d:9d:61:0a:10:95:b4:87:fc:
83:43:3f:89
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYm74zzIMiStSrslXxlDVRkyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjNjFkY2QzZWI1MGM4M2Q2ODA2MGJjYmE0YWYxNTIyMDQx
OTM1MDMwHhcNMjMwODAzMTQ1MjU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3OWU5ZjRiMDIxYmMyNDUxZmMwM2YxMzI5ZmViNGQ5ZGNjZWFjZWMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmZ9WhrLwVr7n8dsGebr7ynBtQExn
EWx90ggAL1XVYAEfHG79FXsILgwlcOEvf7qJdsZNxggQJLY3PHtZZjRbY0o0M1tq
SGHq+MpiXKagT9QtwO5NtndCGFXL0OKTnTLPCkUbExGSVMgYKABkqXUscoVEIASw
NUn0aCb5xMBVVTaptm2xMg4z7xJpXfEOI9dQHicLdirtJMd2oS8RmlL7KDIq/byK
AG73bNBjZpKye61/z0j08R9i9g8oKewH72dDfjG2N8WbBasaWg63gwm0/U/o/ltl
bSQE07j57paMaFLoI1WqWPHDyaJyeZZh5+DglYi8s5XefekFIOs1K/OtWQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHnp9LAhvCRR/APxMp/rTZ3M6s7DMB8GA1UdIwQY
MBaAFFxh3NPrUMg9aAYLy6SvFSIEGTUDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWEdIYzAtdFF5RDFvQmd2THBLOFZJZ1FaTlFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS80NGExNTUtNGQwMi00MDAyLThmM2Qt
YzM2ZDFjNDYwZTJmLzEvZWVuMHNDRzhKRkg4QV9FeW4tdE5uY3pxenNNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS80NGExNTUtNGQwMi00MDAyLThmM2QtYzM2ZDFjNDYwZTJm
LzEvWEdIYzAtdFF5RDFvQmd2THBLOFZJZ1FaTlFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLYB4MA0G
CSqGSIb3DQEBCwUAA4IBAQBus0s535bYkvg/Bf/gpEILvnP3mRHg5L4p3JOub26d
Hure+2kKHhJGY6q5KkMEBMAl+jT9OpKsIDWW7KhJubGM7Xp7GTskEvv/sB9dZ6F9
c/Llvz5NwslC/Ar10f88w8hV0Ae68nhCKPIfeyJhFDJXMUxFe3S3uALt7w8LbIPR
szDsCQrIsEj6BzPbx7YX8XiNK5CK2FS1XY8bcuhLR8tfMMWvvRvDSCl5Cp71rq4a
M8udQNnt4GZKnT3DXyTSARnk9gbKS2xLI3II0X4w6pRPZxql2aqlG6HRFUY6rFZy
324crs4QllAgvvEwZPGlsOJe3bUdnWEKEJW0h/yDQz+J
-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:22 2024 by rpki-client on console-fra.rpki-client.org