Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/44a155-4d02-4002-8f3d-c36d1c460e2f/1/xkDgnx_4DLl_VjsZQnQYM6cpiAM.roa
File: xkDgnx_4DLl_VjsZQnQYM6cpiAM.roa (raw, json)
Hash identifier: GzIChHLZreLn7E1gsKcZcDVa4cnuXPpzHqY+FMLSCLw=
Subject key identifier: C6:40:E0:9F:1F:F8:0C:B9:7F:56:3B:19:42:74:18:33:A7:29:88:03
Certificate issuer: /CN=5c61dcd3eb50c83d68060bcba4af152204193503
Certificate serial: 018CC424761657E5B187BBAAD97E25B9ECCF
Authority key identifier: 5C:61:DC:D3:EB:50:C8:3D:68:06:0B:CB:A4:AF:15:22:04:19:35:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGHc0-tQyD1oBgvLpK8VIgQZNQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/44a155-4d02-4002-8f3d-c36d1c460e2f/1/xkDgnx_4DLl_VjsZQnQYM6cpiAM.roa
Signing time: Mon 01 Jan 2024 08:29:33 +0000
ROA not before: Mon 01 Jan 2024 08:29:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208570
IP address blocks: 45.128.120.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Mar 2024 16:06:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:76:16:57:e5:b1:87:bb:aa:d9:7e:25:b9:ec:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c61dcd3eb50c83d68060bcba4af152204193503
Validity
Not Before: Jan 1 08:29:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c640e09f1ff80cb97f563b1942741833a7298803
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ce:01:c6:07:29:cb:59:f8:bc:ec:90:98:66:
3c:f4:1d:c3:fe:13:95:64:11:e4:ab:e0:76:55:1f:
b4:e9:84:d9:f3:45:11:5c:53:d3:b0:7d:6c:f8:29:
29:68:ca:e0:63:17:b1:83:88:6d:98:58:af:a7:1a:
22:a8:2c:18:d3:f8:54:3e:ed:7d:e4:49:c7:4b:6b:
ec:32:16:0d:76:8e:0b:dd:1a:9a:21:c9:ef:d8:66:
2b:fb:c6:4c:ee:6e:d5:ad:84:45:30:2d:dc:c0:e4:
56:34:79:7e:d2:8c:11:31:ed:2a:2c:57:a9:7c:b5:
9c:2e:b4:2c:92:b9:02:26:fe:6c:e1:2c:89:b3:eb:
d8:18:2d:bb:f2:7c:86:f2:68:f6:9b:68:1d:f0:6d:
68:34:21:09:23:8b:3c:f5:ef:83:67:4f:a5:bb:e2:
13:0a:0d:31:4f:e5:3f:4b:46:15:a4:3f:f2:aa:82:
8d:14:c5:a1:ce:8d:42:8f:6f:61:28:b1:46:e4:5d:
14:9f:30:5b:d8:10:3e:18:69:18:53:bd:c1:87:85:
f7:3d:e5:9f:c9:cb:8c:03:7e:13:36:42:4e:f1:a5:
fa:d3:14:a3:38:04:60:0d:f4:33:fd:58:f9:54:7c:
77:f8:5b:dc:ad:92:37:7c:e4:d5:85:74:f0:77:62:
35:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:40:E0:9F:1F:F8:0C:B9:7F:56:3B:19:42:74:18:33:A7:29:88:03
X509v3 Authority Key Identifier:
keyid:5C:61:DC:D3:EB:50:C8:3D:68:06:0B:CB:A4:AF:15:22:04:19:35:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGHc0-tQyD1oBgvLpK8VIgQZNQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/44a155-4d02-4002-8f3d-c36d1c460e2f/1/xkDgnx_4DLl_VjsZQnQYM6cpiAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/44a155-4d02-4002-8f3d-c36d1c460e2f/1/XGHc0-tQyD1oBgvLpK8VIgQZNQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.120.0/22
Signature Algorithm: sha256WithRSAEncryption
54:88:05:a0:d1:8d:0f:93:f5:32:e7:fe:23:bc:90:20:28:0a:
6e:7c:1b:cf:c2:48:64:7f:86:7d:a3:0f:57:81:4e:91:c3:0a:
e0:f6:de:0d:0c:f2:c8:63:70:23:a0:ad:42:ca:f3:bc:36:8c:
4b:33:e0:1b:97:e6:8f:cb:aa:11:6e:8d:d7:12:6a:9b:87:0c:
71:86:dd:d0:a6:0a:d4:3c:01:bb:44:97:ac:89:d9:dc:a2:5d:
df:db:9f:44:2e:f4:19:0e:c5:11:28:a3:30:3e:72:c5:33:40:
94:e2:90:c0:97:03:c8:f2:6a:e3:1c:2f:b4:62:2c:65:24:22:
6f:94:d6:9b:ff:16:a5:a1:c1:f4:3d:47:79:20:68:1b:f3:d7:
69:01:30:86:ae:dc:13:08:38:f8:8c:0b:3d:1a:de:5f:d4:9b:
23:67:ef:06:2c:ab:51:a1:a8:d9:be:30:bc:92:3a:87:cc:09:
1d:2a:1b:65:be:ee:a9:c1:d2:6a:8e:b8:cf:5f:6b:98:23:be:
18:65:77:06:26:7b:16:20:ca:56:d9:b1:ea:3e:33:2b:a7:ac:
5b:69:d7:b9:5a:ec:c5:eb:30:34:bf:a6:62:a9:27:55:6c:7a:
62:8a:e1:70:15:57:a8:22:21:21:99:94:3f:80:cd:3e:2a:8f:
8f:ec:2c:13
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzEJHYWV+Wxh7uq2X4luezPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjNjFkY2QzZWI1MGM4M2Q2ODA2MGJjYmE0YWYxNTIyMDQx
OTM1MDMwHhcNMjQwMTAxMDgyOTMzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNjQwZTA5ZjFmZjgwY2I5N2Y1NjNiMTk0Mjc0MTgzM2E3Mjk4ODAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy84Bxgcpy1n4vOyQmGY89B3D/hOV
ZBHkq+B2VR+06YTZ80URXFPTsH1s+CkpaMrgYxexg4htmFivpxoiqCwY0/hUPu19
5EnHS2vsMhYNdo4L3RqaIcnv2GYr+8ZM7m7VrYRFMC3cwORWNHl+0owRMe0qLFep
fLWcLrQskrkCJv5s4SyJs+vYGC278nyG8mj2m2gd8G1oNCEJI4s89e+DZ0+lu+IT
Cg0xT+U/S0YVpD/yqoKNFMWhzo1Cj29hKLFG5F0UnzBb2BA+GGkYU73Bh4X3PeWf
ycuMA34TNkJO8aX60xSjOARgDfQz/Vj5VHx3+FvcrZI3fOTVhXTwd2I1XwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMZA4J8f+Ay5f1Y7GUJ0GDOnKYgDMB8GA1UdIwQY
MBaAFFxh3NPrUMg9aAYLy6SvFSIEGTUDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWEdIYzAtdFF5RDFvQmd2THBLOFZJZ1FaTlFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS80NGExNTUtNGQwMi00MDAyLThmM2Qt
YzM2ZDFjNDYwZTJmLzEveGtEZ254XzRETGxfVmpzWlFuUVlNNmNwaUFNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS80NGExNTUtNGQwMi00MDAyLThmM2QtYzM2ZDFjNDYwZTJm
LzEvWEdIYzAtdFF5RDFvQmd2THBLOFZJZ1FaTlFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLYB4MA0G
CSqGSIb3DQEBCwUAA4IBAQBUiAWg0Y0Pk/Uy5/4jvJAgKApufBvPwkhkf4Z9ow9X
gU6Rwwrg9t4NDPLIY3AjoK1CyvO8NoxLM+Abl+aPy6oRbo3XEmqbhwxxht3QpgrU
PAG7RJesidncol3f259ELvQZDsURKKMwPnLFM0CU4pDAlwPI8mrjHC+0YixlJCJv
lNab/xalocH0PUd5IGgb89dpATCGrtwTCDj4jAs9Gt5f1JsjZ+8GLKtRoajZvjC8
kjqHzAkdKhtlvu6pwdJqjrjPX2uYI74YZXcGJnsWIMpW2bHqPjMrp6xbade5WuzF
6zA0v6ZiqSdVbHpiiuFwFVeoIiEhmZQ/gM0+Ko+P7CwT
-----END CERTIFICATE-----
Generated at Fri Mar 1 18:45:18 2024 by rpki-client on console-ams.rpki-client.org