Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/D9Km2NZxquZYeuxvIXYCEUp9AHM.roa
File: D9Km2NZxquZYeuxvIXYCEUp9AHM.roa (raw, json)
Hash identifier: crqkGx6ZT3QYW9srKYH4eSBU77vCe9SFGrYu5bhxWfE=
Subject key identifier: 0F:D2:A6:D8:D6:71:AA:E6:58:7A:EC:6F:21:76:02:11:4A:7D:00:73
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 019083B161C0BA0F9C858CEACD2C312B5A90
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/D9Km2NZxquZYeuxvIXYCEUp9AHM.roa
Signing time: Fri 05 Jul 2024 16:19:18 +0000
ROA not before: Fri 05 Jul 2024 16:19:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51396
IP address blocks: 45.89.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 07 Jul 2024 10:53:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:83:b1:61:c0:ba:0f:9c:85:8c:ea:cd:2c:31:2b:5a:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Jul 5 16:19:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0fd2a6d8d671aae6587aec6f217602114a7d0073
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:52:39:e7:51:e8:f6:7f:d1:43:2a:45:7c:aa:
3c:85:94:e3:2c:d3:5e:25:0b:1b:d3:44:ec:b1:8b:
1e:b3:68:f2:22:fd:80:91:b6:5d:45:94:1c:50:55:
92:ff:18:72:f6:9b:1e:88:38:38:e6:47:4f:0e:99:
6a:85:c4:19:64:1f:57:d7:bb:33:d4:10:f6:4f:90:
3e:f8:7c:98:11:7d:90:44:f3:bd:89:91:75:ab:01:
e3:75:8f:c0:00:c2:03:60:4d:a5:35:bc:68:cb:36:
bb:a7:44:f0:45:04:45:5a:bb:2b:a3:8c:23:ff:c3:
34:d5:0b:c6:61:6c:23:54:06:d4:b7:00:b5:51:26:
f9:64:2c:bc:55:4e:4a:a3:08:f2:9e:17:0b:d4:05:
82:19:fd:df:a2:26:3d:fc:45:aa:6b:eb:5e:1b:df:
ad:52:a5:76:28:3e:d5:5d:0d:e0:af:43:21:88:71:
55:a8:f1:6b:de:3f:48:e0:a5:19:67:51:df:b5:f6:
63:c9:ba:ea:e7:7e:c7:90:c8:f5:2e:f4:fa:8f:96:
14:4a:0a:a3:75:e2:78:7a:36:31:16:54:1a:80:4d:
b0:c9:59:d3:e1:e6:19:6e:a7:8c:dd:36:34:ce:c4:
38:37:1d:78:cb:df:80:c1:c7:b5:c2:fe:3f:c7:bd:
2d:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:D2:A6:D8:D6:71:AA:E6:58:7A:EC:6F:21:76:02:11:4A:7D:00:73
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/D9Km2NZxquZYeuxvIXYCEUp9AHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.62.0/24
Signature Algorithm: sha256WithRSAEncryption
19:e4:56:bc:ed:7d:ec:56:53:e4:6b:88:0a:4f:41:37:44:c6:
60:0a:51:38:ae:8e:c7:f5:15:0a:87:83:51:1f:ac:6d:1c:e1:
9f:c3:b2:13:35:b7:14:78:29:d4:2e:76:a0:65:2a:c9:d9:82:
27:88:81:b6:42:e9:3c:f2:40:3d:91:a2:f8:03:a0:9a:c1:49:
68:97:44:50:02:fa:4f:10:b1:eb:1b:3f:8d:2d:ec:f3:5f:41:
18:9c:b4:09:69:d9:57:65:69:49:3f:ac:d6:0e:fa:c2:f8:da:
9f:b2:d0:c1:8d:3d:ca:a2:f2:24:23:bc:0f:c4:63:25:15:f7:
c2:7f:ea:b2:2e:87:f9:94:4f:4e:2a:3d:44:de:e8:f9:50:79:
74:a9:d8:ae:5a:d3:6d:8d:f8:2a:96:7f:dd:65:0e:47:32:35:
c2:5c:b5:8d:17:be:31:81:2b:7f:ce:e3:d8:81:55:04:26:1d:
f2:88:56:9e:44:42:26:93:a2:8f:91:dd:64:c1:d3:a3:79:6c:
3e:5c:78:d6:7a:d9:ed:05:83:9c:9d:da:01:94:5d:5b:56:61:
67:79:62:8f:63:11:f5:3b:03:74:b7:b1:d0:a4:56:6c:59:7d:
56:74:35:ff:15:cc:22:9b:c3:c1:32:c5:38:39:7c:0b:d6:8c:
b5:ed:21:4f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZCDsWHAug+chYzqzSwxK1qQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmODQxMTM1NDVkOTAwMDc2MGY2NjA2MmE0MjIxOTMzYTJl
OTU5ZDgwHhcNMjQwNzA1MTYxOTE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZmQyYTZkOGQ2NzFhYWU2NTg3YWVjNmYyMTc2MDIxMTRhN2QwMDczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7VI551Ho9n/RQypFfKo8hZTjLNNe
JQsb00TssYses2jyIv2AkbZdRZQcUFWS/xhy9pseiDg45kdPDplqhcQZZB9X17sz
1BD2T5A++HyYEX2QRPO9iZF1qwHjdY/AAMIDYE2lNbxoyza7p0TwRQRFWrsro4wj
/8M01QvGYWwjVAbUtwC1USb5ZCy8VU5KowjynhcL1AWCGf3foiY9/EWqa+teG9+t
UqV2KD7VXQ3gr0MhiHFVqPFr3j9I4KUZZ1HftfZjybrq537HkMj1LvT6j5YUSgqj
deJ4ejYxFlQagE2wyVnT4eYZbqeM3TY0zsQ4Nx14y9+Awce1wv4/x70tbwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA/SptjWcarmWHrsbyF2AhFKfQBzMB8GA1UdIwQY
MBaAFL+EETVF2QAHYPZgYqQiGTOi6VnYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjRRUk5VWFpBQWRnOW1CaXBDSVpNNkxwV2RnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8zMGRjODUtMmRkOC00YjFjLWIxNTEt
NGJkNjNhZGM3MzU0LzEvRDlLbTJOWnhxdVpZZXV4dklYWUNFVXA5QUhNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS8zMGRjODUtMmRkOC00YjFjLWIxNTEtNGJkNjNhZGM3MzU0
LzEvdjRRUk5VWFpBQWRnOW1CaXBDSVpNNkxwV2RnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVk+MA0G
CSqGSIb3DQEBCwUAA4IBAQAZ5Fa87X3sVlPka4gKT0E3RMZgClE4ro7H9RUKh4NR
H6xtHOGfw7ITNbcUeCnULnagZSrJ2YIniIG2Quk88kA9kaL4A6CawUlol0RQAvpP
ELHrGz+NLezzX0EYnLQJadlXZWlJP6zWDvrC+NqfstDBjT3KovIkI7wPxGMlFffC
f+qyLof5lE9OKj1E3uj5UHl0qdiuWtNtjfgqln/dZQ5HMjXCXLWNF74xgSt/zuPY
gVUEJh3yiFaeREImk6KPkd1kwdOjeWw+XHjWetntBYOcndoBlF1bVmFneWKPYxH1
OwN0t7HQpFZsWX1WdDX/Fcwim8PBMsU4OXwL1oy17SFP
-----END CERTIFICATE-----
Generated at Sun Jul 7 12:27:42 2024 by rpki-client on console-fra.rpki-client.org