Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/xAHZkvoVeC-cCDTrXCVWuddh8Zk.roa
File: xAHZkvoVeC-cCDTrXCVWuddh8Zk.roa (raw, json)
Hash identifier: +0+cI21PAxuT8sReaNUs3u+Ke09HivDJGWB0mYaXM0o=
Subject key identifier: C4:01:D9:92:FA:15:78:2F:9C:08:34:EB:5C:25:56:B9:D7:61:F1:99
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 01859A8EAB482F8920891D244F5457FECC86
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/xAHZkvoVeC-cCDTrXCVWuddh8Zk.roa
Signing time: Tue 10 Jan 2023 07:21:59 +0000
ROA not before: Tue 10 Jan 2023 07:21:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 45.150.66.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:9a:8e:ab:48:2f:89:20:89:1d:24:4f:54:57:fe:cc:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Jan 10 07:21:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c401d992fa15782f9c0834eb5c2556b9d761f199
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c2:a1:c1:9e:dd:e6:58:96:7f:fe:3f:f2:fa:
15:ff:d6:a5:e2:59:84:35:de:56:7b:b8:55:46:fa:
b8:d8:02:fc:c5:f6:73:97:f1:37:ac:c0:30:30:45:
25:98:af:7a:55:3d:88:70:d1:42:41:a8:d8:26:d8:
c6:93:9c:3b:f1:76:e2:75:97:8d:81:57:a1:59:9a:
ef:ec:85:7e:82:0e:83:33:17:05:bf:09:45:c6:9a:
92:52:21:8d:c8:f4:63:0d:5d:b9:38:04:10:a2:59:
12:f4:cf:49:a9:99:bd:8e:a4:94:ff:d9:5e:76:20:
4c:84:39:e8:fe:9f:93:15:0f:d4:c2:89:18:37:a3:
cd:2e:36:14:f6:d7:18:c1:39:c2:7d:d5:87:99:ee:
b0:88:87:c5:44:4c:8f:df:48:d2:cd:66:7b:67:e7:
18:fa:7b:09:1f:bc:bd:7a:80:24:16:75:56:39:d9:
21:fd:2a:1a:8e:4a:65:03:7a:04:3e:3c:f4:cf:98:
78:e8:0b:2b:d4:b3:bb:77:b6:ac:1a:a1:9a:f4:90:
37:7f:c4:85:09:cf:2b:78:4d:07:d3:5a:c1:2a:f8:
aa:e9:b5:cb:03:ba:e2:ad:29:2f:c4:57:b2:da:2a:
5b:80:58:25:a6:9f:8c:2d:69:d7:4e:4d:51:76:07:
bc:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:01:D9:92:FA:15:78:2F:9C:08:34:EB:5C:25:56:B9:D7:61:F1:99
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/xAHZkvoVeC-cCDTrXCVWuddh8Zk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.66.0/24
Signature Algorithm: sha256WithRSAEncryption
de:ae:9b:a6:ae:a3:ed:bf:6d:0b:d0:5d:78:a7:b3:88:67:02:
83:3a:32:67:c1:a5:d2:00:f9:36:49:55:89:e9:15:d4:a2:08:
21:01:9a:20:a5:87:38:ee:ae:94:7a:d9:2a:c4:1a:89:00:8c:
b3:a8:90:53:95:67:5c:a0:1c:a9:2a:e4:20:1f:c7:fe:09:d4:
a1:5d:f5:4b:8e:c0:31:73:0a:ec:aa:4c:3d:76:20:6e:98:99:
c1:59:29:a8:9f:86:c8:75:40:40:29:a0:f8:8f:6f:33:3f:78:
3c:a7:fe:f9:70:99:48:86:7e:c3:f9:c6:fc:93:ec:21:16:bb:
78:17:63:15:02:65:f6:3b:e4:3a:5c:83:2f:7c:75:16:7e:aa:
2e:fc:b0:27:d6:15:ed:2b:37:f0:48:f2:48:f4:ba:3f:fd:19:
59:ef:07:86:0d:bb:47:d6:33:cb:35:74:ee:98:be:c2:d1:c0:
51:cf:1e:2e:b8:78:71:a7:d9:eb:22:f5:22:25:80:12:4a:9b:
9d:48:78:a6:15:14:65:14:12:70:ac:05:91:72:ed:d1:93:0f:
b8:fc:14:6c:8e:4e:a2:c2:64:80:83:ad:54:be:63:a9:fd:50:
f8:9f:f5:1c:32:86:1e:d3:bd:de:6a:b5:39:ea:42:77:88:c5:
4c:fc:61:2b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYWajqtIL4kgiR0kT1RX/syGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmODQxMTM1NDVkOTAwMDc2MGY2NjA2MmE0MjIxOTMzYTJl
OTU5ZDgwHhcNMjMwMTEwMDcyMTU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNDAxZDk5MmZhMTU3ODJmOWMwODM0ZWI1YzI1NTZiOWQ3NjFmMTk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz8KhwZ7d5liWf/4/8voV/9al4lmE
Nd5We7hVRvq42AL8xfZzl/E3rMAwMEUlmK96VT2IcNFCQajYJtjGk5w78XbidZeN
gVehWZrv7IV+gg6DMxcFvwlFxpqSUiGNyPRjDV25OAQQolkS9M9JqZm9jqSU/9le
diBMhDno/p+TFQ/UwokYN6PNLjYU9tcYwTnCfdWHme6wiIfFREyP30jSzWZ7Z+cY
+nsJH7y9eoAkFnVWOdkh/SoajkplA3oEPjz0z5h46Asr1LO7d7asGqGa9JA3f8SF
Cc8reE0H01rBKviq6bXLA7rirSkvxFey2ipbgFglpp+MLWnXTk1Rdge84QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMQB2ZL6FXgvnAg061wlVrnXYfGZMB8GA1UdIwQY
MBaAFL+EETVF2QAHYPZgYqQiGTOi6VnYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjRRUk5VWFpBQWRnOW1CaXBDSVpNNkxwV2RnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8zMGRjODUtMmRkOC00YjFjLWIxNTEt
NGJkNjNhZGM3MzU0LzEveEFIWmt2b1ZlQy1jQ0RUclhDVld1ZGRoOFprLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS8zMGRjODUtMmRkOC00YjFjLWIxNTEtNGJkNjNhZGM3MzU0
LzEvdjRRUk5VWFpBQWRnOW1CaXBDSVpNNkxwV2RnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZZCMA0G
CSqGSIb3DQEBCwUAA4IBAQDerpumrqPtv20L0F14p7OIZwKDOjJnwaXSAPk2SVWJ
6RXUogghAZogpYc47q6UetkqxBqJAIyzqJBTlWdcoBypKuQgH8f+CdShXfVLjsAx
cwrsqkw9diBumJnBWSmon4bIdUBAKaD4j28zP3g8p/75cJlIhn7D+cb8k+whFrt4
F2MVAmX2O+Q6XIMvfHUWfqou/LAn1hXtKzfwSPJI9Lo//RlZ7weGDbtH1jPLNXTu
mL7C0cBRzx4uuHhxp9nrIvUiJYASSpudSHimFRRlFBJwrAWRcu3Rkw+4/BRsjk6i
wmSAg61UvmOp/VD4n/UcMoYe073earU56kJ3iMVM/GEr
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:23 2023 by rpki-client on console-fra.rpki-client.org