Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/vntD5iT-P3WRKP7IQ0PvGVL6Jno.roa
File: vntD5iT-P3WRKP7IQ0PvGVL6Jno.roa (raw, json)
Hash identifier: OLhHvpfulI+AkUhS9yh9GEOiHPojK/JVVMhrEw9Y4rY=
Subject key identifier: BE:7B:43:E6:24:FE:3F:75:91:28:FE:C8:43:43:EF:19:52:FA:26:7A
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 01856EAA249B60CE98D8A9FD0B6CEBCDD57C
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/vntD5iT-P3WRKP7IQ0PvGVL6Jno.roa
Signing time: Sun 01 Jan 2023 18:48:42 +0000
ROA not before: Sun 01 Jan 2023 18:48:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 45.156.52.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 30 Jul 2023 12:53:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:aa:24:9b:60:ce:98:d8:a9:fd:0b:6c:eb:cd:d5:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Jan 1 18:48:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be7b43e624fe3f759128fec84343ef1952fa267a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:43:6e:bb:76:c8:c3:60:3e:42:7a:66:c2:3a:
1d:d7:86:c9:c9:9d:9b:04:0d:0e:f8:4b:63:ec:7b:
f4:02:15:e5:1d:91:c6:12:7d:77:dc:04:6f:5a:fe:
35:6d:0b:3c:8a:df:f0:0e:32:41:04:b2:3c:d6:f1:
23:15:ba:30:fe:e1:9b:39:08:02:f2:47:c5:4f:a7:
f9:65:ed:bb:af:81:bb:d0:48:82:ba:26:9c:59:96:
ea:09:72:73:34:e4:a2:9e:94:74:42:57:b8:a2:3a:
7a:a3:1e:db:6a:59:15:cc:1c:87:cf:16:00:ee:e6:
0e:84:bb:86:5e:08:78:aa:80:fd:7c:02:8e:36:ca:
c7:4e:19:d1:66:67:5f:c9:31:ef:6f:8f:4d:5c:ac:
fc:25:4d:01:b1:69:37:bb:ba:47:e7:52:07:a6:86:
ea:72:01:44:1d:77:a6:d3:d0:5d:0b:19:33:11:6a:
3b:80:f3:a1:2f:b8:5f:0d:f6:06:fb:16:cc:17:c1:
f1:56:da:e2:cf:57:15:9b:44:28:fc:5f:83:55:ce:
95:ba:aa:41:70:18:c8:34:de:e8:9d:02:4c:67:bb:
f0:04:13:6a:b7:03:d1:95:99:5c:19:f1:f8:36:6a:
ac:af:d1:61:b3:da:d5:c2:4f:32:e3:92:e8:82:fa:
d8:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:7B:43:E6:24:FE:3F:75:91:28:FE:C8:43:43:EF:19:52:FA:26:7A
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/vntD5iT-P3WRKP7IQ0PvGVL6Jno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.52.0/22
Signature Algorithm: sha256WithRSAEncryption
68:50:90:70:08:82:7b:9f:87:98:52:8f:b3:3f:c5:1f:3d:93:
cc:ce:cf:74:80:7a:28:29:40:ab:7b:99:a8:5a:4e:0c:70:c1:
80:7f:ea:58:02:18:6a:a0:14:03:39:31:16:6d:d8:55:69:f5:
97:a1:c0:7e:5a:8d:8e:e4:12:0b:78:7d:27:ff:93:60:78:ba:
ea:1a:20:7b:c3:3a:3f:17:69:1d:e4:f7:bc:b7:e5:38:85:17:
8f:71:91:cd:b9:a5:9f:d6:29:ba:e4:af:7e:78:2e:c1:82:35:
37:ae:d0:7d:d9:37:62:e9:58:94:e2:bd:7b:f4:ba:ab:9f:29:
e0:73:3b:a0:6d:39:09:b5:47:93:cc:de:cf:09:74:d1:f7:36:
49:07:4f:15:ae:1c:b5:30:e2:92:21:d0:f8:6b:1a:5a:c2:92:
51:99:3f:80:33:58:3f:90:28:d7:4e:97:24:ae:e1:e6:7c:5c:
d0:90:7a:a1:62:9b:d2:4f:a5:7c:41:8d:a2:9d:0a:68:13:d0:
bf:d6:d3:57:f3:c0:c1:c3:63:27:b8:6a:a9:8b:7c:a9:2f:4f:
ef:ad:44:4f:44:47:91:b0:48:51:64:1e:14:01:d0:e1:8e:ed:
6a:01:79:80:08:78:aa:df:67:2a:53:f3:7c:81:57:f2:d3:ce:
6d:8f:49:a3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuqiSbYM6Y2Kn9C2zrzdV8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4MTA3YWI2OTIxZWY4Y2IyZGVjYTNlYjc2NjQ3OGNmZjNl
NWZjNmQwHhcNMjMwMTAxMTg0ODQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZTdiNDNlNjI0ZmUzZjc1OTEyOGZlYzg0MzQzZWYxOTUyZmEyNjdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz0Nuu3bIw2A+Qnpmwjod14bJyZ2b
BA0O+Etj7Hv0AhXlHZHGEn133ARvWv41bQs8it/wDjJBBLI81vEjFbow/uGbOQgC
8kfFT6f5Ze27r4G70EiCuiacWZbqCXJzNOSinpR0Qle4ojp6ox7balkVzByHzxYA
7uYOhLuGXgh4qoD9fAKONsrHThnRZmdfyTHvb49NXKz8JU0BsWk3u7pH51IHpobq
cgFEHXem09BdCxkzEWo7gPOhL7hfDfYG+xbMF8HxVtriz1cVm0Qo/F+DVc6VuqpB
cBjINN7onQJMZ7vwBBNqtwPRlZlcGfH4Nmqsr9Fhs9rVwk8y45LogvrYMQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFL57Q+Yk/j91kSj+yEND7xlS+iZ6MB8GA1UdIwQY
MBaAFCgQeraSHvjLLeyj63ZkeM/z5fxtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0JCNnRwSWUtTXN0N0tQcmRtUjR6X1BsX0cwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi8wODgyNmUtNzdkMC00MzdiLWExYzIt
YzBmYjNlZjc2NDBlLzEvdm50RDVpVC1QM1dSS1A3SVEwUHZHVkw2Sm5vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi8wODgyNmUtNzdkMC00MzdiLWExYzItYzBmYjNlZjc2NDBl
LzEvS0JCNnRwSWUtTXN0N0tQcmRtUjR6X1BsX0cwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLZw0MA0G
CSqGSIb3DQEBCwUAA4IBAQBoUJBwCIJ7n4eYUo+zP8UfPZPMzs90gHooKUCre5mo
Wk4McMGAf+pYAhhqoBQDOTEWbdhVafWXocB+Wo2O5BILeH0n/5NgeLrqGiB7wzo/
F2kd5Pe8t+U4hRePcZHNuaWf1im65K9+eC7BgjU3rtB92Tdi6ViU4r179Lqrnyng
czugbTkJtUeTzN7PCXTR9zZJB08Vrhy1MOKSIdD4axpawpJRmT+AM1g/kCjXTpck
ruHmfFzQkHqhYpvST6V8QY2inQpoE9C/1tNX88DBw2MnuGqpi3ypL0/vrURPREeR
sEhRZB4UAdDhju1qAXmACHiq32cqU/N8gVfy085tj0mj
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:44 2024 by rpki-client on console-ams.rpki-client.org