Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/WmQGDnGiQAj-RaT_tTE3ubREtig.roa
File: WmQGDnGiQAj-RaT_tTE3ubREtig.roa (raw, json)
Hash identifier: 2CpMRwhSrMt0DrBYxVbfLeU6sLYjMCThleB4D+RVlBs=
Subject key identifier: 5A:64:06:0E:71:A2:40:08:FE:45:A4:FF:B5:31:37:B9:B4:44:B6:28
Certificate issuer: /CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Certificate serial: 01856C53D86C251335369270E1918639B0A2
Authority key identifier: 34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/WmQGDnGiQAj-RaT_tTE3ubREtig.roa
Signing time: Sun 01 Jan 2023 07:55:12 +0000
ROA not before: Sun 01 Jan 2023 07:55:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 139471
IP address blocks: 45.131.178.0/24 maxlen: 24
91.238.114.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:d8:6c:25:13:35:36:92:70:e1:91:86:39:b0:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Validity
Not Before: Jan 1 07:55:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a64060e71a24008fe45a4ffb53137b9b444b628
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:99:37:c8:3e:54:a7:53:60:d7:f6:97:23:f8:
35:b7:0b:77:a4:dd:11:fd:c8:da:13:9c:70:12:c6:
34:ca:17:e2:b8:76:d3:e3:32:c0:3e:7b:bd:30:15:
a5:54:c6:0c:c1:42:28:31:63:f9:c7:80:e3:68:a5:
56:09:38:c9:de:3e:d5:9e:50:2c:13:65:68:cb:c8:
18:3e:6a:b8:27:16:b4:f7:ee:21:6c:f2:2f:45:a8:
53:aa:12:de:9f:bf:a9:7a:36:59:24:4c:d8:8c:bd:
8f:3d:89:13:d7:0b:67:5f:9f:cf:ab:ba:26:84:3e:
f3:d4:5b:36:48:e2:aa:be:de:f7:cd:9a:af:4e:50:
a3:50:ba:b9:37:f2:af:6a:79:51:8e:4b:20:d3:61:
b2:a6:a9:04:11:5e:15:28:fa:47:e9:fc:0a:0a:85:
44:09:8e:35:ac:aa:5b:ba:66:62:8f:ae:8f:0f:a8:
c1:d6:82:a5:ee:74:d0:a8:c0:a5:70:90:b2:48:d4:
d3:83:f2:a2:ec:f3:83:59:e1:34:77:76:ed:4c:81:
e2:51:18:d5:61:33:60:02:8f:1e:41:84:85:52:e8:
35:f5:d5:14:39:36:ac:f1:5e:0f:9f:c2:d0:5d:89:
6b:f9:a6:0a:5d:b5:fb:27:57:db:69:ad:29:94:22:
46:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:64:06:0E:71:A2:40:08:FE:45:A4:FF:B5:31:37:B9:B4:44:B6:28
X509v3 Authority Key Identifier:
keyid:34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/WmQGDnGiQAj-RaT_tTE3ubREtig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/NHtIeEj_9jUz2HwyTsxRwsPqKts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.178.0/24
91.238.114.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:79:f5:57:de:36:82:7c:fb:49:ba:5c:17:86:6a:25:fc:6b:
4c:8e:49:68:67:17:09:16:46:81:e1:dd:18:9e:34:e2:e3:7e:
52:f4:71:4a:ea:76:e0:68:92:df:e1:68:4d:99:ec:97:35:39:
ec:18:39:24:b8:9f:62:2a:5b:75:3f:b8:83:86:24:2b:1a:3e:
71:d7:f8:6a:f5:fc:08:87:b7:f4:1c:7c:6f:71:f5:57:68:be:
27:b2:56:8b:a6:86:88:24:10:01:d8:f4:97:50:d1:fb:48:67:
8c:5c:d7:56:64:79:d6:57:d7:d1:5b:4b:0d:f1:32:29:17:c3:
ae:64:1c:36:ba:fa:2f:84:68:6a:9d:a2:94:51:f9:29:ce:75:
fd:b3:b4:d7:6a:cb:6b:32:96:4c:3b:94:8a:08:32:71:5c:18:
9d:a8:71:10:d7:44:72:6f:52:ea:a4:20:b8:ac:3b:5e:37:a2:
79:b8:34:7a:fa:26:41:85:2b:a8:96:c2:ff:6a:ef:52:e3:64:
fe:c6:a3:82:26:74:58:0e:33:2e:64:e6:4a:51:63:33:af:92:
81:ad:4e:81:f9:9f:ca:92:d7:e1:29:20:95:a6:a9:5b:e5:71:
7f:62:05:ad:a0:ff:a8:bc:14:2b:77:58:a9:b6:0d:dd:3b:89:
fa:93:1a:38
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVsU9hsJRM1NpJw4ZGGObCiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0N2I0ODc4NDhmZmY2MzUzM2Q4N2MzMjRlY2M1MWMyYzNl
YTJhZGIwHhcNMjMwMTAxMDc1NTEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YTY0MDYwZTcxYTI0MDA4ZmU0NWE0ZmZiNTMxMzdiOWI0NDRiNjI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs5k3yD5Up1Ng1/aXI/g1twt3pN0R
/cjaE5xwEsY0yhfiuHbT4zLAPnu9MBWlVMYMwUIoMWP5x4DjaKVWCTjJ3j7VnlAs
E2Voy8gYPmq4Jxa09+4hbPIvRahTqhLen7+pejZZJEzYjL2PPYkT1wtnX5/Pq7om
hD7z1Fs2SOKqvt73zZqvTlCjULq5N/KvanlRjksg02GypqkEEV4VKPpH6fwKCoVE
CY41rKpbumZij66PD6jB1oKl7nTQqMClcJCySNTTg/Ki7PODWeE0d3btTIHiURjV
YTNgAo8eQYSFUug19dUUOTas8V4Pn8LQXYlr+aYKXbX7J1fbaa0plCJGFQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFFpkBg5xokAI/kWk/7UxN7m0RLYoMB8GA1UdIwQY
MBaAFDR7SHhI//Y1M9h8Mk7MUcLD6irbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTkh0SWVFal85alV6Mkh3eVRzeFJ3c1BxS3RzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9iYzcxMjItNGQxYi00NmE3LWFlY2It
MjMwYjNiNzJhMTc1LzEvV21RR0RuR2lRQWotUmFUX3RURTN1YlJFdGlnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy9iYzcxMjItNGQxYi00NmE3LWFlY2ItMjMwYjNiNzJhMTc1
LzEvTkh0SWVFal85alV6Mkh3eVRzeFJ3c1BxS3RzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALYOyAwQA
W+5yMA0GCSqGSIb3DQEBCwUAA4IBAQCeefVX3jaCfPtJulwXhmol/GtMjkloZxcJ
FkaB4d0YnjTi435S9HFK6nbgaJLf4WhNmeyXNTnsGDkkuJ9iKlt1P7iDhiQrGj5x
1/hq9fwIh7f0HHxvcfVXaL4nslaLpoaIJBAB2PSXUNH7SGeMXNdWZHnWV9fRW0sN
8TIpF8OuZBw2uvovhGhqnaKUUfkpznX9s7TXastrMpZMO5SKCDJxXBidqHEQ10Ry
b1LqpCC4rDteN6J5uDR6+iZBhSuolsL/au9S42T+xqOCJnRYDjMuZOZKUWMzr5KB
rU6B+Z/KktfhKSCVpqlb5XF/YgWtoP+ovBQrd1iptg3dO4n6kxo4
-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:13 2024 by rpki-client on console-fra.rpki-client.org