Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/g5B9gNjGr1iR7_dHCJQtouy9Xuw.roa
File: g5B9gNjGr1iR7_dHCJQtouy9Xuw.roa (raw, json)
Hash identifier: K4+QquUMTDi2ZBLbQvmNyPisiiSakTHEWHdyyjMAbyo=
Subject key identifier: 83:90:7D:80:D8:C6:AF:58:91:EF:F7:47:08:94:2D:A2:EC:BD:5E:EC
Certificate issuer: /CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Certificate serial: 01856C53CF09707272E941C7C4001C5276DB
Authority key identifier: 34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/g5B9gNjGr1iR7_dHCJQtouy9Xuw.roa
Signing time: Sun 01 Jan 2023 07:55:09 +0000
ROA not before: Sun 01 Jan 2023 07:55:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 45.153.124.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 May 2023 15:17:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:cf:09:70:72:72:e9:41:c7:c4:00:1c:52:76:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Validity
Not Before: Jan 1 07:55:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=83907d80d8c6af5891eff74708942da2ecbd5eec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:8f:f7:95:fa:86:7f:4e:1f:df:35:69:e7:49:
78:61:d2:74:41:86:fa:b2:41:39:bd:06:a9:e8:40:
0e:b9:9f:ef:3c:86:43:52:b3:8e:3e:74:b2:d3:c7:
52:1c:ff:90:e4:fc:c6:ff:32:be:dd:40:02:67:1d:
1d:b4:41:ae:e4:65:87:3f:63:08:3c:89:30:e6:16:
29:d9:29:a2:9c:20:22:0c:4f:1b:0c:6b:d1:30:a2:
b9:d9:a3:a3:b4:97:dc:28:a1:9d:29:06:3e:c6:03:
ee:ad:06:07:87:c4:88:dd:2f:d9:b3:5f:4c:8a:b9:
6c:d5:00:f9:8e:4a:45:84:2a:31:a4:a8:df:84:4a:
9a:be:bb:a0:23:c3:e2:c2:02:59:76:1c:57:53:a0:
50:a5:ba:c1:08:49:55:8e:11:7e:d9:ba:f6:aa:11:
18:de:66:23:3e:18:29:76:d7:ad:39:89:b2:4d:f3:
ba:b2:6d:44:0c:4b:ef:4a:22:48:be:b3:ce:45:cb:
2d:d8:1a:43:7d:38:c1:a5:25:82:fc:16:56:61:4d:
f5:73:7d:e8:0a:e1:4e:4c:e4:f2:cd:dc:25:71:9a:
83:cd:02:e4:7c:2c:05:bd:f7:55:cc:ec:5a:d5:02:
21:59:dc:7b:dc:29:48:32:df:54:ab:31:6e:7b:d7:
b6:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:90:7D:80:D8:C6:AF:58:91:EF:F7:47:08:94:2D:A2:EC:BD:5E:EC
X509v3 Authority Key Identifier:
keyid:34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/g5B9gNjGr1iR7_dHCJQtouy9Xuw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/NHtIeEj_9jUz2HwyTsxRwsPqKts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.124.0/24
Signature Algorithm: sha256WithRSAEncryption
62:7e:14:1b:59:de:7e:f2:e5:ae:cf:86:bf:2a:6e:f4:59:dd:
32:9c:1d:23:98:f1:23:6f:7a:65:39:39:b8:ee:bf:97:18:b5:
fe:0c:b4:53:38:c8:6a:5a:6a:8d:12:a1:b4:45:b4:a2:20:1b:
78:ae:95:5c:27:06:65:72:1f:4b:87:62:19:5b:cf:95:9b:ef:
f8:76:32:39:b4:a4:aa:87:9f:43:03:af:07:0b:52:84:7d:e7:
b5:83:0e:c5:06:6d:4c:96:e1:b4:78:b0:2f:5f:ad:38:f0:fc:
e2:7b:a0:9f:94:98:22:45:a7:5d:c5:9a:f3:0e:8e:e8:76:2c:
88:cf:4d:9f:69:16:67:76:f2:3f:5b:f4:d2:b6:dc:cb:f1:89:
19:6b:3f:d1:41:d2:f5:2b:06:de:1d:de:36:08:4c:ac:e8:54:
19:26:c7:2d:f0:43:29:3d:7b:34:bd:b4:34:bf:68:71:1d:65:
f8:81:34:62:b0:e0:10:26:db:d8:ce:82:f8:16:a7:9f:30:2d:
1f:fb:f8:54:70:36:7e:79:f3:8e:2b:1b:f7:f0:34:bd:3c:6f:
8a:4a:f7:dd:4c:a2:3e:d7:90:96:9c:a1:15:a1:7c:39:14:c6:
ea:4c:53:2e:8f:88:2e:1a:43:75:7b:b0:11:1d:26:59:0d:f0:
1f:73:42:32
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsU88JcHJy6UHHxAAcUnbbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0N2I0ODc4NDhmZmY2MzUzM2Q4N2MzMjRlY2M1MWMyYzNl
YTJhZGIwHhcNMjMwMTAxMDc1NTA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MzkwN2Q4MGQ4YzZhZjU4OTFlZmY3NDcwODk0MmRhMmVjYmQ1ZWVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyo/3lfqGf04f3zVp50l4YdJ0QYb6
skE5vQap6EAOuZ/vPIZDUrOOPnSy08dSHP+Q5PzG/zK+3UACZx0dtEGu5GWHP2MI
PIkw5hYp2SminCAiDE8bDGvRMKK52aOjtJfcKKGdKQY+xgPurQYHh8SI3S/Zs19M
irls1QD5jkpFhCoxpKjfhEqavrugI8PiwgJZdhxXU6BQpbrBCElVjhF+2br2qhEY
3mYjPhgpdtetOYmyTfO6sm1EDEvvSiJIvrPORcst2BpDfTjBpSWC/BZWYU31c33o
CuFOTOTyzdwlcZqDzQLkfCwFvfdVzOxa1QIhWdx73ClIMt9UqzFue9e2cwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIOQfYDYxq9Yke/3RwiULaLsvV7sMB8GA1UdIwQY
MBaAFDR7SHhI//Y1M9h8Mk7MUcLD6irbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTkh0SWVFal85alV6Mkh3eVRzeFJ3c1BxS3RzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9iYzcxMjItNGQxYi00NmE3LWFlY2It
MjMwYjNiNzJhMTc1LzEvZzVCOWdOakdyMWlSN19kSENKUXRvdXk5WHV3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy9iYzcxMjItNGQxYi00NmE3LWFlY2ItMjMwYjNiNzJhMTc1
LzEvTkh0SWVFal85alV6Mkh3eVRzeFJ3c1BxS3RzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZl8MA0G
CSqGSIb3DQEBCwUAA4IBAQBifhQbWd5+8uWuz4a/Km70Wd0ynB0jmPEjb3plOTm4
7r+XGLX+DLRTOMhqWmqNEqG0RbSiIBt4rpVcJwZlch9Lh2IZW8+Vm+/4djI5tKSq
h59DA68HC1KEfee1gw7FBm1MluG0eLAvX6048Pzie6CflJgiRaddxZrzDo7odiyI
z02faRZndvI/W/TSttzL8YkZaz/RQdL1KwbeHd42CEys6FQZJsct8EMpPXs0vbQ0
v2hxHWX4gTRisOAQJtvYzoL4FqefMC0f+/hUcDZ+efOOKxv38DS9PG+KSvfdTKI+
15CWnKEVoXw5FMbqTFMuj4guGkN1e7ARHSZZDfAfc0Iy
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:12 2024 by rpki-client on console-ams.rpki-client.org