Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/ul3CRinjU2ZpbzSAKx6wSHCg1RU.roa
File: ul3CRinjU2ZpbzSAKx6wSHCg1RU.roa (raw, json)
Hash identifier: KWiMKeNyi9CTvm4uZMs3YLszMC0hAAYdG9J9qd/rWfs=
Subject key identifier: BA:5D:C2:46:29:E3:53:66:69:6F:34:80:2B:1E:B0:48:70:A0:D5:15
Certificate issuer: /CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Certificate serial: 01856C53D74646EA346C3A6EF9CB0EC3F1D6
Authority key identifier: 34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/ul3CRinjU2ZpbzSAKx6wSHCg1RU.roa
Signing time: Sun 01 Jan 2023 07:55:11 +0000
ROA not before: Sun 01 Jan 2023 07:55:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 134835
IP address blocks: 45.153.11.0/24 maxlen: 24
45.153.10.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:d7:46:46:ea:34:6c:3a:6e:f9:cb:0e:c3:f1:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Validity
Not Before: Jan 1 07:55:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba5dc24629e35366696f34802b1eb04870a0d515
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:50:91:f0:6b:32:88:27:82:33:77:88:ab:91:
78:9f:ea:a1:16:c2:06:88:e3:a0:23:00:88:31:e0:
b3:98:3b:7f:e4:6d:38:2f:a5:dc:69:3e:0b:3b:56:
51:ed:41:75:b5:06:84:78:1c:e8:b7:fd:07:85:12:
c6:fe:3f:77:02:40:ff:9b:30:a5:12:e1:3f:c7:73:
6d:19:14:00:93:e5:bb:80:22:a7:44:71:e8:71:7d:
c6:72:6a:d9:94:d9:73:c4:b8:1d:ef:fe:06:14:67:
19:ed:b0:a7:4d:c8:b1:c8:7a:94:56:df:14:0e:bd:
5d:89:a5:90:b5:1b:1f:fb:35:de:75:8e:21:fd:8e:
0b:44:87:6c:1c:a4:63:8f:29:b4:b1:35:c5:c9:4f:
84:80:83:21:4e:e3:df:2e:ce:58:7e:7b:97:31:9d:
f7:f2:bd:a5:69:f2:42:d9:58:24:ad:ab:a0:e3:05:
5b:3f:18:12:70:a6:d6:19:ea:a8:67:57:0a:11:b7:
ef:46:a6:66:c2:db:c9:66:07:46:90:3d:23:9a:8a:
8a:29:16:ae:f9:30:44:0c:e3:43:68:12:71:6b:59:
41:9a:8f:40:c4:59:82:b9:af:da:d5:ab:ee:52:8a:
82:09:1d:a3:57:0d:6e:f0:2f:b8:91:e5:0c:77:44:
8e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:5D:C2:46:29:E3:53:66:69:6F:34:80:2B:1E:B0:48:70:A0:D5:15
X509v3 Authority Key Identifier:
keyid:34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/ul3CRinjU2ZpbzSAKx6wSHCg1RU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/NHtIeEj_9jUz2HwyTsxRwsPqKts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.10.0/23
Signature Algorithm: sha256WithRSAEncryption
19:94:dd:6b:a3:25:f1:9b:d9:db:c3:41:94:4f:4e:82:c7:12:
29:fb:bc:7a:77:c2:d5:91:c6:ce:7f:d4:9f:f2:32:de:f0:72:
7b:35:f2:55:f8:96:c8:91:30:fb:74:ef:46:26:b4:f2:ab:06:
f1:fe:f2:30:8a:df:dd:4c:bf:04:81:47:c2:0c:e9:d4:02:be:
a5:ea:0e:f2:23:dd:07:af:59:c4:d4:bd:32:a0:5d:b5:a1:06:
9d:6c:9d:d2:cc:74:d3:4a:1f:d6:c5:0b:37:ae:5b:47:88:8e:
b6:15:f5:3a:89:3c:51:b8:c8:28:3e:6c:f8:21:0a:07:7a:97:
63:d4:72:d8:7b:06:bb:a4:9b:e4:15:1c:4f:e8:a0:d9:a0:d3:
92:03:26:9b:63:a6:56:bb:9d:9b:ef:ab:cd:1f:c1:a6:12:76:
15:b2:d4:5d:4c:79:21:db:b7:f1:66:6e:20:6c:c2:8d:27:85:
71:0b:5d:49:e8:9f:09:a3:dd:8e:92:30:47:30:4a:ca:81:f6:
6b:6d:c5:02:a2:d7:62:9c:7d:7a:90:b0:12:13:3a:c3:cf:7e:
6f:bb:5b:2b:51:e5:6f:6e:da:78:a7:d9:d1:e2:6d:63:b8:09:
fb:a8:7a:ac:9f:01:20:11:4c:17:a9:43:9d:ec:6e:e4:76:b8:
18:74:d5:83
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsU9dGRuo0bDpu+csOw/HWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0N2I0ODc4NDhmZmY2MzUzM2Q4N2MzMjRlY2M1MWMyYzNl
YTJhZGIwHhcNMjMwMTAxMDc1NTExWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYTVkYzI0NjI5ZTM1MzY2Njk2ZjM0ODAyYjFlYjA0ODcwYTBkNTE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtVCR8GsyiCeCM3eIq5F4n+qhFsIG
iOOgIwCIMeCzmDt/5G04L6XcaT4LO1ZR7UF1tQaEeBzot/0HhRLG/j93AkD/mzCl
EuE/x3NtGRQAk+W7gCKnRHHocX3GcmrZlNlzxLgd7/4GFGcZ7bCnTcixyHqUVt8U
Dr1diaWQtRsf+zXedY4h/Y4LRIdsHKRjjym0sTXFyU+EgIMhTuPfLs5YfnuXMZ33
8r2lafJC2Vgkraug4wVbPxgScKbWGeqoZ1cKEbfvRqZmwtvJZgdGkD0jmoqKKRau
+TBEDONDaBJxa1lBmo9AxFmCua/a1avuUoqCCR2jVw1u8C+4keUMd0SOPQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLpdwkYp41NmaW80gCsesEhwoNUVMB8GA1UdIwQY
MBaAFDR7SHhI//Y1M9h8Mk7MUcLD6irbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTkh0SWVFal85alV6Mkh3eVRzeFJ3c1BxS3RzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9iYzcxMjItNGQxYi00NmE3LWFlY2It
MjMwYjNiNzJhMTc1LzEvdWwzQ1JpbmpVMlpwYnpTQUt4NndTSENnMVJVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy9iYzcxMjItNGQxYi00NmE3LWFlY2ItMjMwYjNiNzJhMTc1
LzEvTkh0SWVFal85alV6Mkh3eVRzeFJ3c1BxS3RzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLZkKMA0G
CSqGSIb3DQEBCwUAA4IBAQAZlN1royXxm9nbw0GUT06CxxIp+7x6d8LVkcbOf9Sf
8jLe8HJ7NfJV+JbIkTD7dO9GJrTyqwbx/vIwit/dTL8EgUfCDOnUAr6l6g7yI90H
r1nE1L0yoF21oQadbJ3SzHTTSh/WxQs3rltHiI62FfU6iTxRuMgoPmz4IQoHepdj
1HLYewa7pJvkFRxP6KDZoNOSAyabY6ZWu52b76vNH8GmEnYVstRdTHkh27fxZm4g
bMKNJ4VxC11J6J8Jo92OkjBHMErKgfZrbcUCotdinH16kLASEzrDz35vu1srUeVv
btp4p9nR4m1juAn7qHqsnwEgEUwXqUOd7G7kdrgYdNWD
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:00 2024 by rpki-client on console-fra.rpki-client.org