Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/2sqy0rqQa3FfFdqgRxa7xfgFRSg.roa
File: 2sqy0rqQa3FfFdqgRxa7xfgFRSg.roa (raw, json)
Hash identifier: ds2oLDH1AnuNV3y6gxFbnoshe2VnTWWDcBUlL6FGYPY=
Subject key identifier: DA:CA:B2:D2:BA:90:6B:71:5F:15:DA:A0:47:16:BB:C5:F8:05:45:28
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E85293C1FF80C34C5B1785B9BDFAB
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/2sqy0rqQa3FfFdqgRxa7xfgFRSg.roa
Signing time: Mon 02 Jan 2023 06:15:03 +0000
ROA not before: Mon 02 Jan 2023 06:15:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211851
IP address blocks: 45.154.99.0/24 maxlen: 24
2a0c:b641:620::/44 maxlen: 48
Validation: Failed, certificate revoked on Wed 25 Jan 2023 22:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:85:29:3c:1f:f8:0c:34:c5:b1:78:5b:9b:df:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:15:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dacab2d2ba906b715f15daa04716bbc5f8054528
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:25:35:77:7d:12:15:c1:9c:6a:63:29:4a:ad:
d3:3e:5d:5a:28:66:e6:d5:57:ba:d6:52:d1:44:23:
75:2a:22:fd:9b:b6:4e:a7:f0:36:fc:15:7f:60:64:
e1:ec:aa:cc:87:8d:44:2f:67:ae:89:5a:27:31:b9:
84:d3:66:60:27:ad:b2:87:49:36:e9:1c:e8:f2:f9:
2a:07:b3:e2:03:d3:b6:12:cc:b3:78:9d:b2:73:53:
5e:58:f7:28:94:32:58:e3:40:6f:55:28:c4:1c:1f:
72:b7:42:d1:92:e9:ab:ba:c2:cb:a2:c1:45:4c:a8:
ce:12:ea:18:29:2b:1f:f9:7a:f6:b3:8e:9f:e4:a0:
5a:47:f8:b4:39:fa:4f:37:47:73:89:77:ec:0e:47:
9c:33:e7:65:55:ef:aa:46:d4:c3:57:92:cd:ef:06:
e9:58:21:3d:32:a5:7c:cb:8e:1f:f7:30:1d:88:cc:
6a:0d:fd:98:5d:39:d7:f6:4a:aa:85:da:7f:f8:81:
9b:0f:5a:81:8d:a2:9d:15:6d:18:c1:9b:c6:c4:a1:
de:3b:61:49:2d:ce:55:ec:2d:54:73:6e:b8:41:41:
da:f4:c7:56:02:fa:9d:ef:a7:81:06:3a:06:bb:ce:
69:16:d4:70:2c:91:9a:1a:ca:f9:7b:c8:de:0f:7b:
a9:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:CA:B2:D2:BA:90:6B:71:5F:15:DA:A0:47:16:BB:C5:F8:05:45:28
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/2sqy0rqQa3FfFdqgRxa7xfgFRSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.99.0/24
IPv6:
2a0c:b641:620::/44
Signature Algorithm: sha256WithRSAEncryption
06:14:ef:46:c4:8d:f9:cd:09:5e:59:29:a7:2f:39:c7:75:8f:
d3:ff:e1:bb:4c:03:7d:19:a5:41:df:c7:4f:5a:f1:fe:79:9c:
cd:2b:fa:62:41:20:63:9d:fa:7d:05:2e:ee:02:83:04:d6:00:
8f:f7:62:fa:3c:ef:2e:98:2d:72:11:7d:e9:76:49:28:57:0f:
35:81:4d:f5:54:87:e0:2c:63:95:51:39:ab:2d:fd:b7:a3:a6:
c2:30:f5:f0:44:72:e8:5d:5d:e3:3e:f8:db:28:c9:0c:c7:04:
bd:7f:0b:83:ef:ea:c5:56:5c:92:66:10:a8:39:e2:94:04:e6:
d6:60:5f:f7:78:72:4f:c4:5b:e4:9d:c0:06:65:65:39:a4:72:
03:ea:85:dc:bb:5e:09:2c:f8:04:58:57:eb:43:eb:74:d0:30:
a9:d4:3a:96:ac:02:58:d6:3b:f9:d0:80:85:73:bf:cc:3a:64:
e5:56:6b:f6:dd:36:6c:ed:7a:0f:7d:59:35:4a:ac:a3:19:d2:
50:ac:11:04:ac:44:b1:b5:6e:11:33:db:e8:23:c2:86:41:5c:
2b:95:ea:00:5e:15:f7:e3:e0:5d:b8:17:a7:ec:e2:c3:99:f6:
5c:10:92:5e:76:60:d1:30:b0:0b:82:15:f8:4e:a9:d7:af:d1:
f0:ec:b8:a6
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYVxHoUpPB/4DDTFsXhbm9+rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi
MzUwNTgwHhcNMjMwMTAyMDYxNTAzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYWNhYjJkMmJhOTA2YjcxNWYxNWRhYTA0NzE2YmJjNWY4MDU0NTI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApSU1d30SFcGcamMpSq3TPl1aKGbm
1Ve61lLRRCN1KiL9m7ZOp/A2/BV/YGTh7KrMh41EL2euiVonMbmE02ZgJ62yh0k2
6Rzo8vkqB7PiA9O2EsyzeJ2yc1NeWPcolDJY40BvVSjEHB9yt0LRkumrusLLosFF
TKjOEuoYKSsf+Xr2s46f5KBaR/i0OfpPN0dziXfsDkecM+dlVe+qRtTDV5LN7wbp
WCE9MqV8y44f9zAdiMxqDf2YXTnX9kqqhdp/+IGbD1qBjaKdFW0YwZvGxKHeO2FJ
Lc5V7C1Uc264QUHa9MdWAvqd76eBBjoGu85pFtRwLJGaGsr5e8jeD3upXQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFNrKstK6kGtxXxXaoEcWu8X4BUUoMB8GA1UdIwQY
MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et
NWVjOGM4ZWQ2MGZkLzEvMnNxeTBycVFhM0ZmRmRxZ1J4YTd4ZmdGUlNnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk
LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQALZpjMA8E
AgACMAkDBwQqDLZBBiAwDQYJKoZIhvcNAQELBQADggEBAAYU70bEjfnNCV5ZKacv
Ocd1j9P/4btMA30ZpUHfx09a8f55nM0r+mJBIGOd+n0FLu4CgwTWAI/3Yvo87y6Y
LXIRfel2SShXDzWBTfVUh+AsY5VROast/bejpsIw9fBEcuhdXeM++NsoyQzHBL1/
C4Pv6sVWXJJmEKg54pQE5tZgX/d4ck/EW+SdwAZlZTmkcgPqhdy7Xgks+ARYV+tD
63TQMKnUOpasAljWO/nQgIVzv8w6ZOVWa/bdNmzteg99WTVKrKMZ0lCsEQSsRLG1
bhEz2+gjwoZBXCuV6gBeFffj4F24F6fs4sOZ9lwQkl52YNEwsAuCFfhOqdev0fDs
uKY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:37 2024 by rpki-client on console-ams.rpki-client.org