Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/3qIY1ZYwlp1Hs5p7Y30U1WKt_zM.roa
File: 3qIY1ZYwlp1Hs5p7Y30U1WKt_zM.roa (raw, json)
Hash identifier: 9VjFuYYHUE/1YYGdWfwbSgn4TBtIuVlqn69ujsedFVU=
Subject key identifier: DE:A2:18:D5:96:30:96:9D:47:B3:9A:7B:63:7D:14:D5:62:AD:FF:33
Certificate issuer: /CN=c59bd1e8c58f641bd944305f11c54efe5f3a0ce2
Certificate serial: 0185727135A2F722BF8AA02D182FBB5B3E9A
Authority key identifier: C5:9B:D1:E8:C5:8F:64:1B:D9:44:30:5F:11:C5:4E:FE:5F:3A:0C:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZvR6MWPZBvZRDBfEcVO_l86DOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/3qIY1ZYwlp1Hs5p7Y30U1WKt_zM.roa
Signing time: Mon 02 Jan 2023 12:25:00 +0000
ROA not before: Mon 02 Jan 2023 12:25:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57497
IP address blocks: 45.89.236.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Jan 2023 16:39:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:35:a2:f7:22:bf:8a:a0:2d:18:2f:bb:5b:3e:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c59bd1e8c58f641bd944305f11c54efe5f3a0ce2
Validity
Not Before: Jan 2 12:25:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dea218d59630969d47b39a7b637d14d562adff33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:71:bb:06:f8:b7:96:69:75:1c:d1:d0:6f:20:
9a:56:ee:49:90:de:66:45:85:dc:dc:75:4f:f4:3f:
e5:dd:93:e4:db:5f:1b:7b:ea:91:09:d4:7f:ca:07:
0c:98:9e:81:23:1a:40:08:79:0a:66:66:d5:4b:39:
0f:30:42:d9:49:30:b4:b9:c3:dc:2c:3e:f1:a7:c8:
29:9c:f6:14:e6:45:3d:fc:1f:30:b4:71:a5:ae:0e:
b1:e9:de:c5:e6:af:d2:b7:af:31:e8:85:b1:69:f0:
51:57:e0:be:58:1f:76:c3:f0:37:53:24:6a:0b:7d:
d7:7b:eb:bb:fa:de:80:b8:78:a4:47:76:8c:68:43:
13:9d:55:d2:20:b5:c8:ec:a7:d9:ef:be:0b:93:47:
b6:bf:c9:a6:54:b4:1e:d0:68:44:03:d2:52:e7:7a:
45:55:a5:29:09:3f:1d:0a:32:67:9a:8b:dd:fd:95:
50:f9:09:4a:c0:0b:2f:9f:21:59:2f:4d:8b:86:57:
57:4c:df:1b:1f:36:79:0d:f8:bd:1b:fb:bf:cf:ec:
98:a6:15:9c:60:20:bd:2d:8c:45:51:1b:30:1f:c2:
e7:43:3f:bd:83:e1:67:a9:bf:46:45:0c:91:1d:40:
3f:a0:42:00:ea:c0:ea:92:17:a4:ae:1d:61:93:55:
6f:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:A2:18:D5:96:30:96:9D:47:B3:9A:7B:63:7D:14:D5:62:AD:FF:33
X509v3 Authority Key Identifier:
keyid:C5:9B:D1:E8:C5:8F:64:1B:D9:44:30:5F:11:C5:4E:FE:5F:3A:0C:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZvR6MWPZBvZRDBfEcVO_l86DOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/3qIY1ZYwlp1Hs5p7Y30U1WKt_zM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/xZvR6MWPZBvZRDBfEcVO_l86DOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.236.0/22
Signature Algorithm: sha256WithRSAEncryption
06:88:42:2a:de:71:4f:8c:8c:86:b8:d2:91:de:f8:45:0d:52:
94:8e:a9:c0:5c:61:ec:f5:08:48:60:a3:e5:bd:cc:ae:73:28:
c3:42:3e:87:62:36:db:14:f4:94:8c:2e:a1:01:da:d7:d2:62:
d3:21:d0:23:41:a3:2b:4a:62:bb:9b:cf:45:a9:48:17:3d:29:
7e:a7:95:ce:07:f3:41:73:b5:11:ad:e3:d6:9c:46:5c:5d:5d:
5f:78:e5:ed:37:51:e4:61:25:60:4b:ae:18:a8:e8:d4:7d:aa:
c0:24:dd:c8:38:86:a4:20:5f:17:df:86:5c:b0:14:e4:1c:ca:
76:a9:63:86:21:78:bc:8a:80:f7:cd:97:a2:22:04:b7:89:c7:
7c:43:98:e0:56:6b:eb:f4:f1:bc:f1:49:3c:b8:1f:82:89:e6:
52:60:ea:a5:af:57:74:56:da:5d:cb:91:92:83:66:c8:de:62:
1f:12:60:b7:0e:36:84:bc:e1:44:37:85:1a:7f:75:00:cb:e5:
03:8c:da:57:a9:8d:4e:5f:1c:d4:25:ca:2c:0c:36:9e:8a:02:
8d:73:71:99:85:04:12:3c:ff:23:4a:e4:b3:61:31:bd:ba:24:
57:5a:cb:38:40:1f:f3:e8:5d:01:00:41:2b:ad:e6:03:9e:48:
0a:81:e6:17
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVycTWi9yK/iqAtGC+7Wz6aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM1OWJkMWU4YzU4ZjY0MWJkOTQ0MzA1ZjExYzU0ZWZlNWYz
YTBjZTIwHhcNMjMwMTAyMTIyNTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZWEyMThkNTk2MzA5NjlkNDdiMzlhN2I2MzdkMTRkNTYyYWRmZjMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwnG7Bvi3lml1HNHQbyCaVu5JkN5m
RYXc3HVP9D/l3ZPk218be+qRCdR/ygcMmJ6BIxpACHkKZmbVSzkPMELZSTC0ucPc
LD7xp8gpnPYU5kU9/B8wtHGlrg6x6d7F5q/St68x6IWxafBRV+C+WB92w/A3UyRq
C33Xe+u7+t6AuHikR3aMaEMTnVXSILXI7KfZ774Lk0e2v8mmVLQe0GhEA9JS53pF
VaUpCT8dCjJnmovd/ZVQ+QlKwAsvnyFZL02LhldXTN8bHzZ5Dfi9G/u/z+yYphWc
YCC9LYxFURswH8LnQz+9g+Fnqb9GRQyRHUA/oEIA6sDqkhekrh1hk1VvFwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN6iGNWWMJadR7Oae2N9FNVirf8zMB8GA1UdIwQY
MBaAFMWb0ejFj2Qb2UQwXxHFTv5fOgziMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveFp2UjZNV1BaQnZaUkRCZkVjVk9fbDg2RE9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi9mZDg0NTctODEwZi00ZjdlLTllNTgt
NTZjYzM5ZGI2ZWQ2LzEvM3FJWTFaWXdscDFIczVwN1kzMFUxV0t0X3pNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi9mZDg0NTctODEwZi00ZjdlLTllNTgtNTZjYzM5ZGI2ZWQ2
LzEveFp2UjZNV1BaQnZaUkRCZkVjVk9fbDg2RE9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLVnsMA0G
CSqGSIb3DQEBCwUAA4IBAQAGiEIq3nFPjIyGuNKR3vhFDVKUjqnAXGHs9QhIYKPl
vcyucyjDQj6HYjbbFPSUjC6hAdrX0mLTIdAjQaMrSmK7m89FqUgXPSl+p5XOB/NB
c7URrePWnEZcXV1feOXtN1HkYSVgS64YqOjUfarAJN3IOIakIF8X34ZcsBTkHMp2
qWOGIXi8ioD3zZeiIgS3icd8Q5jgVmvr9PG88Uk8uB+CieZSYOqlr1d0Vtpdy5GS
g2bI3mIfEmC3DjaEvOFEN4Uaf3UAy+UDjNpXqY1OXxzUJcosDDaeigKNc3GZhQQS
PP8jSuSzYTG9uiRXWss4QB/z6F0BAEErreYDnkgKgeYX
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:16 2024 by rpki-client on console-fra.rpki-client.org