Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/5GKisPzbMOgI71B4rpl1iJ7uGoc.roa
File: 5GKisPzbMOgI71B4rpl1iJ7uGoc.roa (raw, json)
Hash identifier: 1E2xqB1kZw7VXUccMAT935SIwbG4xadS7izgOe/H2XM=
Subject key identifier: E4:62:A2:B0:FC:DB:30:E8:08:EF:50:78:AE:99:75:88:9E:EE:1A:87
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018D31D7062E517048FE4579575D97C3B783
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/5GKisPzbMOgI71B4rpl1iJ7uGoc.roa
Signing time: Mon 22 Jan 2024 15:43:11 +0000
ROA not before: Mon 22 Jan 2024 15:43:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21859
IP address blocks: 45.155.252.0/24 maxlen: 24
45.157.211.0/24 maxlen: 24
185.250.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 Jan 2024 09:05:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:31:d7:06:2e:51:70:48:fe:45:79:57:5d:97:c3:b7:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Jan 22 15:43:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e462a2b0fcdb30e808ef5078ae9975889eee1a87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:29:17:25:db:99:02:41:b4:0f:c6:9a:61:7c:
75:5b:46:25:02:4b:13:5b:84:54:5a:b9:89:6a:a1:
20:47:6f:ea:7e:fe:c2:c8:95:b3:52:2c:70:bc:02:
35:73:ff:5a:95:37:09:ef:20:0d:76:f8:49:71:1d:
80:80:d5:e6:63:cc:12:c9:e3:13:29:b1:93:9e:cd:
7b:27:9a:d4:4f:02:2e:fb:96:0c:a7:86:fb:9e:1f:
0f:a9:04:6c:25:37:95:2b:aa:f9:29:95:22:f8:11:
aa:c1:01:5a:d9:2f:72:c1:22:43:86:24:78:cf:79:
12:8a:bc:c8:c6:60:32:65:b3:b7:be:49:1e:32:63:
e9:38:e4:12:e3:85:84:19:ec:19:54:3a:bb:95:ab:
7f:b2:73:2d:b7:a7:76:e0:dc:e3:c7:43:cd:f8:2e:
3e:6e:05:b5:22:84:a9:30:3f:17:0a:d4:5f:88:95:
2a:89:ac:bf:35:5a:25:e7:d5:bc:b6:e9:cc:7a:fd:
49:42:9d:4a:c9:09:cd:06:8b:bf:da:a3:6d:13:16:
20:c0:99:4d:7d:8a:26:61:bf:fb:76:bf:c3:5b:fe:
c4:78:02:34:f6:de:d9:53:d0:bb:83:d2:5d:85:0c:
47:f4:93:5a:40:52:56:24:61:4f:06:fd:ee:f6:6d:
43:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:62:A2:B0:FC:DB:30:E8:08:EF:50:78:AE:99:75:88:9E:EE:1A:87
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/5GKisPzbMOgI71B4rpl1iJ7uGoc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.252.0/24
45.157.211.0/24
185.250.26.0/24
Signature Algorithm: sha256WithRSAEncryption
82:02:d8:03:bc:d7:2b:ad:01:95:00:ec:b2:f1:da:66:c8:0d:
a6:48:59:a0:d7:a5:f4:93:f8:83:1c:f6:a0:3d:b7:5e:e6:ec:
4c:26:76:5f:f4:a2:36:85:ff:99:ed:13:f1:6a:cf:f8:fa:1e:
f4:da:17:fd:1d:3a:62:ab:08:58:6b:1b:52:35:36:84:43:ad:
68:03:cd:2f:81:fa:d7:88:4a:ab:70:5a:1e:d5:2b:7a:e3:65:
ce:ea:fd:3b:a2:02:e4:42:a3:6d:b2:05:96:44:bb:63:e3:5c:
e1:1a:1d:0c:33:18:fc:40:d2:4a:52:d1:92:b8:41:11:5a:49:
51:b1:26:6b:fd:15:78:46:f9:96:7a:cf:9d:75:a1:25:13:3f:
ea:06:fa:86:80:4f:3b:38:a1:e4:c5:c2:a9:dc:27:81:8b:f2:
f8:a0:19:3e:cd:90:ad:1e:8d:a0:7a:c3:e3:ab:68:57:ec:ac:
10:90:44:f2:3e:e3:e1:b3:1c:32:ee:45:3f:71:3a:22:dd:d8:
26:db:92:a3:ff:1d:d7:44:a9:c7:cf:90:59:51:aa:cd:f3:83:
70:67:e4:ff:7c:83:41:6a:71:5b:34:24:b9:cd:18:0d:76:b9:
c6:99:f9:64:3c:48:0b:8b:27:dc:3b:e4:d4:9b:c5:00:37:c9:
75:c3:29:ce
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAY0x1wYuUXBI/kV5V12Xw7eDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2OGJmYjhhNWVlZTQ5MDgyZWE2MjhkZjI1YTRhNWQ1MGYz
YWE5YjMwHhcNMjQwMTIyMTU0MzExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNDYyYTJiMGZjZGIzMGU4MDhlZjUwNzhhZTk5NzU4ODllZWUxYTg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1ykXJduZAkG0D8aaYXx1W0YlAksT
W4RUWrmJaqEgR2/qfv7CyJWzUixwvAI1c/9alTcJ7yANdvhJcR2AgNXmY8wSyeMT
KbGTns17J5rUTwIu+5YMp4b7nh8PqQRsJTeVK6r5KZUi+BGqwQFa2S9ywSJDhiR4
z3kSirzIxmAyZbO3vkkeMmPpOOQS44WEGewZVDq7lat/snMtt6d24Nzjx0PN+C4+
bgW1IoSpMD8XCtRfiJUqiay/NVol59W8tunMev1JQp1KyQnNBou/2qNtExYgwJlN
fYomYb/7dr/DW/7EeAI09t7ZU9C7g9JdhQxH9JNaQFJWJGFPBv3u9m1DHQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFORiorD82zDoCO9QeK6ZdYie7hqHMB8GA1UdIwQY
MBaAFDaL+4pe7kkILqYo3yWkpdUPOqmzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUt
MGFlMmU5MjJhMjkyLzEvNUdLaXNQemJNT2dJNzFCNHJwbDFpSjd1R29jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUtMGFlMmU5MjJhMjky
LzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQALZv8AwQA
LZ3TAwQAufoaMA0GCSqGSIb3DQEBCwUAA4IBAQCCAtgDvNcrrQGVAOyy8dpmyA2m
SFmg16X0k/iDHPagPbde5uxMJnZf9KI2hf+Z7RPxas/4+h702hf9HTpiqwhYaxtS
NTaEQ61oA80vgfrXiEqrcFoe1St642XO6v07ogLkQqNtsgWWRLtj41zhGh0MMxj8
QNJKUtGSuEERWklRsSZr/RV4RvmWes+ddaElEz/qBvqGgE87OKHkxcKp3CeBi/L4
oBk+zZCtHo2gesPjq2hX7KwQkETyPuPhsxwy7kU/cToi3dgm25Kj/x3XRKnHz5BZ
UarN84NwZ+T/fINBanFbNCS5zRgNdrnGmflkPEgLiyfcO+TUm8UAN8l1wynO
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:13 2024 by rpki-client on console-fra.rpki-client.org