Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/AeTHCOFVv8UduwzYNd8umY1_Ot4.roa
File: AeTHCOFVv8UduwzYNd8umY1_Ot4.roa (raw, json)
Hash identifier: sG56P/r3g9cV8aqogVk2dSQ/nAzAKpEl/8F1bhtYla4=
Subject key identifier: 01:E4:C7:08:E1:55:BF:C5:1D:BB:0C:D8:35:DF:2E:99:8D:7F:3A:DE
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 0188B5A2C578F34600EBEE9BA3FDAAD2F0A6
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/AeTHCOFVv8UduwzYNd8umY1_Ot4.roa
Signing time: Tue 13 Jun 2023 16:42:03 +0000
ROA not before: Tue 13 Jun 2023 16:42:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61138
IP address blocks: 194.146.92.0/24 maxlen: 24
45.157.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 14 Jul 2023 17:13:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b5:a2:c5:78:f3:46:00:eb:ee:9b:a3:fd:aa:d2:f0:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Jun 13 16:42:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=01e4c708e155bfc51dbb0cd835df2e998d7f3ade
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:18:be:90:5b:24:04:5d:53:1c:7f:e2:2a:72:
ac:e0:47:d8:3d:78:bb:ca:93:ac:ae:e3:0d:0d:e3:
81:c0:35:64:12:e5:21:0a:92:21:28:e2:ae:81:2c:
d7:56:f7:a3:4d:e2:ce:08:74:fd:b5:8f:c5:ec:da:
c3:3a:6f:17:5f:34:3b:d9:42:5d:2c:e3:3e:6f:7a:
96:f5:fc:64:ae:70:b3:6b:40:85:78:11:40:51:c5:
7c:85:c1:35:ad:28:09:42:be:fa:77:31:1e:3c:75:
50:eb:57:71:59:a9:0b:13:53:78:d6:54:83:5c:d9:
e3:14:c7:17:cb:ed:79:da:c5:31:a5:b6:ff:41:14:
98:36:da:c3:d6:f4:bc:b1:b9:a6:10:d3:e6:05:65:
a3:ad:1e:2c:fe:f5:05:0b:fc:72:2f:39:63:83:40:
38:54:9f:6d:27:d5:11:51:10:3b:70:0b:fc:2e:0a:
8e:ea:75:7b:60:51:5c:29:76:8a:c8:7a:46:3a:1f:
dd:cd:b5:73:71:4f:77:b4:d9:5d:3e:4c:48:c5:cc:
2f:00:dc:58:59:79:5a:0b:50:49:1b:19:d0:ed:50:
84:6e:ca:56:de:ab:c9:d5:bd:42:4f:20:3e:a2:d7:
53:3d:00:b2:6f:f4:8c:15:5b:fe:3f:c2:88:d4:96:
32:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:E4:C7:08:E1:55:BF:C5:1D:BB:0C:D8:35:DF:2E:99:8D:7F:3A:DE
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/AeTHCOFVv8UduwzYNd8umY1_Ot4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.211.0/24
194.146.92.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:3b:ad:92:00:1e:c3:e5:5f:b3:94:c8:77:ca:32:b0:82:61:
8a:0f:fc:18:5c:bd:5b:39:92:1b:30:d7:68:4e:1b:e6:8b:d1:
c7:74:3e:eb:c8:27:a9:b4:e0:57:76:fd:aa:8c:9f:eb:2a:d3:
9d:8c:16:00:a1:f5:62:12:2b:da:ca:aa:fc:0a:9e:d1:18:b8:
5d:73:92:37:55:dd:99:4a:9c:2f:04:22:17:1e:01:d9:20:be:
74:c2:ce:82:88:e4:d4:25:4f:d2:8c:39:e7:9c:a5:54:f4:a0:
24:ea:b3:12:8f:6c:4c:97:34:39:23:b2:6a:df:62:d1:9a:39:
c3:68:ff:95:ce:72:19:bd:bf:b1:bc:7a:59:0e:87:a2:64:7c:
03:0f:15:12:65:98:a7:d4:4e:d6:91:ce:9f:7d:d6:80:c2:19:
1d:40:f8:8f:26:02:68:fa:d7:0e:eb:3b:55:ed:24:21:f1:7d:
f9:ec:9c:e5:d9:a8:0c:ff:2b:05:ee:b2:f5:17:29:cc:be:af:
22:96:61:b6:57:ac:14:4b:0e:3f:89:66:f9:46:1c:72:18:4e:
ae:14:63:c5:68:13:85:a2:49:00:90:dd:0e:2a:95:cb:00:7c:
35:44:5f:f0:bd:5f:b3:95:90:86:43:11:1c:a0:de:24:5f:fe:
00:cb:7a:37
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYi1osV480YA6+6bo/2q0vCmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2OGJmYjhhNWVlZTQ5MDgyZWE2MjhkZjI1YTRhNWQ1MGYz
YWE5YjMwHhcNMjMwNjEzMTY0MjAzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMWU0YzcwOGUxNTViZmM1MWRiYjBjZDgzNWRmMmU5OThkN2YzYWRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiRi+kFskBF1THH/iKnKs4EfYPXi7
ypOsruMNDeOBwDVkEuUhCpIhKOKugSzXVvejTeLOCHT9tY/F7NrDOm8XXzQ72UJd
LOM+b3qW9fxkrnCza0CFeBFAUcV8hcE1rSgJQr76dzEePHVQ61dxWakLE1N41lSD
XNnjFMcXy+152sUxpbb/QRSYNtrD1vS8sbmmENPmBWWjrR4s/vUFC/xyLzljg0A4
VJ9tJ9URURA7cAv8LgqO6nV7YFFcKXaKyHpGOh/dzbVzcU93tNldPkxIxcwvANxY
WXlaC1BJGxnQ7VCEbspW3qvJ1b1CTyA+otdTPQCyb/SMFVv+P8KI1JYyZwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFAHkxwjhVb/FHbsM2DXfLpmNfzreMB8GA1UdIwQY
MBaAFDaL+4pe7kkILqYo3yWkpdUPOqmzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUt
MGFlMmU5MjJhMjkyLzEvQWVUSENPRlZ2OFVkdXd6WU5kOHVtWTFfT3Q0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUtMGFlMmU5MjJhMjky
LzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALZ3TAwQA
wpJcMA0GCSqGSIb3DQEBCwUAA4IBAQCyO62SAB7D5V+zlMh3yjKwgmGKD/wYXL1b
OZIbMNdoThvmi9HHdD7ryCeptOBXdv2qjJ/rKtOdjBYAofViEivayqr8Cp7RGLhd
c5I3Vd2ZSpwvBCIXHgHZIL50ws6CiOTUJU/SjDnnnKVU9KAk6rMSj2xMlzQ5I7Jq
32LRmjnDaP+VznIZvb+xvHpZDoeiZHwDDxUSZZin1E7Wkc6ffdaAwhkdQPiPJgJo
+tcO6ztV7SQh8X357Jzl2agM/ysF7rL1FynMvq8ilmG2V6wUSw4/iWb5RhxyGE6u
FGPFaBOFokkAkN0OKpXLAHw1RF/wvV+zlZCGQxEcoN4kX/4Ay3o3
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:35 2024 by rpki-client on console-ams.rpki-client.org