Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/f26fd1-b375-426c-af79-b519b131bf85/1/4WT8Xh_9B-X9-mryoxrdItm5_jQ.roa
File: 4WT8Xh_9B-X9-mryoxrdItm5_jQ.roa (raw, json)
Hash identifier: P9ZY+KDj5azkFPBke0FOg5UGH5bGUz/qN9eKGMSEVWo=
Subject key identifier: E1:64:FC:5E:1F:FD:07:E5:FD:FA:6A:F2:A3:1A:DD:22:D9:B9:FE:34
Certificate issuer: /CN=7d0ac334438a53d18ae40efc9368768b931cfac2
Certificate serial: 01856DD42F2E44D2D3B8FDE3663923351BD7
Authority key identifier: 7D:0A:C3:34:43:8A:53:D1:8A:E4:0E:FC:93:68:76:8B:93:1C:FA:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQrDNEOKU9GK5A78k2h2i5Mc-sI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/f26fd1-b375-426c-af79-b519b131bf85/1/4WT8Xh_9B-X9-mryoxrdItm5_jQ.roa
Signing time: Sun 01 Jan 2023 14:55:00 +0000
ROA not before: Sun 01 Jan 2023 14:55:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208134
IP address blocks: 45.92.136.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:29:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:d4:2f:2e:44:d2:d3:b8:fd:e3:66:39:23:35:1b:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d0ac334438a53d18ae40efc9368768b931cfac2
Validity
Not Before: Jan 1 14:55:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e164fc5e1ffd07e5fdfa6af2a31add22d9b9fe34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c5:b7:c8:fe:94:d2:42:44:30:85:c7:f6:cd:
84:b5:51:8a:00:2d:af:22:34:8e:2a:d6:14:da:2a:
2d:3a:b4:78:df:cc:8a:7c:12:3a:5c:19:e9:b9:e1:
80:fe:e6:dd:97:f7:59:23:ed:d3:85:95:11:9a:30:
1d:65:ee:51:26:f7:79:d8:98:a7:ea:e7:13:ca:67:
00:98:ba:8c:30:9d:a7:a1:72:41:ed:13:82:94:2e:
5f:f3:ad:45:93:d3:21:49:9c:98:8c:80:03:f8:35:
32:a4:5e:af:6f:d2:f1:76:63:f1:40:04:fe:91:25:
28:bf:73:e2:4d:e8:c5:5e:b0:e8:52:bd:50:2c:53:
fc:2c:9b:ff:58:7d:af:05:ba:64:a8:93:a4:ce:6d:
5e:d4:7b:79:36:b4:fc:b2:04:ef:2d:16:79:99:e6:
1a:cb:de:27:ab:90:39:97:fa:2b:93:27:e2:43:40:
d7:c6:4a:cc:ae:cf:d4:68:89:94:f6:51:7e:be:ae:
c7:a6:be:63:ec:a2:3f:f9:fd:cc:46:19:80:87:a3:
25:8a:d5:8a:94:bb:e2:cb:ed:1f:5a:d4:00:77:29:
18:20:04:ee:6a:91:2b:87:c9:3d:04:91:af:ef:52:
d7:8d:c7:b8:a1:1b:93:bf:64:1e:17:3e:66:90:e5:
57:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:64:FC:5E:1F:FD:07:E5:FD:FA:6A:F2:A3:1A:DD:22:D9:B9:FE:34
X509v3 Authority Key Identifier:
keyid:7D:0A:C3:34:43:8A:53:D1:8A:E4:0E:FC:93:68:76:8B:93:1C:FA:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQrDNEOKU9GK5A78k2h2i5Mc-sI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/f26fd1-b375-426c-af79-b519b131bf85/1/4WT8Xh_9B-X9-mryoxrdItm5_jQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/f26fd1-b375-426c-af79-b519b131bf85/1/fQrDNEOKU9GK5A78k2h2i5Mc-sI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.136.0/22
Signature Algorithm: sha256WithRSAEncryption
b5:45:7b:18:2a:c4:0e:bc:0a:50:55:f8:88:95:54:9d:be:1d:
85:90:0f:c2:ea:57:d5:de:07:74:d4:ba:87:01:d5:72:16:0f:
d0:1d:e6:93:d9:fe:80:99:e0:eb:b4:4a:e9:39:22:b9:ab:7c:
26:02:0c:35:21:45:e1:b7:06:ff:13:5e:2e:46:c1:64:51:99:
24:02:d0:a1:66:9f:44:71:6e:86:57:c7:ee:44:cc:f8:be:15:
e8:65:2e:ad:b3:f5:72:8b:84:5e:f3:49:fd:7d:37:8b:87:78:
0e:75:81:a0:72:0a:8c:5d:85:93:7f:84:f9:f2:20:a1:a8:6c:
df:1f:9f:2a:10:f2:89:a2:12:1d:b0:05:db:cf:fd:7e:ef:fe:
e0:e0:81:04:e0:1e:b0:0e:c9:13:55:07:a6:f8:bc:23:dd:f4:
e2:ac:52:f2:1f:16:d4:33:2c:29:83:19:58:34:b8:2e:99:8b:
7d:82:b6:69:ec:80:0e:a9:ac:c9:77:68:50:cf:8c:a9:0a:18:
3c:95:c8:8d:d5:26:1d:f7:96:a3:5b:f1:ed:4e:cb:7e:1d:35:
ab:26:91:29:08:2b:15:87:f8:fb:6a:0a:12:5d:31:cd:cb:e4:
ac:34:71:bd:c5:f4:4d:bf:d6:40:a7:ab:f8:da:9b:6b:11:61:
30:92:51:cc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVt1C8uRNLTuP3jZjkjNRvXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkMGFjMzM0NDM4YTUzZDE4YWU0MGVmYzkzNjg3NjhiOTMx
Y2ZhYzIwHhcNMjMwMTAxMTQ1NTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMTY0ZmM1ZTFmZmQwN2U1ZmRmYTZhZjJhMzFhZGQyMmQ5YjlmZTM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArcW3yP6U0kJEMIXH9s2EtVGKAC2v
IjSOKtYU2iotOrR438yKfBI6XBnpueGA/ubdl/dZI+3ThZURmjAdZe5RJvd52Jin
6ucTymcAmLqMMJ2noXJB7ROClC5f861Fk9MhSZyYjIAD+DUypF6vb9LxdmPxQAT+
kSUov3PiTejFXrDoUr1QLFP8LJv/WH2vBbpkqJOkzm1e1Ht5NrT8sgTvLRZ5meYa
y94nq5A5l/orkyfiQ0DXxkrMrs/UaImU9lF+vq7Hpr5j7KI/+f3MRhmAh6MlitWK
lLviy+0fWtQAdykYIATuapErh8k9BJGv71LXjce4oRuTv2QeFz5mkOVXAwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOFk/F4f/Qfl/fpq8qMa3SLZuf40MB8GA1UdIwQY
MBaAFH0KwzRDilPRiuQO/JNodouTHPrCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlFyRE5FT0tVOUdLNUE3OGsyaDJpNU1jLXNJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS9mMjZmZDEtYjM3NS00MjZjLWFmNzkt
YjUxOWIxMzFiZjg1LzEvNFdUOFhoXzlCLVg5LW1yeW94cmRJdG01X2pRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOS9mMjZmZDEtYjM3NS00MjZjLWFmNzktYjUxOWIxMzFiZjg1
LzEvZlFyRE5FT0tVOUdLNUE3OGsyaDJpNU1jLXNJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLVyIMA0G
CSqGSIb3DQEBCwUAA4IBAQC1RXsYKsQOvApQVfiIlVSdvh2FkA/C6lfV3gd01LqH
AdVyFg/QHeaT2f6AmeDrtErpOSK5q3wmAgw1IUXhtwb/E14uRsFkUZkkAtChZp9E
cW6GV8fuRMz4vhXoZS6ts/Vyi4Re80n9fTeLh3gOdYGgcgqMXYWTf4T58iChqGzf
H58qEPKJohIdsAXbz/1+7/7g4IEE4B6wDskTVQem+Lwj3fTirFLyHxbUMywpgxlY
NLgumYt9grZp7IAOqazJd2hQz4ypChg8lciN1SYd95ajW/HtTst+HTWrJpEpCCsV
h/j7agoSXTHNy+SsNHG9xfRNv9ZAp6v42ptrEWEwklHM
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:48 2024 by rpki-client on console-fra.rpki-client.org