Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/5c6c21-f8c8-4640-a12f-08c0b5e7a5ad/1/ZeHv9GieJCePadIaBZfZ-SDMAA0.roa
File: ZeHv9GieJCePadIaBZfZ-SDMAA0.roa (raw, json)
Hash identifier: +KKOTBwev2WM3aU0BsKOiA/GirycpiqMMOPtUv+Gl0Q=
Subject key identifier: 65:E1:EF:F4:68:9E:24:27:8F:69:D2:1A:05:97:D9:F9:20:CC:00:0D
Certificate issuer: /CN=5b8afd86d17516ec67af610d2d3041d06c1cd480
Certificate serial: 01856D6F8FE03F5428EE0CF08F6430CEE090
Authority key identifier: 5B:8A:FD:86:D1:75:16:EC:67:AF:61:0D:2D:30:41:D0:6C:1C:D4:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W4r9htF1Fuxnr2ENLTBB0Gwc1IA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/5c6c21-f8c8-4640-a12f-08c0b5e7a5ad/1/ZeHv9GieJCePadIaBZfZ-SDMAA0.roa
Signing time: Sun 01 Jan 2023 13:05:05 +0000
ROA not before: Sun 01 Jan 2023 13:05:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39855
IP address blocks: 45.91.150.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:6f:8f:e0:3f:54:28:ee:0c:f0:8f:64:30:ce:e0:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b8afd86d17516ec67af610d2d3041d06c1cd480
Validity
Not Before: Jan 1 13:05:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=65e1eff4689e24278f69d21a0597d9f920cc000d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ec:e5:6b:1d:0b:8d:c9:0e:bd:2a:b3:d4:95:
c2:7d:9d:31:c4:07:97:93:03:c7:e7:8f:f4:b3:94:
dc:59:62:93:06:63:26:6d:de:f0:e7:43:fa:e3:b5:
1e:03:26:df:61:c8:9f:b9:86:88:71:8c:ab:fd:c3:
71:ce:d6:5a:de:33:e8:63:69:6a:53:42:af:45:4e:
51:7d:42:dc:d9:11:4d:ec:5d:80:33:81:b3:70:3c:
d8:4c:eb:89:15:b9:6e:56:f8:42:f9:0b:29:32:3b:
52:5b:04:e5:a5:af:4d:f4:f8:fa:ec:bc:55:bf:6b:
1d:83:db:1a:47:06:14:ae:90:db:53:f9:52:16:8a:
65:11:35:6a:6f:3d:2a:45:c6:6b:3b:92:a3:b8:57:
d9:2f:e6:5e:03:ed:6d:62:63:c2:fc:e6:b5:47:bd:
2c:63:ad:73:f0:6d:bb:25:0f:59:d1:c7:c4:6e:c8:
af:05:dd:59:42:9a:e4:d9:e8:d0:0c:72:b2:91:e7:
d0:77:43:b9:85:2e:43:ce:d7:32:68:bc:bc:d2:c8:
48:a0:92:1a:86:36:84:2a:3e:f9:20:63:15:1e:09:
95:4c:63:5a:97:d1:68:18:be:f8:92:f6:c4:b6:74:
97:8d:f2:01:6c:0d:e2:c8:80:41:bb:6f:83:13:a7:
f9:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:E1:EF:F4:68:9E:24:27:8F:69:D2:1A:05:97:D9:F9:20:CC:00:0D
X509v3 Authority Key Identifier:
keyid:5B:8A:FD:86:D1:75:16:EC:67:AF:61:0D:2D:30:41:D0:6C:1C:D4:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W4r9htF1Fuxnr2ENLTBB0Gwc1IA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/5c6c21-f8c8-4640-a12f-08c0b5e7a5ad/1/ZeHv9GieJCePadIaBZfZ-SDMAA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/5c6c21-f8c8-4640-a12f-08c0b5e7a5ad/1/W4r9htF1Fuxnr2ENLTBB0Gwc1IA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.150.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:65:82:01:b8:3e:5d:64:99:7f:5d:40:f1:2a:8f:0f:a4:fd:
48:ef:ad:29:a7:19:50:60:96:ff:5a:d1:a4:f3:3a:3a:a7:52:
36:3f:4a:06:df:dc:10:34:97:7c:90:5c:2c:b2:e5:5b:f9:a3:
4c:ae:2c:91:eb:77:6b:cd:96:c3:71:af:06:b7:d0:3a:15:06:
83:c5:31:2b:b5:54:cd:00:3e:17:23:14:ea:59:eb:81:45:34:
a0:c7:c4:b4:d2:c3:50:8c:f0:f5:3c:54:5d:3b:4e:46:04:40:
21:87:c7:f1:5b:4a:1c:80:cd:3b:d0:47:c6:99:e4:42:95:0b:
14:6e:69:41:9d:79:9c:ac:ef:50:58:1c:bf:32:6b:77:cc:86:
af:c4:5c:2c:b2:11:8a:95:34:a0:d4:df:ae:d2:31:bc:9f:0b:
cd:a0:d3:f7:77:2b:12:29:74:12:63:5a:2d:11:85:02:56:69:
f5:f2:56:4d:87:ea:64:05:de:b9:56:0c:a9:c5:cf:cf:3c:ac:
63:11:78:bf:2a:49:0b:af:47:f6:7b:1f:2a:a2:9d:9d:4a:5e:
3b:ee:c6:5a:2c:da:4c:d8:21:30:2b:82:02:68:b4:ba:79:8d:
60:b0:8e:d3:47:c6:af:27:07:73:0b:37:a2:8e:35:b6:5c:39:
76:89:34:3d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtb4/gP1Qo7gzwj2QwzuCQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDViOGFmZDg2ZDE3NTE2ZWM2N2FmNjEwZDJkMzA0MWQwNmMx
Y2Q0ODAwHhcNMjMwMTAxMTMwNTA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NWUxZWZmNDY4OWUyNDI3OGY2OWQyMWEwNTk3ZDlmOTIwY2MwMDBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoOzlax0LjckOvSqz1JXCfZ0xxAeX
kwPH54/0s5TcWWKTBmMmbd7w50P647UeAybfYcifuYaIcYyr/cNxztZa3jPoY2lq
U0KvRU5RfULc2RFN7F2AM4GzcDzYTOuJFbluVvhC+QspMjtSWwTlpa9N9Pj67LxV
v2sdg9saRwYUrpDbU/lSFoplETVqbz0qRcZrO5KjuFfZL+ZeA+1tYmPC/Oa1R70s
Y61z8G27JQ9Z0cfEbsivBd1ZQprk2ejQDHKykefQd0O5hS5DztcyaLy80shIoJIa
hjaEKj75IGMVHgmVTGNal9FoGL74kvbEtnSXjfIBbA3iyIBBu2+DE6f5hwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGXh7/RoniQnj2nSGgWX2fkgzAANMB8GA1UdIwQY
MBaAFFuK/YbRdRbsZ69hDS0wQdBsHNSAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVzRyOWh0RjFGdXhucjJFTkxUQkIwR3djMUlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC81YzZjMjEtZjhjOC00NjQwLWExMmYt
MDhjMGI1ZTdhNWFkLzEvWmVIdjlHaWVKQ2VQYWRJYUJaZlotU0RNQUEwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC81YzZjMjEtZjhjOC00NjQwLWExMmYtMDhjMGI1ZTdhNWFk
LzEvVzRyOWh0RjFGdXhucjJFTkxUQkIwR3djMUlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVuWMA0G
CSqGSIb3DQEBCwUAA4IBAQALZYIBuD5dZJl/XUDxKo8PpP1I760ppxlQYJb/WtGk
8zo6p1I2P0oG39wQNJd8kFwssuVb+aNMriyR63drzZbDca8Gt9A6FQaDxTErtVTN
AD4XIxTqWeuBRTSgx8S00sNQjPD1PFRdO05GBEAhh8fxW0ocgM070EfGmeRClQsU
bmlBnXmcrO9QWBy/Mmt3zIavxFwsshGKlTSg1N+u0jG8nwvNoNP3dysSKXQSY1ot
EYUCVmn18lZNh+pkBd65Vgypxc/PPKxjEXi/KkkLr0f2ex8qop2dSl477sZaLNpM
2CEwK4ICaLS6eY1gsI7TR8avJwdzCzeijjW2XDl2iTQ9
-----END CERTIFICATE-----
Generated at Tue Jan 2 09:00:10 2024 by rpki-client on console-ams.rpki-client.org