Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/NoXZZz9AU62fjCQ-X-BgZ0_PbLs.roa
File: NoXZZz9AU62fjCQ-X-BgZ0_PbLs.roa (raw, json)
Hash identifier: 9zVjeAXqcUKZ9FKvxP25dFdSUJFynz4eMn972y2+bCQ=
Subject key identifier: 36:85:D9:67:3F:40:53:AD:9F:8C:24:3E:5F:E0:60:67:4F:CF:6C:BB
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 018CC8DFA31BCAF02669E131AEFBAB696355
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/NoXZZz9AU62fjCQ-X-BgZ0_PbLs.roa
Signing time: Tue 02 Jan 2024 06:32:28 +0000
ROA not before: Tue 02 Jan 2024 06:32:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 45650
IP address blocks: 45.139.188.0/22 maxlen: 23
Validation: Failed, certificate revoked on Thu 22 Feb 2024 09:03:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:a3:1b:ca:f0:26:69:e1:31:ae:fb:ab:69:63:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Jan 2 06:32:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3685d9673f4053ad9f8c243e5fe060674fcf6cbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:e2:36:1b:c1:36:f1:83:81:8d:76:99:e0:25:
1a:e2:82:69:d0:fd:82:fd:60:d6:44:a7:29:ad:65:
1c:07:76:ae:f1:05:85:ad:52:2f:e6:d4:ae:10:99:
dd:f7:6d:2f:22:98:80:b6:eb:67:fc:e1:1f:5b:84:
20:b6:d0:35:bb:62:af:5f:44:65:18:17:a8:60:d3:
5b:3b:a2:fb:bc:ee:ec:72:c1:8b:c6:52:53:77:3a:
26:92:09:96:25:de:cf:4f:1c:0f:a3:c7:90:f1:0e:
02:04:3f:03:82:21:3e:72:15:57:b3:36:bb:7b:98:
ea:2a:04:75:81:2b:a9:a6:68:e9:47:2c:8b:65:46:
45:4f:f1:93:79:e9:66:98:b6:b7:83:0d:11:83:5f:
c3:0f:4c:02:50:0f:27:04:3a:31:6d:3e:2a:3a:e9:
47:e7:e7:f8:65:9c:f2:38:79:eb:15:83:81:f5:5a:
9b:b3:fb:f5:09:37:6c:67:55:ac:04:2a:9a:84:db:
b4:7e:44:67:12:5b:69:00:1a:fe:5c:4a:fc:1f:52:
a4:fd:90:44:ab:82:b9:f0:fc:50:17:ac:35:85:2b:
1f:51:5b:b4:e7:b5:9f:54:65:00:1c:bc:66:3b:9c:
90:30:11:29:b0:88:f7:7a:5a:1f:ed:dd:1a:5f:b3:
55:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:85:D9:67:3F:40:53:AD:9F:8C:24:3E:5F:E0:60:67:4F:CF:6C:BB
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/NoXZZz9AU62fjCQ-X-BgZ0_PbLs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.188.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:1a:93:df:96:8b:33:e8:ad:69:22:bd:7a:c6:25:ad:12:30:
e2:a2:fd:79:23:75:18:07:e4:d5:fd:9d:f7:11:3b:42:e6:3e:
ad:7f:0c:49:6f:3b:15:12:bc:2a:c3:27:e0:0d:27:ad:92:c7:
c9:83:a5:5a:70:54:54:fb:53:f1:59:05:3a:44:46:3f:11:44:
aa:00:e6:2d:11:24:8f:a1:5b:7d:4b:5f:b8:d2:a1:8f:5c:04:
aa:fc:45:ac:c9:70:9e:fe:67:0d:2d:1f:9b:6a:63:17:a3:9c:
79:ab:49:e8:3e:89:93:46:71:93:86:4b:ad:d1:b5:c2:44:6e:
ad:7d:70:f3:75:2c:7d:ca:7a:11:eb:a7:95:d1:a8:2f:7f:a6:
0a:f4:04:56:22:36:bc:64:ba:7d:24:aa:9a:29:8e:99:03:3e:
92:2f:44:74:c0:43:a2:7d:f8:9c:8a:56:b0:e3:76:33:92:e8:
f9:f6:00:96:d7:e3:91:ca:9a:99:d8:69:28:43:27:38:50:15:
e3:0a:06:8d:a9:82:fd:b2:fc:3c:24:82:f3:bc:e2:24:43:70:
d8:90:52:53:fa:ad:ac:16:d7:1d:29:a3:bd:03:78:ee:43:a3:
fd:81:d6:36:bc:7c:2a:64:1b:29:47:69:23:3a:c2:85:02:3b:
5e:66:14:53
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzI36MbyvAmaeExrvuraWNVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3ZDAzZjI5ODE4MGNjMTA5ZjE5ZDRiMTk5MmM3ZDcxYzU2
YzhkY2MwHhcNMjQwMTAyMDYzMjI4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNjg1ZDk2NzNmNDA1M2FkOWY4YzI0M2U1ZmUwNjA2NzRmY2Y2Y2JiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgeI2G8E28YOBjXaZ4CUa4oJp0P2C
/WDWRKcprWUcB3au8QWFrVIv5tSuEJnd920vIpiAtutn/OEfW4QgttA1u2KvX0Rl
GBeoYNNbO6L7vO7scsGLxlJTdzomkgmWJd7PTxwPo8eQ8Q4CBD8DgiE+chVXsza7
e5jqKgR1gSuppmjpRyyLZUZFT/GTeelmmLa3gw0Rg1/DD0wCUA8nBDoxbT4qOulH
5+f4ZZzyOHnrFYOB9Vqbs/v1CTdsZ1WsBCqahNu0fkRnEltpABr+XEr8H1Kk/ZBE
q4K58PxQF6w1hSsfUVu057WfVGUAHLxmO5yQMBEpsIj3elof7d0aX7NVIQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDaF2Wc/QFOtn4wkPl/gYGdPz2y7MB8GA1UdIwQY
MBaAFBfQPymBgMwQnxnUsZksfXHFbI3MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRjlBX0tZR0F6QkNmR2RTeG1TeDljY1ZzamN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC84MmUyNTMtMDE3Ny00YTIwLWJlZmUt
OTE4YWM2NDYyNjc5LzEvTm9YWlp6OUFVNjJmakNRLVgtQmdaMF9QYkxzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC84MmUyNTMtMDE3Ny00YTIwLWJlZmUtOTE4YWM2NDYyNjc5
LzEvRjlBX0tZR0F6QkNmR2RTeG1TeDljY1ZzamN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLYu8MA0G
CSqGSIb3DQEBCwUAA4IBAQAeGpPflosz6K1pIr16xiWtEjDiov15I3UYB+TV/Z33
ETtC5j6tfwxJbzsVErwqwyfgDSetksfJg6VacFRU+1PxWQU6REY/EUSqAOYtESSP
oVt9S1+40qGPXASq/EWsyXCe/mcNLR+bamMXo5x5q0noPomTRnGThkut0bXCRG6t
fXDzdSx9ynoR66eV0agvf6YK9ARWIja8ZLp9JKqaKY6ZAz6SL0R0wEOifficilaw
43Yzkuj59gCW1+ORypqZ2GkoQyc4UBXjCgaNqYL9svw8JILzvOIkQ3DYkFJT+q2s
FtcdKaO9A3juQ6P9gdY2vHwqZBspR2kjOsKFAjteZhRT
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:07:40 2025 by rpki-client