Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/Qcb9yIV5SlEB1CDPybWHzXz-Gm4.roa
File: Qcb9yIV5SlEB1CDPybWHzXz-Gm4.roa (raw, json)
Hash identifier: ZLyAxr9Z56gFqSf/r0lP0+sZZm5hrhgZsM81L14g8F0=
Subject key identifier: 41:C6:FD:C8:85:79:4A:51:01:D4:20:CF:C9:B5:87:CD:7C:FE:1A:6E
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 018803CA99EBA9A0D5829390A40229F28B62
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/Qcb9yIV5SlEB1CDPybWHzXz-Gm4.roa
Signing time: Wed 10 May 2023 03:53:09 +0000
ROA not before: Wed 10 May 2023 03:53:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31733
IP address blocks: 45.135.236.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 15 Jun 2023 03:34:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:03:ca:99:eb:a9:a0:d5:82:93:90:a4:02:29:f2:8b:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: May 10 03:53:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41c6fdc885794a5101d420cfc9b587cd7cfe1a6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:a3:9d:89:a5:eb:87:7e:48:52:7b:e5:c8:cc:
56:dc:e1:ed:6e:76:8d:ee:08:89:20:c0:2c:de:48:
95:b0:87:52:3b:32:53:0e:ec:72:4f:75:ca:2e:15:
63:de:70:03:e8:33:af:e9:05:60:7a:50:28:14:15:
91:18:2a:f1:19:06:f0:0c:16:e8:fa:2d:f6:5d:da:
56:f0:8f:90:92:70:e6:c4:e9:56:8b:e9:69:02:cd:
7f:a4:9a:5b:23:c9:06:9d:08:08:ac:0f:72:b9:60:
0a:7d:4a:6f:d1:2b:57:d4:12:ba:5f:90:f1:a4:77:
6d:18:6d:67:e4:0e:f6:da:12:5b:e0:a6:5f:1d:76:
19:6f:d4:62:95:f9:07:fa:e3:e0:97:5d:60:5f:d8:
74:b1:dc:f8:ee:96:a1:51:a3:c5:3f:af:e2:38:ea:
8c:12:41:fa:ca:04:1e:f5:32:98:a7:ad:ac:e7:f9:
02:2c:2b:c3:63:95:a4:6f:7d:13:c7:e3:df:8f:e0:
a0:c7:23:3c:fc:63:a6:84:ff:d6:d4:22:39:2b:c2:
3c:77:f1:20:d3:7a:3b:b8:18:a5:56:8d:fb:f4:d1:
2f:10:b5:74:ee:1b:61:eb:e7:2f:92:5b:27:22:02:
07:59:03:ae:65:ca:88:ec:9d:34:ab:b1:4e:91:98:
bd:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:C6:FD:C8:85:79:4A:51:01:D4:20:CF:C9:B5:87:CD:7C:FE:1A:6E
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/Qcb9yIV5SlEB1CDPybWHzXz-Gm4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.236.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:78:e5:0e:1e:d1:2b:d5:de:68:85:aa:ed:33:89:31:94:70:
16:91:98:42:04:61:4f:c5:94:87:0a:af:4f:a0:7b:65:cb:c1:
3a:02:72:91:a6:c9:0d:fc:0f:30:a3:b1:07:19:3e:8e:10:f3:
fd:02:0e:ac:41:37:e3:7f:6f:b3:d8:45:64:72:00:81:03:5c:
2b:66:f6:9a:3b:3a:d0:85:b0:66:84:6b:f2:87:00:ce:8d:5c:
d8:19:91:1a:17:b5:fa:73:d4:63:f3:84:ca:f9:f8:59:ad:5c:
cb:06:cb:50:50:16:58:e1:74:74:0d:fb:3e:46:b6:09:52:5b:
46:a9:47:75:f1:a0:80:d2:4d:88:6a:39:4d:e9:e0:e0:5e:e5:
5b:75:ce:8e:dd:e3:04:e0:b6:b7:61:f5:de:62:77:3d:35:4f:
ed:c4:e1:e5:87:87:1d:16:44:fa:59:62:4e:5a:4f:2e:de:d3:
39:92:5a:8b:c9:bb:8d:08:b6:da:06:35:74:e3:ac:49:54:d2:
7e:5d:a0:5c:7b:02:91:d2:34:ab:d1:07:28:40:d7:de:67:f6:
45:db:9f:d6:6e:c1:51:6f:81:4d:11:a3:a2:a9:95:bc:b0:23:
88:8f:f3:5c:81:0b:79:6c:74:35:a0:9b:98:f5:64:09:27:27:
bf:24:12:bb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYgDypnrqaDVgpOQpAIp8otiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3ZDAzZjI5ODE4MGNjMTA5ZjE5ZDRiMTk5MmM3ZDcxYzU2
YzhkY2MwHhcNMjMwNTEwMDM1MzA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MWM2ZmRjODg1Nzk0YTUxMDFkNDIwY2ZjOWI1ODdjZDdjZmUxYTZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm6OdiaXrh35IUnvlyMxW3OHtbnaN
7giJIMAs3kiVsIdSOzJTDuxyT3XKLhVj3nAD6DOv6QVgelAoFBWRGCrxGQbwDBbo
+i32XdpW8I+QknDmxOlWi+lpAs1/pJpbI8kGnQgIrA9yuWAKfUpv0StX1BK6X5Dx
pHdtGG1n5A722hJb4KZfHXYZb9RilfkH+uPgl11gX9h0sdz47pahUaPFP6/iOOqM
EkH6ygQe9TKYp62s5/kCLCvDY5Wkb30Tx+Pfj+CgxyM8/GOmhP/W1CI5K8I8d/Eg
03o7uBilVo379NEvELV07hth6+cvklsnIgIHWQOuZcqI7J00q7FOkZi93QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEHG/ciFeUpRAdQgz8m1h818/hpuMB8GA1UdIwQY
MBaAFBfQPymBgMwQnxnUsZksfXHFbI3MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRjlBX0tZR0F6QkNmR2RTeG1TeDljY1ZzamN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC84MmUyNTMtMDE3Ny00YTIwLWJlZmUt
OTE4YWM2NDYyNjc5LzEvUWNiOXlJVjVTbEVCMUNEUHliV0h6WHotR200LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC84MmUyNTMtMDE3Ny00YTIwLWJlZmUtOTE4YWM2NDYyNjc5
LzEvRjlBX0tZR0F6QkNmR2RTeG1TeDljY1ZzamN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLYfsMA0G
CSqGSIb3DQEBCwUAA4IBAQAceOUOHtEr1d5ohartM4kxlHAWkZhCBGFPxZSHCq9P
oHtly8E6AnKRpskN/A8wo7EHGT6OEPP9Ag6sQTfjf2+z2EVkcgCBA1wrZvaaOzrQ
hbBmhGvyhwDOjVzYGZEaF7X6c9Rj84TK+fhZrVzLBstQUBZY4XR0Dfs+RrYJUltG
qUd18aCA0k2IajlN6eDgXuVbdc6O3eME4La3YfXeYnc9NU/txOHlh4cdFkT6WWJO
Wk8u3tM5klqLybuNCLbaBjV046xJVNJ+XaBcewKR0jSr0QcoQNfeZ/ZF25/WbsFR
b4FNEaOiqZW8sCOIj/NcgQt5bHQ1oJuY9WQJJye/JBK7
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:50 2024 by rpki-client on console-fra.rpki-client.org