Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/cZz1DK88WbPt-FCcY3onfDwJ184.roa
File: cZz1DK88WbPt-FCcY3onfDwJ184.roa (raw, json)
Hash identifier: fexw6AV1ZVLEOQSWR9oKZ2Mxnm1ycA21msbtlPkjTtw=
Subject key identifier: 71:9C:F5:0C:AF:3C:59:B3:ED:F8:50:9C:63:7A:27:7C:3C:09:D7:CE
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 018C96B7D46114EFBEE65D27915F73E6B30F
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/cZz1DK88WbPt-FCcY3onfDwJ184.roa
Signing time: Sat 23 Dec 2023 12:47:58 +0000
ROA not before: Sat 23 Dec 2023 12:47:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216047
IP address blocks: 45.156.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:96:b7:d4:61:14:ef:be:e6:5d:27:91:5f:73:e6:b3:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Dec 23 12:47:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=719cf50caf3c59b3edf8509c637a277c3c09d7ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:55:51:ab:56:32:b8:9a:30:19:6e:9c:57:74:
c8:66:52:a9:7a:bc:b6:1c:8a:7f:27:7c:14:33:83:
6d:a4:8b:c0:4a:7c:cc:52:77:00:3e:1a:03:32:46:
17:8f:2c:5b:de:2b:bd:6c:66:cf:12:c1:df:2c:e8:
9d:6a:7e:62:68:00:f2:5e:0a:34:63:d4:66:87:ff:
9f:7c:0e:4b:a5:7c:e5:61:1e:29:53:3a:aa:eb:8c:
a6:b6:04:40:12:c9:70:f3:2b:3d:c3:39:1d:92:4b:
49:9a:92:fa:47:b5:e6:70:70:54:73:af:4a:39:c2:
a0:be:a3:a1:72:3f:02:ec:0f:00:d1:9d:4a:c7:1f:
39:42:99:04:53:8b:e1:88:82:fb:71:9a:6a:b7:9d:
bb:a3:9c:c2:76:14:eb:52:1e:cf:6c:f2:45:09:87:
33:11:48:d2:76:a5:40:ce:5c:e6:4a:5f:46:ce:13:
8b:af:ce:f8:06:1c:2c:a5:d4:e5:d1:23:48:fa:86:
4a:46:8c:e2:60:c8:a0:29:bb:4a:77:0e:f2:9c:71:
0d:17:1f:d9:0f:fe:73:f5:7e:53:1a:55:22:d7:92:
1c:65:1c:30:7f:83:a6:87:e4:4d:4d:43:98:7a:25:
27:00:c6:a8:76:97:27:e7:f3:f2:7b:5b:4d:42:2a:
53:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:9C:F5:0C:AF:3C:59:B3:ED:F8:50:9C:63:7A:27:7C:3C:09:D7:CE
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/cZz1DK88WbPt-FCcY3onfDwJ184.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.221.0/24
Signature Algorithm: sha256WithRSAEncryption
91:35:d0:b1:6a:3b:98:7a:15:56:bc:88:96:48:ec:17:c6:17:
1d:5a:90:34:57:39:0f:ab:64:ac:1d:1c:df:6c:6a:b6:04:6d:
ae:7d:70:27:01:17:29:e1:67:ab:6d:b1:68:ca:8c:e7:e2:d2:
c9:f0:40:a3:35:2c:46:23:bb:ef:23:31:f9:6b:34:65:1d:be:
58:50:c8:87:87:63:77:b0:8b:0d:8d:9c:23:41:6a:37:61:77:
0e:17:88:bf:d0:96:65:e4:01:75:44:d4:db:2d:a6:44:39:b9:
4d:15:13:2f:5a:95:ff:16:ae:35:35:bc:01:91:4e:e2:af:3c:
f2:fe:38:bf:35:9b:c6:63:38:b5:38:f7:8e:ec:a7:de:06:a2:
d8:7c:c5:37:77:17:fe:10:0b:94:fd:dc:65:20:7a:81:a7:da:
37:ec:cf:39:77:d1:f5:5d:a8:61:4f:ed:fd:11:a5:44:ae:e8:
bf:29:27:d6:ab:f4:9e:f9:19:35:af:82:b3:1a:a9:fb:72:71:
da:27:75:a2:fa:f7:c6:a1:18:36:b4:a2:e9:5c:f6:4a:86:9f:
36:55:ad:a7:36:f2:3c:33:58:ca:fc:36:25:05:22:f7:b9:5d:
73:d8:8a:33:69:5c:3f:47:69:af:41:ee:ba:69:e5:6e:6d:e5:
cc:b3:82:4b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYyWt9RhFO++5l0nkV9z5rMPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3ZDAzZjI5ODE4MGNjMTA5ZjE5ZDRiMTk5MmM3ZDcxYzU2
YzhkY2MwHhcNMjMxMjIzMTI0NzU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MTljZjUwY2FmM2M1OWIzZWRmODUwOWM2MzdhMjc3YzNjMDlkN2NlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh1VRq1YyuJowGW6cV3TIZlKpery2
HIp/J3wUM4NtpIvASnzMUncAPhoDMkYXjyxb3iu9bGbPEsHfLOidan5iaADyXgo0
Y9Rmh/+ffA5LpXzlYR4pUzqq64ymtgRAEslw8ys9wzkdkktJmpL6R7XmcHBUc69K
OcKgvqOhcj8C7A8A0Z1Kxx85QpkEU4vhiIL7cZpqt527o5zCdhTrUh7PbPJFCYcz
EUjSdqVAzlzmSl9GzhOLr874BhwspdTl0SNI+oZKRoziYMigKbtKdw7ynHENFx/Z
D/5z9X5TGlUi15IcZRwwf4Omh+RNTUOYeiUnAMaodpcn5/Pye1tNQipTtQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHGc9QyvPFmz7fhQnGN6J3w8CdfOMB8GA1UdIwQY
MBaAFBfQPymBgMwQnxnUsZksfXHFbI3MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRjlBX0tZR0F6QkNmR2RTeG1TeDljY1ZzamN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC84MmUyNTMtMDE3Ny00YTIwLWJlZmUt
OTE4YWM2NDYyNjc5LzEvY1p6MURLODhXYlB0LUZDY1kzb25mRHdKMTg0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC84MmUyNTMtMDE3Ny00YTIwLWJlZmUtOTE4YWM2NDYyNjc5
LzEvRjlBX0tZR0F6QkNmR2RTeG1TeDljY1ZzamN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZzdMA0G
CSqGSIb3DQEBCwUAA4IBAQCRNdCxajuYehVWvIiWSOwXxhcdWpA0VzkPq2SsHRzf
bGq2BG2ufXAnARcp4WerbbFoyozn4tLJ8ECjNSxGI7vvIzH5azRlHb5YUMiHh2N3
sIsNjZwjQWo3YXcOF4i/0JZl5AF1RNTbLaZEOblNFRMvWpX/Fq41NbwBkU7irzzy
/ji/NZvGYzi1OPeO7KfeBqLYfMU3dxf+EAuU/dxlIHqBp9o37M85d9H1XahhT+39
EaVErui/KSfWq/Se+Rk1r4KzGqn7cnHaJ3Wi+vfGoRg2tKLpXPZKhp82Va2nNvI8
M1jK/DYlBSL3uV1z2IozaVw/R2mvQe66aeVubeXMs4JL
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:50 2024 by rpki-client on console-fra.rpki-client.org