Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/RNcaCQzImmQszjYQcmCrex84wJA.roa
File: RNcaCQzImmQszjYQcmCrex84wJA.roa (raw, json)
Hash identifier: /wBqOTG6QEkSq4Uk9FhS3GNOjBDDbW8JqC37V3Ld9fE=
Subject key identifier: 44:D7:1A:09:0C:C8:9A:64:2C:CE:36:10:72:60:AB:7B:1F:38:C0:90
Certificate issuer: /CN=5eee0d7e73084a42e4c7f7118f2383fcff369ba4
Certificate serial: 018AFEB7E10E457797E9AA4977286D53D890
Authority key identifier: 5E:EE:0D:7E:73:08:4A:42:E4:C7:F7:11:8F:23:83:FC:FF:36:9B:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xu4NfnMISkLkx_cRjyOD_P82m6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/RNcaCQzImmQszjYQcmCrex84wJA.roa
Signing time: Thu 05 Oct 2023 07:22:58 +0000
ROA not before: Thu 05 Oct 2023 07:22:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.89.31.0/24 maxlen: 24
45.89.28.0/24 maxlen: 24
45.89.29.0/24 maxlen: 24
193.160.102.0/24 maxlen: 24
193.160.113.0/24 maxlen: 24
193.160.136.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Oct 2023 07:06:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:fe:b7:e1:0e:45:77:97:e9:aa:49:77:28:6d:53:d8:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5eee0d7e73084a42e4c7f7118f2383fcff369ba4
Validity
Not Before: Oct 5 07:22:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=44d71a090cc89a642cce36107260ab7b1f38c090
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:f8:68:48:b6:ee:fa:26:ac:2c:94:7b:52:c3:
e9:d2:ec:bc:90:85:64:d3:9b:0d:32:d1:9b:7f:84:
91:b8:a8:9d:f4:28:a0:8a:b1:e5:a7:54:a5:75:4a:
c7:11:1a:ee:29:3b:a7:f4:16:bc:7f:45:bc:a3:e1:
78:11:f2:7f:1e:3e:9a:cd:1c:a6:8a:f6:c8:44:03:
b4:f8:9c:a9:3f:44:1d:f5:2b:d2:72:d5:f4:e6:9d:
40:a9:31:cc:1e:1c:33:c9:7d:d7:a1:96:a1:8c:f6:
c8:e6:7b:bb:d8:25:63:cd:3a:0d:e4:66:85:9c:ec:
2a:6e:df:db:df:51:f5:15:f5:11:59:b2:ba:ec:27:
e2:de:fe:ea:c5:32:3f:fc:f7:fe:6e:9d:b0:dc:de:
c9:3e:82:86:a4:6e:99:0f:3c:cc:30:38:a7:39:b4:
70:a9:f5:b0:8a:4e:8b:90:2d:20:5a:aa:1e:6d:a9:
02:fd:ac:8a:e8:99:dd:21:3a:63:7b:33:ea:47:49:
da:51:90:f4:7f:f1:65:c0:25:78:12:39:82:5b:b2:
d2:11:c9:0e:2f:cd:e1:6c:33:d3:95:8d:4a:08:f8:
38:19:48:a3:13:ae:de:f2:09:db:b2:48:bf:01:11:
73:eb:b3:f6:74:c9:51:f0:ae:da:87:80:2f:18:69:
f0:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:D7:1A:09:0C:C8:9A:64:2C:CE:36:10:72:60:AB:7B:1F:38:C0:90
X509v3 Authority Key Identifier:
keyid:5E:EE:0D:7E:73:08:4A:42:E4:C7:F7:11:8F:23:83:FC:FF:36:9B:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xu4NfnMISkLkx_cRjyOD_P82m6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/RNcaCQzImmQszjYQcmCrex84wJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/784321-99dd-4754-b208-ddc2665646cc/1/Xu4NfnMISkLkx_cRjyOD_P82m6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.28.0/23
45.89.31.0/24
193.160.102.0/24
193.160.113.0/24
193.160.136.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:2b:61:8c:e6:71:ec:8a:d2:d6:59:e5:5e:f0:42:36:d8:c0:
df:a3:df:19:be:ef:f5:66:54:73:95:d1:e3:f5:33:97:54:51:
b1:fc:0e:af:b3:5c:82:00:a9:06:41:60:68:92:7b:4c:c5:91:
b4:ad:7f:c6:e9:01:35:97:4d:4c:53:37:b2:3e:9a:a5:a3:18:
99:60:75:de:60:a1:45:32:50:2e:a7:75:79:8c:2d:9b:6b:2d:
a7:f6:97:0b:eb:20:a7:05:ec:0d:fb:49:01:6d:df:a0:f6:85:
da:42:db:ee:20:19:cd:ea:e9:a2:9b:30:77:2d:55:84:ee:a9:
7c:c0:a1:79:74:6a:fc:62:f4:d3:3a:c0:0b:f0:ec:c1:fa:01:
f7:27:82:34:e4:bc:91:c8:3c:41:ea:21:5e:bd:6b:90:f9:92:
1f:54:17:f1:7a:9e:99:26:49:68:ab:22:db:d2:4e:ec:eb:2d:
cd:27:8e:33:28:4e:15:df:57:4a:ca:56:57:ce:58:86:5c:1e:
ce:4b:a0:be:19:85:32:66:66:60:1a:5f:11:0b:53:28:58:87:
f2:cd:6c:0f:82:e2:de:e9:f5:64:31:8e:8d:19:35:4b:38:85:
31:b6:3a:69:0f:74:d3:67:be:51:10:42:79:48:b4:3a:10:b5:
34:42:01:16
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAYr+t+EORXeX6apJdyhtU9iQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlZWUwZDdlNzMwODRhNDJlNGM3ZjcxMThmMjM4M2ZjZmYz
NjliYTQwHhcNMjMxMDA1MDcyMjU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NGQ3MWEwOTBjYzg5YTY0MmNjZTM2MTA3MjYwYWI3YjFmMzhjMDkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhfhoSLbu+iasLJR7UsPp0uy8kIVk
05sNMtGbf4SRuKid9CigirHlp1SldUrHERruKTun9Ba8f0W8o+F4EfJ/Hj6azRym
ivbIRAO0+JypP0Qd9SvSctX05p1AqTHMHhwzyX3XoZahjPbI5nu72CVjzToN5GaF
nOwqbt/b31H1FfURWbK67Cfi3v7qxTI//Pf+bp2w3N7JPoKGpG6ZDzzMMDinObRw
qfWwik6LkC0gWqoebakC/ayK6JndITpjezPqR0naUZD0f/FlwCV4EjmCW7LSEckO
L83hbDPTlY1KCPg4GUijE67e8gnbski/ARFz67P2dMlR8K7ah4AvGGnwhwIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFETXGgkMyJpkLM42EHJgq3sfOMCQMB8GA1UdIwQY
MBaAFF7uDX5zCEpC5Mf3EY8jg/z/NpukMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHU0TmZuTUlTa0xreF9jUmp5T0RfUDgybTZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni83ODQzMjEtOTlkZC00NzU0LWIyMDgt
ZGRjMjY2NTY0NmNjLzEvUk5jYUNRekltbVFzempZUWNtQ3JleDg0d0pBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ni83ODQzMjEtOTlkZC00NzU0LWIyMDgtZGRjMjY2NTY0NmNj
LzEvWHU0TmZuTUlTa0xreF9jUmp5T0RfUDgybTZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQBLVkcAwQA
LVkfAwQAwaBmAwQAwaBxAwQAwaCIMA0GCSqGSIb3DQEBCwUAA4IBAQCNK2GM5nHs
itLWWeVe8EI22MDfo98Zvu/1ZlRzldHj9TOXVFGx/A6vs1yCAKkGQWBokntMxZG0
rX/G6QE1l01MUzeyPpqloxiZYHXeYKFFMlAup3V5jC2bay2n9pcL6yCnBewN+0kB
bd+g9oXaQtvuIBnN6umimzB3LVWE7ql8wKF5dGr8YvTTOsAL8OzB+gH3J4I05LyR
yDxB6iFevWuQ+ZIfVBfxep6ZJkloqyLb0k7s6y3NJ44zKE4V31dKylZXzliGXB7O
S6C+GYUyZmZgGl8RC1MoWIfyzWwPguLe6fVkMY6NGTVLOIUxtjppD3TTZ75REEJ5
SLQ6ELU0QgEW
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:11 2024 by rpki-client on console-ams.rpki-client.org