Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/8a30b8-1c1d-41c2-994e-5666c283b306/1/1-DuFyD_hOnQEBwffgJXkBElwRWE.roa
File: 1-DuFyD_hOnQEBwffgJXkBElwRWE.roa (raw, json)
Hash identifier: 218RHr9W60C4HovMbxHRDEd0uxMcfHkrVgdEgNspfVk=
Subject key identifier: F8:3B:85:C8:3F:E1:3A:74:04:07:07:DF:80:95:E4:04:49:70:45:61
Certificate issuer: /CN=6a0f5830dbc4bbabb682777ebd3843d750489ec8
Certificate serial: 0185E2AA6308C2D7152C30AD0C3479A1EEFF
Authority key identifier: 6A:0F:58:30:DB:C4:BB:AB:B6:82:77:7E:BD:38:43:D7:50:48:9E:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ag9YMNvEu6u2gnd-vThD11BInsg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/8a30b8-1c1d-41c2-994e-5666c283b306/1/1-DuFyD_hOnQEBwffgJXkBElwRWE.roa
Signing time: Tue 24 Jan 2023 07:24:55 +0000
ROA not before: Tue 24 Jan 2023 07:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207326
IP address blocks: 45.145.120.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e2:aa:63:08:c2:d7:15:2c:30:ad:0c:34:79:a1:ee:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a0f5830dbc4bbabb682777ebd3843d750489ec8
Validity
Not Before: Jan 24 07:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f83b85c83fe13a74040707df8095e40449704561
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:04:96:6d:c2:e6:7b:d0:eb:c2:b9:1e:eb:61:
55:e2:68:db:ba:db:c6:2b:7b:98:3b:86:22:02:c5:
17:64:fc:49:d0:f8:b4:71:ab:e5:3e:f5:71:b2:af:
89:70:38:16:12:8c:1f:fd:bf:ce:d1:6c:5f:8f:47:
a3:79:97:32:0a:16:e7:72:71:3c:27:78:19:6f:22:
d9:8a:a2:2b:80:08:69:f0:97:8f:f2:3b:59:4c:29:
d8:a4:fc:f8:c3:aa:e2:03:51:52:df:2c:57:dc:3b:
1d:c0:2d:40:37:7d:59:51:f3:ef:50:69:52:90:38:
37:ae:5c:70:bb:48:fb:2b:69:e1:22:1e:fd:2b:55:
01:73:c5:c8:a7:38:21:3f:1e:fd:d7:bd:13:9c:51:
a1:a6:b5:34:b9:f3:64:a2:34:d1:4f:13:bb:3f:d3:
f1:6b:1b:c7:ed:86:e1:a6:d1:8e:51:12:89:46:47:
57:6c:ac:6a:a9:97:a1:de:fa:b9:8e:00:30:03:c5:
26:14:f5:88:3c:4b:a5:b7:23:94:1a:4f:c3:43:95:
fd:43:0c:47:e6:f7:b6:25:75:55:3d:6c:68:cf:80:
15:fa:a3:cb:d8:3c:47:e0:b1:86:ab:b9:27:17:08:
c0:e4:3f:84:1e:c0:27:af:74:25:bc:6d:6a:2e:b9:
7d:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:3B:85:C8:3F:E1:3A:74:04:07:07:DF:80:95:E4:04:49:70:45:61
X509v3 Authority Key Identifier:
keyid:6A:0F:58:30:DB:C4:BB:AB:B6:82:77:7E:BD:38:43:D7:50:48:9E:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ag9YMNvEu6u2gnd-vThD11BInsg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/8a30b8-1c1d-41c2-994e-5666c283b306/1/1-DuFyD_hOnQEBwffgJXkBElwRWE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/8a30b8-1c1d-41c2-994e-5666c283b306/1/ag9YMNvEu6u2gnd-vThD11BInsg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.120.0/23
Signature Algorithm: sha256WithRSAEncryption
05:19:65:9b:77:4a:db:3c:6c:07:e1:63:48:ff:48:e0:fd:33:
df:4e:2f:5e:9f:29:4a:52:93:30:e9:64:3f:67:7f:bb:df:1b:
2f:aa:b2:55:cf:0b:5f:aa:8a:54:6e:8a:e6:0e:53:5b:e4:e5:
ec:2c:9e:f3:d2:34:e3:05:bc:bb:99:a1:9b:f2:de:f2:f4:6b:
81:e1:50:73:e7:bc:db:c6:66:bb:6b:fa:e1:85:bb:a5:6a:d3:
87:93:1b:cc:a6:38:7d:3e:00:4b:e9:6f:44:7f:fa:b7:65:de:
1a:59:16:92:10:44:b5:7b:bb:d3:24:8b:42:9f:b7:22:bc:f4:
13:81:87:26:0f:e8:81:72:a3:4a:b2:b1:e4:5a:a3:6e:cb:fb:
b5:b2:52:af:ea:4b:b2:69:3d:c6:81:70:17:58:da:6f:28:a2:
57:0f:8d:84:4d:18:74:a7:7b:da:54:2d:51:74:cf:bf:97:44:
46:d4:42:00:e1:eb:6e:15:0c:0b:0a:ae:cc:bc:69:60:0e:07:
0d:2c:6d:9c:08:75:df:47:7b:68:ce:76:da:51:61:87:a8:1e:
49:c8:14:c4:47:57:18:55:01:e3:cb:6b:55:c6:af:2d:29:a9:
c8:84:c2:56:c1:73:b7:82:e5:ef:c7:17:f0:1e:8a:80:8e:42:
2a:0a:64:8e
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYXiqmMIwtcVLDCtDDR5oe7/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZhMGY1ODMwZGJjNGJiYWJiNjgyNzc3ZWJkMzg0M2Q3NTA0
ODllYzgwHhcNMjMwMTI0MDcyNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmODNiODVjODNmZTEzYTc0MDQwNzA3ZGY4MDk1ZTQwNDQ5NzA0NTYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoASWbcLme9Drwrke62FV4mjbutvG
K3uYO4YiAsUXZPxJ0Pi0cavlPvVxsq+JcDgWEowf/b/O0Wxfj0ejeZcyChbncnE8
J3gZbyLZiqIrgAhp8JeP8jtZTCnYpPz4w6riA1FS3yxX3DsdwC1AN31ZUfPvUGlS
kDg3rlxwu0j7K2nhIh79K1UBc8XIpzghPx79170TnFGhprU0ufNkojTRTxO7P9Px
axvH7YbhptGOURKJRkdXbKxqqZeh3vq5jgAwA8UmFPWIPEultyOUGk/DQ5X9QwxH
5ve2JXVVPWxoz4AV+qPL2DxH4LGGq7knFwjA5D+EHsAnr3QlvG1qLrl9hQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPg7hcg/4Tp0BAcH34CV5ARJcEVhMB8GA1UdIwQY
MBaAFGoPWDDbxLurtoJ3fr04Q9dQSJ7IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYWc5WU1OdkV1NnUyZ25kLXZUaEQxMUJJbnNnLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni84YTMwYjgtMWMxZC00MWMyLTk5NGUt
NTY2NmMyODNiMzA2LzEvMS1EdUZ5RF9oT25RRUJ3ZmZnSlhrQkVsd1JXRS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNDYvOGEzMGI4LTFjMWQtNDFjMi05OTRlLTU2NjZjMjgzYjMw
Ni8xL2FnOVlNTnZFdTZ1MmduZC12VGhEMTFCSW5zZy5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAS2ReDAN
BgkqhkiG9w0BAQsFAAOCAQEABRllm3dK2zxsB+FjSP9I4P0z304vXp8pSlKTMOlk
P2d/u98bL6qyVc8LX6qKVG6K5g5TW+Tl7Cye89I04wW8u5mhm/Le8vRrgeFQc+e8
28Zmu2v64YW7pWrTh5MbzKY4fT4AS+lvRH/6t2XeGlkWkhBEtXu70ySLQp+3Irz0
E4GHJg/ogXKjSrKx5Fqjbsv7tbJSr+pLsmk9xoFwF1jabyiiVw+NhE0YdKd72lQt
UXTPv5dERtRCAOHrbhUMCwquzLxpYA4HDSxtnAh130d7aM522lFhh6geScgUxEdX
GFUB48trVcavLSmpyITCVsFzt4Ll78cX8B6KgI5CKgpkjg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:22 2023 by rpki-client on console-fra.rpki-client.org