Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/5ad73b-db17-4322-ade5-b9a9d8ae9421/1/gs47KWooZa16_WYwE58_Rq3-TMg.roa
File: gs47KWooZa16_WYwE58_Rq3-TMg.roa (raw, json)
Hash identifier: g13TCHWOYqxMF9lQgcbX/8aRA6q2j+z8l8B+W70gaBY=
Subject key identifier: 82:CE:3B:29:6A:28:65:AD:7A:FD:66:30:13:9F:3F:46:AD:FE:4C:C8
Certificate issuer: /CN=9b759ec9ff54de03a7ff3a65edbb2e0758e6878c
Certificate serial: 0185708CDB40DADD5D3356CB4FFDBC956875
Authority key identifier: 9B:75:9E:C9:FF:54:DE:03:A7:FF:3A:65:ED:BB:2E:07:58:E6:87:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m3Weyf9U3gOn_zpl7bsuB1jmh4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/5ad73b-db17-4322-ade5-b9a9d8ae9421/1/gs47KWooZa16_WYwE58_Rq3-TMg.roa
Signing time: Mon 02 Jan 2023 03:35:57 +0000
ROA not before: Mon 02 Jan 2023 03:35:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 164.153.132.0/24 maxlen: 24
164.153.133.0/24 maxlen: 24
164.153.134.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:db:40:da:dd:5d:33:56:cb:4f:fd:bc:95:68:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b759ec9ff54de03a7ff3a65edbb2e0758e6878c
Validity
Not Before: Jan 2 03:35:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=82ce3b296a2865ad7afd6630139f3f46adfe4cc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:06:8c:f3:60:31:9d:71:b1:eb:de:c6:de:fd:
ee:05:14:87:4d:b8:fd:62:3d:83:87:42:90:1e:4c:
23:2c:df:26:c2:c1:09:8e:7a:23:2f:53:81:ee:6c:
d3:c9:be:e0:88:03:cf:ab:03:ca:46:13:f9:60:d7:
5c:fa:50:11:fa:57:b0:38:f9:4e:1f:e0:b9:44:dd:
d6:18:8c:4f:1e:96:46:ae:29:c2:7f:05:35:f0:b5:
c4:bd:fa:90:44:ae:a8:6a:1e:fd:d7:2c:50:01:02:
4c:d7:9e:69:07:1b:77:bf:b5:3a:fe:c1:64:7c:d3:
99:72:5d:a8:68:71:68:ef:30:3a:fe:37:cc:ab:4d:
cf:1f:a9:ca:7d:e6:2d:a3:13:5c:eb:0a:27:60:51:
ec:11:85:ff:9e:88:c9:b4:d5:f9:04:40:f9:fe:a1:
c2:8b:51:e5:0e:a8:c7:4f:6f:c5:6d:bd:a2:52:cb:
5d:f6:2f:c2:4a:52:c9:d4:ca:90:1b:b0:72:af:36:
c7:c0:75:71:16:91:ea:04:f2:cf:ea:e9:30:59:49:
0a:ac:1e:29:bf:b4:6e:11:ea:b8:b0:22:76:b7:d2:
38:ed:24:3d:02:25:3a:4a:c8:e8:09:b1:fe:f6:52:
a6:b1:d6:6d:09:e6:7a:37:37:f1:f2:b9:d6:41:51:
23:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:CE:3B:29:6A:28:65:AD:7A:FD:66:30:13:9F:3F:46:AD:FE:4C:C8
X509v3 Authority Key Identifier:
keyid:9B:75:9E:C9:FF:54:DE:03:A7:FF:3A:65:ED:BB:2E:07:58:E6:87:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m3Weyf9U3gOn_zpl7bsuB1jmh4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/5ad73b-db17-4322-ade5-b9a9d8ae9421/1/gs47KWooZa16_WYwE58_Rq3-TMg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/5ad73b-db17-4322-ade5-b9a9d8ae9421/1/m3Weyf9U3gOn_zpl7bsuB1jmh4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.153.132.0-164.153.134.255
Signature Algorithm: sha256WithRSAEncryption
01:ed:50:bb:d2:de:e4:5b:df:d6:cb:03:3b:83:b2:1d:b8:ea:
11:00:36:4f:bd:89:ac:ea:41:2f:27:a3:51:ba:05:1a:a3:71:
3b:f9:80:dd:4c:b3:6e:12:d1:fe:72:93:f6:7d:7b:0c:4e:84:
f7:21:67:72:32:4f:d8:66:48:19:95:93:36:42:3a:f0:8e:e0:
ca:b4:52:7f:33:17:19:e9:0f:a5:13:21:3c:bd:2d:f6:2d:f1:
22:13:00:c6:0a:cf:b1:57:52:e0:bd:92:1a:47:25:96:bd:3a:
f0:08:f7:6e:39:53:22:87:00:3f:68:ff:57:a8:d6:1e:c3:73:
b1:a0:ba:7d:05:b2:0b:cc:4b:2e:77:a7:49:9a:c1:2d:85:39:
f9:24:9e:34:a9:50:3b:36:e4:70:a8:bc:72:a4:54:5c:b8:0a:
8e:04:a6:b9:bd:db:59:df:5f:ae:f4:27:43:09:82:90:7b:50:
df:17:21:f9:04:74:6f:44:4d:07:44:95:f2:a3:73:d7:2a:ec:
07:46:54:c8:32:48:8a:76:e5:25:9a:95:3e:cb:a2:12:6b:d4:
aa:d1:87:da:5f:30:f8:b4:5e:f0:29:2a:95:3f:1d:fe:f0:9c:
7c:c3:46:02:b5:d6:8f:c3:86:80:84:20:88:06:3b:12:33:27:
b8:ce:54:cc
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYVwjNtA2t1dM1bLT/28lWh1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDliNzU5ZWM5ZmY1NGRlMDNhN2ZmM2E2NWVkYmIyZTA3NThl
Njg3OGMwHhcNMjMwMTAyMDMzNTU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MmNlM2IyOTZhMjg2NWFkN2FmZDY2MzAxMzlmM2Y0NmFkZmU0Y2M4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjwaM82AxnXGx697G3v3uBRSHTbj9
Yj2Dh0KQHkwjLN8mwsEJjnojL1OB7mzTyb7giAPPqwPKRhP5YNdc+lAR+lewOPlO
H+C5RN3WGIxPHpZGrinCfwU18LXEvfqQRK6oah791yxQAQJM155pBxt3v7U6/sFk
fNOZcl2oaHFo7zA6/jfMq03PH6nKfeYtoxNc6wonYFHsEYX/nojJtNX5BED5/qHC
i1HlDqjHT2/Fbb2iUstd9i/CSlLJ1MqQG7ByrzbHwHVxFpHqBPLP6ukwWUkKrB4p
v7RuEeq4sCJ2t9I47SQ9AiU6SsjoCbH+9lKmsdZtCeZ6Nzfx8rnWQVEjjQIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFILOOylqKGWtev1mMBOfP0at/kzIMB8GA1UdIwQY
MBaAFJt1nsn/VN4Dp/86Ze27LgdY5oeMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbTNXZXlmOVUzZ09uX3pwbDdic3VCMWptaDR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OS81YWQ3M2ItZGIxNy00MzIyLWFkZTUt
YjlhOWQ4YWU5NDIxLzEvZ3M0N0tXb29aYTE2X1dZd0U1OF9ScTMtVE1nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OS81YWQ3M2ItZGIxNy00MzIyLWFkZTUtYjlhOWQ4YWU5NDIx
LzEvbTNXZXlmOVUzZ09uX3pwbDdic3VCMWptaDR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAKkmYQD
BACkmYYwDQYJKoZIhvcNAQELBQADggEBAAHtULvS3uRb39bLAzuDsh246hEANk+9
iazqQS8no1G6BRqjcTv5gN1Ms24S0f5yk/Z9ewxOhPchZ3IyT9hmSBmVkzZCOvCO
4Mq0Un8zFxnpD6UTITy9LfYt8SITAMYKz7FXUuC9khpHJZa9OvAI9245UyKHAD9o
/1eo1h7Dc7Ggun0FsgvMSy53p0mawS2FOfkknjSpUDs25HCovHKkVFy4Co4Eprm9
21nfX670J0MJgpB7UN8XIfkEdG9ETQdElfKjc9cq7AdGVMgySIp25SWalT7LohJr
1KrRh9pfMPi0XvApKpU/Hf7wnHzDRgK11o/DhoCEIIgGOxIzJ7jOVMw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:45 2024 by rpki-client on console-ams.rpki-client.org