Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/QwudXCzgRb2uwfrWoO0aau2Kr1k.roa
File: QwudXCzgRb2uwfrWoO0aau2Kr1k.roa (raw, json)
Hash identifier: mESHjK9xHbUDGall2sZ29GHABSXCk9ahrfuXehMICkk=
Subject key identifier: 43:0B:9D:5C:2C:E0:45:BD:AE:C1:FA:D6:A0:ED:1A:6A:ED:8A:AF:59
Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Certificate serial: 018CC79464D879E4883E3C39A25C6A60A569
Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/QwudXCzgRb2uwfrWoO0aau2Kr1k.roa
Signing time: Tue 02 Jan 2024 00:30:40 +0000
ROA not before: Tue 02 Jan 2024 00:30:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211439
IP address blocks: 45.143.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 Jan 2024 16:12:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:64:d8:79:e4:88:3e:3c:39:a2:5c:6a:60:a5:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Validity
Not Before: Jan 2 00:30:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=430b9d5c2ce045bdaec1fad6a0ed1a6aed8aaf59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:1a:15:79:b9:9b:07:c0:62:fd:99:ad:17:a5:
46:fd:60:0b:a2:d2:a5:84:64:67:50:5a:73:55:81:
20:c3:6a:ce:29:ef:3a:5f:28:82:a2:26:df:4d:3b:
d1:db:83:cf:50:02:22:47:fb:5e:25:85:81:fb:5b:
4b:00:2b:59:67:aa:11:7a:e6:51:14:7c:d5:0c:ba:
c5:0b:04:f8:6f:1c:ed:4a:8a:cb:64:4e:c0:6f:d5:
a2:c2:a1:1f:cf:1e:a0:7b:0f:56:af:62:a7:9c:e5:
9f:eb:f7:13:ce:8d:45:3c:bf:35:93:aa:b8:5b:00:
41:9b:69:ba:88:da:c5:1f:2a:72:41:fa:4b:f2:a1:
29:75:83:91:23:c0:1c:a2:e8:f2:ef:bf:be:e7:bf:
f5:d7:f0:8b:fe:1b:ec:ef:f9:74:9d:61:cb:78:1f:
26:89:c7:91:9a:1a:e7:40:18:87:f3:0e:a1:bc:94:
51:59:46:1f:7f:c7:2d:23:33:17:b6:43:47:c8:e8:
f7:75:dc:84:f4:7b:08:cd:8a:96:09:29:25:fc:ec:
f1:2f:4a:33:b1:dc:53:f4:63:43:f1:4e:41:6e:79:
69:b8:be:c6:f6:82:22:7d:ed:84:e5:6c:18:6c:a5:
f2:c6:eb:33:0b:a8:0e:0a:39:c0:86:11:43:8b:f3:
37:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:0B:9D:5C:2C:E0:45:BD:AE:C1:FA:D6:A0:ED:1A:6A:ED:8A:AF:59
X509v3 Authority Key Identifier:
keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/QwudXCzgRb2uwfrWoO0aau2Kr1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.5.0/24
Signature Algorithm: sha256WithRSAEncryption
10:2e:6f:ce:06:cd:82:50:00:37:68:9f:df:a9:59:e8:34:31:
de:77:9f:f5:26:57:aa:bd:51:51:b6:7c:66:65:6c:f4:da:98:
86:dc:4a:44:96:02:00:99:37:0e:97:2b:8b:1c:9f:b6:65:56:
23:56:05:2c:0d:bf:d8:06:39:f0:ff:91:9c:b3:9d:8f:c9:31:
43:96:0c:0b:0a:09:d4:c5:d5:f9:0d:ea:d9:93:5e:dc:e0:ff:
c1:ec:27:45:05:6d:91:be:1e:a7:41:d3:5d:02:0b:1f:57:b9:
5b:e3:06:f1:06:20:1a:08:0c:ad:4f:f2:4f:be:2b:b3:6c:11:
fe:7b:6c:0f:9e:48:78:45:99:91:1f:3d:6c:29:41:5b:db:e0:
44:25:82:e8:03:b6:1f:e9:c1:7b:10:ea:dc:5f:b7:f6:31:9c:
3b:01:2e:31:67:a1:7e:85:fe:ea:2e:0f:d7:ee:42:0c:81:4d:
b7:11:b1:c0:01:62:16:6a:0d:4b:ad:e7:a7:86:08:72:03:d0:
91:f8:e6:12:f1:74:30:21:b7:ee:27:b5:54:58:7b:d2:e1:2b:
3f:76:90:9a:38:18:8b:d9:99:c3:cb:cc:63:21:7a:0f:07:03:
17:19:d1:9f:e9:48:f3:4a:54:0f:7e:43:6a:6e:0b:2d:ea:d3:
63:d7:c0:8f
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYzHlGTYeeSIPjw5olxqYKVpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY4NjUxYjExOTRmMTJlOThlNzBkM2RhNzhlZmU0ZGQyNDY3
Y2Q0MjMwHhcNMjQwMTAyMDAzMDQwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MzBiOWQ1YzJjZTA0NWJkYWVjMWZhZDZhMGVkMWE2YWVkOGFhZjU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnBoVebmbB8Bi/ZmtF6VG/WALotKl
hGRnUFpzVYEgw2rOKe86XyiCoibfTTvR24PPUAIiR/teJYWB+1tLACtZZ6oReuZR
FHzVDLrFCwT4bxztSorLZE7Ab9WiwqEfzx6gew9Wr2KnnOWf6/cTzo1FPL81k6q4
WwBBm2m6iNrFHypyQfpL8qEpdYORI8Acoujy77++57/11/CL/hvs7/l0nWHLeB8m
iceRmhrnQBiH8w6hvJRRWUYff8ctIzMXtkNHyOj3ddyE9HsIzYqWCSkl/OzxL0oz
sdxT9GND8U5BbnlpuL7G9oIife2E5WwYbKXyxuszC6gOCjnAhhFDi/M3swIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFEMLnVws4EW9rsH61qDtGmrtiq9ZMB8GA1UdIwQY
MBaAFPhlGxGU8S6Y5w09p47+TdJGfNQjMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1HVWJFWlR4THBqbkRUMm5qdjVOMGtaODFDTS5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGUvODIyNDAwLTMyNDgtNDcwMi1iMjli
LWExYjdjZWVmYTE2Yy8xL1F3dWRYQ3pnUmIydXdmcldvTzBhYXUyS3Ixay5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNGUvODIyNDAwLTMyNDgtNDcwMi1iMjliLWExYjdjZWVmYTE2
Yy8xLzEtR1ViRVpUeExwam5EVDJuanY1TjBrWjgxQ00uY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtjwUw
DQYJKoZIhvcNAQELBQADggEBABAub84GzYJQADdon9+pWeg0Md53n/UmV6q9UVG2
fGZlbPTamIbcSkSWAgCZNw6XK4scn7ZlViNWBSwNv9gGOfD/kZyznY/JMUOWDAsK
CdTF1fkN6tmTXtzg/8HsJ0UFbZG+HqdB010CCx9XuVvjBvEGIBoIDK1P8k++K7Ns
Ef57bA+eSHhFmZEfPWwpQVvb4EQlgugDth/pwXsQ6txft/YxnDsBLjFnoX6F/uou
D9fuQgyBTbcRscABYhZqDUut56eGCHID0JH45hLxdDAht+4ntVRYe9LhKz92kJo4
GIvZmcPLzGMheg8HAxcZ0Z/pSPNKVA9+Q2puCy3q02PXwI8=
-----END CERTIFICATE-----
Generated at Mon Jan 15 20:07:26 2024 by rpki-client on console-fra.rpki-client.org