Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/_SO0gbl3G9oiZp_IhfL_BHleOqg.roa
File: _SO0gbl3G9oiZp_IhfL_BHleOqg.roa (raw, json)
Hash identifier: HkJ+/m5i550MjFAvD2HnTz4YDc+3CopEG9WkiIlpkoE=
Subject key identifier: FD:23:B4:81:B9:77:1B:DA:22:66:9F:C8:85:F2:FF:04:79:5E:3A:A8
Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Certificate serial: 018F8C923AF84627CA11501DDE4D2E136B3F
Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/_SO0gbl3G9oiZp_IhfL_BHleOqg.roa
Signing time: Sat 18 May 2024 16:39:04 +0000
ROA not before: Sat 18 May 2024 16:39:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59651
IP address blocks: 45.143.4.0/24 maxlen: 24
45.143.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 May 2024 14:26:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:8c:92:3a:f8:46:27:ca:11:50:1d:de:4d:2e:13:6b:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Validity
Not Before: May 18 16:39:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd23b481b9771bda22669fc885f2ff04795e3aa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:43:8b:12:b2:2c:bc:08:01:9c:f5:34:c1:7f:
73:32:fb:de:f2:8d:02:7a:1a:0b:82:c8:c7:70:4f:
28:48:f6:31:5b:54:67:fa:8e:c3:5a:d3:6a:ef:69:
1d:36:cc:9a:b7:25:d7:c9:a5:dd:0c:f5:de:7f:79:
6b:48:aa:5e:f6:51:22:28:ad:5d:74:82:33:b6:6c:
4d:67:2d:af:01:57:2b:ee:d0:ef:3e:f2:2b:cd:7e:
76:f4:9f:4f:25:7d:40:09:3a:07:f0:c7:33:c9:7f:
e4:e7:21:e2:f2:c3:fb:ab:e2:b9:00:50:2f:d4:66:
17:20:b0:92:3e:ae:9f:d7:d7:90:3d:a3:3b:f7:5f:
09:71:a2:9c:58:99:9f:9e:34:f9:05:cd:d0:ad:be:
12:1e:cb:fa:9a:25:c8:9b:9d:b7:93:3a:da:56:1d:
a0:ce:f6:95:12:4d:32:7e:8c:4a:fe:5a:aa:90:47:
4b:05:37:9b:30:dd:00:db:83:c8:7f:e2:63:9c:18:
00:33:21:22:32:c9:85:9d:e7:65:07:ec:07:07:a9:
f0:ae:ef:59:44:6a:8b:2c:f7:f4:38:2f:bc:35:27:
d6:e4:9f:bf:5b:9d:3c:7c:50:c5:b7:2c:90:c8:24:
6d:df:e3:f7:b3:e2:4f:29:5c:6b:61:90:7b:14:77:
b7:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:23:B4:81:B9:77:1B:DA:22:66:9F:C8:85:F2:FF:04:79:5E:3A:A8
X509v3 Authority Key Identifier:
keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/_SO0gbl3G9oiZp_IhfL_BHleOqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.4.0/23
Signature Algorithm: sha256WithRSAEncryption
18:f6:74:34:76:7a:3b:68:c6:0b:66:04:e0:59:05:21:aa:c7:
67:ed:d1:06:f7:08:93:1f:3d:08:90:04:ff:59:0c:1d:9b:ba:
d1:fd:1e:1b:3a:20:df:b7:3d:17:f6:65:33:59:52:b5:99:94:
8e:a3:b9:2d:7d:6e:7b:56:ba:9a:fa:14:07:6c:e4:d2:1b:09:
5b:8c:c0:68:94:46:2a:a2:8f:ab:76:1f:bb:5c:91:f8:5f:70:
b0:88:22:78:57:94:51:82:53:9d:f8:b4:90:84:cb:fa:dc:c6:
3e:0b:c6:bc:c4:c2:f4:ef:fb:e6:ec:de:3c:7c:e9:39:cc:33:
9b:f2:d4:ba:fa:7b:40:81:19:7c:54:27:f9:f9:bb:c4:13:09:
57:64:43:ad:89:df:ab:79:10:7a:11:56:37:ff:62:cc:c1:75:
ef:0c:fa:16:78:3c:38:9b:45:2d:81:50:1b:77:4f:cd:84:4b:
ef:6e:10:6b:df:f1:1c:fa:66:cf:4e:8f:4f:4d:6f:ce:53:9c:
b3:8d:18:7a:9d:32:d2:58:23:86:5b:2a:97:46:86:8c:2f:cd:
ae:36:84:45:63:98:ad:41:c2:71:ac:eb:36:41:47:83:63:2a:
0c:3b:ce:32:48:58:47:4f:e7:ca:d8:c0:69:a7:fe:e9:ac:e8:
f6:46:4a:9e
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAY+Mkjr4RifKEVAd3k0uE2s/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY4NjUxYjExOTRmMTJlOThlNzBkM2RhNzhlZmU0ZGQyNDY3
Y2Q0MjMwHhcNMjQwNTE4MTYzOTA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZDIzYjQ4MWI5NzcxYmRhMjI2NjlmYzg4NWYyZmYwNDc5NWUzYWE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwUOLErIsvAgBnPU0wX9zMvve8o0C
ehoLgsjHcE8oSPYxW1Rn+o7DWtNq72kdNsyatyXXyaXdDPXef3lrSKpe9lEiKK1d
dIIztmxNZy2vAVcr7tDvPvIrzX529J9PJX1ACToH8MczyX/k5yHi8sP7q+K5AFAv
1GYXILCSPq6f19eQPaM7918JcaKcWJmfnjT5Bc3Qrb4SHsv6miXIm523kzraVh2g
zvaVEk0yfoxK/lqqkEdLBTebMN0A24PIf+JjnBgAMyEiMsmFnedlB+wHB6nwru9Z
RGqLLPf0OC+8NSfW5J+/W508fFDFtyyQyCRt3+P3s+JPKVxrYZB7FHe3HQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFP0jtIG5dxvaImafyIXy/wR5XjqoMB8GA1UdIwQY
MBaAFPhlGxGU8S6Y5w09p47+TdJGfNQjMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1HVWJFWlR4THBqbkRUMm5qdjVOMGtaODFDTS5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGUvODIyNDAwLTMyNDgtNDcwMi1iMjli
LWExYjdjZWVmYTE2Yy8xL19TTzBnYmwzRzlvaVpwX0loZkxfQkhsZU9xZy5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNGUvODIyNDAwLTMyNDgtNDcwMi1iMjliLWExYjdjZWVmYTE2
Yy8xLzEtR1ViRVpUeExwam5EVDJuanY1TjBrWjgxQ00uY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEtjwQw
DQYJKoZIhvcNAQELBQADggEBABj2dDR2ejtoxgtmBOBZBSGqx2ft0Qb3CJMfPQiQ
BP9ZDB2butH9Hhs6IN+3PRf2ZTNZUrWZlI6juS19bntWupr6FAds5NIbCVuMwGiU
Riqij6t2H7tckfhfcLCIInhXlFGCU534tJCEy/rcxj4LxrzEwvTv++bs3jx86TnM
M5vy1Lr6e0CBGXxUJ/n5u8QTCVdkQ62J36t5EHoRVjf/YszBde8M+hZ4PDibRS2B
UBt3T82ES+9uEGvf8Rz6Zs9Oj09Nb85TnLONGHqdMtJYI4ZbKpdGhowvza42hEVj
mK1BwnGs6zZBR4NjKgw7zjJIWEdP58rYwGmn/ums6PZGSp4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:15 2024 by rpki-client on console-ams.rpki-client.org