Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/dGIZeXVnZ1brOpUT5deiLOM1vYI.roa
File: dGIZeXVnZ1brOpUT5deiLOM1vYI.roa (raw, json)
Hash identifier: NGTLBA58uP9EdNPRxz3r0ih3K2b0hO5GDYQaQYNtFN4=
Subject key identifier: 74:62:19:79:75:67:67:56:EB:3A:95:13:E5:D7:A2:2C:E3:35:BD:82
Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Certificate serial: 018E95EE96CDC910B7F4C17D4DA643439C22
Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/dGIZeXVnZ1brOpUT5deiLOM1vYI.roa
Signing time: Sun 31 Mar 2024 19:13:45 +0000
ROA not before: Sun 31 Mar 2024 19:13:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59651
IP address blocks: 45.143.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 20 Apr 2024 16:53:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:95:ee:96:cd:c9:10:b7:f4:c1:7d:4d:a6:43:43:9c:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Validity
Not Before: Mar 31 19:13:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7462197975676756eb3a9513e5d7a22ce335bd82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:a4:28:d9:db:b4:97:2e:ac:48:d4:ad:00:33:
6e:ae:26:ce:f3:c6:66:ae:07:02:92:35:d5:d7:25:
ca:23:f8:f2:c4:c0:55:a0:5d:67:c4:f0:d2:c2:2e:
52:18:86:0e:08:ae:7d:4f:1c:26:19:d0:e5:d2:aa:
6f:d4:63:ee:64:ac:6f:1a:0c:1a:47:a8:40:53:7c:
ef:6f:59:a7:88:18:fc:46:83:be:46:78:08:1b:84:
45:1d:e2:86:37:60:4c:e8:26:3e:a7:6f:99:09:d6:
cb:f9:93:5c:fa:9a:de:d6:d6:6d:84:f5:d3:70:b3:
12:6e:61:34:e3:d5:1c:bd:7d:b0:75:df:55:df:35:
1f:2f:cc:dd:b1:8a:79:88:d0:c5:d8:b3:3e:11:f4:
e5:46:ee:b6:c8:b7:71:29:f9:b2:10:76:c5:94:c7:
0a:45:0d:49:5e:17:9e:50:84:39:ed:22:b7:e5:3a:
75:b6:de:7a:44:b8:a5:6f:c1:79:5d:9a:8d:08:99:
31:8c:1c:2a:ed:d2:af:36:56:0c:ef:12:f8:66:a8:
34:cd:57:67:af:58:4d:af:3d:b1:5d:b5:aa:4c:ac:
a2:3f:cb:43:be:e9:37:68:4e:79:9f:de:03:6e:2f:
e6:ae:c5:e8:7e:e5:eb:e9:ed:73:c6:73:61:25:f7:
9c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:62:19:79:75:67:67:56:EB:3A:95:13:E5:D7:A2:2C:E3:35:BD:82
X509v3 Authority Key Identifier:
keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/dGIZeXVnZ1brOpUT5deiLOM1vYI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.5.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:e4:a1:34:0d:df:84:ed:b1:fe:21:29:fd:b7:56:29:92:8b:
d0:b2:da:3e:e9:83:22:b1:ae:01:4e:c0:5a:2d:9d:69:c9:bb:
6b:4a:73:88:27:01:f0:2f:3e:b4:77:ed:a2:9b:1a:07:70:ff:
cc:71:69:61:eb:09:bf:8d:31:82:de:d7:2b:60:dd:2a:8e:22:
5e:47:a1:45:3e:a5:33:8a:fc:28:a0:99:8f:32:1c:7d:73:11:
62:c8:c2:df:ac:c5:44:49:7e:61:9b:f3:c3:46:d3:84:62:46:
f3:d1:89:da:3e:71:00:71:1f:c6:01:10:99:8b:b8:28:71:70:
ca:b8:a7:70:30:b6:92:16:b9:2a:51:60:a2:2a:52:a5:fa:df:
21:93:65:67:70:ed:8e:5b:8d:4d:ab:e6:83:5d:34:65:a8:48:
b2:2f:66:0d:f8:26:14:f8:11:0c:5f:51:ce:e9:18:22:38:3b:
52:4d:ce:3c:85:4f:79:85:46:5b:54:80:1c:d9:4e:61:40:b6:
a8:40:18:d9:c3:28:fd:a6:b6:db:1f:98:b3:4a:e4:7c:d5:4f:
b6:57:4c:2f:2c:0c:a1:c9:50:0e:c1:8f:e4:ef:fb:92:85:eb:
18:7d:0f:4c:61:b9:37:f6:34:ba:52:1d:2c:d1:68:d5:88:9f:
fa:42:1d:f4
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAY6V7pbNyRC39MF9TaZDQ5wiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY4NjUxYjExOTRmMTJlOThlNzBkM2RhNzhlZmU0ZGQyNDY3
Y2Q0MjMwHhcNMjQwMzMxMTkxMzQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NDYyMTk3OTc1Njc2NzU2ZWIzYTk1MTNlNWQ3YTIyY2UzMzViZDgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhaQo2du0ly6sSNStADNuribO88Zm
rgcCkjXV1yXKI/jyxMBVoF1nxPDSwi5SGIYOCK59TxwmGdDl0qpv1GPuZKxvGgwa
R6hAU3zvb1mniBj8RoO+RngIG4RFHeKGN2BM6CY+p2+ZCdbL+ZNc+pre1tZthPXT
cLMSbmE049UcvX2wdd9V3zUfL8zdsYp5iNDF2LM+EfTlRu62yLdxKfmyEHbFlMcK
RQ1JXheeUIQ57SK35Tp1tt56RLilb8F5XZqNCJkxjBwq7dKvNlYM7xL4Zqg0zVdn
r1hNrz2xXbWqTKyiP8tDvuk3aE55n94Dbi/mrsXofuXr6e1zxnNhJfecXwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFHRiGXl1Z2dW6zqVE+XXoizjNb2CMB8GA1UdIwQY
MBaAFPhlGxGU8S6Y5w09p47+TdJGfNQjMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1HVWJFWlR4THBqbkRUMm5qdjVOMGtaODFDTS5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGUvODIyNDAwLTMyNDgtNDcwMi1iMjli
LWExYjdjZWVmYTE2Yy8xL2RHSVplWFZuWjFick9wVVQ1ZGVpTE9NMXZZSS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNGUvODIyNDAwLTMyNDgtNDcwMi1iMjliLWExYjdjZWVmYTE2
Yy8xLzEtR1ViRVpUeExwam5EVDJuanY1TjBrWjgxQ00uY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtjwUw
DQYJKoZIhvcNAQELBQADggEBAC3koTQN34Ttsf4hKf23VimSi9Cy2j7pgyKxrgFO
wFotnWnJu2tKc4gnAfAvPrR37aKbGgdw/8xxaWHrCb+NMYLe1ytg3SqOIl5HoUU+
pTOK/CigmY8yHH1zEWLIwt+sxURJfmGb88NG04RiRvPRido+cQBxH8YBEJmLuChx
cMq4p3AwtpIWuSpRYKIqUqX63yGTZWdw7Y5bjU2r5oNdNGWoSLIvZg34JhT4EQxf
Uc7pGCI4O1JNzjyFT3mFRltUgBzZTmFAtqhAGNnDKP2mttsfmLNK5HzVT7ZXTC8s
DKHJUA7Bj+Tv+5KF6xh9D0xhuTf2NLpSHSzRaNWIn/pCHfQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:15 2024 by rpki-client on console-ams.rpki-client.org