Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/kXTmgKeTOsszNbIuZ3uoZW5S7J0.roa
File: kXTmgKeTOsszNbIuZ3uoZW5S7J0.roa (raw, json)
Hash identifier: 6KEIVRcJI++O7ctTN2bdpBCjNfmUwVoPPN3VVSPkNg8=
Subject key identifier: 91:74:E6:80:A7:93:3A:CB:33:35:B2:2E:67:7B:A8:65:6E:52:EC:9D
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018BDC3DD631957BF9AC9772B127748E738E
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/kXTmgKeTOsszNbIuZ3uoZW5S7J0.roa
Signing time: Fri 17 Nov 2023 07:45:21 +0000
ROA not before: Fri 17 Nov 2023 07:45:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 45.148.116.0/24 maxlen: 24
45.148.116.0/22 maxlen: 24
194.50.111.0/24 maxlen: 24
2a0e:b107:1870::/48 maxlen: 48
2a0c:3b87:ff00::/40 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0c:3b87:ffff::/48 maxlen: 48
2a0e:97c0:791::/48 maxlen: 48
2a10:ccc0:110::/44 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a10:ccc3:ccce::/48 maxlen: 48
2a0e:97c4:ac00::/38 maxlen: 48
2a0e:97c0:792::/48 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a10:ccc7:9000::/38 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:97c0:76f::/48 maxlen: 48
2a0e:b107:278b::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 17 Nov 2023 08:28:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:dc:3d:d6:31:95:7b:f9:ac:97:72:b1:27:74:8e:73:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Nov 17 07:45:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9174e680a7933acb3335b22e677ba8656e52ec9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c2:76:1d:ee:68:93:25:46:91:b9:60:ee:59:
ac:0a:65:8b:bd:00:72:01:5d:e7:8f:e0:6a:b0:9a:
13:8d:76:2a:eb:e1:64:18:4f:45:79:1d:4e:3c:6c:
b6:ed:11:ba:5a:76:b4:54:0b:1d:e6:d6:2f:72:ca:
8a:aa:15:b9:42:b9:a3:73:2f:8e:74:67:e1:95:f7:
9d:76:fa:c5:34:75:00:18:93:01:c5:88:81:df:da:
86:a6:82:f5:89:4f:18:36:7c:ef:34:9d:ce:6f:cc:
ee:57:27:ba:57:1d:2e:e9:05:f4:3a:9c:bb:41:1c:
17:21:64:2b:41:db:76:e1:30:9e:f1:63:63:c3:f0:
6f:b4:26:af:29:0f:20:6f:41:ae:0b:0b:6d:5b:95:
40:39:b5:1d:36:09:7f:64:7f:32:66:be:f7:5f:c5:
d3:86:69:8c:23:df:f9:9b:12:8a:c1:b1:81:e5:bc:
69:f3:07:a5:df:1e:15:93:cb:32:cb:6f:ca:50:6f:
1f:2f:cb:08:a8:73:2d:d1:cf:75:71:8c:4b:4c:f1:
5c:a2:6f:2f:63:fa:d4:12:db:c4:74:12:7c:d9:b6:
fe:1f:d5:0c:72:43:60:0b:62:30:e5:e7:4b:86:59:
f6:c6:7e:c0:c7:f5:59:1a:47:a0:76:fa:b0:f0:e2:
a1:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:74:E6:80:A7:93:3A:CB:33:35:B2:2E:67:7B:A8:65:6E:52:EC:9D
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/kXTmgKeTOsszNbIuZ3uoZW5S7J0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.116.0/22
194.50.111.0/24
IPv6:
2a0c:3b87:ff00::/40
2a0e:97c0:750::/48
2a0e:97c0:76f::/48
2a0e:97c0:791::-2a0e:97c0:792:ffff:ffff:ffff:ffff:ffff
2a0e:97c4:ac00::/38
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
2a0e:b107:278b::/48
2a10:ccc0:110::/44
2a10:ccc3:ccce::/48
2a10:ccc7:9000::/38
Signature Algorithm: sha256WithRSAEncryption
6b:99:26:53:8b:c9:6c:02:8d:a7:f3:6a:1d:15:bc:1d:b0:09:
68:bd:94:b3:50:07:ff:4d:2d:65:3f:63:2e:a5:44:d7:8e:c4:
40:11:9f:52:e5:51:84:18:e0:5b:0a:54:35:dd:17:8c:46:bd:
52:9c:6d:f2:9d:18:cf:68:63:47:19:5a:08:a2:2e:3d:0c:c2:
3e:bb:32:14:80:bd:08:0d:27:1b:7a:31:36:6a:be:18:b9:8f:
f3:b1:c6:4a:d6:e7:4f:14:e1:08:2b:ff:04:5b:e3:9e:60:c1:
ef:71:1b:2d:61:f4:80:d0:89:8c:61:15:5f:1d:ec:89:4e:a2:
1f:6c:b2:5f:cd:0b:36:0b:12:73:95:ff:8f:93:e4:cb:c5:02:
22:9a:51:ba:b6:b0:86:86:b0:a1:f9:c1:a1:a8:08:10:61:bf:
60:70:5a:ad:97:da:c7:5e:51:40:34:c1:1e:9c:6b:86:2c:ff:
de:1c:6b:bb:85:ec:8e:4b:9d:b9:60:d4:d2:6d:92:3a:b0:23:
45:6f:02:e6:25:66:e4:2d:22:1f:7a:c3:30:0e:0f:1e:c8:79:
ab:7a:75:83:28:26:d2:cf:8e:b2:c9:a3:ee:41:32:8f:88:1e:
8d:18:e3:bc:63:b2:30:cd:a6:e4:29:c2:16:e6:83:4c:03:dd:
b0:95:6e:ca
-----BEGIN CERTIFICATE-----
MIIFljCCBH6gAwIBAgISAYvcPdYxlXv5rJdysSd0jnOOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMxMTE3MDc0NTIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MTc0ZTY4MGE3OTMzYWNiMzMzNWIyMmU2NzdiYTg2NTZlNTJlYzlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs8J2He5okyVGkblg7lmsCmWLvQBy
AV3nj+BqsJoTjXYq6+FkGE9FeR1OPGy27RG6Wna0VAsd5tYvcsqKqhW5Qrmjcy+O
dGfhlfeddvrFNHUAGJMBxYiB39qGpoL1iU8YNnzvNJ3Ob8zuVye6Vx0u6QX0Opy7
QRwXIWQrQdt24TCe8WNjw/BvtCavKQ8gb0GuCwttW5VAObUdNgl/ZH8yZr73X8XT
hmmMI9/5mxKKwbGB5bxp8wel3x4Vk8syy2/KUG8fL8sIqHMt0c91cYxLTPFcom8v
Y/rUEtvEdBJ82bb+H9UMckNgC2Iw5edLhln2xn7Ax/VZGkegdvqw8OKhLwIDAQAB
o4ICojCCAp4wHQYDVR0OBBYEFJF05oCnkzrLMzWyLmd7qGVuUuydMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEva1hUbWdLZVRPc3N6TmJJdVozdW9aVzVTN0owLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG3BggrBgEFBQcBBwEB/wSBpzCBpDASBAIAATAMAwQCLZR0
AwQAwjJvMIGNBAIAAjCBhgMGACoMO4f/AwcAKg6XwAdQAwcAKg6XwAdvMBIDBwAq
DpfAB5EDBwAqDpfAB5IDBgIqDpfErAMHACoOsQcJ9AMHACoOsQcJ9gMHACoOsQcN
8gMHACoOsQcYcAMHACoOsQcbngMHACoOsQcniwMHBCoQzMABEAMHACoQzMPMzgMG
AioQzMeQMA0GCSqGSIb3DQEBCwUAA4IBAQBrmSZTi8lsAo2n82odFbwdsAlovZSz
UAf/TS1lP2MupUTXjsRAEZ9S5VGEGOBbClQ13ReMRr1SnG3ynRjPaGNHGVoIoi49
DMI+uzIUgL0IDScbejE2ar4YuY/zscZK1udPFOEIK/8EW+OeYMHvcRstYfSA0ImM
YRVfHeyJTqIfbLJfzQs2CxJzlf+Pk+TLxQIimlG6trCGhrCh+cGhqAgQYb9gcFqt
l9rHXlFANMEenGuGLP/eHGu7heyOS525YNTSbZI6sCNFbwLmJWbkLSIfesMwDg8e
yHmrenWDKCbSz46yyaPuQTKPiB6NGOO8Y7IwzabkKcIW5oNMA92wlW7K
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:37 2024 by rpki-client on console-fra.rpki-client.org