Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/e05a3a-1307-41cb-b4c1-64a56046bca7/1/tdYQXXVMCCdv2PPzb95nMLKGVsI.roa
File: tdYQXXVMCCdv2PPzb95nMLKGVsI.roa (raw, json)
Hash identifier: Ky7YETYlILKCyjy0LTJePR7GYhE5ldRtGX0TFm9GXrQ=
Subject key identifier: B5:D6:10:5D:75:4C:08:27:6F:D8:F3:F3:6F:DE:67:30:B2:86:56:C2
Certificate issuer: /CN=a2de4a072a5bcb74d20e92ddbbd7f6477c3c8fce
Certificate serial: 01856CEF2281AE9BB67FF953C6456DFD6380
Authority key identifier: A2:DE:4A:07:2A:5B:CB:74:D2:0E:92:DD:BB:D7:F6:47:7C:3C:8F:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ot5KBypby3TSDpLdu9f2R3w8j84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/e05a3a-1307-41cb-b4c1-64a56046bca7/1/tdYQXXVMCCdv2PPzb95nMLKGVsI.roa
Signing time: Sun 01 Jan 2023 10:44:49 +0000
ROA not before: Sun 01 Jan 2023 10:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208313
IP address blocks: 45.146.148.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:30:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ef:22:81:ae:9b:b6:7f:f9:53:c6:45:6d:fd:63:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2de4a072a5bcb74d20e92ddbbd7f6477c3c8fce
Validity
Not Before: Jan 1 10:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b5d6105d754c08276fd8f3f36fde6730b28656c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:99:d0:ee:62:a3:08:a0:7a:b4:06:88:a1:85:
e0:7c:b5:3f:d9:7a:5f:28:10:41:aa:7b:b0:52:9a:
c6:9d:3c:b7:d8:b8:e8:ad:35:89:3c:e3:d7:53:13:
f1:b4:18:6c:2f:17:d2:1f:56:f9:6c:70:33:0e:e5:
4f:e4:98:d3:ef:1a:9f:bc:07:f4:09:be:f6:27:8f:
cd:2e:19:c8:e8:a1:92:04:6c:b9:36:66:a8:fe:82:
29:7c:92:0a:2c:40:eb:83:c3:7e:51:30:d9:94:4a:
6f:e5:30:bd:df:1a:b4:e8:42:10:ea:b3:73:68:08:
2d:3c:df:a4:f6:e0:5b:f9:eb:f8:d9:d8:fc:60:23:
04:8e:7d:4d:01:7d:1d:55:14:99:91:c2:4d:6a:10:
b0:4b:5b:06:b1:39:65:0a:70:c4:05:d5:45:9b:59:
99:58:51:35:3a:a2:7e:1b:63:78:8f:8e:46:10:87:
91:56:b2:5f:21:19:8d:58:97:20:c8:72:88:42:de:
76:dc:73:fb:b6:46:6f:28:8d:7f:4e:e1:43:d6:2c:
a6:2f:b9:4d:ad:06:76:b1:56:33:2f:ae:45:a4:66:
1f:c7:45:50:f6:3c:f8:de:d7:ef:ad:8c:96:99:24:
f3:b9:44:f1:10:09:4d:3f:d1:e8:35:c6:6b:0b:b6:
be:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:D6:10:5D:75:4C:08:27:6F:D8:F3:F3:6F:DE:67:30:B2:86:56:C2
X509v3 Authority Key Identifier:
keyid:A2:DE:4A:07:2A:5B:CB:74:D2:0E:92:DD:BB:D7:F6:47:7C:3C:8F:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ot5KBypby3TSDpLdu9f2R3w8j84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/e05a3a-1307-41cb-b4c1-64a56046bca7/1/tdYQXXVMCCdv2PPzb95nMLKGVsI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/e05a3a-1307-41cb-b4c1-64a56046bca7/1/ot5KBypby3TSDpLdu9f2R3w8j84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.148.0/22
Signature Algorithm: sha256WithRSAEncryption
48:54:21:0d:60:18:90:36:f2:80:4b:79:34:e9:8e:00:72:3d:
b2:3b:76:a0:50:48:3f:ff:bf:76:37:2a:9e:24:6c:49:f1:f5:
f9:62:5b:7f:5e:ea:b4:4d:26:4a:ea:db:29:16:93:7b:a4:d0:
6a:4e:8d:84:8a:6b:89:af:fe:42:d5:4d:f3:c6:10:50:f8:ad:
8c:68:32:2d:6b:e8:25:2b:1f:07:b6:1b:00:dd:18:f7:92:64:
39:3d:64:08:95:3d:3f:41:87:95:8a:9f:29:bb:5d:f3:7c:7c:
03:9f:65:89:98:34:88:95:09:33:33:87:7d:17:2c:60:da:ae:
fc:82:0c:b0:4e:ac:30:67:9c:4f:3f:dd:7f:05:b0:06:e0:f6:
f2:6e:4c:dc:84:ab:df:08:6e:36:31:1c:8a:41:0e:b8:08:39:
14:d4:62:ab:8d:a7:ff:92:66:99:c9:9b:b8:ee:7a:3b:59:92:
8a:1f:b1:71:b3:af:d2:68:c2:38:09:ad:c6:14:67:97:47:a2:
94:60:90:04:0f:f7:9c:3e:d0:b7:b1:4c:68:d9:dc:55:e5:33:
77:93:1b:0d:cc:e2:7c:0f:9a:e6:8d:88:b3:b0:0c:28:b9:15:
b4:a7:a2:29:a3:f9:d5:0d:9f:d2:b8:ca:f3:dc:30:5f:62:49:
57:ae:17:87
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVs7yKBrpu2f/lTxkVt/WOAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyZGU0YTA3MmE1YmNiNzRkMjBlOTJkZGJiZDdmNjQ3N2Mz
YzhmY2UwHhcNMjMwMTAxMTA0NDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNWQ2MTA1ZDc1NGMwODI3NmZkOGYzZjM2ZmRlNjczMGIyODY1NmMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhJnQ7mKjCKB6tAaIoYXgfLU/2Xpf
KBBBqnuwUprGnTy32LjorTWJPOPXUxPxtBhsLxfSH1b5bHAzDuVP5JjT7xqfvAf0
Cb72J4/NLhnI6KGSBGy5Nmao/oIpfJIKLEDrg8N+UTDZlEpv5TC93xq06EIQ6rNz
aAgtPN+k9uBb+ev42dj8YCMEjn1NAX0dVRSZkcJNahCwS1sGsTllCnDEBdVFm1mZ
WFE1OqJ+G2N4j45GEIeRVrJfIRmNWJcgyHKIQt523HP7tkZvKI1/TuFD1iymL7lN
rQZ2sVYzL65FpGYfx0VQ9jz43tfvrYyWmSTzuUTxEAlNP9HoNcZrC7a+pwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLXWEF11TAgnb9jz82/eZzCyhlbCMB8GA1UdIwQY
MBaAFKLeSgcqW8t00g6S3bvX9kd8PI/OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb3Q1S0J5cGJ5M1RTRHBMZHU5ZjJSM3c4ajg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9lMDVhM2EtMTMwNy00MWNiLWI0YzEt
NjRhNTYwNDZiY2E3LzEvdGRZUVhYVk1DQ2R2MlBQemI5NW5NTEtHVnNJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni9lMDVhM2EtMTMwNy00MWNiLWI0YzEtNjRhNTYwNDZiY2E3
LzEvb3Q1S0J5cGJ5M1RTRHBMZHU5ZjJSM3c4ajg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLZKUMA0G
CSqGSIb3DQEBCwUAA4IBAQBIVCENYBiQNvKAS3k06Y4Acj2yO3agUEg//792Nyqe
JGxJ8fX5Ylt/Xuq0TSZK6tspFpN7pNBqTo2EimuJr/5C1U3zxhBQ+K2MaDIta+gl
Kx8HthsA3Rj3kmQ5PWQIlT0/QYeVip8pu13zfHwDn2WJmDSIlQkzM4d9Fyxg2q78
ggywTqwwZ5xPP91/BbAG4PbybkzchKvfCG42MRyKQQ64CDkU1GKrjaf/kmaZyZu4
7no7WZKKH7Fxs6/SaMI4Ca3GFGeXR6KUYJAED/ecPtC3sUxo2dxV5TN3kxsNzOJ8
D5rmjYizsAwouRW0p6Ipo/nVDZ/SuMrz3DBfYklXrheH
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:34 2024 by rpki-client on console-ams.rpki-client.org