Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/1-BHVeTBJUDetZ7f51xn9MZG8B2Q.roa
File: 1-BHVeTBJUDetZ7f51xn9MZG8B2Q.roa (raw, json)
Hash identifier: +J+4od0zEHEhGmuz+BJCA9RO6+K4/pRu0H33KnSfPKQ=
Subject key identifier: F8:11:D5:79:30:49:50:37:AD:67:B7:F9:D7:19:FD:31:91:BC:07:64
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 018E9F2B65A2889E1365E494E891A82CEC83
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/1-BHVeTBJUDetZ7f51xn9MZG8B2Q.roa
Signing time: Tue 02 Apr 2024 14:16:45 +0000
ROA not before: Tue 02 Apr 2024 14:16:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35751
IP address blocks: 45.10.248.0/22 maxlen: 22
45.129.4.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 04 Jun 2024 13:06:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:9f:2b:65:a2:88:9e:13:65:e4:94:e8:91:a8:2c:ec:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Apr 2 14:16:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f811d57930495037ad67b7f9d719fd3191bc0764
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:ca:05:59:e6:25:f9:57:68:4f:dd:ad:f6:06:
15:9a:cb:87:00:26:d9:a1:96:4e:52:1d:aa:2f:b0:
dd:35:bb:e6:54:90:9e:e2:74:47:62:12:28:fd:f9:
ed:c0:ba:c5:77:05:53:30:ae:e1:7e:1e:ad:96:45:
62:a8:21:5f:ee:35:65:86:f7:56:ff:75:42:11:cd:
a3:58:23:31:04:c8:c5:a5:b0:b3:da:04:14:c4:a8:
ee:ae:09:94:17:e0:25:84:11:07:65:fd:7f:88:4a:
cb:ea:b6:38:71:83:aa:8c:7c:b9:f4:ed:c2:f9:b1:
cf:10:9c:f1:75:ca:ac:a4:e7:7d:f7:25:9b:16:ca:
c5:2f:77:96:8a:8a:e9:e3:d3:39:6c:4b:7a:19:4e:
8f:2b:83:5e:b7:08:f2:63:9b:4a:99:8b:90:18:9a:
74:b4:bb:5b:89:40:94:bb:a3:1a:cd:d9:cf:6c:ba:
84:fc:26:00:a5:b5:32:ef:a3:82:24:53:8d:74:9c:
f3:f3:b5:53:8a:0a:64:2c:0a:b6:a5:88:64:56:ea:
64:da:f8:d4:3f:26:ba:1b:99:57:30:86:f8:68:00:
25:a4:91:7e:32:c1:e5:a5:f5:fd:8c:cc:c2:dc:f3:
d8:6c:63:f3:cc:4d:c0:c1:dc:b5:89:e6:c2:ca:12:
64:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:11:D5:79:30:49:50:37:AD:67:B7:F9:D7:19:FD:31:91:BC:07:64
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/1-BHVeTBJUDetZ7f51xn9MZG8B2Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.248.0/22
45.129.4.0/22
Signature Algorithm: sha256WithRSAEncryption
09:3d:dd:6f:3c:22:a1:72:c4:1c:9d:6a:69:8b:5a:75:23:a1:
bd:16:42:93:6a:1d:3f:5c:1c:31:89:e0:74:45:99:c1:1b:ba:
42:4f:3c:c6:98:76:b4:55:8f:b1:f7:83:a7:15:43:5f:a5:9c:
1b:7e:e7:ef:83:1e:25:6b:bb:c2:58:6b:1d:a0:3e:20:a6:f0:
cf:99:bd:3f:b2:64:72:ab:db:c4:46:1f:c0:e0:5d:69:d3:af:
49:a3:3d:0b:49:b5:8d:90:ab:b7:2f:f7:33:86:5e:9c:f4:81:
7c:48:a3:2d:16:64:26:af:59:c8:67:dc:a1:0a:7b:82:48:35:
ae:35:43:b3:85:38:f1:55:c0:71:42:f9:65:1e:31:6c:ae:76:
5a:72:9d:53:d7:85:23:8d:d2:e4:32:d0:f8:f3:0d:19:52:5c:
86:14:da:2d:91:da:2c:7a:b6:b1:7e:55:a5:90:06:bb:c1:54:
a0:8d:39:54:11:42:f8:8b:e0:1d:d3:a0:09:dd:f5:0a:99:db:
cf:24:02:d0:5b:eb:2e:5e:74:fc:ea:57:61:9e:c4:25:40:bc:
1c:52:00:8c:35:f4:94:1a:e5:d4:3e:02:91:d4:aa:da:fe:4f:
b8:b6:06:62:13:c8:fe:fb:31:bd:cf:10:9e:e2:ea:5e:40:eb:
f2:43:e8:3f
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgISAY6fK2WiiJ4TZeSU6JGoLOyDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5MzM1M2MxZmFiZTg5NmFmOGI4NWZlNzYwMGU0NjM0OTY4
ZmNjNGMwHhcNMjQwNDAyMTQxNjQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmODExZDU3OTMwNDk1MDM3YWQ2N2I3ZjlkNzE5ZmQzMTkxYmMwNzY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh8oFWeYl+VdoT92t9gYVmsuHACbZ
oZZOUh2qL7DdNbvmVJCe4nRHYhIo/fntwLrFdwVTMK7hfh6tlkViqCFf7jVlhvdW
/3VCEc2jWCMxBMjFpbCz2gQUxKjurgmUF+AlhBEHZf1/iErL6rY4cYOqjHy59O3C
+bHPEJzxdcqspOd99yWbFsrFL3eWiorp49M5bEt6GU6PK4NetwjyY5tKmYuQGJp0
tLtbiUCUu6MazdnPbLqE/CYApbUy76OCJFONdJzz87VTigpkLAq2pYhkVupk2vjU
Pya6G5lXMIb4aAAlpJF+MsHlpfX9jMzC3PPYbGPzzE3Awdy1iebCyhJkgwIDAQAB
o4ICEDCCAgwwHQYDVR0OBBYEFPgR1XkwSVA3rWe3+dcZ/TGRvAdkMB8GA1UdIwQY
MBaAFAkzU8H6volq+Lhf52AORjSWj8xMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGIt
MjM5ZDJmZTM5OGIxLzEvMS1CSFZlVEJKVURldFo3ZjUxeG45TVpHOEIyUS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNWIvN2I5MzM2LWU5ZjgtNGUyNy1hZjRiLTIzOWQyZmUzOThi
MS8xL0NUTlR3ZnEtaVdyNHVGX25ZQTVHTkphUHpFdy5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAi0K+AME
Ai2BBDANBgkqhkiG9w0BAQsFAAOCAQEACT3dbzwioXLEHJ1qaYtadSOhvRZCk2od
P1wcMYngdEWZwRu6Qk88xph2tFWPsfeDpxVDX6WcG37n74MeJWu7wlhrHaA+IKbw
z5m9P7JkcqvbxEYfwOBdadOvSaM9C0m1jZCrty/3M4ZenPSBfEijLRZkJq9ZyGfc
oQp7gkg1rjVDs4U48VXAcUL5ZR4xbK52WnKdU9eFI43S5DLQ+PMNGVJchhTaLZHa
LHq2sX5VpZAGu8FUoI05VBFC+IvgHdOgCd31CpnbzyQC0FvrLl50/OpXYZ7EJUC8
HFIAjDX0lBrl1D4CkdSq2v5PuLYGYhPI/vsxvc8QnuLqXkDr8kPoPw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:08 2024 by rpki-client on console-fra.rpki-client.org