Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/qT5ZJc7fB-cpRNTfvqw1Inkf5kY.roa
File: qT5ZJc7fB-cpRNTfvqw1Inkf5kY.roa (raw, json)
Hash identifier: I+t6KE/+LX3ezJlrzqUd5otKpDz0nPwX1mQKw2Q5RdE=
Subject key identifier: A9:3E:59:25:CE:DF:07:E7:29:44:D4:DF:BE:AC:35:22:79:1F:E6:46
Certificate issuer: /CN=e0559ce889ae4241121fe0a1653e4b955f3edf4b
Certificate serial: 018E05FE7E196C345E140422D1559E87EDAF
Authority key identifier: E0:55:9C:E8:89:AE:42:41:12:1F:E0:A1:65:3E:4B:95:5F:3E:DF:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4FWc6ImuQkESH-ChZT5LlV8-30s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/qT5ZJc7fB-cpRNTfvqw1Inkf5kY.roa
Signing time: Sun 03 Mar 2024 20:25:48 +0000
ROA not before: Sun 03 Mar 2024 20:25:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60721
IP address blocks: 45.10.56.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Mar 2024 14:10:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:05:fe:7e:19:6c:34:5e:14:04:22:d1:55:9e:87:ed:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0559ce889ae4241121fe0a1653e4b955f3edf4b
Validity
Not Before: Mar 3 20:25:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a93e5925cedf07e72944d4dfbeac3522791fe646
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:44:7e:a3:e4:63:6e:92:2d:de:92:b2:58:c1:
11:8f:64:56:3c:e5:1f:d0:2a:d8:48:11:37:27:23:
12:35:30:a8:de:43:2b:5c:31:34:74:f8:06:20:1f:
01:c5:52:ca:c5:66:9b:88:3b:20:f3:45:c3:e4:c7:
81:33:f8:36:40:36:b0:93:53:d7:23:6e:97:8b:ab:
ec:9d:fd:a9:f3:20:ea:d0:d9:7b:7c:37:10:03:cd:
49:f0:91:18:09:db:bb:c7:f0:02:7b:42:ff:0e:c7:
d8:4e:58:bb:53:f2:67:ce:87:b8:84:09:33:26:a3:
e3:5c:bc:f9:11:8b:5a:c6:e8:d7:b5:24:a3:76:d8:
61:57:b9:c9:57:81:a8:fb:ec:d4:24:42:b8:dc:0d:
dd:17:2a:d7:75:98:9e:7d:18:6a:64:c0:d5:80:29:
cb:cd:52:5b:6a:e2:bb:73:6c:b4:dc:ef:1e:ac:5f:
b0:52:46:fe:c2:59:03:b1:6d:4f:e6:fb:92:a1:b5:
9b:8e:43:7b:5c:67:b8:4c:83:9e:74:05:19:bb:e4:
c5:30:78:86:29:22:68:4f:a7:fa:68:4a:01:f1:76:
6f:d5:83:b6:3d:4e:b0:d2:41:a0:22:a6:c5:dd:0a:
ee:49:0b:c0:86:a4:91:4e:81:31:c2:c8:e5:d1:29:
d3:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:3E:59:25:CE:DF:07:E7:29:44:D4:DF:BE:AC:35:22:79:1F:E6:46
X509v3 Authority Key Identifier:
keyid:E0:55:9C:E8:89:AE:42:41:12:1F:E0:A1:65:3E:4B:95:5F:3E:DF:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4FWc6ImuQkESH-ChZT5LlV8-30s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/qT5ZJc7fB-cpRNTfvqw1Inkf5kY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/1fa4a1-9a1c-47de-aca6-9449957fd5a5/1/4FWc6ImuQkESH-ChZT5LlV8-30s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.56.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:b1:d1:b1:a5:4f:e9:fb:8b:69:af:f8:e4:32:48:ac:4e:39:
53:f1:ec:0c:5d:50:54:92:43:39:b6:02:4c:41:fc:64:b5:2e:
5f:63:c8:7c:88:89:98:56:04:d4:0b:f1:eb:db:c5:e4:f2:ad:
52:96:0a:44:64:7d:fa:71:04:d8:49:e7:b1:1d:00:6a:1c:43:
e7:d3:5e:16:6e:6d:6d:82:98:c3:95:77:e8:11:da:bc:53:93:
2c:4e:23:28:af:f6:8c:3c:3e:4b:e4:01:7a:3a:ad:c7:16:f8:
89:a0:77:63:da:be:d3:9c:52:aa:1b:b7:fe:0a:0f:83:1d:2c:
71:e7:d1:7a:7b:de:fb:a2:99:da:ed:a2:bc:cb:10:2f:21:bf:
8d:76:fc:fc:38:69:5a:e8:51:55:ca:7a:01:ab:0c:68:ae:81:
2f:14:74:17:a3:24:15:d3:5b:95:43:05:89:d7:2a:a8:10:5e:
b3:18:75:52:50:52:10:c3:a9:5a:41:08:36:4d:cb:43:14:d1:
da:64:f4:26:3a:45:0b:e4:5d:5c:c1:f3:d5:01:78:ef:68:90:
e7:58:48:a3:09:82:da:89:2a:bf:32:2a:ab:b6:c4:b6:a3:c9:
dd:61:f6:04:a9:fd:95:37:6f:0d:99:d8:fd:38:82:9f:aa:49:
0f:b1:d1:f9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY4F/n4ZbDReFAQi0VWeh+2vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwNTU5Y2U4ODlhZTQyNDExMjFmZTBhMTY1M2U0Yjk1NWYz
ZWRmNGIwHhcNMjQwMzAzMjAyNTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhOTNlNTkyNWNlZGYwN2U3Mjk0NGQ0ZGZiZWFjMzUyMjc5MWZlNjQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhUR+o+RjbpIt3pKyWMERj2RWPOUf
0CrYSBE3JyMSNTCo3kMrXDE0dPgGIB8BxVLKxWabiDsg80XD5MeBM/g2QDawk1PX
I26Xi6vsnf2p8yDq0Nl7fDcQA81J8JEYCdu7x/ACe0L/DsfYTli7U/Jnzoe4hAkz
JqPjXLz5EYtaxujXtSSjdthhV7nJV4Go++zUJEK43A3dFyrXdZiefRhqZMDVgCnL
zVJbauK7c2y03O8erF+wUkb+wlkDsW1P5vuSobWbjkN7XGe4TIOedAUZu+TFMHiG
KSJoT6f6aEoB8XZv1YO2PU6w0kGgIqbF3QruSQvAhqSRToExwsjl0SnThQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKk+WSXO3wfnKUTU376sNSJ5H+ZGMB8GA1UdIwQY
MBaAFOBVnOiJrkJBEh/goWU+S5VfPt9LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNEZXYzZJbXVRa0VTSC1DaFpUNUxsVjgtMzBzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi8xZmE0YTEtOWExYy00N2RlLWFjYTYt
OTQ0OTk1N2ZkNWE1LzEvcVQ1WkpjN2ZCLWNwUk5UZnZxdzFJbmtmNWtZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Mi8xZmE0YTEtOWExYy00N2RlLWFjYTYtOTQ0OTk1N2ZkNWE1
LzEvNEZXYzZJbXVRa0VTSC1DaFpUNUxsVjgtMzBzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQo4MA0G
CSqGSIb3DQEBCwUAA4IBAQBKsdGxpU/p+4tpr/jkMkisTjlT8ewMXVBUkkM5tgJM
QfxktS5fY8h8iImYVgTUC/Hr28Xk8q1SlgpEZH36cQTYSeexHQBqHEPn014Wbm1t
gpjDlXfoEdq8U5MsTiMor/aMPD5L5AF6Oq3HFviJoHdj2r7TnFKqG7f+Cg+DHSxx
59F6e977opna7aK8yxAvIb+Ndvz8OGla6FFVynoBqwxoroEvFHQXoyQV01uVQwWJ
1yqoEF6zGHVSUFIQw6laQQg2TctDFNHaZPQmOkUL5F1cwfPVAXjvaJDnWEijCYLa
iSq/MiqrtsS2o8ndYfYEqf2VN28Nmdj9OIKfqkkPsdH5
-----END CERTIFICATE-----
Generated at Mon Mar 4 17:22:41 2024 by rpki-client on console-ams.rpki-client.org