Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/rldZlC8cpPebaiD7bizIwX40QlE.roa
File: rldZlC8cpPebaiD7bizIwX40QlE.roa (raw, json)
Hash identifier: 77WOUeyN1R98k0FIOgL1v3ZKZuBQzo41O6uBfBmQ/tQ=
Subject key identifier: AE:57:59:94:2F:1C:A4:F7:9B:6A:20:FB:6E:2C:C8:C1:7E:34:42:51
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01856CAF24E4A4F67E2FB06710B3A87AA038
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/rldZlC8cpPebaiD7bizIwX40QlE.roa
Signing time: Sun 01 Jan 2023 09:34:55 +0000
ROA not before: Sun 01 Jan 2023 09:34:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 138687
IP address blocks: 45.88.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Jan 2023 12:09:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:24:e4:a4:f6:7e:2f:b0:67:10:b3:a8:7a:a0:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 1 09:34:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ae5759942f1ca4f79b6a20fb6e2cc8c17e344251
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:cb:7f:ef:83:84:d0:6e:eb:4d:fa:e7:b0:99:
0d:21:e2:42:d4:bc:28:89:3e:b5:82:29:67:ba:d1:
66:d0:b2:47:9e:97:7c:97:d8:1d:41:9d:c6:f7:3c:
73:32:13:1b:13:18:a3:7a:35:4a:de:21:c2:ac:db:
29:b2:24:f7:68:27:86:8f:d2:4a:58:58:2d:2f:13:
e7:bf:57:1e:bc:36:11:ea:77:7e:2f:5f:93:73:69:
cb:20:7b:13:c1:0b:c6:28:9b:72:ed:cf:4a:61:60:
16:20:ec:01:a9:05:86:ad:41:6e:bc:73:4d:cb:b4:
71:d6:9a:f1:b2:27:25:5b:c3:39:64:e4:7b:b2:72:
04:4e:c5:0d:00:4b:79:c9:0b:6d:91:44:ec:77:92:
4d:cf:64:72:d4:71:69:43:39:44:66:ae:db:4c:ed:
eb:a9:00:3a:14:f7:2d:65:d3:bd:14:1d:cd:a0:c1:
af:0b:ec:45:65:8d:5b:fe:1a:91:d5:14:65:3e:c9:
43:89:33:03:de:b0:e7:5e:ae:a4:63:15:51:86:31:
b2:7f:4f:82:d6:11:7f:5b:e9:a4:c1:27:fa:c6:b4:
ff:3c:1a:38:87:dd:f6:eb:05:6f:7c:1d:c0:8d:53:
a3:7f:d1:b4:7c:4f:31:d8:bc:9b:b6:b1:0b:f1:90:
ee:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:57:59:94:2F:1C:A4:F7:9B:6A:20:FB:6E:2C:C8:C1:7E:34:42:51
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/rldZlC8cpPebaiD7bizIwX40QlE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.14.0/24
Signature Algorithm: sha256WithRSAEncryption
92:c2:df:b5:98:e8:95:7d:9d:b5:1a:e1:65:04:c9:c8:d9:aa:
b4:92:b1:a1:21:a1:e8:91:cf:1e:52:50:77:43:82:7d:4a:b0:
4c:f1:03:b5:f1:b1:f5:ab:24:3e:ae:12:f7:fe:4f:83:77:49:
0f:4d:a7:01:63:8d:61:46:74:fa:b0:d3:f7:b9:46:42:7a:32:
9b:bc:73:4a:a0:cf:a4:a8:c2:e4:cb:34:e4:30:2c:5d:f5:55:
15:cc:6a:45:fe:08:41:1f:27:2f:b1:92:e5:88:1b:6f:48:79:
f1:69:04:b5:1c:c6:c5:c8:0b:69:13:84:9f:d7:01:0b:6b:dc:
3c:58:0f:5b:10:f1:53:f4:dd:ce:28:f0:9f:df:09:27:3d:de:
7c:28:6f:f8:11:50:89:72:44:34:8d:75:4a:f6:fc:97:54:21:
56:57:79:f1:a8:7c:a9:d5:0b:24:55:87:80:89:72:fd:d2:d9:
fa:9d:7a:4b:a6:04:85:f5:7c:85:da:c3:13:e0:94:dd:08:29:
94:3f:38:71:31:18:f3:48:1e:b3:f7:68:f4:b4:e1:db:0e:d4:
f9:50:ea:f2:e7:c3:2d:01:8f:73:10:ae:8c:8e:f9:1d:35:a7:
92:e6:7b:5b:1c:7b:9a:4a:7c:01:2d:1b:36:f3:18:10:d1:7d:
25:f7:e7:ec
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsryTkpPZ+L7BnELOoeqA4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjMwMTAxMDkzNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZTU3NTk5NDJmMWNhNGY3OWI2YTIwZmI2ZTJjYzhjMTdlMzQ0MjUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3st/74OE0G7rTfrnsJkNIeJC1Lwo
iT61gilnutFm0LJHnpd8l9gdQZ3G9zxzMhMbExijejVK3iHCrNspsiT3aCeGj9JK
WFgtLxPnv1cevDYR6nd+L1+Tc2nLIHsTwQvGKJty7c9KYWAWIOwBqQWGrUFuvHNN
y7Rx1prxsiclW8M5ZOR7snIETsUNAEt5yQttkUTsd5JNz2Ry1HFpQzlEZq7bTO3r
qQA6FPctZdO9FB3NoMGvC+xFZY1b/hqR1RRlPslDiTMD3rDnXq6kYxVRhjGyf0+C
1hF/W+mkwSf6xrT/PBo4h9326wVvfB3AjVOjf9G0fE8x2LybtrEL8ZDuAwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK5XWZQvHKT3m2og+24syMF+NEJRMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvcmxkWmxDOGNwUGViYWlEN2Jpekl3WDQwUWxFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVgOMA0G
CSqGSIb3DQEBCwUAA4IBAQCSwt+1mOiVfZ21GuFlBMnI2aq0krGhIaHokc8eUlB3
Q4J9SrBM8QO18bH1qyQ+rhL3/k+Dd0kPTacBY41hRnT6sNP3uUZCejKbvHNKoM+k
qMLkyzTkMCxd9VUVzGpF/ghBHycvsZLliBtvSHnxaQS1HMbFyAtpE4Sf1wELa9w8
WA9bEPFT9N3OKPCf3wknPd58KG/4EVCJckQ0jXVK9vyXVCFWV3nxqHyp1QskVYeA
iXL90tn6nXpLpgSF9XyF2sMT4JTdCCmUPzhxMRjzSB6z92j0tOHbDtT5UOry58Mt
AY9zEK6MjvkdNaeS5ntbHHuaSnwBLRs28xgQ0X0l9+fs
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:14 2024 by rpki-client on console-ams.rpki-client.org