Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/8f0259-9bc8-4fdc-926d-1a80daffd796/1/hP2GPQLY6bapxbmjbHgpZxDXhQA.roa
File: hP2GPQLY6bapxbmjbHgpZxDXhQA.roa (raw, json)
Hash identifier: JLG9DkdXuoWyuxMbY9a79IqHH1dYsHHM8QWw+5xcFlg=
Subject key identifier: 84:FD:86:3D:02:D8:E9:B6:A9:C5:B9:A3:6C:78:29:67:10:D7:85:00
Certificate issuer: /CN=661691ca9c58d0859b6b870230b0f581be66a58a
Certificate serial: 018BEEE5396831AF9EFB5291BAEB08331C1D
Authority key identifier: 66:16:91:CA:9C:58:D0:85:9B:6B:87:02:30:B0:F5:81:BE:66:A5:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZhaRypxY0IWba4cCMLD1gb5mpYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/8f0259-9bc8-4fdc-926d-1a80daffd796/1/hP2GPQLY6bapxbmjbHgpZxDXhQA.roa
Signing time: Mon 20 Nov 2023 22:41:21 +0000
ROA not before: Mon 20 Nov 2023 22:41:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49981
IP address blocks: 45.153.108.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 28 Nov 2023 20:16:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ee:e5:39:68:31:af:9e:fb:52:91:ba:eb:08:33:1c:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=661691ca9c58d0859b6b870230b0f581be66a58a
Validity
Not Before: Nov 20 22:41:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=84fd863d02d8e9b6a9c5b9a36c78296710d78500
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:3f:a5:ac:39:43:93:bc:44:55:af:d9:ec:1f:
83:cf:ea:f7:55:d2:4f:76:64:f7:a7:b6:34:f0:31:
20:80:5a:88:51:af:4c:37:bb:09:aa:c6:f7:30:de:
c1:59:da:11:5d:bd:28:c7:a0:77:a0:17:17:7a:96:
4f:b6:92:24:cb:4c:ad:91:95:b4:91:4a:4d:91:37:
b2:10:47:fd:72:83:4f:81:eb:30:a8:0c:d1:ce:4b:
0e:f9:6d:7d:a3:1d:87:b9:49:25:92:1e:c3:1d:9e:
03:09:03:f5:83:2d:6d:95:1a:a9:7d:cd:0f:c4:4f:
d8:2e:89:b2:71:d2:b8:74:ef:0f:c4:19:ce:f2:83:
29:95:1c:02:2e:62:cd:f5:19:44:12:47:dd:a6:5f:
2b:7b:a5:21:d5:55:01:85:bf:3d:5a:6b:ec:02:d2:
cf:a4:43:be:dc:ca:38:7c:74:72:bf:82:49:ea:1e:
15:cc:1c:75:84:f3:e8:71:b6:af:26:28:d2:56:5b:
eb:0c:43:41:66:cc:01:6f:84:64:20:24:6d:78:96:
78:0f:73:1d:75:a5:80:3c:db:0e:ef:a7:c8:ec:b7:
48:30:10:04:48:7c:a5:ab:0b:84:d5:32:a0:f9:21:
59:d0:1a:af:c1:ef:d5:a0:58:be:74:69:8d:e3:5d:
0b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:FD:86:3D:02:D8:E9:B6:A9:C5:B9:A3:6C:78:29:67:10:D7:85:00
X509v3 Authority Key Identifier:
keyid:66:16:91:CA:9C:58:D0:85:9B:6B:87:02:30:B0:F5:81:BE:66:A5:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZhaRypxY0IWba4cCMLD1gb5mpYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8f0259-9bc8-4fdc-926d-1a80daffd796/1/hP2GPQLY6bapxbmjbHgpZxDXhQA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/8f0259-9bc8-4fdc-926d-1a80daffd796/1/ZhaRypxY0IWba4cCMLD1gb5mpYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.108.0/24
Signature Algorithm: sha256WithRSAEncryption
85:66:03:75:f0:d3:3a:7c:48:d3:01:01:06:4d:fd:ef:6b:97:
48:4c:40:24:fd:c2:68:55:97:ad:6b:f6:41:53:1f:2f:f2:29:
1e:aa:f2:dc:87:ad:a3:e1:96:d0:c9:7a:0c:4d:56:b2:cb:64:
5c:98:ca:0e:90:cc:20:21:3d:d2:f8:34:a1:3d:06:8f:30:45:
a7:14:ed:ff:ff:44:5a:2f:7a:67:36:3d:ca:bc:f9:aa:3b:40:
bf:ba:ba:fc:2e:16:9d:64:fd:cb:3b:22:52:7d:40:6e:69:37:
4c:3f:57:91:5a:79:f6:1d:81:65:46:eb:d4:f4:96:cb:40:34:
94:29:cc:f2:a7:6a:6b:7f:07:22:b8:d4:d6:27:ac:10:7b:96:
50:d1:36:a7:35:e7:02:88:39:7a:a1:2a:21:d4:87:00:18:c3:
8c:0c:4b:b4:f5:c3:63:15:87:e2:d9:ab:fa:34:c4:7c:3e:f5:
21:bb:4a:05:ab:27:db:25:92:34:16:bf:e2:e1:54:3a:f4:9c:
eb:61:ad:73:3c:de:3d:09:2b:92:35:8b:43:c5:e9:9c:64:69:
25:6b:3d:50:e1:04:06:4c:86:14:a4:23:40:33:8d:58:e9:db:
7c:88:59:62:7e:08:17:90:d5:6c:d7:01:ae:3e:64:af:0b:66:
cc:33:ba:f9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYvu5TloMa+e+1KRuusIMxwdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2MTY5MWNhOWM1OGQwODU5YjZiODcwMjMwYjBmNTgxYmU2
NmE1OGEwHhcNMjMxMTIwMjI0MTIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NGZkODYzZDAyZDhlOWI2YTljNWI5YTM2Yzc4Mjk2NzEwZDc4NTAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiT+lrDlDk7xEVa/Z7B+Dz+r3VdJP
dmT3p7Y08DEggFqIUa9MN7sJqsb3MN7BWdoRXb0ox6B3oBcXepZPtpIky0ytkZW0
kUpNkTeyEEf9coNPgeswqAzRzksO+W19ox2HuUklkh7DHZ4DCQP1gy1tlRqpfc0P
xE/YLomycdK4dO8PxBnO8oMplRwCLmLN9RlEEkfdpl8re6Uh1VUBhb89WmvsAtLP
pEO+3Mo4fHRyv4JJ6h4VzBx1hPPocbavJijSVlvrDENBZswBb4RkICRteJZ4D3Md
daWAPNsO76fI7LdIMBAESHylqwuE1TKg+SFZ0Bqvwe/VoFi+dGmN410LuwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIT9hj0C2Om2qcW5o2x4KWcQ14UAMB8GA1UdIwQY
MBaAFGYWkcqcWNCFm2uHAjCw9YG+ZqWKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWmhhUnlweFkwSVdiYTRjQ01MRDFnYjVtcFlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS84ZjAyNTktOWJjOC00ZmRjLTkyNmQt
MWE4MGRhZmZkNzk2LzEvaFAyR1BRTFk2YmFweGJtamJIZ3BaeERYaFFBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS84ZjAyNTktOWJjOC00ZmRjLTkyNmQtMWE4MGRhZmZkNzk2
LzEvWmhhUnlweFkwSVdiYTRjQ01MRDFnYjVtcFlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZlsMA0G
CSqGSIb3DQEBCwUAA4IBAQCFZgN18NM6fEjTAQEGTf3va5dITEAk/cJoVZeta/ZB
Ux8v8ikeqvLch62j4ZbQyXoMTVayy2RcmMoOkMwgIT3S+DShPQaPMEWnFO3//0Ra
L3pnNj3KvPmqO0C/urr8LhadZP3LOyJSfUBuaTdMP1eRWnn2HYFlRuvU9JbLQDSU
Kczyp2prfwciuNTWJ6wQe5ZQ0TanNecCiDl6oSoh1IcAGMOMDEu09cNjFYfi2av6
NMR8PvUhu0oFqyfbJZI0Fr/i4VQ69JzrYa1zPN49CSuSNYtDxemcZGklaz1Q4QQG
TIYUpCNAM41Y6dt8iFlifggXkNVs1wGuPmSvC2bMM7r5
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:12 2024 by rpki-client on console-ams.rpki-client.org