Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/T-kaVXBtt9z8ZckroQCMY8K99G4.roa
File: T-kaVXBtt9z8ZckroQCMY8K99G4.roa (raw, json)
Hash identifier: Ngyqrfybvxi+kxh05MKNFlibqfGdJe6M4RoabEr91dU=
Subject key identifier: 4F:E9:1A:55:70:6D:B7:DC:FC:65:C9:2B:A1:00:8C:63:C2:BD:F4:6E
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 018571955EE48FA60998B559FECFB7682A03
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/T-kaVXBtt9z8ZckroQCMY8K99G4.roa
Signing time: Mon 02 Jan 2023 08:24:52 +0000
ROA not before: Mon 02 Jan 2023 08:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1145
IP address blocks: 145.97.32.0/20 maxlen: 20
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:5e:e4:8f:a6:09:98:b5:59:fe:cf:b7:68:2a:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 2 08:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4fe91a55706db7dcfc65c92ba1008c63c2bdf46e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:7b:bc:32:8d:34:09:02:df:09:78:56:72:7e:
eb:78:7e:15:ef:59:6f:ed:7e:16:83:02:0a:43:19:
de:5f:66:7e:18:1c:e9:de:f8:cb:39:4a:40:5d:04:
16:8d:ea:ec:a6:ec:ec:0f:da:75:da:58:a2:a2:12:
f1:bb:20:e5:39:df:d1:6d:5e:6b:fd:28:0e:51:8f:
25:62:9b:a7:c9:8c:42:a0:7e:e4:aa:3e:4c:66:cf:
ed:60:21:1d:b7:13:78:a9:16:20:e0:f4:d3:c1:dd:
30:a4:b9:40:e9:36:f9:8f:4b:48:60:32:7e:db:46:
5f:e0:69:4d:85:45:c2:50:bd:b7:13:a5:e1:ef:d2:
ef:1d:2b:ae:66:5e:52:a1:4e:04:1b:97:43:a0:82:
b4:f1:a0:18:5a:fc:67:db:5d:db:eb:9b:2f:be:5f:
1c:99:ca:de:f1:ac:c8:73:bd:d5:cc:3a:a5:9e:01:
b4:4c:fd:5d:ba:fe:75:82:ed:75:9f:05:dc:c9:b2:
2c:7b:dd:b8:c6:2a:a4:f8:e8:46:67:bf:14:48:e6:
b7:a6:d5:f0:fa:bd:fc:21:e7:c6:8f:ba:b2:cb:9c:
5c:63:5a:3e:58:43:29:10:46:4e:f1:5b:c4:86:26:
bb:0f:ea:72:7b:b6:4f:38:2f:53:15:22:30:43:b8:
42:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:E9:1A:55:70:6D:B7:DC:FC:65:C9:2B:A1:00:8C:63:C2:BD:F4:6E
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/T-kaVXBtt9z8ZckroQCMY8K99G4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.97.32.0/20
Signature Algorithm: sha256WithRSAEncryption
90:75:34:b5:0e:f9:7a:e6:bb:3d:93:6f:af:fb:51:9b:fa:be:
c5:46:37:a9:86:7c:d8:f2:5b:a7:46:d1:aa:96:5c:82:81:65:
d0:aa:db:e9:6d:5c:a9:34:c8:cd:c7:81:64:d2:3e:83:62:3f:
8c:d0:8d:f9:89:e0:16:9b:db:d8:a8:57:19:e1:18:78:0a:2c:
5a:c9:c0:e7:90:6d:3a:34:c0:c6:a9:78:24:0c:6c:c9:15:3b:
70:e0:79:aa:33:4d:c6:9c:fe:2f:34:09:35:63:c2:9c:a4:7c:
f9:62:19:d5:ea:1f:d1:84:be:58:93:70:e0:15:ae:08:dc:9c:
5d:d5:35:78:16:3a:aa:3f:b2:d8:27:82:a5:12:23:de:51:90:
23:ac:c8:a9:31:33:15:62:96:7d:65:d1:7c:75:0b:8b:63:e8:
a7:d2:2c:27:f1:b8:75:0c:20:65:7c:dc:cf:34:df:17:5a:61:
0e:11:a6:a5:60:71:24:e1:2e:52:60:58:29:6c:42:11:0c:ab:
20:f4:31:d0:0f:82:f5:e3:db:97:e3:17:bf:6d:b8:b1:f3:13:
17:d7:a7:e9:24:3e:2b:6d:81:ee:11:81:11:75:e7:0a:d4:7e:
32:64:be:87:15:90:b0:f1:f2:f7:d5:a1:16:f4:2c:49:71:0b:
57:44:e5:87
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxlV7kj6YJmLVZ/s+3aCoDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3NzNkYjE3Nzk1ZDJiZjFiNGI1MzQ1YzViMjkzOTBkYmFm
NDUyM2UwHhcNMjMwMTAyMDgyNDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZmU5MWE1NTcwNmRiN2RjZmM2NWM5MmJhMTAwOGM2M2MyYmRmNDZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoXu8Mo00CQLfCXhWcn7reH4V71lv
7X4WgwIKQxneX2Z+GBzp3vjLOUpAXQQWjerspuzsD9p12liiohLxuyDlOd/RbV5r
/SgOUY8lYpunyYxCoH7kqj5MZs/tYCEdtxN4qRYg4PTTwd0wpLlA6Tb5j0tIYDJ+
20Zf4GlNhUXCUL23E6Xh79LvHSuuZl5SoU4EG5dDoIK08aAYWvxn213b65svvl8c
mcre8azIc73VzDqlngG0TP1duv51gu11nwXcybIse924xiqk+OhGZ78USOa3ptXw
+r38IefGj7qyy5xcY1o+WEMpEEZO8VvEhia7D+pye7ZPOC9TFSIwQ7hC0QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE/pGlVwbbfc/GXJK6EAjGPCvfRuMB8GA1UdIwQY
MBaAFBdz2xd5XSvxtLU0XFspOQ269FI+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRjNQYkYzbGRLX0cwdFRSY1d5azVEYnIwVWo0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC9mNzdjYmQtODkzYi00NjE2LTlkNzYt
NTQ4NjFmMjMyNDlkLzEvVC1rYVZYQnR0OXo4WmNrcm9RQ01ZOEs5OUc0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZC9mNzdjYmQtODkzYi00NjE2LTlkNzYtNTQ4NjFmMjMyNDlk
LzEvRjNQYkYzbGRLX0cwdFRSY1d5azVEYnIwVWo0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEkWEgMA0G
CSqGSIb3DQEBCwUAA4IBAQCQdTS1Dvl65rs9k2+v+1Gb+r7FRjephnzY8lunRtGq
llyCgWXQqtvpbVypNMjNx4Fk0j6DYj+M0I35ieAWm9vYqFcZ4Rh4CixaycDnkG06
NMDGqXgkDGzJFTtw4HmqM03GnP4vNAk1Y8KcpHz5YhnV6h/RhL5Yk3DgFa4I3Jxd
1TV4FjqqP7LYJ4KlEiPeUZAjrMipMTMVYpZ9ZdF8dQuLY+in0iwn8bh1DCBlfNzP
NN8XWmEOEaalYHEk4S5SYFgpbEIRDKsg9DHQD4L149uX4xe/bbix8xMX16fpJD4r
bYHuEYERdecK1H4yZL6HFZCw8fL31aEW9CxJcQtXROWH
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:44 2024 by rpki-client on console-ams.rpki-client.org