Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/g1u_6i45vYcV2D7ONvBLtCS7km0.roa
File: g1u_6i45vYcV2D7ONvBLtCS7km0.roa (raw, json)
Hash identifier: 5wcIfvnmzxK0cYkwWLfJKqzFCbPCJaednCF7H/Fg4MM=
Subject key identifier: 83:5B:BF:EA:2E:39:BD:87:15:D8:3E:CE:36:F0:4B:B4:24:BB:92:6D
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 018571956DE9FB0DB9499922BFFD35C9A42B
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/g1u_6i45vYcV2D7ONvBLtCS7km0.roa
Signing time: Mon 02 Jan 2023 08:24:56 +0000
ROA not before: Mon 02 Jan 2023 08:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202189
IP address blocks: 145.15.244.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:6d:e9:fb:0d:b9:49:99:22:bf:fd:35:c9:a4:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 2 08:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=835bbfea2e39bd8715d83ece36f04bb424bb926d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:3a:4c:32:17:88:d4:30:f7:ec:ef:c5:42:2a:
1f:e5:49:13:5a:f0:93:a8:1e:7d:f5:f1:ec:77:fe:
45:b9:de:7c:ce:39:4b:f7:f4:82:65:ee:c8:05:a7:
39:a2:dd:4b:80:f0:71:45:ef:ba:22:b9:1f:bf:e0:
ed:59:80:86:36:ce:e5:dd:50:ce:8c:c4:b0:0f:ca:
9f:81:03:99:67:6f:bb:82:ca:e2:59:85:da:5c:1e:
1a:54:d4:e7:6e:78:fa:87:cd:d5:9a:05:46:a3:7a:
0f:be:2c:45:2c:6e:a7:01:da:e2:28:2f:50:85:35:
dd:fb:a6:1b:3a:c5:ee:49:93:00:62:f9:06:e3:8a:
65:e4:20:d6:65:d1:0d:91:72:93:7f:18:18:fc:43:
bd:12:6e:ed:f0:54:a3:f4:0a:11:f7:f7:fb:5b:71:
7f:fe:7d:dd:26:a2:06:4e:cb:e3:04:f3:af:fd:19:
24:88:d4:88:a2:d2:7c:6d:79:15:77:4a:26:bf:30:
fd:42:fe:85:72:4f:ba:04:02:1f:cb:4a:f4:82:c5:
c0:85:91:50:14:8e:ec:6f:4f:f4:f2:f5:c2:bd:95:
e6:1a:e9:2d:13:e2:07:17:5f:4b:b1:12:67:e9:b4:
02:c5:ac:69:27:12:bc:dc:4e:fb:ae:da:a4:4d:86:
b4:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:5B:BF:EA:2E:39:BD:87:15:D8:3E:CE:36:F0:4B:B4:24:BB:92:6D
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/g1u_6i45vYcV2D7ONvBLtCS7km0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.15.244.0/22
Signature Algorithm: sha256WithRSAEncryption
0f:33:8f:97:5e:20:ea:5f:12:4a:3f:b5:5c:3c:fb:45:9f:f6:
23:0f:ab:73:3f:3e:fb:23:8c:ce:d3:00:09:0d:95:85:04:c7:
c8:22:3a:14:2a:ae:69:64:ab:f8:73:b9:4d:61:2f:46:87:31:
bb:a7:58:4e:63:49:cd:eb:fd:4f:ae:4e:53:dd:43:d1:8e:49:
ae:f3:5c:b4:48:3c:0a:4a:d3:47:29:b2:b9:f6:91:ed:45:e3:
55:48:df:6f:d1:17:83:42:0a:25:73:9a:6b:9f:f1:78:fe:2d:
a6:c5:35:89:bf:55:42:b4:1e:5a:98:96:a7:c7:b1:99:b7:28:
a4:37:f7:1a:7e:6e:17:c7:d8:ce:0c:73:1a:7a:4d:bb:74:4e:
b2:07:08:4d:87:a9:67:38:50:f0:4b:5a:ba:38:3a:86:8a:f9:
c8:48:a7:06:87:18:fe:f4:94:d2:c0:d1:26:aa:ae:8d:64:de:
83:6c:dd:a0:83:91:d1:22:ac:e1:a3:ef:03:7e:2d:65:0e:ad:
3a:7b:bd:05:2c:da:bb:7f:da:35:f3:d5:75:9a:fe:a2:46:1b:
e6:c5:56:a3:38:38:57:55:55:f7:29:03:84:35:45:64:fb:26:
5b:1c:b0:8f:62:a9:95:59:03:98:f7:d9:9e:d8:fd:dd:90:fd:
50:eb:0e:b0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxlW3p+w25SZkiv/01yaQrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3NzNkYjE3Nzk1ZDJiZjFiNGI1MzQ1YzViMjkzOTBkYmFm
NDUyM2UwHhcNMjMwMTAyMDgyNDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MzViYmZlYTJlMzliZDg3MTVkODNlY2UzNmYwNGJiNDI0YmI5MjZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnDpMMheI1DD37O/FQiof5UkTWvCT
qB599fHsd/5Fud58zjlL9/SCZe7IBac5ot1LgPBxRe+6Irkfv+DtWYCGNs7l3VDO
jMSwD8qfgQOZZ2+7gsriWYXaXB4aVNTnbnj6h83VmgVGo3oPvixFLG6nAdriKC9Q
hTXd+6YbOsXuSZMAYvkG44pl5CDWZdENkXKTfxgY/EO9Em7t8FSj9AoR9/f7W3F/
/n3dJqIGTsvjBPOv/RkkiNSIotJ8bXkVd0omvzD9Qv6Fck+6BAIfy0r0gsXAhZFQ
FI7sb0/08vXCvZXmGuktE+IHF19LsRJn6bQCxaxpJxK83E77rtqkTYa0WQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFINbv+ouOb2HFdg+zjbwS7Qku5JtMB8GA1UdIwQY
MBaAFBdz2xd5XSvxtLU0XFspOQ269FI+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRjNQYkYzbGRLX0cwdFRSY1d5azVEYnIwVWo0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC9mNzdjYmQtODkzYi00NjE2LTlkNzYt
NTQ4NjFmMjMyNDlkLzEvZzF1XzZpNDV2WWNWMkQ3T052Qkx0Q1M3a20wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZC9mNzdjYmQtODkzYi00NjE2LTlkNzYtNTQ4NjFmMjMyNDlk
LzEvRjNQYkYzbGRLX0cwdFRSY1d5azVEYnIwVWo0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCkQ/0MA0G
CSqGSIb3DQEBCwUAA4IBAQAPM4+XXiDqXxJKP7VcPPtFn/YjD6tzPz77I4zO0wAJ
DZWFBMfIIjoUKq5pZKv4c7lNYS9GhzG7p1hOY0nN6/1Prk5T3UPRjkmu81y0SDwK
StNHKbK59pHtReNVSN9v0ReDQgolc5prn/F4/i2mxTWJv1VCtB5amJanx7GZtyik
N/cafm4Xx9jODHMaek27dE6yBwhNh6lnOFDwS1q6ODqGivnISKcGhxj+9JTSwNEm
qq6NZN6DbN2gg5HRIqzho+8Dfi1lDq06e70FLNq7f9o189V1mv6iRhvmxVajODhX
VVX3KQOENUVk+yZbHLCPYqmVWQOY99me2P3dkP1Q6w6w
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:44 2024 by rpki-client on console-ams.rpki-client.org