Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/374fd1-02c2-4671-bdc9-c3cc5de1ece9/1/j_hFXp5V6V32c4WTQc_3jLdUajQ.roa
File: j_hFXp5V6V32c4WTQc_3jLdUajQ.roa (raw, json)
Hash identifier: mSLbWu8NdjeqhflmhoE7Rbeiy8jD00MqQRVnWC3jEnE=
Subject key identifier: 8F:F8:45:5E:9E:55:E9:5D:F6:73:85:93:41:CF:F7:8C:B7:54:6A:34
Certificate issuer: /CN=8bdac18a7ad501ba7ea13567909f17e4f7327413
Certificate serial: 0189AAB2B86D1BDA98310EC29AF27489EB1F
Authority key identifier: 8B:DA:C1:8A:7A:D5:01:BA:7E:A1:35:67:90:9F:17:E4:F7:32:74:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i9rBinrVAbp-oTVnkJ8X5PcydBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/374fd1-02c2-4671-bdc9-c3cc5de1ece9/1/j_hFXp5V6V32c4WTQc_3jLdUajQ.roa
Signing time: Mon 31 Jul 2023 06:46:26 +0000
ROA not before: Mon 31 Jul 2023 06:46:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198433
IP address blocks: 45.9.163.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:aa:b2:b8:6d:1b:da:98:31:0e:c2:9a:f2:74:89:eb:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bdac18a7ad501ba7ea13567909f17e4f7327413
Validity
Not Before: Jul 31 06:46:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8ff8455e9e55e95df673859341cff78cb7546a34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a8:21:c8:2a:b2:18:9f:78:eb:42:06:9b:7b:
4e:d8:33:9d:2e:bd:43:f3:31:84:7d:c9:0f:73:22:
d7:02:05:ac:8a:b7:31:51:63:01:e1:a8:08:b0:92:
a5:cb:8e:45:a7:2d:b3:4e:57:6d:b1:12:5c:b3:c4:
d5:54:0e:e9:bd:ac:33:e1:0a:f4:5b:c1:9f:33:92:
ab:ee:54:3f:82:fe:7b:a1:41:60:3b:fd:97:85:b6:
59:01:df:9e:78:e2:0b:a0:58:32:9a:a8:7b:09:a9:
ee:d0:e1:b6:55:10:9e:ff:e5:17:85:b0:b9:99:ec:
05:03:43:fa:3a:61:01:14:ee:d1:b8:c7:2d:84:ce:
b8:ba:5c:f5:d3:62:b7:f0:5b:24:50:52:84:b6:33:
9f:00:9e:63:80:65:4a:78:a1:9b:4a:59:72:8f:e4:
ba:3c:b0:ac:bc:e5:a2:e9:a2:6a:39:f7:71:7e:3f:
c8:0b:56:92:67:e0:9e:43:4d:63:63:1a:f7:31:03:
1f:91:68:c5:ee:b2:e9:ed:33:20:70:47:c5:df:ef:
46:16:28:19:be:c2:5c:a8:d8:a5:af:6f:27:dc:31:
2a:8e:20:2b:2b:c1:f7:73:12:44:90:7f:e3:ba:32:
3f:ef:bc:81:df:5f:36:39:93:a4:cc:80:9a:92:89:
8a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:F8:45:5E:9E:55:E9:5D:F6:73:85:93:41:CF:F7:8C:B7:54:6A:34
X509v3 Authority Key Identifier:
keyid:8B:DA:C1:8A:7A:D5:01:BA:7E:A1:35:67:90:9F:17:E4:F7:32:74:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i9rBinrVAbp-oTVnkJ8X5PcydBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/374fd1-02c2-4671-bdc9-c3cc5de1ece9/1/j_hFXp5V6V32c4WTQc_3jLdUajQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/374fd1-02c2-4671-bdc9-c3cc5de1ece9/1/i9rBinrVAbp-oTVnkJ8X5PcydBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.163.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:a7:15:a0:13:20:25:9e:24:d9:5b:bd:d3:9c:c6:e7:a2:24:
94:8f:5b:07:8b:e3:bb:4b:af:b9:99:25:e2:e4:46:f2:84:56:
1c:7c:16:26:4d:c1:78:10:28:ec:0e:e8:ec:5b:11:d8:9e:31:
9f:61:30:3b:6f:cb:f6:30:8d:f4:cd:05:bd:87:9b:b9:08:fe:
c5:06:d4:94:45:39:81:46:89:9b:4b:62:9b:ef:47:d0:4c:aa:
13:0c:1c:25:64:0d:09:80:96:33:7c:0c:fc:12:9d:0c:5d:b5:
04:30:65:43:f2:65:a2:aa:62:7b:07:16:65:86:84:db:79:c0:
7c:24:b3:0d:4f:b9:17:ac:3d:23:84:a3:ef:d3:2f:d0:1b:0e:
2a:6e:1b:a9:8c:12:f6:8a:2f:67:47:bf:7f:36:e2:96:ea:c4:
fb:b2:69:94:ce:68:86:99:4f:28:dd:25:95:55:5a:43:56:f0:
6f:95:00:6b:70:84:2f:0e:0d:40:68:5a:ea:ac:83:df:b6:0e:
24:7a:1f:3f:81:30:8a:ee:dd:d7:88:79:87:47:bc:13:64:61:
cd:e2:79:9c:07:c1:e9:52:a4:fc:c6:4d:41:f6:95:9d:33:a7:
47:b5:92:dc:65:58:fd:a4:9c:96:e7:0a:21:2e:73:05:7a:d6:
ea:cd:51:8b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYmqsrhtG9qYMQ7CmvJ0iesfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiZGFjMThhN2FkNTAxYmE3ZWExMzU2NzkwOWYxN2U0Zjcz
Mjc0MTMwHhcNMjMwNzMxMDY0NjI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZmY4NDU1ZTllNTVlOTVkZjY3Mzg1OTM0MWNmZjc4Y2I3NTQ2YTM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmqghyCqyGJ9460IGm3tO2DOdLr1D
8zGEfckPcyLXAgWsircxUWMB4agIsJKly45Fpy2zTldtsRJcs8TVVA7pvawz4Qr0
W8GfM5Kr7lQ/gv57oUFgO/2XhbZZAd+eeOILoFgymqh7Canu0OG2VRCe/+UXhbC5
mewFA0P6OmEBFO7RuMcthM64ulz102K38FskUFKEtjOfAJ5jgGVKeKGbSllyj+S6
PLCsvOWi6aJqOfdxfj/IC1aSZ+CeQ01jYxr3MQMfkWjF7rLp7TMgcEfF3+9GFigZ
vsJcqNilr28n3DEqjiArK8H3cxJEkH/jujI/77yB3182OZOkzICakomKhwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFI/4RV6eVeld9nOFk0HP94y3VGo0MB8GA1UdIwQY
MBaAFIvawYp61QG6fqE1Z5CfF+T3MnQTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTlyQmluclZBYnAtb1RWbmtKOFg1UGN5ZEJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS8zNzRmZDEtMDJjMi00NjcxLWJkYzkt
YzNjYzVkZTFlY2U5LzEval9oRlhwNVY2VjMyYzRXVFFjXzNqTGRVYWpRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZS8zNzRmZDEtMDJjMi00NjcxLWJkYzktYzNjYzVkZTFlY2U5
LzEvaTlyQmluclZBYnAtb1RWbmtKOFg1UGN5ZEJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQmjMA0G
CSqGSIb3DQEBCwUAA4IBAQBNpxWgEyAlniTZW73TnMbnoiSUj1sHi+O7S6+5mSXi
5EbyhFYcfBYmTcF4ECjsDujsWxHYnjGfYTA7b8v2MI30zQW9h5u5CP7FBtSURTmB
RombS2Kb70fQTKoTDBwlZA0JgJYzfAz8Ep0MXbUEMGVD8mWiqmJ7BxZlhoTbecB8
JLMNT7kXrD0jhKPv0y/QGw4qbhupjBL2ii9nR79/NuKW6sT7smmUzmiGmU8o3SWV
VVpDVvBvlQBrcIQvDg1AaFrqrIPftg4keh8/gTCK7t3XiHmHR7wTZGHN4nmcB8Hp
UqT8xk1B9pWdM6dHtZLcZVj9pJyW5wohLnMFetbqzVGL
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:11 2024 by rpki-client on console-fra.rpki-client.org