Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/fozxldaU6JjCokP2XGVHPhET4yk.roa
File: fozxldaU6JjCokP2XGVHPhET4yk.roa (raw, json)
Hash identifier: 6p97X+eJkgYo5sTHdkz3cuQXDxX7quFjNqAtqZzu6Y0=
Subject key identifier: 7E:8C:F1:95:D6:94:E8:98:C2:A2:43:F6:5C:65:47:3E:11:13:E3:29
Certificate issuer: /CN=215266435617fa0f1fd2837ec80c6d83b0b9d608
Certificate serial: 018572C3857CB6A076287B07B574676C8A52
Authority key identifier: 21:52:66:43:56:17:FA:0F:1F:D2:83:7E:C8:0C:6D:83:B0:B9:D6:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IVJmQ1YX-g8f0oN-yAxtg7C51gg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/fozxldaU6JjCokP2XGVHPhET4yk.roa
Signing time: Mon 02 Jan 2023 13:54:54 +0000
ROA not before: Mon 02 Jan 2023 13:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201691
IP address blocks: 45.159.151.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:c3:85:7c:b6:a0:76:28:7b:07:b5:74:67:6c:8a:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=215266435617fa0f1fd2837ec80c6d83b0b9d608
Validity
Not Before: Jan 2 13:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7e8cf195d694e898c2a243f65c65473e1113e329
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:5d:da:61:4a:c2:05:47:13:d4:2e:5a:aa:48:
30:ff:e6:be:d6:6b:46:f2:9c:cb:cf:d4:64:f7:f1:
8b:96:d7:8f:41:25:e7:33:4c:63:1a:4d:8f:d0:f5:
51:a5:5c:0b:36:72:d1:65:0e:7d:30:7e:bc:2d:d9:
c6:49:f7:2e:2a:e0:ec:98:2e:17:55:1b:90:29:4d:
01:55:3a:2d:00:7e:bb:4c:04:e4:02:b0:4e:e1:e0:
02:9a:e1:72:ce:24:b0:e3:e7:76:56:f5:90:50:c0:
4d:30:92:ea:d6:98:5d:b1:68:cc:5e:6c:5c:36:94:
3c:98:59:53:14:70:a4:aa:79:98:1f:4b:a9:84:54:
52:20:a2:fe:df:d6:45:49:28:ae:59:15:4f:67:3f:
c0:45:c3:39:d7:20:25:17:ad:e9:04:a5:df:20:c6:
37:43:f5:84:49:5a:47:ad:f3:25:d0:1f:29:13:47:
c7:0e:33:e2:db:96:6c:1a:c2:41:8a:99:dc:4c:5e:
e0:61:40:b9:55:c9:c6:56:3f:a2:5c:f4:4e:23:d2:
a5:ca:5e:ed:b8:fd:66:73:ce:23:8a:47:7b:a9:80:
60:46:bc:88:ee:78:b0:21:57:8b:18:b4:9c:a5:9e:
e4:8a:cc:f1:09:8e:34:6e:4b:18:0f:0a:59:aa:03:
f8:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:8C:F1:95:D6:94:E8:98:C2:A2:43:F6:5C:65:47:3E:11:13:E3:29
X509v3 Authority Key Identifier:
keyid:21:52:66:43:56:17:FA:0F:1F:D2:83:7E:C8:0C:6D:83:B0:B9:D6:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IVJmQ1YX-g8f0oN-yAxtg7C51gg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/fozxldaU6JjCokP2XGVHPhET4yk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/IVJmQ1YX-g8f0oN-yAxtg7C51gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.151.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:b8:51:f5:69:c6:f3:86:c1:51:e6:eb:ab:b7:1f:29:1c:cf:
ad:38:cd:91:17:23:70:4e:e7:1c:7b:97:a8:f2:3f:e5:77:88:
b5:6b:ef:74:dc:61:2c:86:91:f0:7e:de:7c:5a:8a:08:ef:a5:
ec:12:60:4a:59:95:fb:de:cb:b3:24:77:ca:b9:e2:2d:3c:f8:
b1:51:23:f1:80:70:cf:79:00:f8:b8:d3:37:24:72:0d:9a:40:
b9:96:6e:03:13:c4:c7:29:62:dc:30:05:24:d4:51:88:a1:4e:
ab:22:46:a1:b6:0e:f0:b1:9e:05:79:2a:29:90:5f:30:ef:fa:
4a:1a:7f:b4:9c:58:24:17:98:0f:27:01:5e:f0:c6:da:eb:5e:
3a:be:88:56:fc:d5:79:1c:12:77:a0:89:8a:3d:a3:f5:09:91:
ac:0a:40:d3:33:6a:99:ff:83:5a:75:41:d3:c9:8b:42:e9:cc:
1b:48:37:26:66:4b:b8:2f:20:ed:81:4a:c3:ff:99:12:0c:1e:
fc:2a:30:28:78:a3:f5:fd:ee:b2:0a:4a:63:e5:19:29:62:fb:
d8:5e:4a:f0:71:d6:2d:b9:16:f0:95:48:f3:14:53:51:03:e8:
ec:37:b2:d2:af:6f:4d:63:22:8b:7f:7c:2e:0c:37:ea:0e:a0:
60:47:de:89
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyw4V8tqB2KHsHtXRnbIpSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxNTI2NjQzNTYxN2ZhMGYxZmQyODM3ZWM4MGM2ZDgzYjBi
OWQ2MDgwHhcNMjMwMTAyMTM1NDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZThjZjE5NWQ2OTRlODk4YzJhMjQzZjY1YzY1NDczZTExMTNlMzI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo13aYUrCBUcT1C5aqkgw/+a+1mtG
8pzLz9Rk9/GLltePQSXnM0xjGk2P0PVRpVwLNnLRZQ59MH68LdnGSfcuKuDsmC4X
VRuQKU0BVTotAH67TATkArBO4eACmuFyziSw4+d2VvWQUMBNMJLq1phdsWjMXmxc
NpQ8mFlTFHCkqnmYH0uphFRSIKL+39ZFSSiuWRVPZz/ARcM51yAlF63pBKXfIMY3
Q/WESVpHrfMl0B8pE0fHDjPi25ZsGsJBipncTF7gYUC5VcnGVj+iXPROI9Klyl7t
uP1mc84jikd7qYBgRryI7niwIVeLGLScpZ7kiszxCY40bksYDwpZqgP47QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH6M8ZXWlOiYwqJD9lxlRz4RE+MpMB8GA1UdIwQY
MBaAFCFSZkNWF/oPH9KDfsgMbYOwudYIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVZKbVExWVgtZzhmMG9OLXlBeHRnN0M1MWdnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS9jMDcyYWUtMTVkNy00MmE4LWJmYzIt
YmM5M2NhNjc5ZTFmLzEvZm96eGxkYVU2SmpDb2tQMlhHVkhQaEVUNHlrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NS9jMDcyYWUtMTVkNy00MmE4LWJmYzItYmM5M2NhNjc5ZTFm
LzEvSVZKbVExWVgtZzhmMG9OLXlBeHRnN0M1MWdnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZ+XMA0G
CSqGSIb3DQEBCwUAA4IBAQANuFH1acbzhsFR5uurtx8pHM+tOM2RFyNwTucce5eo
8j/ld4i1a+903GEshpHwft58WooI76XsEmBKWZX73suzJHfKueItPPixUSPxgHDP
eQD4uNM3JHINmkC5lm4DE8THKWLcMAUk1FGIoU6rIkahtg7wsZ4FeSopkF8w7/pK
Gn+0nFgkF5gPJwFe8Mba6146vohW/NV5HBJ3oImKPaP1CZGsCkDTM2qZ/4NadUHT
yYtC6cwbSDcmZku4LyDtgUrD/5kSDB78KjAoeKP1/e6yCkpj5RkpYvvYXkrwcdYt
uRbwlUjzFFNRA+jsN7LSr29NYyKLf3wuDDfqDqBgR96J
-----END CERTIFICATE-----
Generated at Thu Nov 23 17:10:09 2023 by rpki-client on console-ams.rpki-client.org