Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/1c8896-7be2-42cd-911f-2fdb7ab65d52/1/0ijmh3KagbPaIPXIjTjyZ08R6nM.roa
File: 0ijmh3KagbPaIPXIjTjyZ08R6nM.roa (raw, json)
Hash identifier: phDwViD74bamb16cvwVIS+hgWbJwPW/hW5s90R+SY6s=
Subject key identifier: D2:28:E6:87:72:9A:81:B3:DA:20:F5:C8:8D:38:F2:67:4F:11:EA:73
Certificate issuer: /CN=1fc5955940bbd7555df0a2e417379fc447ef0cdc
Certificate serial: 018572311B9D67DB297DB636C41057CAC32D
Authority key identifier: 1F:C5:95:59:40:BB:D7:55:5D:F0:A2:E4:17:37:9F:C4:47:EF:0C:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H8WVWUC711Vd8KLkFzefxEfvDNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/1c8896-7be2-42cd-911f-2fdb7ab65d52/1/0ijmh3KagbPaIPXIjTjyZ08R6nM.roa
Signing time: Mon 02 Jan 2023 11:14:58 +0000
ROA not before: Mon 02 Jan 2023 11:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 45.159.120.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:31:1b:9d:67:db:29:7d:b6:36:c4:10:57:ca:c3:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fc5955940bbd7555df0a2e417379fc447ef0cdc
Validity
Not Before: Jan 2 11:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d228e687729a81b3da20f5c88d38f2674f11ea73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a1:da:c1:18:34:a6:bd:81:4f:3e:81:ce:bb:
da:9b:07:bc:91:e3:ac:63:43:a9:c9:12:fb:48:c0:
5b:18:fc:5b:a6:1d:24:19:e5:0e:69:c5:bb:36:7e:
35:20:45:5c:83:1f:9f:e3:1a:cd:9c:10:b0:ab:44:
66:05:0d:56:6b:e2:40:59:15:50:91:d2:1a:4d:14:
e4:80:97:2e:65:ca:7e:ed:f6:a1:9b:9e:bb:48:37:
18:22:68:f4:a0:95:40:6b:4c:46:6a:e7:35:8b:ab:
f5:4a:04:0f:cf:50:0c:26:af:bb:6b:fa:d3:dd:e9:
f9:26:88:7e:25:92:d4:75:73:bf:58:28:b2:d1:d0:
22:55:93:85:b1:53:ba:3e:1f:a2:05:77:3b:7f:4f:
09:d1:b3:c6:03:f5:f5:65:ea:51:4f:b9:24:b1:05:
ff:54:cf:97:19:38:75:03:0b:ae:1c:6f:77:ac:45:
0f:a2:28:f8:4f:ef:c8:4f:00:e2:f2:8b:f1:9d:61:
66:8e:0b:2b:81:fd:3e:0d:c0:18:5b:2d:07:c3:c9:
79:9c:49:1c:c9:6e:6e:7a:d0:b2:56:04:d6:bc:24:
44:ba:83:71:47:92:75:82:43:89:ca:17:2f:5b:77:
b8:43:b3:3c:bf:df:6c:b5:68:34:1b:6c:34:ed:03:
52:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:28:E6:87:72:9A:81:B3:DA:20:F5:C8:8D:38:F2:67:4F:11:EA:73
X509v3 Authority Key Identifier:
keyid:1F:C5:95:59:40:BB:D7:55:5D:F0:A2:E4:17:37:9F:C4:47:EF:0C:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H8WVWUC711Vd8KLkFzefxEfvDNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/1c8896-7be2-42cd-911f-2fdb7ab65d52/1/0ijmh3KagbPaIPXIjTjyZ08R6nM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/1c8896-7be2-42cd-911f-2fdb7ab65d52/1/H8WVWUC711Vd8KLkFzefxEfvDNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.120.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:75:ad:71:18:6b:32:c7:8b:8e:6b:8b:3b:c3:a8:12:7c:43:
78:c1:6f:33:65:c2:31:82:92:9a:f2:91:90:56:07:6d:8a:9c:
ac:2e:c8:ff:8a:21:d3:86:53:e8:21:fb:69:16:a5:87:ea:b2:
21:1d:5f:18:c9:4a:bc:29:e7:88:5c:b4:98:bc:d4:8b:4f:e9:
59:ff:d8:5f:30:20:a5:ec:35:21:c2:a8:8c:84:83:3f:53:d4:
fc:15:86:0f:52:52:e8:9a:0b:50:51:29:3e:7d:cf:a3:a9:21:
99:12:9d:b5:0f:f8:c3:85:1b:18:61:41:bb:23:21:f0:4a:3e:
93:db:8d:1d:f9:73:83:57:61:01:1c:ae:cc:7a:39:fd:73:48:
c1:6d:7a:18:50:b6:f5:ca:e6:51:64:88:79:c9:35:e3:2b:1f:
0c:63:f3:c7:d1:8c:79:68:d6:5a:ea:54:90:e7:03:f8:99:32:
ed:03:9f:dc:33:13:76:83:37:92:fc:b2:fd:a3:6c:be:46:8f:
03:cf:c2:e9:bf:9c:f2:54:0b:8c:1a:dd:6f:db:33:ba:16:a5:
ee:15:76:d9:63:bf:19:41:67:2d:b8:70:06:38:0b:1d:e3:86:
14:89:8f:da:95:99:e5:91:74:8b:6b:b9:43:fe:15:3c:51:99:
7a:90:f4:4d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyMRudZ9spfbY2xBBXysMtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmYzU5NTU5NDBiYmQ3NTU1ZGYwYTJlNDE3Mzc5ZmM0NDdl
ZjBjZGMwHhcNMjMwMTAyMTExNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMjI4ZTY4NzcyOWE4MWIzZGEyMGY1Yzg4ZDM4ZjI2NzRmMTFlYTczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArKHawRg0pr2BTz6Bzrvamwe8keOs
Y0OpyRL7SMBbGPxbph0kGeUOacW7Nn41IEVcgx+f4xrNnBCwq0RmBQ1Wa+JAWRVQ
kdIaTRTkgJcuZcp+7fahm567SDcYImj0oJVAa0xGauc1i6v1SgQPz1AMJq+7a/rT
3en5Joh+JZLUdXO/WCiy0dAiVZOFsVO6Ph+iBXc7f08J0bPGA/X1ZepRT7kksQX/
VM+XGTh1AwuuHG93rEUPoij4T+/ITwDi8ovxnWFmjgsrgf0+DcAYWy0Hw8l5nEkc
yW5uetCyVgTWvCREuoNxR5J1gkOJyhcvW3e4Q7M8v99stWg0G2w07QNSvwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNIo5odymoGz2iD1yI048mdPEepzMB8GA1UdIwQY
MBaAFB/FlVlAu9dVXfCi5Bc3n8RH7wzcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDhXVldVQzcxMVZkOEtMa0Z6ZWZ4RWZ2RE53LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC8xYzg4OTYtN2JlMi00MmNkLTkxMWYt
MmZkYjdhYjY1ZDUyLzEvMGlqbWgzS2FnYlBhSVBYSWpUanlaMDhSNm5NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZC8xYzg4OTYtN2JlMi00MmNkLTkxMWYtMmZkYjdhYjY1ZDUy
LzEvSDhXVldVQzcxMVZkOEtMa0Z6ZWZ4RWZ2RE53LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLZ94MA0G
CSqGSIb3DQEBCwUAA4IBAQBvda1xGGsyx4uOa4s7w6gSfEN4wW8zZcIxgpKa8pGQ
VgdtipysLsj/iiHThlPoIftpFqWH6rIhHV8YyUq8KeeIXLSYvNSLT+lZ/9hfMCCl
7DUhwqiMhIM/U9T8FYYPUlLomgtQUSk+fc+jqSGZEp21D/jDhRsYYUG7IyHwSj6T
240d+XODV2EBHK7Mejn9c0jBbXoYULb1yuZRZIh5yTXjKx8MY/PH0Yx5aNZa6lSQ
5wP4mTLtA5/cMxN2gzeS/LL9o2y+Ro8Dz8Lpv5zyVAuMGt1v2zO6FqXuFXbZY78Z
QWctuHAGOAsd44YUiY/alZnlkXSLa7lD/hU8UZl6kPRN
-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:26 2024 by rpki-client on console-ams.rpki-client.org