Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/3d2XZWdxJSEIcdicFFR_w_fQiz8.roa
File: 3d2XZWdxJSEIcdicFFR_w_fQiz8.roa (raw, json)
Hash identifier: MRGwLq5r7EMoFKPABJlrq0OXc5B17euvBMlhxIxl0+o=
Subject key identifier: DD:DD:97:65:67:71:25:21:08:71:D8:9C:14:54:7F:C3:F7:D0:8B:3F
Certificate issuer: /CN=28c6800d74bc4105b40e77ea085ba026dbeec35f
Certificate serial: 018570028A17D4CC5602A7FBC1C479AE984C
Authority key identifier: 28:C6:80:0D:74:BC:41:05:B4:0E:77:EA:08:5B:A0:26:DB:EE:C3:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMaADXS8QQW0DnfqCFugJtvuw18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/3d2XZWdxJSEIcdicFFR_w_fQiz8.roa
Signing time: Mon 02 Jan 2023 01:04:52 +0000
ROA not before: Mon 02 Jan 2023 01:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3356
IP address blocks: 45.145.232.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:8a:17:d4:cc:56:02:a7:fb:c1:c4:79:ae:98:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28c6800d74bc4105b40e77ea085ba026dbeec35f
Validity
Not Before: Jan 2 01:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dddd9765677125210871d89c14547fc3f7d08b3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ce:ad:af:75:2b:e9:32:f9:b5:3d:d1:2d:3a:
34:a2:79:29:ac:cc:d7:11:fb:2b:7f:9c:67:dc:17:
03:c8:09:f3:49:19:17:31:c5:ce:ae:df:85:6f:0c:
9e:0e:7d:fb:a4:81:62:b4:d2:f2:87:8b:3a:c1:61:
60:90:c1:30:58:28:c3:f7:6d:d0:43:0a:bd:67:14:
45:a2:2d:d5:5e:e4:54:19:88:f8:0d:cb:f0:c6:9f:
ce:3f:0e:23:a2:94:89:65:9a:45:4f:3a:de:99:d6:
fc:6d:40:3d:53:35:88:82:03:ee:88:7f:7d:82:e6:
e2:92:54:87:29:5f:e9:4c:e0:f1:54:6b:c5:95:26:
79:83:55:2c:3c:21:5a:71:20:5a:94:07:74:29:ff:
d0:7b:ad:f2:2a:e5:ce:11:ed:d5:42:99:9f:de:fa:
b8:74:83:0a:24:1b:e6:64:f6:03:b4:ac:8f:b7:84:
31:55:b0:9c:75:91:cb:4a:f7:d3:c2:37:96:e4:aa:
49:d0:a4:f6:c1:cc:e6:28:c5:f1:f0:e0:be:88:bf:
35:f5:4e:ce:b3:c2:18:34:07:79:39:66:75:68:a7:
a2:3e:eb:bd:1e:02:8a:b5:97:4a:d2:49:b3:51:cd:
38:71:57:e3:19:e4:c8:78:5c:af:55:95:b9:1c:cf:
8e:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:DD:97:65:67:71:25:21:08:71:D8:9C:14:54:7F:C3:F7:D0:8B:3F
X509v3 Authority Key Identifier:
keyid:28:C6:80:0D:74:BC:41:05:B4:0E:77:EA:08:5B:A0:26:DB:EE:C3:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMaADXS8QQW0DnfqCFugJtvuw18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/3d2XZWdxJSEIcdicFFR_w_fQiz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.232.0/22
Signature Algorithm: sha256WithRSAEncryption
86:f5:45:5b:10:22:89:44:42:d5:71:75:cf:ed:7b:3c:ec:2e:
2b:ec:e2:01:75:d4:f9:da:c5:88:4a:ec:0d:ac:ee:cf:6b:42:
5f:5c:70:8e:f9:b1:2d:05:6e:b1:c7:bc:d1:5e:65:f7:01:59:
e5:9e:72:89:c1:66:ca:c6:f1:c2:60:57:3a:37:a9:3f:8a:4c:
c8:1c:c6:ea:b8:b3:43:55:60:fe:35:98:c6:b3:7d:c4:ac:1b:
96:72:9d:5c:b7:8d:2a:f9:9e:ab:52:b3:c6:d7:8b:5a:40:2a:
bd:09:d9:20:5e:e1:de:23:4f:7a:8f:25:73:d2:c3:91:88:98:
06:1b:71:03:53:55:de:df:50:d2:58:65:b0:2a:b6:4b:45:46:
a1:16:d4:bf:10:10:99:0a:29:16:01:af:7c:8b:0b:c7:97:e7:
54:17:d2:be:14:f3:8b:6e:95:34:2e:6c:d2:82:54:94:c1:d3:
a9:77:8b:1e:9e:e7:5a:aa:df:fb:12:2b:cb:ae:da:31:fb:21:
a7:17:37:3e:91:87:ea:94:40:fa:20:ee:74:9c:15:75:d2:7d:
7a:f5:4c:29:69:45:75:6f:88:02:37:9e:4a:63:4b:a0:3e:96:
f3:f5:82:76:42:46:da:bf:fb:d9:71:da:a7:fd:ef:c4:2d:24:
17:59:7a:e1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwAooX1MxWAqf7wcR5rphMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4YzY4MDBkNzRiYzQxMDViNDBlNzdlYTA4NWJhMDI2ZGJl
ZWMzNWYwHhcNMjMwMTAyMDEwNDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZGRkOTc2NTY3NzEyNTIxMDg3MWQ4OWMxNDU0N2ZjM2Y3ZDA4YjNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo86tr3Ur6TL5tT3RLTo0onkprMzX
Efsrf5xn3BcDyAnzSRkXMcXOrt+FbwyeDn37pIFitNLyh4s6wWFgkMEwWCjD923Q
Qwq9ZxRFoi3VXuRUGYj4Dcvwxp/OPw4jopSJZZpFTzremdb8bUA9UzWIggPuiH99
gubiklSHKV/pTODxVGvFlSZ5g1UsPCFacSBalAd0Kf/Qe63yKuXOEe3VQpmf3vq4
dIMKJBvmZPYDtKyPt4QxVbCcdZHLSvfTwjeW5KpJ0KT2wczmKMXx8OC+iL819U7O
s8IYNAd5OWZ1aKeiPuu9HgKKtZdK0kmzUc04cVfjGeTIeFyvVZW5HM+O6QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN3dl2VncSUhCHHYnBRUf8P30Is/MB8GA1UdIwQY
MBaAFCjGgA10vEEFtA536ghboCbb7sNfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS01hQURYUzhRUVcwRG5mcUNGdWdKdHZ1dzE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC8yNDI5MTEtOTNjMC00NWU3LTkwMTIt
NDkzOWJiZmRmYjg2LzEvM2QyWFpXZHhKU0VJY2RpY0ZGUl93X2ZRaXo4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZC8yNDI5MTEtOTNjMC00NWU3LTkwMTItNDkzOWJiZmRmYjg2
LzEvS01hQURYUzhRUVcwRG5mcUNGdWdKdHZ1dzE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLZHoMA0G
CSqGSIb3DQEBCwUAA4IBAQCG9UVbECKJRELVcXXP7Xs87C4r7OIBddT52sWISuwN
rO7Pa0JfXHCO+bEtBW6xx7zRXmX3AVnlnnKJwWbKxvHCYFc6N6k/ikzIHMbquLND
VWD+NZjGs33ErBuWcp1ct40q+Z6rUrPG14taQCq9CdkgXuHeI096jyVz0sORiJgG
G3EDU1Xe31DSWGWwKrZLRUahFtS/EBCZCikWAa98iwvHl+dUF9K+FPOLbpU0LmzS
glSUwdOpd4senudaqt/7EivLrtox+yGnFzc+kYfqlED6IO50nBV10n169UwpaUV1
b4gCN55KY0ugPpbz9YJ2Qkbav/vZcdqn/e/ELSQXWXrh
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:26 2023 by rpki-client on console-fra.rpki-client.org