Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/b54ca3-73d5-4984-8782-9e0aed2fb8ec/1/kBCElNINP_SnuRc7KG3mCp98ksI.roa
File: kBCElNINP_SnuRc7KG3mCp98ksI.roa (raw, json)
Hash identifier: 064fAFXVwiBGL6b8bI/EfHAMbnacbk4qE9amqNMSYtc=
Subject key identifier: 90:10:84:94:D2:0D:3F:F4:A7:B9:17:3B:28:6D:E6:0A:9F:7C:92:C2
Certificate issuer: /CN=c8d5e37178d8524c72660a1d796165999e586622
Certificate serial: 018570F0B7BB6FF8A0712038555526E0D6D2
Authority key identifier: C8:D5:E3:71:78:D8:52:4C:72:66:0A:1D:79:61:65:99:9E:58:66:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yNXjcXjYUkxyZgodeWFlmZ5YZiI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/b54ca3-73d5-4984-8782-9e0aed2fb8ec/1/kBCElNINP_SnuRc7KG3mCp98ksI.roa
Signing time: Mon 02 Jan 2023 05:25:01 +0000
ROA not before: Mon 02 Jan 2023 05:25:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398772
IP address blocks: 45.136.60.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Dec 2023 06:59:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:b7:bb:6f:f8:a0:71:20:38:55:55:26:e0:d6:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8d5e37178d8524c72660a1d796165999e586622
Validity
Not Before: Jan 2 05:25:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=90108494d20d3ff4a7b9173b286de60a9f7c92c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:6e:19:c7:d3:07:cb:de:de:d2:21:5a:d0:91:
f9:4e:26:0a:37:a6:45:28:29:bd:f3:3e:4c:20:32:
b9:cd:36:a1:ed:a1:78:ef:8e:18:d2:ee:4a:f7:93:
f1:1c:1c:d7:3b:50:27:d3:84:4c:14:b3:31:50:3f:
59:47:ef:bf:18:d6:30:8b:7d:74:c6:d2:0a:a7:fd:
93:c3:1d:bf:75:59:c5:7f:58:f9:fe:9a:59:bc:c3:
8c:62:ba:f2:40:2d:0c:6f:c8:eb:cd:c4:43:74:18:
e1:56:42:dc:c7:bc:f0:dd:ae:f2:d0:2b:3a:90:6a:
2b:e1:2f:f3:97:d5:56:d3:d9:9a:d0:4d:f2:f2:b0:
d7:5e:8e:a9:1a:38:de:3a:51:be:0f:b7:a1:c8:d7:
3f:8f:8b:7e:aa:b7:99:ca:0d:cc:f5:7c:59:3f:fe:
2e:17:39:79:e5:67:24:db:79:20:f6:55:ee:73:77:
1d:4b:d4:06:1f:8b:8f:91:1a:dd:fc:d1:7e:5c:ee:
ef:8e:50:8d:20:e6:20:c6:94:16:10:b7:95:04:20:
ac:77:bf:72:b5:bc:08:99:d8:86:23:34:97:4a:10:
1c:f1:0e:d2:2b:85:41:7a:01:91:24:fa:ea:29:43:
14:34:dd:c6:72:6c:5d:e9:6e:ff:f7:1c:eb:c6:a6:
7f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:10:84:94:D2:0D:3F:F4:A7:B9:17:3B:28:6D:E6:0A:9F:7C:92:C2
X509v3 Authority Key Identifier:
keyid:C8:D5:E3:71:78:D8:52:4C:72:66:0A:1D:79:61:65:99:9E:58:66:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yNXjcXjYUkxyZgodeWFlmZ5YZiI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/b54ca3-73d5-4984-8782-9e0aed2fb8ec/1/kBCElNINP_SnuRc7KG3mCp98ksI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/b54ca3-73d5-4984-8782-9e0aed2fb8ec/1/yNXjcXjYUkxyZgodeWFlmZ5YZiI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.60.0/22
Signature Algorithm: sha256WithRSAEncryption
12:f5:77:48:f6:59:d5:4c:89:fd:c7:e4:f7:fe:b1:17:a1:10:
a0:1c:36:c8:a9:da:19:bb:8b:6a:01:a5:08:71:58:92:88:f6:
3c:7a:ff:18:ba:da:34:1e:a2:9a:7d:57:88:62:3b:0e:24:8e:
56:03:39:cd:47:36:ce:f5:85:4e:6e:8d:90:38:73:72:ed:0d:
57:80:5c:bb:22:93:72:f6:2a:c6:f3:c0:55:8f:93:e9:2b:23:
ed:cb:16:29:d0:d3:13:05:d5:cb:f0:3a:4a:5c:8c:00:95:69:
e9:c1:86:9b:53:67:74:4e:c4:c3:7c:c5:e5:3d:f2:60:8d:a9:
69:61:95:35:64:4a:40:80:38:38:94:d8:02:d6:94:5f:d7:54:
03:88:02:a3:9e:12:4d:9e:aa:8a:7c:08:c9:73:44:0b:86:6e:
e8:c8:5e:bf:ee:9c:d0:7a:ff:8c:80:65:c3:89:d3:cf:e2:ad:
11:3c:e7:84:c3:88:c9:45:ca:54:63:f3:b5:db:0d:7f:a3:f8:
cf:42:e9:de:6a:17:10:ce:73:70:51:72:bc:cf:c9:64:b9:b9:
73:16:78:89:ef:f4:d1:9a:8e:fb:f2:ec:14:e2:26:34:39:86:
f8:19:04:51:f5:ce:d1:26:7c:9c:91:35:cf:c9:3b:be:a6:c8:
e5:77:a4:c8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVw8Le7b/igcSA4VVUm4NbSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM4ZDVlMzcxNzhkODUyNGM3MjY2MGExZDc5NjE2NTk5OWU1
ODY2MjIwHhcNMjMwMTAyMDUyNTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MDEwODQ5NGQyMGQzZmY0YTdiOTE3M2IyODZkZTYwYTlmN2M5MmMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoG4Zx9MHy97e0iFa0JH5TiYKN6ZF
KCm98z5MIDK5zTah7aF4744Y0u5K95PxHBzXO1An04RMFLMxUD9ZR++/GNYwi310
xtIKp/2Twx2/dVnFf1j5/ppZvMOMYrryQC0Mb8jrzcRDdBjhVkLcx7zw3a7y0Cs6
kGor4S/zl9VW09ma0E3y8rDXXo6pGjjeOlG+D7ehyNc/j4t+qreZyg3M9XxZP/4u
Fzl55Wck23kg9lXuc3cdS9QGH4uPkRrd/NF+XO7vjlCNIOYgxpQWELeVBCCsd79y
tbwImdiGIzSXShAc8Q7SK4VBegGRJPrqKUMUNN3Gcmxd6W7/9xzrxqZ/7QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJAQhJTSDT/0p7kXOyht5gqffJLCMB8GA1UdIwQY
MBaAFMjV43F42FJMcmYKHXlhZZmeWGYiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveU5YamNYallVa3h5WmdvZGVXRmxtWjVZWmlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS9iNTRjYTMtNzNkNS00OTg0LTg3ODIt
OWUwYWVkMmZiOGVjLzEva0JDRWxOSU5QX1NudVJjN0tHM21DcDk4a3NJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZS9iNTRjYTMtNzNkNS00OTg0LTg3ODItOWUwYWVkMmZiOGVj
LzEveU5YamNYallVa3h5WmdvZGVXRmxtWjVZWmlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLYg8MA0G
CSqGSIb3DQEBCwUAA4IBAQAS9XdI9lnVTIn9x+T3/rEXoRCgHDbIqdoZu4tqAaUI
cViSiPY8ev8Yuto0HqKafVeIYjsOJI5WAznNRzbO9YVObo2QOHNy7Q1XgFy7IpNy
9irG88BVj5PpKyPtyxYp0NMTBdXL8DpKXIwAlWnpwYabU2d0TsTDfMXlPfJgjalp
YZU1ZEpAgDg4lNgC1pRf11QDiAKjnhJNnqqKfAjJc0QLhm7oyF6/7pzQev+MgGXD
idPP4q0RPOeEw4jJRcpUY/O12w1/o/jPQuneahcQznNwUXK8z8lkublzFniJ7/TR
mo778uwU4iY0OYb4GQRR9c7RJnyckTXPyTu+psjld6TI
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:31 2024 by rpki-client on console-fra.rpki-client.org