Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/SRZr1KtY5aRxfee-UwzeAngjPNE.roa
File: SRZr1KtY5aRxfee-UwzeAngjPNE.roa (raw, json)
Hash identifier: SsmTx4sMhftbtz9Yc+W7n7ImL/YiCeHbdYSTSIS2fNo=
Subject key identifier: 49:16:6B:D4:AB:58:E5:A4:71:7D:E7:BE:53:0C:DE:02:78:23:3C:D1
Certificate issuer: /CN=3718b734349bf327d9453b96501e44b192e55142
Certificate serial: 01856FC283816F29776A99DAEA65C9586AFA
Authority key identifier: 37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/SRZr1KtY5aRxfee-UwzeAngjPNE.roa
Signing time: Sun 01 Jan 2023 23:54:56 +0000
ROA not before: Sun 01 Jan 2023 23:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 45.132.25.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:32:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:83:81:6f:29:77:6a:99:da:ea:65:c9:58:6a:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3718b734349bf327d9453b96501e44b192e55142
Validity
Not Before: Jan 1 23:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=49166bd4ab58e5a4717de7be530cde0278233cd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a6:d0:05:f7:09:98:b8:ed:d7:74:bd:9e:42:
8b:d8:19:05:75:5e:05:7e:45:2b:e4:c7:41:b0:62:
97:27:cc:a7:53:eb:a5:b3:49:37:c3:2b:3e:aa:80:
d1:ab:24:1d:a3:8c:2f:11:f5:f4:6a:0b:53:da:5b:
d5:dd:1e:7b:88:89:c1:f0:20:d5:40:4f:65:01:1e:
a1:05:25:a7:4c:30:d8:1d:80:6e:fa:4f:6a:15:16:
51:65:dc:62:66:fd:e3:51:28:f5:47:12:e2:ae:b4:
fd:f9:6a:b5:31:c4:df:5d:16:dc:d8:ae:cd:df:ba:
6f:86:dc:bb:e5:ed:f1:63:a4:d4:24:75:71:0a:8c:
19:95:64:4d:5a:a5:f2:55:d9:f3:af:29:40:7a:6b:
d7:40:e0:db:6f:44:c0:45:db:26:5a:b7:4e:dd:8e:
09:5b:dc:d6:96:d8:4b:78:03:63:9c:db:ae:6b:d6:
8d:20:e8:ec:c5:65:64:48:9b:7f:be:02:1d:ba:32:
fa:fa:8d:6e:39:d6:d1:30:12:f2:43:43:b3:b5:51:
b2:4c:43:2a:53:d3:4a:20:1e:1e:4d:25:be:46:44:
6a:38:46:20:b4:08:02:54:fd:15:bb:b2:ba:6e:11:
5f:1a:f1:f6:87:69:a1:d8:f6:68:59:d0:9a:77:e6:
b1:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:16:6B:D4:AB:58:E5:A4:71:7D:E7:BE:53:0C:DE:02:78:23:3C:D1
X509v3 Authority Key Identifier:
keyid:37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/SRZr1KtY5aRxfee-UwzeAngjPNE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.25.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:d4:94:d4:dd:2d:5c:3a:c5:ea:ec:c8:83:d3:e2:91:29:8a:
05:06:d6:27:54:86:bd:c2:2c:ca:7b:c7:c7:9b:2a:12:3f:d2:
72:c9:39:5b:3f:72:d6:86:8a:e5:cd:56:6d:76:5a:4e:ea:e7:
8e:83:79:0b:37:7d:fc:15:3a:51:92:fe:45:7b:1c:ff:88:c2:
ab:29:4c:e9:a3:10:30:b0:f1:bc:31:ed:c3:34:db:ba:f9:c2:
37:db:cf:eb:9c:1c:ca:63:9e:fc:29:89:14:49:6e:03:5b:74:
1c:9f:ed:41:ec:a9:c4:d5:3c:5d:44:f6:f1:11:37:8d:72:38:
94:fa:3c:1a:d5:7e:24:d7:e3:f8:6a:2b:cb:c9:2a:8e:df:81:
70:6f:49:5d:3d:43:24:68:af:76:7f:9f:c6:57:0b:57:43:67:
87:cd:94:30:5d:f3:8e:31:7d:72:07:47:f5:08:0e:5c:ce:ce:
00:4d:07:f9:39:b7:5a:75:db:75:d3:c2:27:74:28:95:34:25:
f6:c5:28:05:20:a7:a9:bf:24:e2:a6:39:a1:ea:04:65:d3:c8:
5e:fa:64:c7:ff:43:78:af:dd:04:b9:76:ff:49:f6:91:fd:f4:
bc:e9:45:94:47:40:08:cd:ef:6b:24:c0:a2:08:45:65:d3:ec:
d3:32:19:69
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvwoOBbyl3apna6mXJWGr6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM3MThiNzM0MzQ5YmYzMjdkOTQ1M2I5NjUwMWU0NGIxOTJl
NTUxNDIwHhcNMjMwMTAxMjM1NDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OTE2NmJkNGFiNThlNWE0NzE3ZGU3YmU1MzBjZGUwMjc4MjMzY2QxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArabQBfcJmLjt13S9nkKL2BkFdV4F
fkUr5MdBsGKXJ8ynU+uls0k3wys+qoDRqyQdo4wvEfX0agtT2lvV3R57iInB8CDV
QE9lAR6hBSWnTDDYHYBu+k9qFRZRZdxiZv3jUSj1RxLirrT9+Wq1McTfXRbc2K7N
37pvhty75e3xY6TUJHVxCowZlWRNWqXyVdnzrylAemvXQODbb0TARdsmWrdO3Y4J
W9zWlthLeANjnNuua9aNIOjsxWVkSJt/vgIdujL6+o1uOdbRMBLyQ0OztVGyTEMq
U9NKIB4eTSW+RkRqOEYgtAgCVP0Vu7K6bhFfGvH2h2mh2PZoWdCad+axywIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEkWa9SrWOWkcX3nvlMM3gJ4IzzRMB8GA1UdIwQY
MBaAFDcYtzQ0m/Mn2UU7llAeRLGS5VFCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnhpM05EU2I4eWZaUlR1V1VCNUVzWkxsVVVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My83YmY4YTgtZTQ5Yy00MDZlLThlYjct
YzgyM2NjOGYzODM3LzEvU1JacjFLdFk1YVJ4ZmVlLVV3emVBbmdqUE5FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84My83YmY4YTgtZTQ5Yy00MDZlLThlYjctYzgyM2NjOGYzODM3
LzEvTnhpM05EU2I4eWZaUlR1V1VCNUVzWkxsVVVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYQZMA0G
CSqGSIb3DQEBCwUAA4IBAQBq1JTU3S1cOsXq7MiD0+KRKYoFBtYnVIa9wizKe8fH
myoSP9JyyTlbP3LWhorlzVZtdlpO6ueOg3kLN338FTpRkv5Fexz/iMKrKUzpoxAw
sPG8Me3DNNu6+cI328/rnBzKY578KYkUSW4DW3Qcn+1B7KnE1TxdRPbxETeNcjiU
+jwa1X4k1+P4aivLySqO34Fwb0ldPUMkaK92f5/GVwtXQ2eHzZQwXfOOMX1yB0f1
CA5czs4ATQf5Obdaddt108IndCiVNCX2xSgFIKepvyTipjmh6gRl08he+mTH/0N4
r90EuXb/SfaR/fS86UWUR0AIze9rJMCiCEVl0+zTMhlp
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:17 2024 by rpki-client on console-fra.rpki-client.org