Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/f2cd5e-fd1c-4b47-aa65-5e861165884c/1/EIdkP2ELEh68ZGY-ibor5wYSHps.roa
File: EIdkP2ELEh68ZGY-ibor5wYSHps.roa (raw, json)
Hash identifier: 8LSGgv21tsl81qV5kPPbykAGx3UmFQhTQPu0/i/kcfQ=
Subject key identifier: 10:87:64:3F:61:0B:12:1E:BC:64:66:3E:89:BA:2B:E7:06:12:1E:9B
Certificate issuer: /CN=bc98da09f0a45a408f5b7f1bae6d91e3333d5732
Certificate serial: 01856E78DE9B128729611D5B364D348AE1D7
Authority key identifier: BC:98:DA:09:F0:A4:5A:40:8F:5B:7F:1B:AE:6D:91:E3:33:3D:57:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vJjaCfCkWkCPW38brm2R4zM9VzI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/f2cd5e-fd1c-4b47-aa65-5e861165884c/1/EIdkP2ELEh68ZGY-ibor5wYSHps.roa
Signing time: Sun 01 Jan 2023 17:54:53 +0000
ROA not before: Sun 01 Jan 2023 17:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 45.133.76.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Jan 2023 07:50:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:78:de:9b:12:87:29:61:1d:5b:36:4d:34:8a:e1:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc98da09f0a45a408f5b7f1bae6d91e3333d5732
Validity
Not Before: Jan 1 17:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1087643f610b121ebc64663e89ba2be706121e9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f5:85:cd:9d:a9:3e:24:18:eb:e5:78:83:46:
5c:ab:34:51:59:18:cf:1c:f3:7b:95:36:73:72:f4:
c9:88:3e:0e:a0:f4:05:81:1a:0d:65:f1:3e:db:13:
da:82:e2:6b:9e:84:18:fa:fa:25:b0:4e:fd:d5:53:
01:15:12:0a:70:23:88:f8:73:53:1c:4f:ca:f4:a1:
aa:77:db:1c:c3:98:c9:04:2b:46:ac:62:70:6c:23:
70:31:e4:10:62:5b:a7:51:da:a8:68:f9:8d:0a:6c:
a6:72:39:9e:79:5a:d3:bb:10:dd:fa:ec:1e:12:fc:
48:d7:0b:75:dc:a1:88:a9:83:cc:db:91:6f:36:e4:
60:c3:ec:ee:75:57:75:06:83:b4:a7:c2:34:19:0f:
0c:e9:ad:80:db:84:65:73:be:01:5f:09:c1:1f:48:
81:21:9b:f4:fe:8b:36:e5:03:39:1c:61:37:18:21:
34:15:8c:a5:87:d1:1a:b8:ec:ff:32:2f:ef:48:e9:
e5:5e:9b:f5:09:b4:a2:ad:8f:b1:cd:28:13:0f:b9:
b8:0d:e2:7f:0f:62:65:27:52:61:25:19:97:10:b8:
19:1d:66:f7:de:3e:7a:f5:83:a4:1e:b5:6d:f7:65:
a6:5a:e5:a6:0a:71:88:6d:a8:1b:a1:67:e3:29:fa:
d8:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:87:64:3F:61:0B:12:1E:BC:64:66:3E:89:BA:2B:E7:06:12:1E:9B
X509v3 Authority Key Identifier:
keyid:BC:98:DA:09:F0:A4:5A:40:8F:5B:7F:1B:AE:6D:91:E3:33:3D:57:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vJjaCfCkWkCPW38brm2R4zM9VzI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/f2cd5e-fd1c-4b47-aa65-5e861165884c/1/EIdkP2ELEh68ZGY-ibor5wYSHps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/f2cd5e-fd1c-4b47-aa65-5e861165884c/1/vJjaCfCkWkCPW38brm2R4zM9VzI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.76.0/22
Signature Algorithm: sha256WithRSAEncryption
b2:84:83:b6:6b:ac:c3:34:a1:ba:98:22:7b:bf:87:ad:06:f6:
f7:5f:9a:8a:e3:8f:40:ec:db:04:13:02:04:9e:ff:13:37:92:
20:44:06:ee:a1:72:9d:f0:53:4c:01:e5:16:8b:ca:e7:cc:88:
d2:ad:6e:3e:3a:8a:4c:17:75:35:fa:eb:9d:81:31:15:ed:0a:
18:a1:a4:7e:57:8d:6a:25:24:dd:f7:50:75:58:41:93:88:9b:
ca:14:ba:23:40:38:a4:48:6e:fa:41:25:f3:79:10:31:2c:b3:
de:f9:a4:89:ea:13:ba:03:5a:f0:91:21:43:e3:53:f1:36:42:
f1:a8:fc:4f:ec:46:67:6e:b2:64:56:3f:4a:cf:21:90:a3:00:
d7:2d:69:44:b0:bd:5c:af:6f:0a:46:41:c6:68:99:89:c1:b2:
1f:54:30:35:9b:6f:c6:0a:a0:c0:38:92:c4:d6:a9:50:db:7e:
b1:24:fc:62:d0:b2:fc:56:8e:dc:5c:78:ba:bb:12:dc:75:80:
2b:fd:80:68:05:9c:44:4b:46:a1:8a:d0:27:2f:ab:66:c7:0d:
46:68:0b:33:95:37:f0:f5:00:1c:d1:07:4b:9a:87:e2:fa:0d:
41:e9:84:e9:5e:43:8c:13:c6:af:2e:a9:30:00:56:aa:17:d5:
d5:4c:82:b4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVueN6bEocpYR1bNk00iuHXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJjOThkYTA5ZjBhNDVhNDA4ZjViN2YxYmFlNmQ5MWUzMzMz
ZDU3MzIwHhcNMjMwMTAxMTc1NDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMDg3NjQzZjYxMGIxMjFlYmM2NDY2M2U4OWJhMmJlNzA2MTIxZTliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn/WFzZ2pPiQY6+V4g0ZcqzRRWRjP
HPN7lTZzcvTJiD4OoPQFgRoNZfE+2xPaguJrnoQY+volsE791VMBFRIKcCOI+HNT
HE/K9KGqd9scw5jJBCtGrGJwbCNwMeQQYlunUdqoaPmNCmymcjmeeVrTuxDd+uwe
EvxI1wt13KGIqYPM25FvNuRgw+zudVd1BoO0p8I0GQ8M6a2A24Rlc74BXwnBH0iB
IZv0/os25QM5HGE3GCE0FYylh9EauOz/Mi/vSOnlXpv1CbSirY+xzSgTD7m4DeJ/
D2JlJ1JhJRmXELgZHWb33j569YOkHrVt92WmWuWmCnGIbagboWfjKfrYTQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBCHZD9hCxIevGRmPom6K+cGEh6bMB8GA1UdIwQY
MBaAFLyY2gnwpFpAj1t/G65tkeMzPVcyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdkpqYUNmQ2tXa0NQVzM4YnJtMlI0ek05VnpJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS9mMmNkNWUtZmQxYy00YjQ3LWFhNjUt
NWU4NjExNjU4ODRjLzEvRUlka1AyRUxFaDY4WkdZLWlib3I1d1lTSHBzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NS9mMmNkNWUtZmQxYy00YjQ3LWFhNjUtNWU4NjExNjU4ODRj
LzEvdkpqYUNmQ2tXa0NQVzM4YnJtMlI0ek05VnpJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLYVMMA0G
CSqGSIb3DQEBCwUAA4IBAQCyhIO2a6zDNKG6mCJ7v4etBvb3X5qK449A7NsEEwIE
nv8TN5IgRAbuoXKd8FNMAeUWi8rnzIjSrW4+OopMF3U1+uudgTEV7QoYoaR+V41q
JSTd91B1WEGTiJvKFLojQDikSG76QSXzeRAxLLPe+aSJ6hO6A1rwkSFD41PxNkLx
qPxP7EZnbrJkVj9KzyGQowDXLWlEsL1cr28KRkHGaJmJwbIfVDA1m2/GCqDAOJLE
1qlQ236xJPxi0LL8Vo7cXHi6uxLcdYAr/YBoBZxES0ahitAnL6tmxw1GaAszlTfw
9QAc0QdLmofi+g1B6YTpXkOME8avLqkwAFaqF9XVTIK0
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:27 2024 by rpki-client on console-ams.rpki-client.org