Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/2d0e8f-cd8a-4d38-ac51-6f523f960073/1/lKwtcmUhXX1JHByG8sdQBHpXkCQ.roa
File: lKwtcmUhXX1JHByG8sdQBHpXkCQ.roa (raw, json)
Hash identifier: JADTN9+X/ujtlkqpU+bZPUVZjszSivHbrlx+CNgQhfE=
Subject key identifier: 94:AC:2D:72:65:21:5D:7D:49:1C:1C:86:F2:C7:50:04:7A:57:90:24
Certificate issuer: /CN=9f284111700492ab0be110e821a1bce73f80a565
Certificate serial: 01856F0243DC42A85D2414EAAD8E59B320E7
Authority key identifier: 9F:28:41:11:70:04:92:AB:0B:E1:10:E8:21:A1:BC:E7:3F:80:A5:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nyhBEXAEkqsL4RDoIaG85z-ApWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/2d0e8f-cd8a-4d38-ac51-6f523f960073/1/lKwtcmUhXX1JHByG8sdQBHpXkCQ.roa
Signing time: Sun 01 Jan 2023 20:24:57 +0000
ROA not before: Sun 01 Jan 2023 20:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212327
IP address blocks: 45.9.136.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:43:dc:42:a8:5d:24:14:ea:ad:8e:59:b3:20:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f284111700492ab0be110e821a1bce73f80a565
Validity
Not Before: Jan 1 20:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=94ac2d7265215d7d491c1c86f2c750047a579024
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:36:8e:84:68:50:b0:86:2e:e9:e4:15:6e:7c:
64:95:13:f1:de:d9:61:f5:e1:28:2e:77:d8:6b:42:
e9:fc:85:35:ff:52:97:51:78:f7:d6:ed:96:5d:17:
e3:f3:85:59:6a:c1:85:6a:c8:35:50:e1:b0:e7:f1:
6d:5c:af:64:34:11:dd:4c:3b:05:3e:51:4f:86:49:
c4:ff:94:1e:12:e8:95:bd:d5:de:04:20:1e:58:82:
f4:0b:62:4f:f0:c3:92:5e:a4:c5:10:89:11:f5:6b:
ab:21:73:25:5d:32:1d:24:5a:89:9a:8d:42:e2:eb:
ec:92:36:24:8c:24:ff:c5:6d:00:1c:07:5e:10:f1:
06:7a:8d:8b:13:64:ba:30:4f:83:f6:83:7e:b6:bc:
8b:49:6b:be:e2:7b:85:cd:3a:68:34:4b:96:63:3a:
be:a5:ef:bc:cb:b3:bb:be:8d:f3:e6:1b:49:6c:ec:
c6:cb:e2:fe:4a:09:64:0a:da:47:aa:f5:74:6b:36:
79:3d:af:f3:37:f1:da:77:3d:84:a0:7b:1a:7c:d4:
b3:0c:9d:d6:90:cf:63:91:49:c9:02:42:53:d0:67:
42:10:61:e5:ee:86:51:1f:d0:58:fc:46:64:4b:ea:
64:05:ef:c7:b9:e1:58:95:a9:f3:27:a3:91:38:d7:
d4:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:AC:2D:72:65:21:5D:7D:49:1C:1C:86:F2:C7:50:04:7A:57:90:24
X509v3 Authority Key Identifier:
keyid:9F:28:41:11:70:04:92:AB:0B:E1:10:E8:21:A1:BC:E7:3F:80:A5:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nyhBEXAEkqsL4RDoIaG85z-ApWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/2d0e8f-cd8a-4d38-ac51-6f523f960073/1/lKwtcmUhXX1JHByG8sdQBHpXkCQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/2d0e8f-cd8a-4d38-ac51-6f523f960073/1/nyhBEXAEkqsL4RDoIaG85z-ApWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.136.0/22
Signature Algorithm: sha256WithRSAEncryption
a9:c6:55:82:8e:5f:27:63:93:42:50:dd:39:90:c5:ac:d1:5f:
c3:3d:15:6c:f9:5d:7b:a7:f6:45:1d:2c:bf:44:99:52:62:fb:
6a:56:71:40:c7:45:1e:d8:30:57:90:40:e4:d9:50:42:01:6f:
e4:6d:b6:f4:bf:f3:cf:08:dd:ec:3a:83:62:d6:df:a0:11:eb:
3f:9b:43:35:b6:0c:23:64:a3:f0:64:c2:cc:db:8c:94:59:7f:
83:e2:2b:c2:4c:4b:bd:61:d1:aa:71:67:33:6f:ad:9c:55:27:
c0:c5:d6:d4:f3:cb:ef:7b:b6:07:1b:5b:30:07:28:a0:98:ee:
61:7a:e0:23:e8:76:83:e0:d3:d3:73:0e:01:6f:f9:9f:07:68:
17:a5:13:86:bf:83:14:ef:a3:c2:e4:cc:cf:2e:1f:32:23:27:
df:93:9d:cd:7d:6c:28:b5:b6:d8:5f:a1:0f:23:d7:f1:cd:0a:
cd:6c:75:f1:28:bb:c1:1e:6f:0e:39:5d:19:2f:2f:aa:55:32:
99:89:c3:73:3f:fa:15:5e:6b:30:c6:11:6f:ee:99:23:8e:83:
db:86:86:f2:4e:f0:e8:69:eb:bf:53:f8:d5:ab:6f:29:f9:b9:
76:63:ed:99:16:d6:0c:9b:48:31:f1:c4:b2:4d:20:57:68:4d:
7c:c7:66:08
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvAkPcQqhdJBTqrY5ZsyDnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlmMjg0MTExNzAwNDkyYWIwYmUxMTBlODIxYTFiY2U3M2Y4
MGE1NjUwHhcNMjMwMTAxMjAyNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NGFjMmQ3MjY1MjE1ZDdkNDkxYzFjODZmMmM3NTAwNDdhNTc5MDI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiTaOhGhQsIYu6eQVbnxklRPx3tlh
9eEoLnfYa0Lp/IU1/1KXUXj31u2WXRfj84VZasGFasg1UOGw5/FtXK9kNBHdTDsF
PlFPhknE/5QeEuiVvdXeBCAeWIL0C2JP8MOSXqTFEIkR9WurIXMlXTIdJFqJmo1C
4uvskjYkjCT/xW0AHAdeEPEGeo2LE2S6ME+D9oN+tryLSWu+4nuFzTpoNEuWYzq+
pe+8y7O7vo3z5htJbOzGy+L+SglkCtpHqvV0azZ5Pa/zN/Hadz2EoHsafNSzDJ3W
kM9jkUnJAkJT0GdCEGHl7oZRH9BY/EZkS+pkBe/HueFYlanzJ6ORONfUmQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJSsLXJlIV19SRwchvLHUAR6V5AkMB8GA1UdIwQY
MBaAFJ8oQRFwBJKrC+EQ6CGhvOc/gKVlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnloQkVYQUVrcXNMNFJEb0lhRzg1ei1BcFdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni8yZDBlOGYtY2Q4YS00ZDM4LWFjNTEt
NmY1MjNmOTYwMDczLzEvbEt3dGNtVWhYWDFKSEJ5RzhzZFFCSHBYa0NRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni8yZDBlOGYtY2Q4YS00ZDM4LWFjNTEtNmY1MjNmOTYwMDcz
LzEvbnloQkVYQUVrcXNMNFJEb0lhRzg1ei1BcFdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLQmIMA0G
CSqGSIb3DQEBCwUAA4IBAQCpxlWCjl8nY5NCUN05kMWs0V/DPRVs+V17p/ZFHSy/
RJlSYvtqVnFAx0Ue2DBXkEDk2VBCAW/kbbb0v/PPCN3sOoNi1t+gEes/m0M1tgwj
ZKPwZMLM24yUWX+D4ivCTEu9YdGqcWczb62cVSfAxdbU88vve7YHG1swByigmO5h
euAj6HaD4NPTcw4Bb/mfB2gXpROGv4MU76PC5MzPLh8yIyffk53NfWwotbbYX6EP
I9fxzQrNbHXxKLvBHm8OOV0ZLy+qVTKZicNzP/oVXmswxhFv7pkjjoPbhobyTvDo
aeu/U/jVq28p+bl2Y+2ZFtYMm0gx8cSyTSBXaE18x2YI
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:36 2024 by rpki-client on console-fra.rpki-client.org