Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/9ltFRvuwYQQessRrMWljctfmPfE.roa
File: 9ltFRvuwYQQessRrMWljctfmPfE.roa (raw, json)
Hash identifier: 0PlPHte3lzsI5YdWeJva//qmfIMNAI3cQBs0r83pnOg=
Subject key identifier: F6:5B:45:46:FB:B0:61:04:1E:B2:C4:6B:31:69:63:72:D7:E6:3D:F1
Certificate issuer: /CN=f7cb14a41f8d9e628dae88f4752822fc77dfec02
Certificate serial: 0185708CA33CA3F853A68264D7A4AE567F22
Authority key identifier: F7:CB:14:A4:1F:8D:9E:62:8D:AE:88:F4:75:28:22:FC:77:DF:EC:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/98sUpB-NnmKNroj0dSgi_Hff7AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/9ltFRvuwYQQessRrMWljctfmPfE.roa
Signing time: Mon 02 Jan 2023 03:35:42 +0000
ROA not before: Mon 02 Jan 2023 03:35:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34427
IP address blocks: 45.157.132.0/22 maxlen: 24
2a0f:4280::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:a3:3c:a3:f8:53:a6:82:64:d7:a4:ae:56:7f:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7cb14a41f8d9e628dae88f4752822fc77dfec02
Validity
Not Before: Jan 2 03:35:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f65b4546fbb061041eb2c46b31696372d7e63df1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:3c:cf:5c:ee:9d:e1:09:fb:77:00:5f:9f:00:
e0:ee:ce:d9:a8:00:ac:69:03:4c:64:ca:42:1f:3e:
46:66:3b:1a:55:ad:cb:40:9a:80:70:a2:0d:d9:3f:
94:71:9f:e3:a2:9e:00:20:7b:d2:2b:e4:10:5c:87:
82:2a:c3:79:ee:7f:4a:20:58:be:9c:6c:84:14:76:
94:45:bc:ed:3c:c3:aa:a2:ab:5a:89:74:1a:c9:6d:
a5:73:f4:91:42:13:e2:a5:46:69:7a:e0:0f:4d:cb:
67:de:2e:8e:22:59:f9:6e:68:a4:d8:bc:18:12:ac:
4a:4b:ba:b9:52:52:e9:67:2d:1d:f5:d8:0a:e1:19:
96:37:4c:20:7a:9c:f4:08:e8:3a:8c:f7:47:fd:f0:
e7:67:f6:e1:bd:eb:1c:4b:90:55:aa:b2:6d:26:49:
e4:1b:df:66:19:db:dd:d3:32:66:95:ec:4a:f7:7f:
46:a9:d6:e9:fb:6c:50:df:83:25:81:93:cf:03:11:
2e:0f:15:d2:84:f9:05:58:13:21:06:09:3a:21:e6:
ad:91:81:27:ce:6b:ee:f9:8f:43:4e:28:20:3f:96:
90:97:9c:8a:32:de:f2:ff:9d:41:3f:3e:6c:e6:dd:
c2:82:9c:c7:2d:40:c8:1e:14:73:21:16:24:50:8a:
16:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:5B:45:46:FB:B0:61:04:1E:B2:C4:6B:31:69:63:72:D7:E6:3D:F1
X509v3 Authority Key Identifier:
keyid:F7:CB:14:A4:1F:8D:9E:62:8D:AE:88:F4:75:28:22:FC:77:DF:EC:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/98sUpB-NnmKNroj0dSgi_Hff7AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/9ltFRvuwYQQessRrMWljctfmPfE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/98sUpB-NnmKNroj0dSgi_Hff7AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.132.0/22
IPv6:
2a0f:4280::/29
Signature Algorithm: sha256WithRSAEncryption
34:88:c8:f7:45:9e:da:99:f4:03:80:87:4a:e8:4f:46:0e:80:
7c:08:cb:e6:44:28:f0:63:8a:55:bb:bc:e3:00:33:ce:87:13:
d9:55:e5:fd:f6:60:26:ff:4c:87:2c:22:8c:02:2b:b4:cb:d3:
d7:3b:50:33:1b:b9:5c:3c:68:64:f1:2a:50:fb:b9:22:9d:58:
31:e2:b5:39:b9:b1:d0:b7:52:57:e3:70:32:d6:af:4f:9e:ad:
4b:f9:ce:3f:0c:c8:17:70:4e:65:cd:cc:79:a5:8d:a2:1d:6f:
13:b9:11:4e:e1:62:5c:f7:57:4f:90:66:8c:d9:84:8b:da:6e:
83:f8:bf:8c:b0:9b:f6:21:81:6f:24:c2:f0:08:6e:61:a3:13:
ad:a2:51:20:6b:da:bd:29:c5:18:ce:f0:86:07:65:36:dd:af:
e2:6e:65:24:c9:33:7a:cf:25:b3:bc:46:b8:de:d4:a9:e3:f0:
9f:93:c0:da:7a:1e:2b:b6:df:31:2c:db:37:db:0f:55:c1:8d:
ab:ac:dd:1e:2d:4c:73:56:00:76:96:f0:32:00:42:6a:63:e7:
db:b3:74:9c:51:b9:ae:6d:5d:b4:3e:3c:34:c3:64:3f:78:63:
29:3d:34:53:02:ef:9b:d7:7a:ef:fc:e0:d8:e2:4b:c4:2f:ea:
f7:fa:a6:b8
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVwjKM8o/hTpoJk16SuVn8iMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY3Y2IxNGE0MWY4ZDllNjI4ZGFlODhmNDc1MjgyMmZjNzdk
ZmVjMDIwHhcNMjMwMTAyMDMzNTQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNjViNDU0NmZiYjA2MTA0MWViMmM0NmIzMTY5NjM3MmQ3ZTYzZGYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjzzPXO6d4Qn7dwBfnwDg7s7ZqACs
aQNMZMpCHz5GZjsaVa3LQJqAcKIN2T+UcZ/jop4AIHvSK+QQXIeCKsN57n9KIFi+
nGyEFHaURbztPMOqoqtaiXQayW2lc/SRQhPipUZpeuAPTctn3i6OIln5bmik2LwY
EqxKS7q5UlLpZy0d9dgK4RmWN0wgepz0COg6jPdH/fDnZ/bhvescS5BVqrJtJknk
G99mGdvd0zJmlexK939Gqdbp+2xQ34MlgZPPAxEuDxXShPkFWBMhBgk6IeatkYEn
zmvu+Y9DTiggP5aQl5yKMt7y/51BPz5s5t3CgpzHLUDIHhRzIRYkUIoWeQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFPZbRUb7sGEEHrLEazFpY3LX5j3xMB8GA1UdIwQY
MBaAFPfLFKQfjZ5ija6I9HUoIvx33+wCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOThzVXBCLU5ubUtOcm9qMGRTZ2lfSGZmN0FJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC84OTAzMTEtNDhlZS00ODZkLTkzNTkt
ZTdlZTRlNzVkM2FmLzEvOWx0RlJ2dXdZUVFlc3NSck1XbGpjdGZtUGZFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OC84OTAzMTEtNDhlZS00ODZkLTkzNTktZTdlZTRlNzVkM2Fm
LzEvOThzVXBCLU5ubUtOcm9qMGRTZ2lfSGZmN0FJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCLZ2EMA0E
AgACMAcDBQMqD0KAMA0GCSqGSIb3DQEBCwUAA4IBAQA0iMj3RZ7amfQDgIdK6E9G
DoB8CMvmRCjwY4pVu7zjADPOhxPZVeX99mAm/0yHLCKMAiu0y9PXO1AzG7lcPGhk
8SpQ+7kinVgx4rU5ubHQt1JX43Ay1q9Pnq1L+c4/DMgXcE5lzcx5pY2iHW8TuRFO
4WJc91dPkGaM2YSL2m6D+L+MsJv2IYFvJMLwCG5hoxOtolEga9q9KcUYzvCGB2U2
3a/ibmUkyTN6zyWzvEa43tSp4/Cfk8Daeh4rtt8xLNs32w9VwY2rrN0eLUxzVgB2
lvAyAEJqY+fbs3ScUbmubV20Pjw0w2Q/eGMpPTRTAu+b13rv/ODY4kvEL+r3+qa4
-----END CERTIFICATE-----
Generated at Mon Jan 1 19:27:20 2024 by rpki-client on console-fra.rpki-client.org