Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/SW_M0nOuSWQvY1ZTHNKrydaon3I.roa
File: SW_M0nOuSWQvY1ZTHNKrydaon3I.roa (raw, json)
Hash identifier: gsrSVOft+1BnKQ+VTWWebxl7ZYReE7kk3LhU/nudJdQ=
Subject key identifier: 49:6F:CC:D2:73:AE:49:64:2F:63:56:53:1C:D2:AB:C9:D6:A8:9F:72
Certificate issuer: /CN=cec5afe769b94346e1cd362eb85f875b23b17277
Certificate serial: 0189B32E824D3B69623CB9D3F861B4665360
Authority key identifier: CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/SW_M0nOuSWQvY1ZTHNKrydaon3I.roa
Signing time: Tue 01 Aug 2023 22:18:36 +0000
ROA not before: Tue 01 Aug 2023 22:18:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.145.152.0/24 maxlen: 24
45.145.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Aug 2023 22:38:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b3:2e:82:4d:3b:69:62:3c:b9:d3:f8:61:b4:66:53:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cec5afe769b94346e1cd362eb85f875b23b17277
Validity
Not Before: Aug 1 22:18:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=496fccd273ae49642f6356531cd2abc9d6a89f72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:97:5c:ec:74:fd:95:31:c3:67:80:9b:de:c2:
a7:a6:e9:f0:75:72:be:5e:5f:79:94:08:89:57:b5:
fc:19:79:f7:b0:f8:2e:17:18:fb:a9:78:86:23:51:
1d:fd:c4:c2:d4:74:93:ed:a1:b4:d2:b3:46:4c:6e:
e5:94:d8:2d:76:ed:c7:44:e0:9b:98:fb:4b:5d:87:
80:8f:29:d0:70:d9:82:7e:f4:88:9a:e4:d1:de:14:
15:58:a6:41:17:a9:25:b6:14:90:b0:62:85:e3:79:
d5:0a:cd:66:ed:b9:90:79:80:39:60:e1:68:10:e4:
c1:02:fc:2c:39:ff:a8:bc:2d:cd:0f:22:a2:60:96:
e4:33:ef:f9:b5:88:5a:a0:37:ca:40:77:ff:e4:78:
5d:92:cb:88:98:da:d8:c7:44:21:b5:0c:5c:c1:6d:
fe:a8:0e:5c:61:7e:f1:65:aa:40:9b:c6:fc:4c:6c:
c5:fc:bc:38:3c:4b:4a:5e:a2:d5:11:22:8a:2f:0d:
2f:81:93:ce:00:8a:ce:5b:d0:da:6a:cc:ac:9d:65:
89:7d:0c:a5:59:2b:af:e4:e7:a3:e7:c9:15:c7:a6:
b7:2b:4b:23:52:5e:4d:06:5a:52:02:35:57:5e:5e:
38:48:ab:04:58:78:70:cf:25:c6:5a:4e:b8:39:dc:
68:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:6F:CC:D2:73:AE:49:64:2F:63:56:53:1C:D2:AB:C9:D6:A8:9F:72
X509v3 Authority Key Identifier:
keyid:CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/SW_M0nOuSWQvY1ZTHNKrydaon3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/zsWv52m5Q0bhzTYuuF-HWyOxcnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.152.0/23
Signature Algorithm: sha256WithRSAEncryption
65:45:ad:cb:cf:29:3d:53:cb:e1:10:c6:45:bc:f3:b9:91:65:
39:d5:d0:ab:cb:b3:00:67:ef:92:fa:ea:34:82:75:e1:d4:5b:
8e:fd:e0:10:e4:45:d6:b9:8b:00:87:41:87:4a:9a:05:0e:d1:
4f:18:d8:21:87:8b:3d:ba:18:38:cd:3a:d7:b5:f2:ee:4e:89:
32:94:20:f5:f9:2b:04:09:e7:00:5c:7b:6f:2b:d6:13:50:87:
a5:59:4d:d3:1d:57:da:2d:01:4c:f3:1d:74:2f:10:93:26:59:
8f:3a:51:44:6a:89:fe:6a:43:eb:7a:7d:95:67:a5:5c:06:54:
14:25:95:28:e5:81:63:99:85:4a:9a:70:4c:08:7b:d2:ec:70:
d6:d8:04:84:6f:dd:43:1b:ae:a7:5e:63:66:29:31:ff:6a:99:
3d:64:8a:10:11:8f:2b:90:c1:e5:6c:0d:bf:a1:b2:b4:17:a9:
40:44:4d:e6:ec:bc:3f:56:d2:fe:77:f6:d3:6d:13:a5:1d:a6:
dc:dd:1a:a3:e3:7a:08:18:34:d2:69:5b:98:2f:05:97:84:72:
a9:61:b7:a1:d6:df:80:65:dd:aa:29:2e:3d:08:bb:90:b2:ab:
6f:fa:c1:1f:cc:c4:75:8e:ea:0e:4e:ae:8b:d9:a1:4e:62:4a:
cf:38:51:2d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYmzLoJNO2liPLnT+GG0ZlNgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNlYzVhZmU3NjliOTQzNDZlMWNkMzYyZWI4NWY4NzViMjNi
MTcyNzcwHhcNMjMwODAxMjIxODM2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OTZmY2NkMjczYWU0OTY0MmY2MzU2NTMxY2QyYWJjOWQ2YTg5ZjcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj5dc7HT9lTHDZ4Cb3sKnpunwdXK+
Xl95lAiJV7X8GXn3sPguFxj7qXiGI1Ed/cTC1HST7aG00rNGTG7llNgtdu3HROCb
mPtLXYeAjynQcNmCfvSImuTR3hQVWKZBF6klthSQsGKF43nVCs1m7bmQeYA5YOFo
EOTBAvwsOf+ovC3NDyKiYJbkM+/5tYhaoDfKQHf/5HhdksuImNrYx0QhtQxcwW3+
qA5cYX7xZapAm8b8TGzF/Lw4PEtKXqLVESKKLw0vgZPOAIrOW9DaasysnWWJfQyl
WSuv5Oej58kVx6a3K0sjUl5NBlpSAjVXXl44SKsEWHhwzyXGWk64OdxoawIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFElvzNJzrklkL2NWUxzSq8nWqJ9yMB8GA1UdIwQY
MBaAFM7Fr+dpuUNG4c02Lrhfh1sjsXJ3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvenNXdjUybTVRMGJoelRZdXVGLUhXeU94Y25jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi8zZDU2OWMtMTkwNy00ZDJjLWFjZWQt
MzMyNDdjOGUxYzFmLzEvU1dfTTBuT3VTV1F2WTFaVEhOS3J5ZGFvbjNJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi8zZDU2OWMtMTkwNy00ZDJjLWFjZWQtMzMyNDdjOGUxYzFm
LzEvenNXdjUybTVRMGJoelRZdXVGLUhXeU94Y25jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLZGYMA0G
CSqGSIb3DQEBCwUAA4IBAQBlRa3Lzyk9U8vhEMZFvPO5kWU51dCry7MAZ++S+uo0
gnXh1FuO/eAQ5EXWuYsAh0GHSpoFDtFPGNghh4s9uhg4zTrXtfLuTokylCD1+SsE
CecAXHtvK9YTUIelWU3THVfaLQFM8x10LxCTJlmPOlFEaon+akPren2VZ6VcBlQU
JZUo5YFjmYVKmnBMCHvS7HDW2ASEb91DG66nXmNmKTH/apk9ZIoQEY8rkMHlbA2/
obK0F6lARE3m7Lw/VtL+d/bTbROlHabc3Rqj43oIGDTSaVuYLwWXhHKpYbeh1t+A
Zd2qKS49CLuQsqtv+sEfzMR1juoOTq6L2aFOYkrPOFEt
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:42 2024 by rpki-client on console-ams.rpki-client.org