Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/ieDOFwvkb4HTsEb09lriOZjSXmE.roa
File: ieDOFwvkb4HTsEb09lriOZjSXmE.roa (raw, json)
Hash identifier: DY8kun1AIMPQP63Gd/eDvZmLO4nzC2Ex0piVG83CWqg=
Subject key identifier: 89:E0:CE:17:0B:E4:6F:81:D3:B0:46:F4:F6:5A:E2:39:98:D2:5E:61
Certificate issuer: /CN=cec5afe769b94346e1cd362eb85f875b23b17277
Certificate serial: 018C132E2AC6D3980ADA5F5BF19A75B83200
Authority key identifier: CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/ieDOFwvkb4HTsEb09lriOZjSXmE.roa
Signing time: Mon 27 Nov 2023 23:47:21 +0000
ROA not before: Mon 27 Nov 2023 23:47:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 32167
IP address blocks: 45.145.153.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:13:2e:2a:c6:d3:98:0a:da:5f:5b:f1:9a:75:b8:32:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cec5afe769b94346e1cd362eb85f875b23b17277
Validity
Not Before: Nov 27 23:47:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=89e0ce170be46f81d3b046f4f65ae23998d25e61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:20:f6:3a:7a:63:1b:2a:ea:0a:86:84:d2:0f:
59:4f:db:e8:6e:dc:8c:a4:e7:4d:5e:05:36:7f:11:
2d:b0:1b:c3:4d:48:72:0a:6c:ac:d5:e9:56:23:9b:
57:54:a8:9b:72:a8:9d:26:3b:49:75:69:b2:77:75:
d7:4e:5f:ac:a7:5d:d7:10:9b:7b:e9:db:27:b1:26:
b5:f5:92:4a:e1:7e:24:56:c6:44:58:c0:60:21:e0:
01:61:20:9f:b4:80:61:68:a0:a2:01:40:04:a4:b1:
f7:e7:84:5c:16:d5:13:b8:89:01:83:8a:c4:b6:38:
9f:90:fe:df:30:98:83:db:36:13:5f:2c:1a:c2:6d:
b5:c7:3c:7c:9f:d0:41:0d:6d:f5:93:ae:cd:df:bf:
fc:22:25:06:30:d5:03:2e:88:77:37:ed:f8:b6:51:
87:b9:63:c0:95:e7:b3:2c:58:a2:ff:5d:ca:1f:9c:
f3:ea:ef:3f:dd:b1:09:97:67:b1:a7:f3:64:9d:b7:
87:42:11:9b:cd:a1:62:bd:7a:1b:ae:1e:67:a5:c3:
b2:44:db:dd:26:96:61:17:98:08:09:31:a5:f9:28:
18:b6:a7:b6:fc:48:0c:b4:aa:a3:d6:26:75:fe:d4:
2f:8e:27:24:63:e5:48:7f:dd:41:d1:65:ce:dd:d5:
91:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:E0:CE:17:0B:E4:6F:81:D3:B0:46:F4:F6:5A:E2:39:98:D2:5E:61
X509v3 Authority Key Identifier:
keyid:CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/ieDOFwvkb4HTsEb09lriOZjSXmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/zsWv52m5Q0bhzTYuuF-HWyOxcnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.153.0/24
Signature Algorithm: sha256WithRSAEncryption
22:51:d2:14:75:d4:74:b8:37:ed:b4:31:ea:01:d5:3f:36:82:
aa:2e:f1:cf:a1:31:23:54:ab:62:1b:c8:c7:dd:64:c0:89:24:
c9:2f:52:8b:ab:16:30:eb:fd:36:6a:35:35:33:7c:76:c7:30:
d5:66:84:df:5e:d6:7a:72:08:bb:51:bd:07:6c:68:0c:d0:22:
77:ea:89:b7:9a:ed:35:8b:45:b7:f2:06:52:24:8e:2e:3a:27:
d3:ea:10:18:a4:20:32:9b:88:b3:12:24:13:45:fb:bd:11:fc:
24:56:4c:cd:c9:3b:3f:9c:a7:4c:a5:5f:f5:d5:3c:0a:4f:54:
18:ca:f6:98:01:05:ad:aa:1e:11:e4:5c:ef:76:73:c2:35:5f:
b0:cd:6b:a9:32:51:d5:96:4c:85:28:0f:a1:6c:9d:e7:ef:5c:
4a:25:f5:6a:68:08:c8:44:7b:d2:a4:6e:0a:7c:70:1a:de:16:
19:be:99:a6:a3:62:61:5c:fe:e9:71:be:5c:86:6b:11:22:d7:
21:80:4a:09:f6:88:23:9e:a0:ee:40:24:e9:09:bf:b1:78:fc:
c9:4f:6e:e6:ea:98:d1:04:40:87:02:94:2c:e7:04:b6:49:b4:
4e:73:8d:fc:1c:29:3b:98:a7:06:3f:a1:2a:cc:c2:36:3b:95:
a6:0a:c3:c5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYwTLirG05gK2l9b8Zp1uDIAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNlYzVhZmU3NjliOTQzNDZlMWNkMzYyZWI4NWY4NzViMjNi
MTcyNzcwHhcNMjMxMTI3MjM0NzIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OWUwY2UxNzBiZTQ2ZjgxZDNiMDQ2ZjRmNjVhZTIzOTk4ZDI1ZTYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkiD2OnpjGyrqCoaE0g9ZT9vobtyM
pOdNXgU2fxEtsBvDTUhyCmys1elWI5tXVKibcqidJjtJdWmyd3XXTl+sp13XEJt7
6dsnsSa19ZJK4X4kVsZEWMBgIeABYSCftIBhaKCiAUAEpLH354RcFtUTuIkBg4rE
tjifkP7fMJiD2zYTXywawm21xzx8n9BBDW31k67N37/8IiUGMNUDLoh3N+34tlGH
uWPAleezLFii/13KH5zz6u8/3bEJl2exp/NknbeHQhGbzaFivXobrh5npcOyRNvd
JpZhF5gICTGl+SgYtqe2/EgMtKqj1iZ1/tQvjickY+VIf91B0WXO3dWRhQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIngzhcL5G+B07BG9PZa4jmY0l5hMB8GA1UdIwQY
MBaAFM7Fr+dpuUNG4c02Lrhfh1sjsXJ3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvenNXdjUybTVRMGJoelRZdXVGLUhXeU94Y25jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi8zZDU2OWMtMTkwNy00ZDJjLWFjZWQt
MzMyNDdjOGUxYzFmLzEvaWVET0Z3dmtiNEhUc0ViMDlscmlPWmpTWG1FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi8zZDU2OWMtMTkwNy00ZDJjLWFjZWQtMzMyNDdjOGUxYzFm
LzEvenNXdjUybTVRMGJoelRZdXVGLUhXeU94Y25jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZGZMA0G
CSqGSIb3DQEBCwUAA4IBAQAiUdIUddR0uDfttDHqAdU/NoKqLvHPoTEjVKtiG8jH
3WTAiSTJL1KLqxYw6/02ajU1M3x2xzDVZoTfXtZ6cgi7Ub0HbGgM0CJ36om3mu01
i0W38gZSJI4uOifT6hAYpCAym4izEiQTRfu9EfwkVkzNyTs/nKdMpV/11TwKT1QY
yvaYAQWtqh4R5FzvdnPCNV+wzWupMlHVlkyFKA+hbJ3n71xKJfVqaAjIRHvSpG4K
fHAa3hYZvpmmo2JhXP7pcb5chmsRItchgEoJ9ogjnqDuQCTpCb+xePzJT27m6pjR
BECHApQs5wS2SbROc438HCk7mKcGP6EqzMI2O5WmCsPF
-----END CERTIFICATE-----
Generated at Thu Dec 28 01:03:05 2023 by rpki-client on console-fra.rpki-client.org