Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/inNcz8w4s3UsmM89vYsNtSj1viw.roa
File: inNcz8w4s3UsmM89vYsNtSj1viw.roa (raw, json)
Hash identifier: ASCk/9Ll33tebPyhR90lCBxH66m3rFge9zhDuyNN1xo=
Subject key identifier: 8A:73:5C:CF:CC:38:B3:75:2C:98:CF:3D:BD:8B:0D:B5:28:F5:BE:2C
Certificate issuer: /CN=cec5afe769b94346e1cd362eb85f875b23b17277
Certificate serial: 018AFC803FD0A78885178265F94954FD528D
Authority key identifier: CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/inNcz8w4s3UsmM89vYsNtSj1viw.roa
Signing time: Wed 04 Oct 2023 21:02:57 +0000
ROA not before: Wed 04 Oct 2023 21:02:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.145.154.0/23 maxlen: 24
80.83.88.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 29 Oct 2023 16:53:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:fc:80:3f:d0:a7:88:85:17:82:65:f9:49:54:fd:52:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cec5afe769b94346e1cd362eb85f875b23b17277
Validity
Not Before: Oct 4 21:02:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a735ccfcc38b3752c98cf3dbd8b0db528f5be2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3a:55:7b:3a:91:f7:ee:77:65:18:25:0d:dc:
55:6d:5c:09:03:8d:ed:b3:11:8f:a2:44:62:70:11:
25:ad:9d:7d:b9:93:40:82:ba:94:af:d2:3a:ac:56:
87:9c:9a:47:a4:7a:76:e6:ed:97:b1:18:b2:28:55:
df:70:7a:da:e0:59:03:61:e5:60:1e:ce:d1:65:38:
c6:fc:99:1e:cd:3e:6c:0b:6f:3c:a8:fa:4e:ca:a1:
4e:8d:e7:a5:1b:07:ac:07:d7:0d:15:81:99:39:fd:
65:d7:0d:f0:50:11:a4:26:7b:38:ca:71:49:3d:67:
1d:b0:d5:8d:25:78:1d:f1:7c:d1:d2:d6:5d:a7:9b:
63:db:1c:7b:a1:d4:a9:71:21:5d:d9:7a:5d:cb:38:
fc:27:08:ff:df:99:53:c0:26:52:3b:bc:74:7e:13:
0b:4a:28:88:ce:1b:27:8a:9e:a3:7f:3e:75:53:37:
f7:ab:36:c0:38:9a:01:77:86:cd:bc:04:9c:5e:c0:
ee:0b:87:8d:ca:06:69:24:50:03:9f:3f:38:97:30:
26:88:e4:9f:f3:95:2c:6f:1f:89:99:cb:4f:9d:5e:
32:82:63:a5:43:97:7d:e3:f6:d1:1a:6c:3f:f6:79:
e3:90:1f:87:4f:ea:a1:06:fd:44:ea:d6:05:45:db:
56:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:73:5C:CF:CC:38:B3:75:2C:98:CF:3D:BD:8B:0D:B5:28:F5:BE:2C
X509v3 Authority Key Identifier:
keyid:CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/inNcz8w4s3UsmM89vYsNtSj1viw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/zsWv52m5Q0bhzTYuuF-HWyOxcnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.154.0/23
80.83.88.0/23
Signature Algorithm: sha256WithRSAEncryption
34:5a:e0:1e:15:d5:15:67:cb:c6:b8:12:a3:50:c9:1d:77:fc:
14:4e:93:4d:2f:7b:a2:e0:2f:5d:10:d6:57:d4:69:ec:2f:08:
79:15:e7:85:f3:da:34:e7:7b:fc:82:16:7c:9b:a3:20:15:6e:
77:9f:87:34:20:54:b6:c0:09:a3:d0:48:07:3f:6a:6f:29:1d:
75:a4:54:01:bc:c6:60:08:0e:0f:85:53:9d:f1:fd:6f:a4:9c:
a7:4a:6f:69:10:44:33:50:33:3f:50:53:88:4e:e1:77:6e:33:
cd:ab:43:73:1c:bc:e7:22:12:ff:40:50:9b:4a:4d:75:f5:88:
66:03:23:72:9f:a0:5f:4a:fc:6b:93:c1:4a:96:05:79:7a:7b:
76:2c:d3:76:6d:cd:b4:35:bc:2a:38:f2:d1:67:d8:9e:3a:32:
6e:3d:bc:70:67:2a:7f:ff:53:34:3a:6e:28:5b:fe:9a:a6:94:
50:42:6c:df:c6:1b:0c:77:ac:b2:a4:3c:b5:27:b1:c2:13:61:
92:09:39:2b:15:31:40:2e:9f:ef:dd:1a:31:23:70:7b:4f:0f:
44:df:d6:7e:1c:e6:a6:67:76:54:f5:7f:5d:26:d3:1d:ae:e8:
d2:3b:3b:a2:43:13:13:54:b2:54:ff:25:1f:87:54:c9:d1:52:
d8:e2:e1:c7
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYr8gD/Qp4iFF4Jl+UlU/VKNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNlYzVhZmU3NjliOTQzNDZlMWNkMzYyZWI4NWY4NzViMjNi
MTcyNzcwHhcNMjMxMDA0MjEwMjU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YTczNWNjZmNjMzhiMzc1MmM5OGNmM2RiZDhiMGRiNTI4ZjViZTJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqzpVezqR9+53ZRglDdxVbVwJA43t
sxGPokRicBElrZ19uZNAgrqUr9I6rFaHnJpHpHp25u2XsRiyKFXfcHra4FkDYeVg
Hs7RZTjG/JkezT5sC288qPpOyqFOjeelGwesB9cNFYGZOf1l1w3wUBGkJns4ynFJ
PWcdsNWNJXgd8XzR0tZdp5tj2xx7odSpcSFd2Xpdyzj8Jwj/35lTwCZSO7x0fhML
SiiIzhsnip6jfz51Uzf3qzbAOJoBd4bNvAScXsDuC4eNygZpJFADnz84lzAmiOSf
85Usbx+JmctPnV4ygmOlQ5d94/bRGmw/9nnjkB+HT+qhBv1E6tYFRdtW9wIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFIpzXM/MOLN1LJjPPb2LDbUo9b4sMB8GA1UdIwQY
MBaAFM7Fr+dpuUNG4c02Lrhfh1sjsXJ3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvenNXdjUybTVRMGJoelRZdXVGLUhXeU94Y25jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi8zZDU2OWMtMTkwNy00ZDJjLWFjZWQt
MzMyNDdjOGUxYzFmLzEvaW5OY3o4dzRzM1VzbU04OXZZc050U2oxdml3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi8zZDU2OWMtMTkwNy00ZDJjLWFjZWQtMzMyNDdjOGUxYzFm
LzEvenNXdjUybTVRMGJoelRZdXVGLUhXeU94Y25jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBLZGaAwQB
UFNYMA0GCSqGSIb3DQEBCwUAA4IBAQA0WuAeFdUVZ8vGuBKjUMkdd/wUTpNNL3ui
4C9dENZX1GnsLwh5FeeF89o053v8ghZ8m6MgFW53n4c0IFS2wAmj0EgHP2pvKR11
pFQBvMZgCA4PhVOd8f1vpJynSm9pEEQzUDM/UFOITuF3bjPNq0NzHLznIhL/QFCb
Sk119YhmAyNyn6BfSvxrk8FKlgV5ent2LNN2bc20NbwqOPLRZ9ieOjJuPbxwZyp/
/1M0Om4oW/6appRQQmzfxhsMd6yypDy1J7HCE2GSCTkrFTFALp/v3RoxI3B7Tw9E
39Z+HOamZ3ZU9X9dJtMdrujSOzuiQxMTVLJU/yUfh1TJ0VLY4uHH
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:42 2024 by rpki-client on console-ams.rpki-client.org