Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/SRoXadRd9nvFfSnu_3TPHqdyWmU.roa
File: SRoXadRd9nvFfSnu_3TPHqdyWmU.roa (raw, json)
Hash identifier: 3cADriNn3KHqpd6civ1jwTl22O+o5Vju6r9OriL2yjM=
Subject key identifier: 49:1A:17:69:D4:5D:F6:7B:C5:7D:29:EE:FF:74:CF:1E:A7:72:5A:65
Certificate issuer: /CN=57130f799f8a8985502a2ea3356037674085cfca
Certificate serial: 0187051185FFAB47D9298E2BB5F4C35544DB
Authority key identifier: 57:13:0F:79:9F:8A:89:85:50:2A:2E:A3:35:60:37:67:40:85:CF:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VxMPeZ-KiYVQKi6jNWA3Z0CFz8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/SRoXadRd9nvFfSnu_3TPHqdyWmU.roa
Signing time: Tue 21 Mar 2023 16:47:27 +0000
ROA not before: Tue 21 Mar 2023 16:47:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56913
IP address blocks: 45.149.36.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 23 Apr 2023 17:36:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:05:11:85:ff:ab:47:d9:29:8e:2b:b5:f4:c3:55:44:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57130f799f8a8985502a2ea3356037674085cfca
Validity
Not Before: Mar 21 16:47:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=491a1769d45df67bc57d29eeff74cf1ea7725a65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5d:68:b8:ba:ed:ff:f1:63:19:24:e6:78:68:
ee:58:8f:f3:3c:ed:3f:c8:dd:39:20:48:f1:f8:00:
8e:25:5e:4c:62:f0:25:76:a9:c1:c4:fd:01:d9:60:
43:c8:05:15:57:5b:97:33:f5:2d:b8:dc:b5:6a:8b:
5c:ea:2b:4d:6e:6c:36:4c:bc:bd:42:65:6a:44:82:
cc:c0:a1:5e:09:4d:1e:57:10:93:73:ef:1b:17:42:
63:91:c0:71:6e:36:0f:06:70:b9:58:f4:25:0b:4a:
ca:f8:45:37:1f:97:6b:de:f5:f6:13:f7:6b:54:4a:
0c:f9:27:c2:ae:97:62:36:89:ba:7b:37:f9:e7:cd:
f5:a3:86:1a:94:73:00:b6:df:d9:9a:dc:7f:b2:d9:
b8:75:78:23:d1:74:9d:cf:14:2c:58:dd:d8:2f:cb:
28:28:94:0b:ee:16:05:4b:09:a0:88:3a:db:d2:7c:
0a:87:d5:2e:19:46:25:a8:c8:89:0f:cf:5b:b1:41:
ba:ff:35:06:da:89:4e:1f:59:3f:b9:fb:e7:ba:b0:
39:fa:f5:82:80:3b:7e:f5:a3:ce:f9:00:92:9d:eb:
b7:1a:57:15:b7:18:6c:a2:08:38:cc:94:ed:dd:94:
51:a9:13:9e:37:5d:6f:d7:a0:a2:6c:e8:84:47:c5:
fb:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:1A:17:69:D4:5D:F6:7B:C5:7D:29:EE:FF:74:CF:1E:A7:72:5A:65
X509v3 Authority Key Identifier:
keyid:57:13:0F:79:9F:8A:89:85:50:2A:2E:A3:35:60:37:67:40:85:CF:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VxMPeZ-KiYVQKi6jNWA3Z0CFz8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/SRoXadRd9nvFfSnu_3TPHqdyWmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/VxMPeZ-KiYVQKi6jNWA3Z0CFz8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.36.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:94:b1:8b:bb:52:7b:f9:b7:ab:89:87:52:7a:8f:b2:57:76:
9b:35:ba:2e:d5:d6:21:23:84:6c:1e:5a:12:d7:ff:ce:41:69:
52:e3:1c:21:67:7b:dc:6d:04:63:11:81:30:fe:9e:33:f8:f3:
8c:86:bf:9b:e6:e8:69:3e:62:87:63:1e:cd:b2:4f:bb:94:92:
8f:97:29:34:47:0a:de:d2:13:3e:25:fd:68:56:8f:32:12:52:
bd:96:77:17:96:96:cb:0b:9f:c7:bf:b4:27:64:df:15:f8:eb:
df:ff:c2:09:53:dd:1d:7c:be:bf:26:c0:67:b0:a5:12:04:8f:
b1:ee:c0:d9:16:af:93:b1:53:af:99:5d:6f:70:52:8a:b5:ab:
19:61:78:8f:f9:13:75:1d:10:07:bf:34:95:63:c9:f8:a9:fa:
33:e9:59:3f:d5:13:0e:fc:9b:c0:d8:6d:f7:97:6d:63:3c:69:
ab:ac:2b:b0:84:69:ce:b3:fc:cb:55:45:d8:13:cf:0a:ea:0a:
20:14:17:ec:c0:50:bb:51:d5:93:dd:ee:46:de:53:3a:c5:d3:
9e:b7:bc:55:c9:ab:5a:26:2e:b6:80:af:22:d5:85:08:dd:ac:
85:fc:6c:cc:c6:19:95:44:b2:6f:d0:12:6f:cd:5a:98:3c:42:
33:1f:3c:31
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYcFEYX/q0fZKY4rtfTDVUTbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU3MTMwZjc5OWY4YTg5ODU1MDJhMmVhMzM1NjAzNzY3NDA4
NWNmY2EwHhcNMjMwMzIxMTY0NzI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OTFhMTc2OWQ0NWRmNjdiYzU3ZDI5ZWVmZjc0Y2YxZWE3NzI1YTY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAql1ouLrt//FjGSTmeGjuWI/zPO0/
yN05IEjx+ACOJV5MYvAldqnBxP0B2WBDyAUVV1uXM/UtuNy1aotc6itNbmw2TLy9
QmVqRILMwKFeCU0eVxCTc+8bF0JjkcBxbjYPBnC5WPQlC0rK+EU3H5dr3vX2E/dr
VEoM+SfCrpdiNom6ezf55831o4YalHMAtt/Zmtx/stm4dXgj0XSdzxQsWN3YL8so
KJQL7hYFSwmgiDrb0nwKh9UuGUYlqMiJD89bsUG6/zUG2olOH1k/ufvnurA5+vWC
gDt+9aPO+QCSneu3GlcVtxhsogg4zJTt3ZRRqROeN11v16CibOiER8X70wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEkaF2nUXfZ7xX0p7v90zx6nclplMB8GA1UdIwQY
MBaAFFcTD3mfiomFUCouozVgN2dAhc/KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVnhNUGVaLUtpWVZRS2k2ak5XQTNaMENGejhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi81MTgxZGUtNDRjZC00NjU0LTk2ZmMt
ZDNiOTBhOWI5YjQxLzEvU1JvWGFkUmQ5bnZGZlNudV8zVFBIcWR5V21VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Zi81MTgxZGUtNDRjZC00NjU0LTk2ZmMtZDNiOTBhOWI5YjQx
LzEvVnhNUGVaLUtpWVZRS2k2ak5XQTNaMENGejhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLZUkMA0G
CSqGSIb3DQEBCwUAA4IBAQAflLGLu1J7+beriYdSeo+yV3abNbou1dYhI4RsHloS
1//OQWlS4xwhZ3vcbQRjEYEw/p4z+POMhr+b5uhpPmKHYx7Nsk+7lJKPlyk0Rwre
0hM+Jf1oVo8yElK9lncXlpbLC5/Hv7QnZN8V+Ovf/8IJU90dfL6/JsBnsKUSBI+x
7sDZFq+TsVOvmV1vcFKKtasZYXiP+RN1HRAHvzSVY8n4qfoz6Vk/1RMO/JvA2G33
l21jPGmrrCuwhGnOs/zLVUXYE88K6gogFBfswFC7UdWT3e5G3lM6xdOet7xVyata
Ji62gK8i1YUI3ayF/GzMxhmVRLJv0BJvzVqYPEIzHzwx
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:02 2024 by rpki-client on console-fra.rpki-client.org