Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/z0qClbioHWCuvRjYZwO8m6bPB5k.roa
File: z0qClbioHWCuvRjYZwO8m6bPB5k.roa (raw, json)
Hash identifier: 3JDqO74zbppxmwmux4IGMmg2vp8QAjXmrpnyg5Ytv+I=
Subject key identifier: CF:4A:82:95:B8:A8:1D:60:AE:BD:18:D8:67:03:BC:9B:A6:CF:07:99
Certificate issuer: /CN=57130f799f8a8985502a2ea3356037674085cfca
Certificate serial: 0187B83F8046E49397AAF73E3B460589F6CD
Authority key identifier: 57:13:0F:79:9F:8A:89:85:50:2A:2E:A3:35:60:37:67:40:85:CF:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VxMPeZ-KiYVQKi6jNWA3Z0CFz8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/z0qClbioHWCuvRjYZwO8m6bPB5k.roa
Signing time: Tue 25 Apr 2023 11:49:41 +0000
ROA not before: Tue 25 Apr 2023 11:49:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7411
IP address blocks: 45.149.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 May 2023 21:33:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b8:3f:80:46:e4:93:97:aa:f7:3e:3b:46:05:89:f6:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57130f799f8a8985502a2ea3356037674085cfca
Validity
Not Before: Apr 25 11:49:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cf4a8295b8a81d60aebd18d86703bc9ba6cf0799
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:2b:e1:a3:80:72:1e:4b:01:2e:f2:5f:41:3e:
e9:05:b0:b5:15:ed:20:70:48:26:f2:00:2d:65:3e:
e9:90:a1:ab:36:e6:c1:30:81:7f:ab:51:e8:ab:cf:
65:f5:22:44:24:0a:ed:4f:e5:d0:79:27:91:32:7d:
5e:88:6f:6c:f5:1a:d7:72:62:98:98:6a:d3:e8:65:
b2:eb:62:61:aa:3e:df:d3:21:ab:ee:a4:ac:4b:ae:
d0:85:bb:42:99:34:af:ea:c6:98:50:9c:1a:b7:f8:
8e:ee:4e:1f:1c:06:ac:37:c4:cf:7b:aa:3d:f9:06:
88:a0:f2:2f:4d:21:45:dc:c8:d3:d6:e7:62:6a:a7:
8c:a7:5c:1e:ca:e1:3d:57:78:cc:07:ca:b4:9b:22:
24:b4:c8:47:da:6c:cf:b7:dc:c9:ab:80:a7:ee:6e:
a6:d5:7b:62:35:a6:26:78:c9:bd:72:e3:22:3f:5d:
6d:ac:8e:07:80:a7:6a:5c:cd:d0:bb:c9:a9:07:07:
4f:33:fe:9a:66:4a:1b:db:9d:ad:75:1d:3e:6e:b1:
a3:a2:a7:94:b1:40:98:04:f9:64:c8:47:53:3a:ba:
ee:a1:e1:cd:99:32:9a:65:06:1f:11:5d:dc:6b:cf:
f2:58:df:50:af:31:d6:55:37:76:ea:b0:84:7e:9f:
49:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:4A:82:95:B8:A8:1D:60:AE:BD:18:D8:67:03:BC:9B:A6:CF:07:99
X509v3 Authority Key Identifier:
keyid:57:13:0F:79:9F:8A:89:85:50:2A:2E:A3:35:60:37:67:40:85:CF:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VxMPeZ-KiYVQKi6jNWA3Z0CFz8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/z0qClbioHWCuvRjYZwO8m6bPB5k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/VxMPeZ-KiYVQKi6jNWA3Z0CFz8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.37.0/24
Signature Algorithm: sha256WithRSAEncryption
17:92:10:6b:79:64:00:67:07:60:8d:d4:41:4e:ac:2a:a7:8a:
fa:cc:a4:a6:b9:ea:8b:c3:b7:87:b9:ca:1d:08:38:53:68:95:
d7:c8:f5:b6:6a:ec:58:2b:e4:67:7e:72:a3:b3:58:2e:31:53:
70:63:19:89:3f:51:b3:55:20:60:97:b7:72:ee:36:3b:96:94:
fb:bc:2c:0a:54:47:0b:cf:1a:02:b3:5a:0d:e0:ac:7a:23:87:
8f:4c:c2:bf:05:07:45:3d:75:95:45:62:bc:36:e4:09:2d:3b:
0e:31:3a:60:e5:60:15:dd:f9:a2:bc:71:8e:12:a6:fc:c0:0e:
c0:9b:5f:0d:ea:25:f6:c6:4b:99:df:e3:d6:eb:a6:0c:8b:d2:
96:d6:d8:dc:97:83:f8:c8:3d:fb:f9:f2:60:fc:64:3e:78:76:
9a:e9:5e:c4:72:69:48:63:21:cd:bb:c0:a6:d9:d8:15:74:15:
fd:c1:d2:6e:ec:3e:e4:c7:24:2a:d7:e1:32:39:1a:a6:a3:87:
f3:91:90:d0:37:18:73:e6:78:54:4a:61:ed:ac:9d:5c:46:91:
af:8c:6f:ac:72:0b:da:ba:95:2f:36:15:a5:4b:e9:5c:42:31:
ea:c9:9f:96:6a:d4:ba:1f:83:54:71:06:4c:84:4e:b5:cd:56:
35:3b:f0:c5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYe4P4BG5JOXqvc+O0YFifbNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU3MTMwZjc5OWY4YTg5ODU1MDJhMmVhMzM1NjAzNzY3NDA4
NWNmY2EwHhcNMjMwNDI1MTE0OTQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZjRhODI5NWI4YTgxZDYwYWViZDE4ZDg2NzAzYmM5YmE2Y2YwNzk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzyvho4ByHksBLvJfQT7pBbC1Fe0g
cEgm8gAtZT7pkKGrNubBMIF/q1Hoq89l9SJEJArtT+XQeSeRMn1eiG9s9RrXcmKY
mGrT6GWy62Jhqj7f0yGr7qSsS67QhbtCmTSv6saYUJwat/iO7k4fHAasN8TPe6o9
+QaIoPIvTSFF3MjT1udiaqeMp1weyuE9V3jMB8q0myIktMhH2mzPt9zJq4Cn7m6m
1XtiNaYmeMm9cuMiP11trI4HgKdqXM3Qu8mpBwdPM/6aZkob252tdR0+brGjoqeU
sUCYBPlkyEdTOrruoeHNmTKaZQYfEV3ca8/yWN9QrzHWVTd26rCEfp9JKQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFM9KgpW4qB1grr0Y2GcDvJumzweZMB8GA1UdIwQY
MBaAFFcTD3mfiomFUCouozVgN2dAhc/KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVnhNUGVaLUtpWVZRS2k2ak5XQTNaMENGejhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi81MTgxZGUtNDRjZC00NjU0LTk2ZmMt
ZDNiOTBhOWI5YjQxLzEvejBxQ2xiaW9IV0N1dlJqWVp3TzhtNmJQQjVrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Zi81MTgxZGUtNDRjZC00NjU0LTk2ZmMtZDNiOTBhOWI5YjQx
LzEvVnhNUGVaLUtpWVZRS2k2ak5XQTNaMENGejhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZUlMA0G
CSqGSIb3DQEBCwUAA4IBAQAXkhBreWQAZwdgjdRBTqwqp4r6zKSmueqLw7eHucod
CDhTaJXXyPW2auxYK+RnfnKjs1guMVNwYxmJP1GzVSBgl7dy7jY7lpT7vCwKVEcL
zxoCs1oN4Kx6I4ePTMK/BQdFPXWVRWK8NuQJLTsOMTpg5WAV3fmivHGOEqb8wA7A
m18N6iX2xkuZ3+PW66YMi9KW1tjcl4P4yD37+fJg/GQ+eHaa6V7EcmlIYyHNu8Cm
2dgVdBX9wdJu7D7kxyQq1+EyORqmo4fzkZDQNxhz5nhUSmHtrJ1cRpGvjG+scgva
upUvNhWlS+lcQjHqyZ+WatS6H4NUcQZMhE61zVY1O/DF
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:30 2024 by rpki-client on console-ams.rpki-client.org