Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/c73b3b-5b5c-4a77-8b80-d2b697aefa02/1/pVzW1A6k7fchQC-qN-N6tqrTGIc.roa
File: pVzW1A6k7fchQC-qN-N6tqrTGIc.roa (raw, json)
Hash identifier: RzXvv5uIn7d7eHBx293YD7mbC3MFO0f/L8gOKWq54X4=
Subject key identifier: A5:5C:D6:D4:0E:A4:ED:F7:21:40:2F:AA:37:E3:7A:B6:AA:D3:18:87
Certificate issuer: /CN=2ee74296fce8d20befa18799dae6ec7831d61c5a
Certificate serial: 01856E141635C40DC3E606E029A0F61EC9A4
Authority key identifier: 2E:E7:42:96:FC:E8:D2:0B:EF:A1:87:99:DA:E6:EC:78:31:D6:1C:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LudClvzo0gvvoYeZ2ubseDHWHFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/c73b3b-5b5c-4a77-8b80-d2b697aefa02/1/pVzW1A6k7fchQC-qN-N6tqrTGIc.roa
Signing time: Sun 01 Jan 2023 16:04:48 +0000
ROA not before: Sun 01 Jan 2023 16:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25164
IP address blocks: 195.177.234.0/23 maxlen: 23
194.146.212.0/22 maxlen: 22
45.142.224.0/22 maxlen: 22
2a01:200::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:16:35:c4:0d:c3:e6:06:e0:29:a0:f6:1e:c9:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ee74296fce8d20befa18799dae6ec7831d61c5a
Validity
Not Before: Jan 1 16:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a55cd6d40ea4edf721402faa37e37ab6aad31887
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:43:f6:0e:f3:3b:18:1e:38:08:70:5a:3a:4f:
aa:40:dc:e5:c1:d1:bd:91:f9:4f:38:7f:d8:25:69:
10:70:f0:42:3a:fa:9f:96:da:63:56:0d:57:b5:a0:
1d:0f:31:d6:f1:1e:2f:f5:84:fd:ea:53:3c:b5:b7:
b1:4f:12:c3:a3:b4:24:03:8f:46:ac:8b:da:1f:53:
6b:c6:86:91:2c:fa:be:92:da:ef:21:a8:70:7d:d9:
9c:b9:bb:fb:9f:17:38:e2:87:ab:81:5c:58:1f:27:
14:e1:e6:46:64:d0:e6:59:d7:6a:65:0f:21:48:91:
94:8e:06:a9:85:3a:af:a7:e1:52:0a:72:e3:40:0a:
29:27:98:75:5f:08:4f:e7:f7:e5:70:99:1c:13:bf:
3b:fb:94:1a:86:e5:22:78:8a:f2:82:3f:83:0b:1c:
3a:18:4e:60:5f:1e:1b:76:7e:19:13:fc:6f:59:e9:
0e:b5:2c:21:f3:8e:72:b3:69:17:c3:9a:0d:6d:93:
6b:cd:39:25:fb:b0:fd:7e:19:f7:02:81:d1:d1:57:
0e:62:d3:b2:b8:86:94:b5:6d:0a:5e:b7:17:30:21:
15:32:42:d7:ca:64:d5:5d:02:4d:fa:af:6c:71:d8:
55:84:9f:f7:aa:3a:fd:d1:c3:ff:78:09:60:c4:3f:
52:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:5C:D6:D4:0E:A4:ED:F7:21:40:2F:AA:37:E3:7A:B6:AA:D3:18:87
X509v3 Authority Key Identifier:
keyid:2E:E7:42:96:FC:E8:D2:0B:EF:A1:87:99:DA:E6:EC:78:31:D6:1C:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LudClvzo0gvvoYeZ2ubseDHWHFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/c73b3b-5b5c-4a77-8b80-d2b697aefa02/1/pVzW1A6k7fchQC-qN-N6tqrTGIc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/c73b3b-5b5c-4a77-8b80-d2b697aefa02/1/LudClvzo0gvvoYeZ2ubseDHWHFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.224.0/22
194.146.212.0/22
195.177.234.0/23
IPv6:
2a01:200::/32
Signature Algorithm: sha256WithRSAEncryption
a5:5f:49:e2:02:2c:2d:88:52:75:93:fd:c1:53:45:bb:25:e9:
e8:46:a8:6a:47:73:44:e6:14:f2:8c:76:e1:1e:14:53:c3:80:
cd:fd:4f:ba:86:0c:16:5b:aa:18:88:26:69:40:23:ad:43:d1:
e6:cc:27:15:d9:df:f3:df:89:ed:97:6e:4d:b4:b4:d0:a2:29:
92:45:15:a5:7a:96:30:21:9b:ed:1a:40:2f:36:1f:63:c7:0f:
13:48:78:19:84:9e:15:9d:6f:06:03:52:f1:7f:87:04:0b:3b:
e3:5a:3f:9a:f3:3b:b3:bf:74:c8:97:0d:27:94:a5:04:f4:89:
32:1e:ba:23:ab:e1:4e:68:10:65:ae:a3:f3:8d:0e:3f:cb:0f:
aa:e0:1f:47:f8:6a:be:22:46:e3:01:f7:d7:16:35:b1:4a:29:
7d:02:72:19:99:58:99:a8:a3:60:28:93:1a:8c:66:1b:9f:02:
89:8e:8e:45:46:e2:00:96:50:9d:2d:bc:74:98:dc:2c:48:4b:
e4:41:1c:f6:99:5f:cc:26:5f:4c:69:2c:8f:3f:2b:43:9b:bf:
19:bc:0d:15:b8:bc:e0:27:5b:e0:73:b8:22:55:05:7f:79:4f:
48:6d:9e:bc:fa:8f:eb:ba:8b:27:38:61:46:4c:22:8e:21:aa:
25:66:c6:c1
-----BEGIN CERTIFICATE-----
MIIFGDCCBACgAwIBAgISAYVuFBY1xA3D5gbgKaD2HsmkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJlZTc0Mjk2ZmNlOGQyMGJlZmExODc5OWRhZTZlYzc4MzFk
NjFjNWEwHhcNMjMwMTAxMTYwNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNTVjZDZkNDBlYTRlZGY3MjE0MDJmYWEzN2UzN2FiNmFhZDMxODg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5EP2DvM7GB44CHBaOk+qQNzlwdG9
kflPOH/YJWkQcPBCOvqfltpjVg1XtaAdDzHW8R4v9YT96lM8tbexTxLDo7QkA49G
rIvaH1NrxoaRLPq+ktrvIahwfdmcubv7nxc44oergVxYHycU4eZGZNDmWddqZQ8h
SJGUjgaphTqvp+FSCnLjQAopJ5h1XwhP5/flcJkcE787+5QahuUieIrygj+DCxw6
GE5gXx4bdn4ZE/xvWekOtSwh845ys2kXw5oNbZNrzTkl+7D9fhn3AoHR0VcOYtOy
uIaUtW0KXrcXMCEVMkLXymTVXQJN+q9scdhVhJ/3qjr90cP/eAlgxD9SPwIDAQAB
o4ICJDCCAiAwHQYDVR0OBBYEFKVc1tQOpO33IUAvqjfjeraq0xiHMB8GA1UdIwQY
MBaAFC7nQpb86NIL76GHmdrm7Hgx1hxaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTHVkQ2x2em8wZ3Z2b1llWjJ1YnNlREhXSEZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC9jNzNiM2ItNWI1Yy00YTc3LThiODAt
ZDJiNjk3YWVmYTAyLzEvcFZ6VzFBNms3ZmNoUUMtcU4tTjZ0cXJUR0ljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NC9jNzNiM2ItNWI1Yy00YTc3LThiODAtZDJiNjk3YWVmYTAy
LzEvTHVkQ2x2em8wZ3Z2b1llWjJ1YnNlREhXSEZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQCLY7gAwQC
wpLUAwQBw7HqMA0EAgACMAcDBQAqAQIAMA0GCSqGSIb3DQEBCwUAA4IBAQClX0ni
AiwtiFJ1k/3BU0W7JenoRqhqR3NE5hTyjHbhHhRTw4DN/U+6hgwWW6oYiCZpQCOt
Q9HmzCcV2d/z34ntl25NtLTQoimSRRWlepYwIZvtGkAvNh9jxw8TSHgZhJ4VnW8G
A1Lxf4cECzvjWj+a8zuzv3TIlw0nlKUE9IkyHrojq+FOaBBlrqPzjQ4/yw+q4B9H
+Gq+IkbjAffXFjWxSil9AnIZmViZqKNgKJMajGYbnwKJjo5FRuIAllCdLbx0mNws
SEvkQRz2mV/MJl9MaSyPPytDm78ZvA0VuLzgJ1vgc7giVQV/eU9IbZ68+o/ruosn
OGFGTCKOIaolZsbB
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:44 2024 by rpki-client on console-fra.rpki-client.org