Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/4ca005-177d-44b5-9d96-c5469fc7d2d0/1/XSfiq5ctYSr2E08tJpTGxy06nmE.roa
File: XSfiq5ctYSr2E08tJpTGxy06nmE.roa (raw, json)
Hash identifier: AT8SU0tCZXlQeJLELhK9W4MG/mWfVAC7/s2OlDjFm6k=
Subject key identifier: 5D:27:E2:AB:97:2D:61:2A:F6:13:4F:2D:26:94:C6:C7:2D:3A:9E:61
Certificate issuer: /CN=1cb4092ea2d1296dfe61d78a7dfb3c1e03916408
Certificate serial: 0185DF1694104E3884B3A8FF9AD779ECCC46
Authority key identifier: 1C:B4:09:2E:A2:D1:29:6D:FE:61:D7:8A:7D:FB:3C:1E:03:91:64:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HLQJLqLRKW3-YdeKffs8HgORZAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/4ca005-177d-44b5-9d96-c5469fc7d2d0/1/XSfiq5ctYSr2E08tJpTGxy06nmE.roa
Signing time: Mon 23 Jan 2023 14:44:36 +0000
ROA not before: Mon 23 Jan 2023 14:44:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203071
IP address blocks: 45.147.94.0/24 maxlen: 24
2a13:4e80::/40 maxlen: 40
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:df:16:94:10:4e:38:84:b3:a8:ff:9a:d7:79:ec:cc:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cb4092ea2d1296dfe61d78a7dfb3c1e03916408
Validity
Not Before: Jan 23 14:44:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5d27e2ab972d612af6134f2d2694c6c72d3a9e61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:12:d5:8e:54:85:39:d2:e6:0e:e8:e6:1b:00:
82:9c:e2:67:97:59:45:80:16:2f:7e:fc:c0:0d:7d:
7b:5d:7c:d6:87:c6:1e:0d:0a:b7:22:29:a5:47:80:
02:72:31:5e:09:98:bb:e6:9c:ed:d2:d8:94:66:5e:
2a:84:33:50:43:57:a3:5c:66:31:4e:3f:9f:a4:65:
dd:4c:5c:14:96:8b:e7:ff:f7:c0:ee:f4:16:c4:d5:
e6:64:c4:f9:74:be:25:44:6a:e3:c7:59:7c:e6:68:
c9:9f:c0:b4:92:9b:db:47:4c:25:ae:16:3c:d9:65:
43:f8:fc:87:5c:ad:9c:da:cb:a2:5d:38:93:85:79:
97:92:3c:2f:55:43:fa:6b:c1:0d:f6:62:d2:9c:8c:
f1:7e:2c:80:d7:16:6a:bf:ba:48:07:95:a7:9e:cb:
ed:85:e2:35:c4:9a:e5:15:0a:a2:d4:59:61:33:62:
fb:b6:85:93:b0:5b:bd:1b:0d:e3:e1:e1:16:3d:89:
9f:eb:0a:73:45:45:b9:e1:9b:ea:75:c8:05:9e:db:
33:df:b7:e5:96:bf:c1:9a:e7:86:1d:3d:e2:ae:11:
c7:a9:19:0c:27:2f:84:8b:6b:f4:64:3e:55:c3:7f:
0d:58:8a:3e:2d:69:ef:a4:06:b3:d4:4d:ad:cc:72:
8f:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:27:E2:AB:97:2D:61:2A:F6:13:4F:2D:26:94:C6:C7:2D:3A:9E:61
X509v3 Authority Key Identifier:
keyid:1C:B4:09:2E:A2:D1:29:6D:FE:61:D7:8A:7D:FB:3C:1E:03:91:64:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HLQJLqLRKW3-YdeKffs8HgORZAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/4ca005-177d-44b5-9d96-c5469fc7d2d0/1/XSfiq5ctYSr2E08tJpTGxy06nmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/4ca005-177d-44b5-9d96-c5469fc7d2d0/1/HLQJLqLRKW3-YdeKffs8HgORZAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.94.0/24
IPv6:
2a13:4e80::/40
Signature Algorithm: sha256WithRSAEncryption
18:02:44:97:15:b1:fc:4e:08:b7:a9:01:1c:c5:8c:08:db:e1:
3c:a4:67:6b:e1:3c:99:2b:5f:4f:e8:2e:39:f8:61:25:ae:2f:
0f:a6:c0:b8:9d:7e:5f:07:a6:2e:d0:59:1c:69:4e:9f:73:7e:
67:bb:16:cf:fe:16:c6:2c:12:b3:6c:b8:a2:8b:3a:92:40:73:
9b:61:68:b3:8f:10:ec:89:f8:99:bb:a4:e2:4f:72:fc:8b:60:
23:ec:4e:8f:0e:d3:e1:5b:30:0a:61:d0:65:b9:9c:3d:45:49:
89:83:0f:5d:e8:60:c1:86:38:d6:bb:b7:c3:59:3f:36:eb:60:
74:29:8e:57:78:fd:30:a9:f1:b4:0d:df:84:60:dc:ad:1b:9d:
a2:99:a8:3c:a4:a3:01:73:8b:dc:b5:8b:2c:1b:0b:9d:ec:68:
ce:8c:04:f8:38:59:59:70:5a:01:37:39:1c:54:2d:ff:49:41:
30:f6:f6:df:6f:12:3d:57:1b:58:21:36:b5:72:f4:0e:3e:3c:
14:6a:d0:c1:b1:70:97:d2:7a:b1:3f:4c:b6:5e:8a:a7:08:a8:
85:aa:a2:df:68:08:ae:bf:4c:dd:75:a7:e1:b3:c7:dc:52:80:
b7:17:cd:e7:7c:1b:e4:6d:be:c3:18:cf:70:55:3f:bf:ab:79:
15:b6:7f:e8
-----BEGIN CERTIFICATE-----
MIIFDTCCA/WgAwIBAgISAYXfFpQQTjiEs6j/mtd57MxGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjYjQwOTJlYTJkMTI5NmRmZTYxZDc4YTdkZmIzYzFlMDM5
MTY0MDgwHhcNMjMwMTIzMTQ0NDM2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZDI3ZTJhYjk3MmQ2MTJhZjYxMzRmMmQyNjk0YzZjNzJkM2E5ZTYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsxLVjlSFOdLmDujmGwCCnOJnl1lF
gBYvfvzADX17XXzWh8YeDQq3IimlR4ACcjFeCZi75pzt0tiUZl4qhDNQQ1ejXGYx
Tj+fpGXdTFwUlovn//fA7vQWxNXmZMT5dL4lRGrjx1l85mjJn8C0kpvbR0wlrhY8
2WVD+PyHXK2c2suiXTiThXmXkjwvVUP6a8EN9mLSnIzxfiyA1xZqv7pIB5Wnnsvt
heI1xJrlFQqi1FlhM2L7toWTsFu9Gw3j4eEWPYmf6wpzRUW54ZvqdcgFntsz37fl
lr/BmueGHT3irhHHqRkMJy+Ei2v0ZD5Vw38NWIo+LWnvpAaz1E2tzHKPGwIDAQAB
o4ICGTCCAhUwHQYDVR0OBBYEFF0n4quXLWEq9hNPLSaUxsctOp5hMB8GA1UdIwQY
MBaAFBy0CS6i0Slt/mHXin37PB4DkWQIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSExRSkxxTFJLVzMtWWRlS2ZmczhIZ09SWkFnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC80Y2EwMDUtMTc3ZC00NGI1LTlkOTYt
YzU0NjlmYzdkMmQwLzEvWFNmaXE1Y3RZU3IyRTA4dEpwVEd4eTA2bm1FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC80Y2EwMDUtMTc3ZC00NGI1LTlkOTYtYzU0NjlmYzdkMmQw
LzEvSExRSkxxTFJLVzMtWWRlS2ZmczhIZ09SWkFnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC8GCCsGAQUFBwEHAQH/BCAwHjAMBAIAATAGAwQALZNeMA4E
AgACMAgDBgAqE06AADANBgkqhkiG9w0BAQsFAAOCAQEAGAJElxWx/E4It6kBHMWM
CNvhPKRna+E8mStfT+guOfhhJa4vD6bAuJ1+XwemLtBZHGlOn3N+Z7sWz/4WxiwS
s2y4oos6kkBzm2Fos48Q7In4mbuk4k9y/ItgI+xOjw7T4VswCmHQZbmcPUVJiYMP
XehgwYY41ru3w1k/NutgdCmOV3j9MKnxtA3fhGDcrRudopmoPKSjAXOL3LWLLBsL
nexozowE+DhZWXBaATc5HFQt/0lBMPb2328SPVcbWCE2tXL0Dj48FGrQwbFwl9J6
sT9Mtl6Kpwiohaqi32gIrr9M3XWn4bPH3FKAtxfN53wb5G2+wxjPcFU/v6t5FbZ/
6A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:09 2024 by rpki-client on console-fra.rpki-client.org