Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/772cbc-7e69-4c91-86a3-3661b1ebbcfb/1/3sCYhU_H8c69u7iIR-tLnhPfmVI.roa
File: 3sCYhU_H8c69u7iIR-tLnhPfmVI.roa (raw, json)
Hash identifier: 2SoLXtKXxKV/whqBoMKSbVJxEwwKNbCi0OGaJSB/jcY=
Subject key identifier: DE:C0:98:85:4F:C7:F1:CE:BD:BB:B8:88:47:EB:4B:9E:13:DF:99:52
Certificate issuer: /CN=c276a8ba874c3fbddad344d03258b3e2c04d7bcb
Certificate serial: 01856DEF70B6B973507175ED18A79C9133CB
Authority key identifier: C2:76:A8:BA:87:4C:3F:BD:DA:D3:44:D0:32:58:B3:E2:C0:4D:7B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wnaouodMP73a00TQMliz4sBNe8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/772cbc-7e69-4c91-86a3-3661b1ebbcfb/1/3sCYhU_H8c69u7iIR-tLnhPfmVI.roa
Signing time: Sun 01 Jan 2023 15:24:46 +0000
ROA not before: Sun 01 Jan 2023 15:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51872
IP address blocks: 45.93.204.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ef:70:b6:b9:73:50:71:75:ed:18:a7:9c:91:33:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c276a8ba874c3fbddad344d03258b3e2c04d7bcb
Validity
Not Before: Jan 1 15:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dec098854fc7f1cebdbbb88847eb4b9e13df9952
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:bc:ae:66:69:80:39:d5:a6:b6:41:4a:c1:01:
e9:98:de:49:05:d6:e0:e6:0f:72:90:bf:09:4d:9f:
7d:73:4c:c2:85:30:69:92:42:0d:d0:be:f4:43:ad:
cf:31:05:21:0d:a7:bb:ee:65:ed:71:0f:7c:0a:68:
b7:53:cf:9b:d4:8a:f1:6e:34:81:15:9a:71:03:36:
6d:ad:cc:ac:ae:d2:0b:7b:d8:68:04:22:a3:16:5e:
08:c5:c3:61:71:bd:15:b7:ec:68:fb:81:fd:73:bb:
ac:99:a4:28:53:14:09:d7:68:ac:ea:1f:97:fb:8d:
84:dc:db:7d:cd:15:6e:10:c7:d9:36:67:9b:fa:af:
c1:89:61:41:1d:ca:30:08:14:69:55:fc:81:de:fd:
3a:03:e3:4d:d9:47:91:bd:a8:2a:a3:10:f0:aa:73:
21:8c:1a:95:d5:84:10:a0:91:e7:dd:d5:4e:3a:03:
5c:de:c9:9f:02:4b:fe:f3:de:69:da:eb:53:9b:85:
4d:7d:8e:50:b0:ad:ac:ec:0a:37:a1:aa:f6:b8:31:
3e:97:3b:f5:3e:46:6b:6f:db:4e:06:51:4d:90:1a:
9e:eb:72:83:57:1f:d4:66:7e:90:5e:d5:03:d8:bc:
56:9c:d6:ed:ee:82:9e:d9:a8:27:b2:7a:6d:52:80:
72:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:C0:98:85:4F:C7:F1:CE:BD:BB:B8:88:47:EB:4B:9E:13:DF:99:52
X509v3 Authority Key Identifier:
keyid:C2:76:A8:BA:87:4C:3F:BD:DA:D3:44:D0:32:58:B3:E2:C0:4D:7B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wnaouodMP73a00TQMliz4sBNe8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/772cbc-7e69-4c91-86a3-3661b1ebbcfb/1/3sCYhU_H8c69u7iIR-tLnhPfmVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/772cbc-7e69-4c91-86a3-3661b1ebbcfb/1/wnaouodMP73a00TQMliz4sBNe8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.204.0/22
Signature Algorithm: sha256WithRSAEncryption
81:ec:f5:ce:ef:d0:b5:c1:30:a9:7d:9f:59:3d:22:34:00:b3:
1d:84:cd:d3:7c:78:46:9f:96:ee:be:ad:bf:b3:73:6c:3e:bd:
07:ef:87:02:f6:60:82:b5:6b:e4:f2:5e:16:28:e4:f0:ba:4b:
1b:bd:65:b5:74:7b:cd:61:30:24:d4:c0:60:ac:2f:fb:96:e3:
23:cb:c5:11:c1:db:ce:30:3f:1d:e5:ab:7e:31:1b:fc:13:20:
d8:7c:a8:9c:98:26:f3:f6:07:94:f6:28:0e:8d:a6:a5:97:7f:
40:9b:2e:5b:aa:ef:b1:c5:0b:b7:ea:1b:ae:47:a6:2b:bc:f3:
3f:66:fc:68:d0:a0:ad:44:51:1d:12:aa:59:d2:70:fd:cd:05:
56:dc:32:d4:28:b1:85:e6:f4:55:45:99:e1:50:11:7c:99:7f:
70:32:da:a0:c0:6f:b9:70:22:1e:67:0f:8b:7f:96:01:3c:82:
e6:8c:59:15:6e:6e:a8:1b:12:3d:da:fa:7a:74:93:c4:72:aa:
46:58:54:ff:46:09:a6:7d:3b:67:72:30:ae:7a:ef:5a:8f:70:
05:43:f7:bf:88:08:8a:da:f5:92:46:df:04:14:67:f5:c7:4d:
c1:69:a0:3e:5e:39:0a:93:4b:5b:42:1a:59:45:c9:d0:5f:67:
ed:21:d8:9d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVt73C2uXNQcXXtGKeckTPLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyNzZhOGJhODc0YzNmYmRkYWQzNDRkMDMyNThiM2UyYzA0
ZDdiY2IwHhcNMjMwMTAxMTUyNDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZWMwOTg4NTRmYzdmMWNlYmRiYmI4ODg0N2ViNGI5ZTEzZGY5OTUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA17yuZmmAOdWmtkFKwQHpmN5JBdbg
5g9ykL8JTZ99c0zChTBpkkIN0L70Q63PMQUhDae77mXtcQ98Cmi3U8+b1IrxbjSB
FZpxAzZtrcysrtILe9hoBCKjFl4IxcNhcb0Vt+xo+4H9c7usmaQoUxQJ12is6h+X
+42E3Nt9zRVuEMfZNmeb+q/BiWFBHcowCBRpVfyB3v06A+NN2UeRvagqoxDwqnMh
jBqV1YQQoJHn3dVOOgNc3smfAkv+895p2utTm4VNfY5QsK2s7Ao3oar2uDE+lzv1
PkZrb9tOBlFNkBqe63KDVx/UZn6QXtUD2LxWnNbt7oKe2agnsnptUoBy0QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN7AmIVPx/HOvbu4iEfrS54T35lSMB8GA1UdIwQY
MBaAFMJ2qLqHTD+92tNE0DJYs+LATXvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd25hb3VvZE1QNzNhMDBUUU1saXo0c0JOZThzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS83NzJjYmMtN2U2OS00YzkxLTg2YTMt
MzY2MWIxZWJiY2ZiLzEvM3NDWWhVX0g4YzY5dTdpSVItdExuaFBmbVZJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS83NzJjYmMtN2U2OS00YzkxLTg2YTMtMzY2MWIxZWJiY2Zi
LzEvd25hb3VvZE1QNzNhMDBUUU1saXo0c0JOZThzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLV3MMA0G
CSqGSIb3DQEBCwUAA4IBAQCB7PXO79C1wTCpfZ9ZPSI0ALMdhM3TfHhGn5buvq2/
s3NsPr0H74cC9mCCtWvk8l4WKOTwuksbvWW1dHvNYTAk1MBgrC/7luMjy8URwdvO
MD8d5at+MRv8EyDYfKicmCbz9geU9igOjaall39Amy5bqu+xxQu36huuR6YrvPM/
Zvxo0KCtRFEdEqpZ0nD9zQVW3DLUKLGF5vRVRZnhUBF8mX9wMtqgwG+5cCIeZw+L
f5YBPILmjFkVbm6oGxI92vp6dJPEcqpGWFT/RgmmfTtncjCueu9aj3AFQ/e/iAiK
2vWSRt8EFGf1x03BaaA+XjkKk0tbQhpZRcnQX2ftIdid
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:22 2024 by rpki-client on console-fra.rpki-client.org