Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/D_siTkoPg8bPxj_UiZj1tQlm0L0.roa
File: D_siTkoPg8bPxj_UiZj1tQlm0L0.roa (raw, json)
Hash identifier: lIKPZzzml16MWeBJwLTYgx2F1BAeU10WrPqUmP4lF4w=
Subject key identifier: 0F:FB:22:4E:4A:0F:83:C6:CF:C6:3F:D4:89:98:F5:B5:09:66:D0:BD
Certificate issuer: /CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Certificate serial: 018CC64B62B4BF2C0751B40FBF11DD5749CA
Authority key identifier: 37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/D_siTkoPg8bPxj_UiZj1tQlm0L0.roa
Signing time: Mon 01 Jan 2024 18:31:18 +0000
ROA not before: Mon 01 Jan 2024 18:31:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49752
IP address blocks: 45.129.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 Feb 2024 05:49:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:62:b4:bf:2c:07:51:b4:0f:bf:11:dd:57:49:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=370e5450d1486780aba54f045ec4802f19f0b4f7
Validity
Not Before: Jan 1 18:31:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0ffb224e4a0f83c6cfc63fd48998f5b50966d0bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e6:7e:e0:da:c6:47:67:71:4b:75:ea:0e:cd:
22:6f:e8:cf:5e:d6:f2:a3:b7:08:61:9a:fc:0e:32:
a4:be:2d:37:f6:b3:9b:7f:81:de:33:9f:85:76:0e:
a2:4a:38:c7:80:fc:2b:0a:94:59:cf:40:67:69:83:
00:ee:34:7c:ca:54:c6:3b:ef:07:ea:ab:df:43:69:
25:b0:31:0f:6c:0a:e9:d6:dd:19:34:db:f0:d0:6a:
fe:de:6c:0c:45:8a:1c:9a:6f:f6:82:5c:1e:2a:61:
f1:8d:ff:18:6f:5c:c4:2f:34:3e:d5:85:b8:7c:f2:
51:f0:44:90:1b:bc:8c:b0:37:74:40:87:3c:88:c5:
90:b6:e2:21:da:d2:a2:a8:1d:1e:68:aa:b3:2a:05:
e0:ce:fb:62:e4:fe:a8:43:ac:79:46:8a:77:68:39:
44:1c:eb:cd:91:e9:c6:4c:ba:7f:78:31:66:57:36:
58:ca:0b:fe:6d:88:25:38:de:26:77:39:97:f2:a7:
8e:ac:ae:e1:cd:43:cf:6b:b9:9c:00:05:da:9a:ad:
4e:dd:55:16:c7:1d:93:94:2f:a4:5e:c6:cd:60:6b:
5a:cd:b3:49:b4:36:81:02:98:75:0f:b8:7a:0a:c1:
1b:ba:74:9c:a1:7d:73:5b:a8:76:d5:9f:71:86:f9:
09:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:FB:22:4E:4A:0F:83:C6:CF:C6:3F:D4:89:98:F5:B5:09:66:D0:BD
X509v3 Authority Key Identifier:
keyid:37:0E:54:50:D1:48:67:80:AB:A5:4F:04:5E:C4:80:2F:19:F0:B4:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/D_siTkoPg8bPxj_UiZj1tQlm0L0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/f0f70c-06e7-41ac-a2b8-858dce57fcdb/1/Nw5UUNFIZ4CrpU8EXsSALxnwtPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.94.0/24
Signature Algorithm: sha256WithRSAEncryption
29:e6:01:b0:dc:2c:be:c9:44:a3:6d:f8:13:f7:c6:a5:bc:df:
a3:45:f6:ce:88:d5:e3:2b:ed:2b:48:04:be:98:24:e9:93:d7:
33:b5:10:5e:9d:6a:37:8e:ba:68:8b:fb:f4:d7:9a:cf:2c:0e:
db:e0:54:29:6d:bd:16:29:db:fa:44:15:0a:ea:7b:c7:71:c0:
49:7e:f6:3d:b7:60:65:e5:50:ed:95:55:c9:08:b4:08:ee:ee:
68:21:ae:0c:b3:cd:32:5d:66:65:09:31:85:79:28:10:05:81:
18:5b:15:0f:c0:41:5d:0e:16:85:62:5d:79:05:b6:af:14:11:
dd:8e:fb:f0:fc:83:78:52:66:72:e6:66:e2:9d:48:72:bb:05:
86:31:8a:6a:d9:fb:8d:86:d2:a7:f6:ac:5f:f0:b7:a5:0f:cd:
62:83:da:2d:2c:76:88:63:47:10:34:0b:d4:75:d9:c6:17:0b:
b9:ee:86:a6:02:42:49:37:90:49:e4:97:4f:fd:d8:e6:0e:90:
d3:c3:94:80:3c:64:d3:dc:06:15:b4:4c:32:8e:c5:13:1e:5b:
fc:43:ba:e1:b5:f7:06:21:52:17:50:64:d2:9b:17:62:ba:c0:
a9:c7:2f:9c:19:c6:a5:4d:94:5f:b3:d4:df:8e:f4:ef:15:00:
ce:be:25:35
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzGS2K0vywHUbQPvxHdV0nKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM3MGU1NDUwZDE0ODY3ODBhYmE1NGYwNDVlYzQ4MDJmMTlm
MGI0ZjcwHhcNMjQwMTAxMTgzMTE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZmZiMjI0ZTRhMGY4M2M2Y2ZjNjNmZDQ4OTk4ZjViNTA5NjZkMGJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAteZ+4NrGR2dxS3XqDs0ib+jPXtby
o7cIYZr8DjKkvi039rObf4HeM5+Fdg6iSjjHgPwrCpRZz0BnaYMA7jR8ylTGO+8H
6qvfQ2klsDEPbArp1t0ZNNvw0Gr+3mwMRYocmm/2glweKmHxjf8Yb1zELzQ+1YW4
fPJR8ESQG7yMsDd0QIc8iMWQtuIh2tKiqB0eaKqzKgXgzvti5P6oQ6x5Rop3aDlE
HOvNkenGTLp/eDFmVzZYygv+bYglON4mdzmX8qeOrK7hzUPPa7mcAAXamq1O3VUW
xx2TlC+kXsbNYGtazbNJtDaBAph1D7h6CsEbunScoX1zW6h21Z9xhvkJNQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA/7Ik5KD4PGz8Y/1ImY9bUJZtC9MB8GA1UdIwQY
MBaAFDcOVFDRSGeAq6VPBF7EgC8Z8LT3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnc1VVVORklaNENycFU4RVhzU0FMeG53dFBjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi9mMGY3MGMtMDZlNy00MWFjLWEyYjgt
ODU4ZGNlNTdmY2RiLzEvRF9zaVRrb1BnOGJQeGpfVWlaajF0UWxtMEwwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Zi9mMGY3MGMtMDZlNy00MWFjLWEyYjgtODU4ZGNlNTdmY2Ri
LzEvTnc1VVVORklaNENycFU4RVhzU0FMeG53dFBjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYFeMA0G
CSqGSIb3DQEBCwUAA4IBAQAp5gGw3Cy+yUSjbfgT98alvN+jRfbOiNXjK+0rSAS+
mCTpk9cztRBenWo3jrpoi/v015rPLA7b4FQpbb0WKdv6RBUK6nvHccBJfvY9t2Bl
5VDtlVXJCLQI7u5oIa4Ms80yXWZlCTGFeSgQBYEYWxUPwEFdDhaFYl15BbavFBHd
jvvw/IN4UmZy5mbinUhyuwWGMYpq2fuNhtKn9qxf8LelD81ig9otLHaIY0cQNAvU
ddnGFwu57oamAkJJN5BJ5JdP/djmDpDTw5SAPGTT3AYVtEwyjsUTHlv8Q7rhtfcG
IVIXUGTSmxdiusCpxy+cGcalTZRfs9TfjvTvFQDOviU1
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:40 2024 by rpki-client on console-ams.rpki-client.org