Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/drKDd9Kg2f4XMZ-aJyvf-sXxr_M.roa
File: drKDd9Kg2f4XMZ-aJyvf-sXxr_M.roa (raw, json)
Hash identifier: NS3bHDbpkUryHlV+3cUj0rUXYwfPSefVjO3a/QX5h5k=
Subject key identifier: 76:B2:83:77:D2:A0:D9:FE:17:31:9F:9A:27:2B:DF:FA:C5:F1:AF:F3
Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Certificate serial: 018CC94D8A47EA7509C7D18A13E5DE1AD471
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/drKDd9Kg2f4XMZ-aJyvf-sXxr_M.roa
Signing time: Tue 02 Jan 2024 08:32:31 +0000
ROA not before: Tue 02 Jan 2024 08:32:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210542
IP address blocks: 45.146.202.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Jan 2024 13:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:8a:47:ea:75:09:c7:d1:8a:13:e5:de:1a:d4:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Validity
Not Before: Jan 2 08:32:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=76b28377d2a0d9fe17319f9a272bdffac5f1aff3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:7a:10:61:82:15:8e:83:dc:ee:08:84:1d:73:
52:77:53:7f:42:b8:40:52:10:29:02:ee:be:c8:c0:
8e:13:71:4b:47:32:38:c8:d8:83:f8:05:22:fc:b1:
7b:d7:d4:50:1c:9b:1f:cd:8e:4b:17:85:89:38:53:
8d:ab:99:36:9f:6f:52:a8:bc:a5:58:48:13:f3:d0:
45:6b:a6:7a:35:b0:b6:e0:cc:5d:b3:29:35:1f:6b:
a1:09:31:2d:0d:92:78:79:98:13:3d:11:ac:b5:d9:
27:48:85:c7:d2:a9:f4:4d:b9:90:5d:a3:4c:36:3e:
73:9e:79:9b:60:97:5a:c9:21:65:f9:2b:ff:2a:ed:
b0:7f:04:d8:9b:88:2e:73:18:5e:92:07:6b:94:10:
77:20:17:72:d4:82:be:dd:30:66:3f:ef:a0:a4:b0:
7c:c0:ca:a6:70:57:85:f8:fb:b5:87:7e:1c:f8:98:
22:26:6e:61:1f:f8:a6:59:d7:e3:7b:50:02:b0:8c:
27:b2:54:d1:de:e2:6e:66:91:5e:47:eb:ba:a6:d4:
a4:41:82:bb:dd:a7:84:9a:08:ad:60:4e:a8:92:e7:
b4:d5:4b:93:33:7c:16:d9:98:24:0d:a0:84:10:09:
61:3b:c2:5d:d7:23:b9:27:dc:2c:40:fc:46:11:ac:
a0:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:B2:83:77:D2:A0:D9:FE:17:31:9F:9A:27:2B:DF:FA:C5:F1:AF:F3
X509v3 Authority Key Identifier:
keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/drKDd9Kg2f4XMZ-aJyvf-sXxr_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.202.0/23
Signature Algorithm: sha256WithRSAEncryption
57:53:4a:84:c1:1f:6f:31:fe:c9:8a:16:07:95:96:82:db:a4:
c2:a7:e7:ca:c9:94:96:16:bd:f8:d0:13:2e:3b:9d:68:89:9a:
5a:c4:8c:4f:98:8e:f0:7c:ee:73:1e:b5:de:c0:16:3c:11:8b:
fb:08:30:9a:8a:fb:db:7d:f3:28:35:67:ce:c0:96:27:5e:a2:
02:23:b8:aa:0d:a0:3d:38:14:65:c4:30:28:45:b2:42:45:93:
66:43:cb:32:0e:7d:57:64:62:5a:7b:cd:dc:15:d6:49:c6:23:
97:dc:96:e2:d5:b1:39:5b:c9:88:05:e7:f0:2f:18:06:bf:a4:
61:2e:59:7c:6b:1b:5b:11:35:04:bb:53:b3:da:6e:82:17:14:
ee:27:d9:18:7d:37:75:88:ff:87:de:40:80:4a:02:eb:b8:dd:
e1:00:e2:5c:0b:d7:a5:43:83:b5:59:15:ed:1e:a6:95:d8:12:
93:56:f1:df:71:af:73:eb:5f:38:70:fe:a0:ec:ec:e3:11:40:
5a:8b:aa:af:57:55:70:74:a3:89:c2:67:d1:39:d8:77:b7:22:
70:8d:a0:5e:17:93:e8:9c:51:c9:be:fd:e7:4a:2f:80:1c:46:
10:74:36:3f:cb:eb:c0:e7:7e:59:ec:78:ec:05:98:ff:bc:a1:
ad:d9:42:b9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzJTYpH6nUJx9GKE+XeGtRxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyNTRhOWYzYTI2NjUxM2RkYzY5MzVkOGJlMDIyZTdlNTIz
MGVhMTAwHhcNMjQwMTAyMDgzMjMxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NmIyODM3N2QyYTBkOWZlMTczMTlmOWEyNzJiZGZmYWM1ZjFhZmYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0HoQYYIVjoPc7giEHXNSd1N/QrhA
UhApAu6+yMCOE3FLRzI4yNiD+AUi/LF719RQHJsfzY5LF4WJOFONq5k2n29SqLyl
WEgT89BFa6Z6NbC24Mxdsyk1H2uhCTEtDZJ4eZgTPRGstdknSIXH0qn0TbmQXaNM
Nj5znnmbYJdaySFl+Sv/Ku2wfwTYm4gucxhekgdrlBB3IBdy1IK+3TBmP++gpLB8
wMqmcFeF+Pu1h34c+JgiJm5hH/imWdfje1ACsIwnslTR3uJuZpFeR+u6ptSkQYK7
3aeEmgitYE6okue01UuTM3wW2ZgkDaCEEAlhO8Jd1yO5J9wsQPxGEaygVQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHayg3fSoNn+FzGfmicr3/rF8a/zMB8GA1UdIwQY
MBaAFKJUqfOiZlE93Gk12L4CLn5SMOoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2xTcDg2Sm1VVDNjYVRYWXZnSXVmbEl3NmhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9iNjAzNzMtODE4ZS00MGE5LTkzMTkt
YWRkZjBlMTg0OWViLzEvZHJLRGQ5S2cyZjRYTVotYUp5dmYtc1h4cl9NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC9iNjAzNzMtODE4ZS00MGE5LTkzMTktYWRkZjBlMTg0OWVi
LzEvb2xTcDg2Sm1VVDNjYVRYWXZnSXVmbEl3NmhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLZLKMA0G
CSqGSIb3DQEBCwUAA4IBAQBXU0qEwR9vMf7JihYHlZaC26TCp+fKyZSWFr340BMu
O51oiZpaxIxPmI7wfO5zHrXewBY8EYv7CDCaivvbffMoNWfOwJYnXqICI7iqDaA9
OBRlxDAoRbJCRZNmQ8syDn1XZGJae83cFdZJxiOX3Jbi1bE5W8mIBefwLxgGv6Rh
Lll8axtbETUEu1Oz2m6CFxTuJ9kYfTd1iP+H3kCASgLruN3hAOJcC9elQ4O1WRXt
HqaV2BKTVvHfca9z6184cP6g7OzjEUBai6qvV1VwdKOJwmfROdh3tyJwjaBeF5Po
nFHJvv3nSi+AHEYQdDY/y+vA535Z7HjsBZj/vKGt2UK5
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:49 2024 by rpki-client on console-ams.rpki-client.org