Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/1-o_k6BBbRBioDShwKWsqgFng8OQ.roa
File: 1-o_k6BBbRBioDShwKWsqgFng8OQ.roa (raw, json)
Hash identifier: KyZu1WmW9uFis9tkI6GSNfTy1fwbzDvh95iE78EgKpU=
Subject key identifier: FA:8F:E4:E8:10:5B:44:18:A8:0D:28:70:29:6B:2A:80:59:E0:F0:E4
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 01856F798D330EDA01564817DA7C0BE38E00
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/1-o_k6BBbRBioDShwKWsqgFng8OQ.roa
Signing time: Sun 01 Jan 2023 22:35:14 +0000
ROA not before: Sun 01 Jan 2023 22:35:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 45.128.199.0/24 maxlen: 24
45.146.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 Feb 2023 12:41:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:8d:33:0e:da:01:56:48:17:da:7c:0b:e3:8e:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 22:35:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fa8fe4e8105b4418a80d2870296b2a8059e0f0e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:4c:f0:9d:4c:99:ff:f7:02:36:2c:9d:cf:8a:
5a:fe:6c:e8:55:02:9c:d0:e9:57:d8:a0:8e:64:20:
c0:5f:cd:85:d4:ca:f3:20:4d:b4:89:a5:49:a2:b0:
21:63:eb:b1:6d:80:03:66:8c:fd:87:58:fe:af:be:
1e:53:76:15:27:56:29:bf:c9:53:d2:f5:80:bb:c9:
71:f2:a1:2e:98:c2:34:a6:27:08:4f:da:6d:fa:26:
78:b3:fd:a9:a7:cb:45:a8:3a:de:40:6b:54:3c:71:
37:83:7a:03:4b:01:44:b1:1f:79:27:7b:64:c6:7c:
05:b4:34:c5:42:8d:46:fb:03:b6:0d:04:88:70:db:
40:59:8d:ec:d2:05:1d:97:3e:e1:de:22:fc:3f:6e:
93:7e:1e:bd:d0:45:f9:0e:e9:00:b3:ca:21:d9:15:
a6:29:3f:dd:57:0a:56:a7:98:84:f4:68:78:ca:c1:
1f:1d:49:69:8c:01:06:03:3e:67:32:b9:4a:43:e8:
0f:dd:f6:f2:78:a9:c4:b6:bd:b6:6f:2b:b8:9f:f8:
98:e8:fd:fc:49:63:33:50:ec:31:39:8b:46:f3:31:
a2:34:ea:24:a4:2b:43:a6:a0:cc:1c:23:94:05:b7:
a5:09:7e:86:74:af:a6:25:f5:04:64:da:17:2f:fc:
d5:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:8F:E4:E8:10:5B:44:18:A8:0D:28:70:29:6B:2A:80:59:E0:F0:E4
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/1-o_k6BBbRBioDShwKWsqgFng8OQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.199.0/24
45.146.55.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:dd:b2:8d:a6:5b:fe:9c:06:d0:2b:dd:80:e8:76:2d:f1:f5:
5d:17:f7:02:d9:0d:09:6f:2f:e7:a3:27:83:09:56:51:79:c9:
96:70:2a:14:4a:62:75:f4:ef:2d:8f:a4:cc:ad:81:3f:56:c2:
8b:8d:bf:73:29:a3:5c:16:0a:f6:a5:6d:dd:81:a5:96:ff:cf:
48:4d:07:57:d8:41:62:f6:48:27:f8:c9:34:34:49:75:e0:6f:
5e:23:8c:6f:91:b2:24:3c:bb:bb:71:a8:c1:0f:78:4c:cf:e8:
d8:5b:5a:0d:46:dc:01:7f:44:bd:c5:31:8d:ad:19:66:72:5e:
20:e6:0d:c1:b4:a2:1f:39:4b:a2:d9:08:bf:bf:4d:0f:fe:db:
80:f8:63:19:dc:2a:33:2e:82:fa:d5:38:c4:b9:88:a8:4b:94:
d3:ab:be:12:dc:7a:9f:12:b7:7d:3c:14:29:c5:88:4c:a2:40:
40:b4:fa:7d:f8:db:db:8d:b7:21:fe:2d:ef:01:c5:d6:cd:5a:
9a:7b:04:e9:42:72:d5:ea:be:6a:44:89:65:68:70:ea:5b:c1:
1f:b9:15:d6:e3:ea:f8:b2:b8:3d:91:40:f6:81:48:9e:14:75:
79:2a:6d:66:f0:66:01:09:8f:3f:ca:aa:b8:dc:13:e1:f1:ef:
b2:89:33:e1
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgISAYVveY0zDtoBVkgX2nwL444AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxNTUwMDljM2RlNDIxY2M0ZTY3YjlhOWFlNDIzYmIzNWRl
MGI5MjYwHhcNMjMwMTAxMjIzNTE0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYThmZTRlODEwNWI0NDE4YTgwZDI4NzAyOTZiMmE4MDU5ZTBmMGU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmkzwnUyZ//cCNiydz4pa/mzoVQKc
0OlX2KCOZCDAX82F1MrzIE20iaVJorAhY+uxbYADZoz9h1j+r74eU3YVJ1Ypv8lT
0vWAu8lx8qEumMI0picIT9pt+iZ4s/2pp8tFqDreQGtUPHE3g3oDSwFEsR95J3tk
xnwFtDTFQo1G+wO2DQSIcNtAWY3s0gUdlz7h3iL8P26Tfh690EX5DukAs8oh2RWm
KT/dVwpWp5iE9Gh4ysEfHUlpjAEGAz5nMrlKQ+gP3fbyeKnEtr22byu4n/iY6P38
SWMzUOwxOYtG8zGiNOokpCtDpqDMHCOUBbelCX6GdK+mJfUEZNoXL/zVFwIDAQAB
o4ICEDCCAgwwHQYDVR0OBBYEFPqP5OgQW0QYqA0ocClrKoBZ4PDkMB8GA1UdIwQY
MBaAFLFVAJw95CHMTme5qa5CO7Nd4LkmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYt
NzM4NTZhZjQ5ZjNlLzEvMS1vX2s2QkJiUkJpb0RTaHdLV3NxZ0ZuZzhPUS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvYTAvZGU5MDJjLTNkMTMtNDdkMS1hNWU2LTczODU2YWY0OWYz
ZS8xL3NWVUFuRDNrSWN4T1o3bXBya0k3czEzZ3VTWS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAC2AxwME
AC2SNzANBgkqhkiG9w0BAQsFAAOCAQEAv92yjaZb/pwG0CvdgOh2LfH1XRf3AtkN
CW8v56MngwlWUXnJlnAqFEpidfTvLY+kzK2BP1bCi42/cymjXBYK9qVt3YGllv/P
SE0HV9hBYvZIJ/jJNDRJdeBvXiOMb5GyJDy7u3GowQ94TM/o2FtaDUbcAX9EvcUx
ja0ZZnJeIOYNwbSiHzlLotkIv79ND/7bgPhjGdwqMy6C+tU4xLmIqEuU06u+Etx6
nxK3fTwUKcWITKJAQLT6ffjb2423If4t7wHF1s1amnsE6UJy1eq+akSJZWhw6lvB
H7kV1uPq+LK4PZFA9oFInhR1eSptZvBmAQmPP8qquNwT4fHvsokz4Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:51 2024 by rpki-client on console-fra.rpki-client.org