Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/GWihoUIu6sOyCuNepGvmqedeg8w.roa
File: GWihoUIu6sOyCuNepGvmqedeg8w.roa (raw, json)
Hash identifier: EnKOCe5cyYmIW+WpHIy2Kk7KQJ7fzr8NyZEGF43ZNYc=
Subject key identifier: 19:68:A1:A1:42:2E:EA:C3:B2:0A:E3:5E:A4:6B:E6:A9:E7:5E:83:CC
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018C5F5E5312543C4211C3024BCE07B364E3
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/GWihoUIu6sOyCuNepGvmqedeg8w.roa
Signing time: Tue 12 Dec 2023 18:51:06 +0000
ROA not before: Tue 12 Dec 2023 18:51:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 11172
IP address blocks: 45.84.217.0/24 maxlen: 24
2a0f:15c1::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:5f:5e:53:12:54:3c:42:11:c3:02:4b:ce:07:b3:64:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Dec 12 18:51:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1968a1a1422eeac3b20ae35ea46be6a9e75e83cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:05:3d:c4:7d:21:5d:e8:0a:56:bb:6f:d8:60:
52:2d:1c:a1:44:dd:36:63:c5:19:f7:7e:7a:40:22:
33:5a:ac:a2:13:e5:73:b1:57:3e:ca:33:f2:92:47:
09:c9:8c:e1:48:76:1c:88:3b:c6:cf:ba:c9:ee:a2:
ba:9e:36:7e:1d:57:05:9c:34:2f:1e:6a:2f:eb:37:
8e:62:90:67:5f:52:ad:91:b8:c6:be:7c:7e:b2:1c:
91:5e:19:4c:ca:2c:5e:ea:86:0c:5c:98:93:ae:55:
8b:98:5e:4e:81:7b:b8:24:63:37:11:de:86:8c:05:
ec:5a:6c:a0:5a:c6:7a:9f:12:5a:15:ba:c0:a5:a1:
96:dd:0c:af:39:26:27:9a:e2:23:a7:13:3e:69:3f:
03:1b:f9:97:de:bb:f7:7b:15:c3:ee:6d:9d:6c:00:
1f:32:da:96:ad:87:f4:5b:50:38:c8:14:a9:a9:c9:
48:23:92:51:5f:af:76:d0:ab:4d:9c:4c:32:b8:3a:
67:3a:f3:d1:78:fe:ca:b4:a7:2e:0d:49:ab:8a:ca:
7f:24:c4:02:28:4c:68:b4:9e:c2:a8:3a:86:25:cd:
b0:cf:86:14:57:58:74:44:9e:34:f7:be:21:33:2c:
bd:34:c6:81:18:96:9f:0c:d4:ea:7d:c3:00:d5:9f:
0f:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:68:A1:A1:42:2E:EA:C3:B2:0A:E3:5E:A4:6B:E6:A9:E7:5E:83:CC
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/GWihoUIu6sOyCuNepGvmqedeg8w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.217.0/24
IPv6:
2a0f:15c1::/32
Signature Algorithm: sha256WithRSAEncryption
52:be:29:0a:06:2b:f6:ee:66:d1:a3:9e:d2:d9:92:24:b7:18:
58:8b:2f:61:5f:26:3c:96:bb:5e:d6:13:9c:f6:12:ac:64:a8:
9a:ac:c0:a8:9a:ec:34:54:c3:10:32:40:1b:df:e7:b1:c2:5a:
96:b3:7f:17:7a:cf:5d:3b:6c:15:95:95:2f:44:bd:9d:6b:90:
a8:49:8f:05:f0:c9:29:58:2c:c7:84:cd:0c:a9:b7:b9:ec:d2:
09:b8:fc:c2:be:6b:ea:f7:4e:1f:9e:87:fc:33:47:88:f6:de:
38:27:99:8c:7c:12:aa:ab:49:40:f7:f9:b6:db:65:11:95:8e:
d9:63:33:86:73:d5:aa:99:77:b8:98:13:f6:65:8d:2e:bd:e7:
9d:fa:01:39:1a:33:34:f7:e8:ce:67:3b:2a:4a:d5:03:c6:25:
ba:9b:34:d6:9f:e9:dc:15:0e:e7:34:64:89:18:8e:48:bf:ff:
ea:83:36:21:c9:f3:9f:fe:9e:50:7f:93:57:86:04:a4:ee:0f:
1a:ea:ff:72:4e:04:c7:96:9e:a0:e9:02:c0:9e:e4:c6:d3:c0:
42:72:28:ee:7c:9e:e2:fb:d2:7e:3a:be:9c:ab:98:81:eb:9b:
c0:70:1b:13:b0:57:4f:5e:69:c5:42:a9:45:be:bb:0c:7f:a2:
2a:52:bf:0b
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYxfXlMSVDxCEcMCS84Hs2TjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxNTUwMDljM2RlNDIxY2M0ZTY3YjlhOWFlNDIzYmIzNWRl
MGI5MjYwHhcNMjMxMjEyMTg1MTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxOTY4YTFhMTQyMmVlYWMzYjIwYWUzNWVhNDZiZTZhOWU3NWU4M2NjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjgU9xH0hXegKVrtv2GBSLRyhRN02
Y8UZ9356QCIzWqyiE+VzsVc+yjPykkcJyYzhSHYciDvGz7rJ7qK6njZ+HVcFnDQv
Hmov6zeOYpBnX1KtkbjGvnx+shyRXhlMyixe6oYMXJiTrlWLmF5OgXu4JGM3Ed6G
jAXsWmygWsZ6nxJaFbrApaGW3QyvOSYnmuIjpxM+aT8DG/mX3rv3exXD7m2dbAAf
MtqWrYf0W1A4yBSpqclII5JRX6920KtNnEwyuDpnOvPReP7KtKcuDUmrisp/JMQC
KExotJ7CqDqGJc2wz4YUV1h0RJ40974hMyy9NMaBGJafDNTqfcMA1Z8PeQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFBlooaFCLurDsgrjXqRr5qnnXoPMMB8GA1UdIwQY
MBaAFLFVAJw95CHMTme5qa5CO7Nd4LkmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYt
NzM4NTZhZjQ5ZjNlLzEvR1dpaG9VSXU2c095Q3VOZXBHdm1xZWRlZzh3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYtNzM4NTZhZjQ5ZjNl
LzEvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQALVTZMA0E
AgACMAcDBQAqDxXBMA0GCSqGSIb3DQEBCwUAA4IBAQBSvikKBiv27mbRo57S2ZIk
txhYiy9hXyY8lrte1hOc9hKsZKiarMComuw0VMMQMkAb3+exwlqWs38Xes9dO2wV
lZUvRL2da5CoSY8F8MkpWCzHhM0Mqbe57NIJuPzCvmvq904fnof8M0eI9t44J5mM
fBKqq0lA9/m222URlY7ZYzOGc9WqmXe4mBP2ZY0uveed+gE5GjM09+jOZzsqStUD
xiW6mzTWn+ncFQ7nNGSJGI5Iv//qgzYhyfOf/p5Qf5NXhgSk7g8a6v9yTgTHlp6g
6QLAnuTG08BCcijufJ7i+9J+Or6cq5iB65vAcBsTsFdPXmnFQqlFvrsMf6IqUr8L
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:51 2024 by rpki-client on console-ams.rpki-client.org