Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/LJhV9mL2V2C7KbJ2AVwUmrEW55Q.roa
File: LJhV9mL2V2C7KbJ2AVwUmrEW55Q.roa (raw, json)
Hash identifier: 3Mm6SOjHM94z1C2RFYyY3O9BYKQmrbWOpi+p3M8twP0=
Subject key identifier: 2C:98:55:F6:62:F6:57:60:BB:29:B2:76:01:5C:14:9A:B1:16:E7:94
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 01856F797711BF42FD05DA9DF494EB623987
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/LJhV9mL2V2C7KbJ2AVwUmrEW55Q.roa
Signing time: Sun 01 Jan 2023 22:35:09 +0000
ROA not before: Sun 01 Jan 2023 22:35:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 45.138.17.0/24 maxlen: 24
2a0f:e380::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:77:11:bf:42:fd:05:da:9d:f4:94:eb:62:39:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 22:35:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2c9855f662f65760bb29b276015c149ab116e794
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:94:9a:f3:d4:1b:f2:7b:af:4e:f1:fe:5b:f3:
9c:fb:dd:93:cd:53:b0:36:9d:ee:ce:5f:3e:8e:84:
dd:e3:19:02:7d:31:e6:df:9b:73:95:98:15:cc:46:
47:ad:74:d8:06:10:5a:8e:78:63:18:7a:00:47:8e:
cf:39:19:67:d8:28:7e:86:19:46:bc:be:96:e1:29:
e9:fb:4d:a1:09:b1:e0:7f:f3:c1:79:8d:b4:06:61:
f5:ff:35:68:25:96:22:aa:48:73:7c:3a:b1:3f:4d:
45:7c:6d:19:db:4c:3a:42:b5:62:e1:8c:ac:b8:67:
ec:fa:f6:74:91:0c:d6:66:ab:38:1b:e8:68:71:6c:
d2:80:0f:0a:50:73:26:90:bd:95:d4:9e:a2:9a:24:
05:91:48:7c:a6:25:d4:27:11:f1:9e:a1:94:a6:98:
2d:a0:3f:45:8e:6d:67:7d:11:45:fa:ee:db:5b:4a:
2c:f5:4c:75:10:16:05:9e:fb:6f:4c:e9:ae:df:16:
81:41:f3:98:ca:a4:5b:01:dd:57:59:86:ff:e5:4b:
63:9f:6e:15:f3:92:79:75:26:60:8a:11:e4:ae:9c:
3c:be:e0:43:17:fb:82:35:63:6a:03:8b:3f:06:82:
51:31:a1:f4:ff:f0:df:c1:04:3f:a4:b8:ba:eb:f7:
5e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:98:55:F6:62:F6:57:60:BB:29:B2:76:01:5C:14:9A:B1:16:E7:94
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/LJhV9mL2V2C7KbJ2AVwUmrEW55Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.17.0/24
IPv6:
2a0f:e380::/32
Signature Algorithm: sha256WithRSAEncryption
8e:98:88:82:f5:3f:e5:5e:a1:2a:4b:42:fe:5f:96:37:a3:f5:
40:b2:9c:4b:b5:7e:d3:5d:3d:66:2a:b9:f3:c3:b3:ef:1b:c6:
fe:38:c5:83:0c:6f:35:3c:c2:d8:ca:b1:74:7e:c7:d3:fe:04:
cb:e4:ad:79:94:98:3d:94:dc:df:3d:5c:d3:e3:b4:c8:01:68:
7a:3a:e6:a0:b9:29:ac:aa:72:67:70:f1:da:1f:bc:d3:d5:ab:
91:6e:48:6f:b4:28:48:17:2c:2a:1f:c0:11:a7:b6:46:47:bc:
6e:4a:e4:f2:29:4f:02:98:b0:08:bd:e5:16:48:30:3e:e1:6e:
73:2e:2a:f9:97:8f:92:f1:5b:cc:f0:5d:c1:51:56:64:22:68:
39:33:68:68:5b:b8:b1:af:98:90:f5:e0:ec:a1:69:35:ec:26:
74:82:b7:56:9a:88:1a:12:08:3d:30:44:76:12:f5:56:fb:db:
5f:8c:bc:86:26:d7:76:1e:9b:88:09:6f:e4:b1:b6:c4:f5:f8:
4b:33:1a:73:b1:2a:3a:69:17:8e:34:bd:21:a1:4b:b1:f1:88:
83:ee:01:5a:aa:6f:96:ad:bc:ef:0c:90:ca:81:13:c7:64:81:
95:d9:20:b4:f1:8b:3f:69:0b:dc:3a:e9:98:af:aa:48:21:a5:
cf:ce:0c:f2
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVveXcRv0L9Bdqd9JTrYjmHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxNTUwMDljM2RlNDIxY2M0ZTY3YjlhOWFlNDIzYmIzNWRl
MGI5MjYwHhcNMjMwMTAxMjIzNTA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYzk4NTVmNjYyZjY1NzYwYmIyOWIyNzYwMTVjMTQ5YWIxMTZlNzk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhJSa89Qb8nuvTvH+W/Oc+92TzVOw
Np3uzl8+joTd4xkCfTHm35tzlZgVzEZHrXTYBhBajnhjGHoAR47PORln2Ch+hhlG
vL6W4Snp+02hCbHgf/PBeY20BmH1/zVoJZYiqkhzfDqxP01FfG0Z20w6QrVi4Yys
uGfs+vZ0kQzWZqs4G+hocWzSgA8KUHMmkL2V1J6imiQFkUh8piXUJxHxnqGUppgt
oD9Fjm1nfRFF+u7bW0os9Ux1EBYFnvtvTOmu3xaBQfOYyqRbAd1XWYb/5Utjn24V
85J5dSZgihHkrpw8vuBDF/uCNWNqA4s/BoJRMaH0//DfwQQ/pLi66/demQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFCyYVfZi9ldguymydgFcFJqxFueUMB8GA1UdIwQY
MBaAFLFVAJw95CHMTme5qa5CO7Nd4LkmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYt
NzM4NTZhZjQ5ZjNlLzEvTEpoVjltTDJWMkM3S2JKMkFWd1VtckVXNTVRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYtNzM4NTZhZjQ5ZjNl
LzEvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQALYoRMA0E
AgACMAcDBQAqD+OAMA0GCSqGSIb3DQEBCwUAA4IBAQCOmIiC9T/lXqEqS0L+X5Y3
o/VAspxLtX7TXT1mKrnzw7PvG8b+OMWDDG81PMLYyrF0fsfT/gTL5K15lJg9lNzf
PVzT47TIAWh6OuaguSmsqnJncPHaH7zT1auRbkhvtChIFywqH8ARp7ZGR7xuSuTy
KU8CmLAIveUWSDA+4W5zLir5l4+S8VvM8F3BUVZkImg5M2hoW7ixr5iQ9eDsoWk1
7CZ0grdWmogaEgg9MER2EvVW+9tfjLyGJtd2HpuICW/ksbbE9fhLMxpzsSo6aReO
NL0hoUux8YiD7gFaqm+WrbzvDJDKgRPHZIGV2SC08Ys/aQvcOumYr6pIIaXPzgzy
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:51 2024 by rpki-client on console-ams.rpki-client.org