Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/WqS-WxjGn_Dw0kujzwKNh3BaZRs.roa
File: WqS-WxjGn_Dw0kujzwKNh3BaZRs.roa (raw, json)
Hash identifier: OVoXk7JREBLtFoQqYOtVsYfmdsGdG6XHhQYYJBiUisg=
Subject key identifier: 5A:A4:BE:5B:18:C6:9F:F0:F0:D2:4B:A3:CF:02:8D:87:70:5A:65:1B
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 01856F79822E5BE552F175507DF9AC2E780E
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/WqS-WxjGn_Dw0kujzwKNh3BaZRs.roa
Signing time: Sun 01 Jan 2023 22:35:12 +0000
ROA not before: Sun 01 Jan 2023 22:35:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49321
IP address blocks: 45.149.2.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:82:2e:5b:e5:52:f1:75:50:7d:f9:ac:2e:78:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 22:35:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5aa4be5b18c69ff0f0d24ba3cf028d87705a651b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:ed:a3:61:55:13:45:d5:cb:84:2d:64:fb:ee:
a1:55:cd:de:1c:c6:05:a0:dd:fa:78:55:e9:88:91:
40:c1:60:af:f6:e2:83:4d:11:81:e1:6b:29:bb:18:
7f:7a:33:16:f9:a1:d8:df:bd:9b:4b:3b:05:aa:0d:
5d:ad:3a:9e:b0:07:76:3b:5a:80:13:5b:1c:6a:86:
39:7a:d5:f0:a2:f8:04:2a:e7:05:00:c7:8d:a5:c8:
4d:32:b7:27:21:59:f4:a9:d4:8a:33:1c:dc:ed:67:
0c:18:0f:34:e1:31:de:94:af:78:f9:12:98:cb:76:
27:ea:fe:1a:b2:17:e6:92:e9:ca:2e:12:f1:26:7f:
6e:83:c6:f6:46:af:5a:f8:41:68:a5:62:63:03:9a:
17:27:97:c4:12:34:f8:67:d7:f8:f4:68:f9:4e:53:
67:d2:3b:52:a1:c2:9c:56:64:4e:8e:72:36:97:82:
bf:d5:1b:b2:67:da:82:d4:c5:e5:e1:f1:63:bb:cd:
68:4b:27:9e:dd:a9:33:ad:f3:72:a5:e2:b3:7f:90:
96:81:9e:cc:03:0e:d3:cf:d5:41:7f:62:dc:54:3b:
2a:a1:a0:15:43:ce:f4:00:85:44:03:58:49:fa:43:
45:89:cc:a9:99:a8:43:eb:25:d6:ab:53:32:36:bd:
d9:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:A4:BE:5B:18:C6:9F:F0:F0:D2:4B:A3:CF:02:8D:87:70:5A:65:1B
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/WqS-WxjGn_Dw0kujzwKNh3BaZRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.2.0/24
Signature Algorithm: sha256WithRSAEncryption
33:e2:8d:ed:5f:79:df:e8:5b:26:6a:58:f4:c4:d2:bb:86:56:
22:de:fb:3d:84:e9:9d:77:aa:3b:5f:db:9b:fd:ac:77:9a:fd:
a0:0b:01:df:34:86:67:93:26:23:cc:f8:ea:5b:43:1d:b5:16:
d5:ed:17:9d:60:71:37:01:51:f7:20:3a:7b:3b:f6:15:d2:cb:
76:ef:e5:a4:95:84:28:45:d5:cf:04:e2:bd:9f:21:f6:39:b7:
05:70:cb:47:bd:5f:14:db:46:28:0c:b6:dd:60:83:b0:40:b6:
28:08:e6:b9:f2:26:f9:02:dd:aa:45:76:73:dd:7e:8d:b2:09:
18:53:72:27:fb:46:1d:77:83:4a:61:c9:c6:3a:8e:ab:bb:c3:
73:b5:91:08:6d:fc:82:33:5a:88:92:aa:31:67:a9:27:3c:12:
d9:59:53:0f:47:0a:38:b9:71:cb:45:48:29:1c:99:6a:c3:31:
db:5b:3b:0b:c9:c3:a6:78:61:3a:71:1d:88:95:49:0e:1a:e1:
4d:be:e5:94:a7:f3:bb:13:66:10:e0:65:90:05:03:ea:e1:47:
73:b5:d9:19:0e:66:9e:dc:3c:ad:ed:a1:c5:d8:8a:6f:c9:c9:
4f:fa:c3:ef:a3:ea:60:8e:d4:6c:80:14:4f:5c:dd:0f:ea:80:
89:61:6f:b7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVveYIuW+VS8XVQffmsLngOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxNTUwMDljM2RlNDIxY2M0ZTY3YjlhOWFlNDIzYmIzNWRl
MGI5MjYwHhcNMjMwMTAxMjIzNTEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YWE0YmU1YjE4YzY5ZmYwZjBkMjRiYTNjZjAyOGQ4NzcwNWE2NTFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjO2jYVUTRdXLhC1k++6hVc3eHMYF
oN36eFXpiJFAwWCv9uKDTRGB4Wspuxh/ejMW+aHY372bSzsFqg1drTqesAd2O1qA
E1scaoY5etXwovgEKucFAMeNpchNMrcnIVn0qdSKMxzc7WcMGA804THelK94+RKY
y3Yn6v4ashfmkunKLhLxJn9ug8b2Rq9a+EFopWJjA5oXJ5fEEjT4Z9f49Gj5TlNn
0jtSocKcVmROjnI2l4K/1RuyZ9qC1MXl4fFju81oSyee3akzrfNypeKzf5CWgZ7M
Aw7Tz9VBf2LcVDsqoaAVQ870AIVEA1hJ+kNFicypmahD6yXWq1MyNr3ZgQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFqkvlsYxp/w8NJLo88CjYdwWmUbMB8GA1UdIwQY
MBaAFLFVAJw95CHMTme5qa5CO7Nd4LkmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYt
NzM4NTZhZjQ5ZjNlLzEvV3FTLVd4akduX0R3MGt1anp3S05oM0JhWlJzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYtNzM4NTZhZjQ5ZjNl
LzEvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZUCMA0G
CSqGSIb3DQEBCwUAA4IBAQAz4o3tX3nf6Fsmalj0xNK7hlYi3vs9hOmdd6o7X9ub
/ax3mv2gCwHfNIZnkyYjzPjqW0MdtRbV7RedYHE3AVH3IDp7O/YV0st27+WklYQo
RdXPBOK9nyH2ObcFcMtHvV8U20YoDLbdYIOwQLYoCOa58ib5At2qRXZz3X6NsgkY
U3In+0Ydd4NKYcnGOo6ru8NztZEIbfyCM1qIkqoxZ6knPBLZWVMPRwo4uXHLRUgp
HJlqwzHbWzsLycOmeGE6cR2IlUkOGuFNvuWUp/O7E2YQ4GWQBQPq4UdztdkZDmae
3Dyt7aHF2IpvyclP+sPvo+pgjtRsgBRPXN0P6oCJYW+3
-----END CERTIFICATE-----
Generated at Tue Jan 2 09:01:43 2024 by rpki-client on console-ams.rpki-client.org