Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/r9D9qOlg4lxmZO1c1Awd6TNEFTU.roa
File: r9D9qOlg4lxmZO1c1Awd6TNEFTU.roa (raw, json)
Hash identifier: nJtoB/4T+egNJL52mFCZz7RIi5spzEvrRJvkv3RQKxc=
Subject key identifier: AF:D0:FD:A8:E9:60:E2:5C:66:64:ED:5C:D4:0C:1D:E9:33:44:15:35
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018E8458F106992B01B676C7680514F72C03
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/r9D9qOlg4lxmZO1c1Awd6TNEFTU.roa
Signing time: Thu 28 Mar 2024 09:16:45 +0000
ROA not before: Thu 28 Mar 2024 09:16:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13213
IP address blocks: 45.128.198.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Mar 2024 19:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:84:58:f1:06:99:2b:01:b6:76:c7:68:05:14:f7:2c:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Mar 28 09:16:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=afd0fda8e960e25c6664ed5cd40c1de933441535
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:a4:92:74:38:37:a9:5b:dc:e7:5f:13:3a:b3:
23:d7:6d:64:91:ff:7f:0c:f4:ab:65:6e:22:68:cd:
b3:46:76:16:8b:3c:57:95:b1:9c:6d:49:78:fa:60:
be:5d:f6:a5:2b:fa:37:8e:de:22:dd:35:0e:e7:9a:
94:2c:9f:a1:2b:ba:e2:c0:7d:6f:63:cb:2d:7a:a7:
27:7b:c2:03:ef:38:84:5a:6f:6f:6b:cf:2e:4d:3d:
3c:cf:78:83:c5:a7:0b:22:cd:b1:50:3e:0a:7b:2f:
d7:8a:04:57:fc:e0:1c:04:2a:c0:c8:02:73:cc:91:
ee:88:c3:f6:b5:bf:f7:15:7e:03:ac:bc:24:05:a1:
18:04:e7:6f:f2:29:c6:92:64:3f:ae:54:ad:b5:87:
02:55:f5:23:80:46:47:24:f8:14:34:ad:92:a4:03:
3b:7b:4d:6a:dd:a9:92:15:88:16:00:fa:58:1c:51:
2d:75:a1:65:6d:69:d0:52:86:07:61:18:c7:db:77:
74:ba:ea:28:60:a2:f3:7b:71:b7:9f:10:96:d3:db:
38:42:63:f3:0d:ce:e1:23:fd:19:ee:12:ef:45:31:
87:f4:75:54:e9:24:9f:27:e2:7c:4b:9c:de:64:b8:
01:9f:07:5e:a9:b9:dc:25:aa:d8:43:c2:1c:74:9b:
67:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:D0:FD:A8:E9:60:E2:5C:66:64:ED:5C:D4:0C:1D:E9:33:44:15:35
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/r9D9qOlg4lxmZO1c1Awd6TNEFTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.198.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:3f:69:41:42:04:44:bd:5e:a1:4c:8e:8d:98:ce:57:5c:69:
38:f8:34:25:29:d5:27:68:b9:f8:99:ad:a5:4c:0a:1e:0a:3a:
54:7d:27:6c:dd:d4:70:37:8f:ca:b5:39:85:8e:46:1b:b1:15:
4d:4a:8d:9a:55:70:fc:dd:9c:98:cc:ac:56:84:45:77:bb:35:
a5:93:d6:09:2d:8b:ec:b0:30:62:55:2e:7d:91:c2:19:91:8c:
ff:00:d4:5f:ed:40:89:4e:06:5e:a1:c6:05:06:3e:f5:9c:51:
2f:bb:6f:14:53:70:c3:b0:20:70:16:8f:4f:fe:84:e5:cd:8f:
08:5e:48:a6:82:59:a0:2a:3f:98:a4:5c:d3:93:9d:4c:7b:9f:
b2:97:ea:69:0e:71:4b:bf:32:c2:60:1c:7c:1e:17:00:f0:b8:
66:98:df:33:c7:64:1c:15:fd:56:68:50:60:0a:9f:3a:f2:e2:
c4:4b:ef:5e:70:ea:fe:9e:7e:05:73:3c:61:bb:f5:37:c9:45:
00:7a:0e:e7:cd:21:fa:52:9b:11:83:b8:05:c3:34:7f:b2:3d:
8e:a0:ba:0e:a1:76:1f:4d:3a:9a:cc:ea:2c:a8:27:69:24:ab:
e6:b2:d5:f3:de:47:da:b8:55:21:3e:1b:9f:9b:36:b8:9b:e9:
ce:f8:01:98
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY6EWPEGmSsBtnbHaAUU9ywDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxNTUwMDljM2RlNDIxY2M0ZTY3YjlhOWFlNDIzYmIzNWRl
MGI5MjYwHhcNMjQwMzI4MDkxNjQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZmQwZmRhOGU5NjBlMjVjNjY2NGVkNWNkNDBjMWRlOTMzNDQxNTM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhqSSdDg3qVvc518TOrMj121kkf9/
DPSrZW4iaM2zRnYWizxXlbGcbUl4+mC+XfalK/o3jt4i3TUO55qULJ+hK7riwH1v
Y8steqcne8ID7ziEWm9va88uTT08z3iDxacLIs2xUD4Key/XigRX/OAcBCrAyAJz
zJHuiMP2tb/3FX4DrLwkBaEYBOdv8inGkmQ/rlSttYcCVfUjgEZHJPgUNK2SpAM7
e01q3amSFYgWAPpYHFEtdaFlbWnQUoYHYRjH23d0uuooYKLze3G3nxCW09s4QmPz
Dc7hI/0Z7hLvRTGH9HVU6SSfJ+J8S5zeZLgBnwdeqbncJarYQ8IcdJtn1wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK/Q/ajpYOJcZmTtXNQMHekzRBU1MB8GA1UdIwQY
MBaAFLFVAJw95CHMTme5qa5CO7Nd4LkmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYt
NzM4NTZhZjQ5ZjNlLzEvcjlEOXFPbGc0bHhtWk8xYzFBd2Q2VE5FRlRVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYtNzM4NTZhZjQ5ZjNl
LzEvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYDGMA0G
CSqGSIb3DQEBCwUAA4IBAQANP2lBQgREvV6hTI6NmM5XXGk4+DQlKdUnaLn4ma2l
TAoeCjpUfSds3dRwN4/KtTmFjkYbsRVNSo2aVXD83ZyYzKxWhEV3uzWlk9YJLYvs
sDBiVS59kcIZkYz/ANRf7UCJTgZeocYFBj71nFEvu28UU3DDsCBwFo9P/oTlzY8I
XkimglmgKj+YpFzTk51Me5+yl+ppDnFLvzLCYBx8HhcA8LhmmN8zx2QcFf1WaFBg
Cp868uLES+9ecOr+nn4Fczxhu/U3yUUAeg7nzSH6UpsRg7gFwzR/sj2OoLoOoXYf
TTqazOosqCdpJKvmstXz3kfauFUhPhufmza4m+nO+AGY
-----END CERTIFICATE-----
Generated at Thu Mar 28 22:13:28 2024 by rpki-client on console-ams.rpki-client.org