Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/vsRuQxEkm2lozSpLjnvoqDdnoTU.roa
File: vsRuQxEkm2lozSpLjnvoqDdnoTU.roa (raw, json)
Hash identifier: YbTPA8mmLzRRmRB/GOtBMJRE5o/Pfl2QoGp4ZVlIDsc=
Subject key identifier: BE:C4:6E:43:11:24:9B:69:68:CD:2A:4B:8E:7B:E8:A8:37:67:A1:35
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018AB0C7ABFA308C48B0DF14241A660F3C7A
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/vsRuQxEkm2lozSpLjnvoqDdnoTU.roa
Signing time: Wed 20 Sep 2023 04:09:50 +0000
ROA not before: Wed 20 Sep 2023 04:09:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13213
IP address blocks: 45.128.198.0/24 maxlen: 24
136.144.40.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b0:c7:ab:fa:30:8c:48:b0:df:14:24:1a:66:0f:3c:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Sep 20 04:09:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bec46e4311249b6968cd2a4b8e7be8a83767a135
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:cc:66:1c:2e:de:10:d7:41:af:45:8c:aa:53:
a5:4d:f4:08:47:91:3e:0c:b5:86:f6:b7:2b:d1:71:
fa:5c:87:06:97:76:e8:bc:8b:21:53:09:5c:56:49:
2d:6f:6e:e1:83:83:ae:b2:d2:f6:52:1f:bd:06:a2:
ae:e0:a9:9f:12:0a:0a:a0:a6:f0:56:0c:2b:37:32:
78:83:c8:d0:c1:61:b0:57:d8:6e:4c:5e:12:7b:84:
76:33:1c:c9:70:ef:3b:b6:0d:63:86:39:db:8e:74:
8e:85:c7:07:4f:c0:e9:42:c5:ae:ff:74:d8:eb:35:
aa:a0:86:10:43:42:c3:1f:47:b4:10:46:e0:06:34:
2e:72:af:49:6d:05:a1:11:70:f9:bd:0f:7a:b7:e4:
ce:73:71:fa:55:59:6e:cf:96:80:4f:ba:80:20:04:
97:9e:04:7a:12:dc:64:cd:3e:32:de:40:3f:c9:21:
c6:22:0f:78:ad:b4:9e:a9:d3:d6:5d:31:94:3e:40:
68:de:4b:2e:5a:69:34:23:da:d4:de:cc:58:5e:f4:
84:b6:b6:10:df:2e:bc:2b:31:c1:89:38:ac:6f:a7:
03:49:ab:e9:c7:b8:41:48:14:ab:ff:c4:c5:30:df:
f9:88:bb:62:40:5a:a1:b0:ac:76:cb:a5:72:66:a3:
3e:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:C4:6E:43:11:24:9B:69:68:CD:2A:4B:8E:7B:E8:A8:37:67:A1:35
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/vsRuQxEkm2lozSpLjnvoqDdnoTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.198.0/24
136.144.40.0/24
Signature Algorithm: sha256WithRSAEncryption
31:3f:82:39:8d:15:28:b5:4f:80:2d:d5:2f:19:d8:9f:73:9d:
e4:ca:dc:52:b0:7d:46:9c:26:90:64:fb:34:66:70:fd:1a:92:
c1:97:f9:a8:df:49:c6:a3:b0:92:f4:f1:59:8a:cf:28:d3:43:
f7:5d:a2:44:10:75:93:01:80:7f:5e:49:c9:c5:1b:f1:90:62:
17:34:eb:52:ba:96:f8:17:95:6b:d9:eb:6b:11:3b:7c:e0:93:
a7:6e:20:e2:b9:e5:2c:d2:87:36:66:13:da:b4:1d:f5:74:78:
12:a4:fd:e0:0f:1a:73:cc:94:04:ab:cb:fc:f1:67:f9:2a:90:
45:04:74:88:50:de:ac:98:7e:cf:dc:7c:8a:b2:55:6e:1f:c5:
03:df:42:51:c6:13:8a:24:57:c5:39:8b:50:9a:92:65:9e:09:
7a:bc:c3:37:0a:2c:c9:e5:df:c8:32:ab:45:4e:34:65:d6:0a:
30:49:6d:bf:fc:8b:eb:a9:13:ce:08:ad:43:9a:3b:ef:37:d5:
89:ed:d2:d2:cf:30:10:f3:81:26:b9:f7:06:aa:55:93:71:53:
02:45:a6:96:49:ee:ca:6b:8c:d0:a5:80:00:08:32:83:31:e6:
02:44:be:7a:4a:42:f9:e7:52:14:2b:e5:01:0f:9e:46:22:3e:
de:f0:da:40
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYqwx6v6MIxIsN8UJBpmDzx6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxNTUwMDljM2RlNDIxY2M0ZTY3YjlhOWFlNDIzYmIzNWRl
MGI5MjYwHhcNMjMwOTIwMDQwOTUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZWM0NmU0MzExMjQ5YjY5NjhjZDJhNGI4ZTdiZThhODM3NjdhMTM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh8xmHC7eENdBr0WMqlOlTfQIR5E+
DLWG9rcr0XH6XIcGl3bovIshUwlcVkktb27hg4OustL2Uh+9BqKu4KmfEgoKoKbw
VgwrNzJ4g8jQwWGwV9huTF4Se4R2MxzJcO87tg1jhjnbjnSOhccHT8DpQsWu/3TY
6zWqoIYQQ0LDH0e0EEbgBjQucq9JbQWhEXD5vQ96t+TOc3H6VVluz5aAT7qAIASX
ngR6EtxkzT4y3kA/ySHGIg94rbSeqdPWXTGUPkBo3ksuWmk0I9rU3sxYXvSEtrYQ
3y68KzHBiTisb6cDSavpx7hBSBSr/8TFMN/5iLtiQFqhsKx2y6VyZqM+hwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFL7EbkMRJJtpaM0qS4576Kg3Z6E1MB8GA1UdIwQY
MBaAFLFVAJw95CHMTme5qa5CO7Nd4LkmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYt
NzM4NTZhZjQ5ZjNlLzEvdnNSdVF4RWttMmxvelNwTGpudm9xRGRub1RVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYtNzM4NTZhZjQ5ZjNl
LzEvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALYDGAwQA
iJAoMA0GCSqGSIb3DQEBCwUAA4IBAQAxP4I5jRUotU+ALdUvGdifc53kytxSsH1G
nCaQZPs0ZnD9GpLBl/mo30nGo7CS9PFZis8o00P3XaJEEHWTAYB/XknJxRvxkGIX
NOtSupb4F5Vr2etrETt84JOnbiDiueUs0oc2ZhPatB31dHgSpP3gDxpzzJQEq8v8
8Wf5KpBFBHSIUN6smH7P3HyKslVuH8UD30JRxhOKJFfFOYtQmpJlngl6vMM3CizJ
5d/IMqtFTjRl1gowSW2//IvrqRPOCK1DmjvvN9WJ7dLSzzAQ84EmufcGqlWTcVMC
RaaWSe7Ka4zQpYAACDKDMeYCRL56SkL551IUK+UBD55GIj7e8NpA
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:52 2024 by rpki-client on console-fra.rpki-client.org