Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/X8nr5feQnqQvaZzhErjwp7yIjSo.roa
File: X8nr5feQnqQvaZzhErjwp7yIjSo.roa (raw, json)
Hash identifier: yzNwVvZJ58vrLuQLZOAZhzZvto3WK5IPNjEApXmdcms=
Subject key identifier: 5F:C9:EB:E5:F7:90:9E:A4:2F:69:9C:E1:12:B8:F0:A7:BC:88:8D:2A
Certificate issuer: /CN=f030658f16d2d88d34164592fcd4de13131f1695
Certificate serial: 0189E6385286A4455CD3DBE7AB9555D5B8C8
Authority key identifier: F0:30:65:8F:16:D2:D8:8D:34:16:45:92:FC:D4:DE:13:13:1F:16:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8DBljxbS2I00FkWS_NTeExMfFpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/X8nr5feQnqQvaZzhErjwp7yIjSo.roa
Signing time: Fri 11 Aug 2023 20:09:58 +0000
ROA not before: Fri 11 Aug 2023 20:09:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210644
IP address blocks: 45.15.157.0/24 maxlen: 24
45.15.159.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Nov 2023 10:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:e6:38:52:86:a4:45:5c:d3:db:e7:ab:95:55:d5:b8:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f030658f16d2d88d34164592fcd4de13131f1695
Validity
Not Before: Aug 11 20:09:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5fc9ebe5f7909ea42f699ce112b8f0a7bc888d2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:3e:76:54:f9:bb:92:e3:c6:78:32:4f:b8:c5:
f0:86:c6:f0:d3:1d:17:38:14:0b:b3:54:d0:cc:4a:
15:50:39:60:03:67:7a:a6:c0:d4:31:e6:89:f7:10:
e8:a7:71:09:37:cb:9d:c2:e5:82:c4:1f:d0:f9:aa:
7a:08:a2:0a:7e:da:ee:b6:69:b3:ce:35:bd:a5:1a:
9d:ba:54:b8:99:bf:13:98:3b:c6:f2:cb:95:e1:be:
e2:30:72:47:55:b1:f5:87:02:d7:09:de:a1:ed:84:
c4:37:0e:fd:b5:9b:4c:ae:d1:2a:d1:68:97:b7:f1:
b4:26:fc:5a:eb:e7:d8:31:09:b8:3f:68:85:c7:45:
3b:ed:8b:60:90:48:38:25:16:dd:d4:2e:a8:82:67:
65:ff:cb:06:c3:1b:61:87:57:25:1b:fe:ec:c0:86:
4a:69:4b:31:2a:d1:52:1e:b9:01:c9:23:d4:b9:cc:
0a:17:e7:85:19:55:e5:52:d2:6a:64:b4:b7:cc:97:
b7:9b:be:5b:a3:3b:37:ba:a9:c6:5a:3d:0f:24:75:
ff:4c:34:43:11:c8:72:71:fc:fa:31:5c:45:e4:ac:
a6:e5:10:89:0a:80:5b:b3:3e:1a:4a:28:98:e6:0e:
85:16:33:d8:01:e4:20:90:f3:8e:34:29:6d:dc:41:
fc:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:C9:EB:E5:F7:90:9E:A4:2F:69:9C:E1:12:B8:F0:A7:BC:88:8D:2A
X509v3 Authority Key Identifier:
keyid:F0:30:65:8F:16:D2:D8:8D:34:16:45:92:FC:D4:DE:13:13:1F:16:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8DBljxbS2I00FkWS_NTeExMfFpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/X8nr5feQnqQvaZzhErjwp7yIjSo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/8DBljxbS2I00FkWS_NTeExMfFpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.157.0/24
45.15.159.0/24
Signature Algorithm: sha256WithRSAEncryption
51:c2:bb:aa:ed:8a:0d:d8:07:72:c9:69:9f:50:a7:3c:80:7f:
8a:9a:72:ed:f0:45:4f:bf:5c:59:57:5e:3e:2d:fc:a3:48:f7:
ee:c8:67:23:f9:ca:5f:16:56:a0:73:64:34:59:57:dd:ac:0f:
8d:51:df:dd:59:46:a1:00:20:e0:89:60:d9:e3:1a:cc:2e:b2:
e3:a6:3a:74:78:28:03:62:ed:8d:79:a7:cd:13:d4:74:3b:2e:
6d:0e:13:24:8e:d0:56:6b:79:2d:09:a2:98:8d:b8:72:6d:6d:
01:7a:af:54:1b:cd:d3:11:12:a5:8f:97:53:c3:bb:75:53:34:
c9:23:f7:71:4d:68:ba:a9:3f:ec:fb:c6:51:13:b2:4f:06:29:
c3:6a:a9:d2:ae:ea:e0:46:be:d6:23:87:0b:c4:62:f5:47:53:
b6:7a:32:52:dd:6c:1a:04:5a:27:f7:37:40:51:c8:c9:1d:a1:
72:3b:45:b4:f3:89:c4:4a:c1:b9:bf:d3:ff:6f:20:39:09:b5:
32:81:7b:0e:a1:7b:a0:ef:f7:b3:e6:93:36:df:99:5a:07:8f:
af:bf:2f:af:41:1f:42:8d:ea:41:cc:9d:be:45:f0:09:9a:76:
14:09:ae:d3:85:45:52:18:86:97:cb:e1:5e:91:54:49:fc:60:
ce:44:1f:89
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYnmOFKGpEVc09vnq5VV1bjIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwMzA2NThmMTZkMmQ4OGQzNDE2NDU5MmZjZDRkZTEzMTMx
ZjE2OTUwHhcNMjMwODExMjAwOTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZmM5ZWJlNWY3OTA5ZWE0MmY2OTljZTExMmI4ZjBhN2JjODg4ZDJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqT52VPm7kuPGeDJPuMXwhsbw0x0X
OBQLs1TQzEoVUDlgA2d6psDUMeaJ9xDop3EJN8udwuWCxB/Q+ap6CKIKftrutmmz
zjW9pRqdulS4mb8TmDvG8suV4b7iMHJHVbH1hwLXCd6h7YTENw79tZtMrtEq0WiX
t/G0Jvxa6+fYMQm4P2iFx0U77YtgkEg4JRbd1C6ogmdl/8sGwxthh1clG/7swIZK
aUsxKtFSHrkBySPUucwKF+eFGVXlUtJqZLS3zJe3m75bozs3uqnGWj0PJHX/TDRD
Echycfz6MVxF5Kym5RCJCoBbsz4aSiiY5g6FFjPYAeQgkPOONClt3EH8twIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFF/J6+X3kJ6kL2mc4RK48Ke8iI0qMB8GA1UdIwQY
MBaAFPAwZY8W0tiNNBZFkvzU3hMTHxaVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOERCbGp4YlMySTAwRmtXU19OVGVFeE1mRnBVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi82NjkzZTMtODljYS00NGExLWE4YjYt
ODk0ODA1Mjg5Y2MwLzEvWDhucjVmZVFucVF2YVp6aEVyandwN3lJalNvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNi82NjkzZTMtODljYS00NGExLWE4YjYtODk0ODA1Mjg5Y2Mw
LzEvOERCbGp4YlMySTAwRmtXU19OVGVFeE1mRnBVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALQ+dAwQA
LQ+fMA0GCSqGSIb3DQEBCwUAA4IBAQBRwruq7YoN2AdyyWmfUKc8gH+KmnLt8EVP
v1xZV14+LfyjSPfuyGcj+cpfFlagc2Q0WVfdrA+NUd/dWUahACDgiWDZ4xrMLrLj
pjp0eCgDYu2NeafNE9R0Oy5tDhMkjtBWa3ktCaKYjbhybW0Beq9UG83TERKlj5dT
w7t1UzTJI/dxTWi6qT/s+8ZRE7JPBinDaqnSrurgRr7WI4cLxGL1R1O2ejJS3Wwa
BFon9zdAUcjJHaFyO0W084nESsG5v9P/byA5CbUygXsOoXug7/ez5pM235laB4+v
vy+vQR9CjepBzJ2+RfAJmnYUCa7ThUVSGIaXy+FekVRJ/GDORB+J
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:48 2024 by rpki-client on console-ams.rpki-client.org