Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/6bHWM-gU9Ch8Y7XLTuLJUaCMxjY.roa
File: 6bHWM-gU9Ch8Y7XLTuLJUaCMxjY.roa (raw, json)
Hash identifier: g32zyZ6G70C7WNBRa14qFRzWku/SGDhiPm7YKTpUOOA=
Subject key identifier: E9:B1:D6:33:E8:14:F4:28:7C:63:B5:CB:4E:E2:C9:51:A0:8C:C6:36
Certificate issuer: /CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Certificate serial: 018FDE2A5645B9C27FDFD9A5616D7FA0F7BA
Authority key identifier: 7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/6bHWM-gU9Ch8Y7XLTuLJUaCMxjY.roa
Signing time: Mon 03 Jun 2024 12:54:27 +0000
ROA not before: Mon 03 Jun 2024 12:54:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.158.125.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Jun 2024 21:19:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:de:2a:56:45:b9:c2:7f:df:d9:a5:61:6d:7f:a0:f7:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Validity
Not Before: Jun 3 12:54:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e9b1d633e814f4287c63b5cb4ee2c951a08cc636
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:0f:ae:34:29:52:44:1f:c0:7b:c1:a8:97:93:
5c:1e:e2:50:e5:74:04:11:0a:03:a7:5c:de:22:f6:
63:43:67:f3:c6:5d:b2:55:6e:db:70:d8:5f:e8:ba:
75:c4:a0:98:8d:96:84:e9:1d:71:f5:75:e5:4e:24:
e8:39:df:e1:4d:d6:1f:00:4d:94:5b:12:62:27:4e:
5b:31:f7:4e:c8:f2:49:d0:e8:57:73:45:78:26:07:
15:f2:25:5e:0b:82:52:2a:22:46:11:10:ba:60:f1:
03:e2:d8:28:42:55:0b:bd:29:a0:e3:df:f9:5d:bc:
8c:40:32:7c:1c:19:d1:56:3c:13:ca:35:a9:7c:03:
1f:02:5d:89:6a:80:03:2d:f9:c9:78:9a:1e:36:20:
f4:eb:38:39:28:f7:58:f4:49:01:15:46:a9:4f:ef:
4d:c4:dc:83:b6:fe:0b:31:0a:3a:ee:ed:d6:ca:8e:
ac:a9:a2:7d:d7:72:6c:b9:ed:c8:ea:e9:35:6a:07:
cf:df:64:2c:3f:38:ec:12:e4:46:8d:ea:6f:2d:23:
6b:8b:61:75:c7:bb:d7:c5:c0:f8:34:17:62:9b:86:
c6:e1:28:d4:7e:75:9d:47:ec:40:3b:cf:c1:8d:90:
03:57:d1:4e:e5:65:f2:7a:f1:94:9f:da:9d:4f:fa:
c5:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:B1:D6:33:E8:14:F4:28:7C:63:B5:CB:4E:E2:C9:51:A0:8C:C6:36
X509v3 Authority Key Identifier:
keyid:7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/6bHWM-gU9Ch8Y7XLTuLJUaCMxjY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/f1FerQle7ZrEyrxatK0LWGfZ8Bs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.125.0/24
Signature Algorithm: sha256WithRSAEncryption
88:bd:6e:0c:a1:e2:5d:b2:6d:ad:36:b5:d1:b8:ae:be:60:27:
4e:58:6b:08:03:0b:cb:05:7a:e6:77:2e:36:b3:aa:59:9f:e7:
3a:f0:6e:17:1d:13:58:7d:15:63:ee:10:80:f6:71:9d:49:e2:
39:ec:45:99:b3:06:2d:7c:0a:9b:c4:d7:5e:8f:43:07:79:03:
89:65:42:9e:6d:a3:33:05:83:e1:47:31:bc:70:a4:8f:00:ca:
b8:93:49:cc:9f:84:90:0e:a8:78:87:00:30:e1:0a:f3:58:8f:
2f:79:ee:04:b2:66:ce:d1:29:ae:eb:cb:16:77:5f:a1:55:0b:
97:4a:20:98:97:03:73:63:12:e2:b0:32:bb:3a:ab:53:2f:4c:
d0:36:44:1b:d7:14:76:ec:c8:ac:ef:a1:6b:57:cc:8e:25:bd:
aa:c7:46:17:4a:ef:58:a3:11:00:03:9f:67:9f:f5:ca:9e:f9:
f2:cc:00:6d:40:67:c2:b8:ac:4e:5c:0c:4e:e4:ca:4f:36:3f:
26:cb:3e:25:c6:80:e2:aa:79:7d:78:59:ef:6b:7e:c5:ba:16:
d9:52:9c:44:55:b1:45:d5:d1:4e:23:9f:a5:e7:cf:44:d3:80:
db:18:a7:5c:0c:0a:6c:80:1e:b6:32:0b:04:9c:4d:38:2d:2b:
c7:35:b0:e6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY/eKlZFucJ/39mlYW1/oPe6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdmNTE1ZWFkMDk1ZWVkOWFjNGNhYmM1YWI0YWQwYjU4Njdk
OWYwMWIwHhcNMjQwNjAzMTI1NDI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOWIxZDYzM2U4MTRmNDI4N2M2M2I1Y2I0ZWUyYzk1MWEwOGNjNjM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4g+uNClSRB/Ae8Gol5NcHuJQ5XQE
EQoDp1zeIvZjQ2fzxl2yVW7bcNhf6Lp1xKCYjZaE6R1x9XXlTiToOd/hTdYfAE2U
WxJiJ05bMfdOyPJJ0OhXc0V4JgcV8iVeC4JSKiJGERC6YPED4tgoQlULvSmg49/5
XbyMQDJ8HBnRVjwTyjWpfAMfAl2JaoADLfnJeJoeNiD06zg5KPdY9EkBFUapT+9N
xNyDtv4LMQo67u3Wyo6sqaJ913Jsue3I6uk1agfP32QsPzjsEuRGjepvLSNri2F1
x7vXxcD4NBdim4bG4SjUfnWdR+xAO8/BjZADV9FO5WXyevGUn9qdT/rF7QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOmx1jPoFPQofGO1y07iyVGgjMY2MB8GA1UdIwQY
MBaAFH9RXq0JXu2axMq8WrStC1hn2fAbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZjFGZXJRbGU3WnJFeXJ4YXRLMExXR2ZaOEJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy81YzJhNTktNjAyNS00MDBlLWFiMjgt
ZjBhNjI0ZDQwOTEyLzEvNmJIV00tZ1U5Q2g4WTdYTFR1TEpVYUNNeGpZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy81YzJhNTktNjAyNS00MDBlLWFiMjgtZjBhNjI0ZDQwOTEy
LzEvZjFGZXJRbGU3WnJFeXJ4YXRLMExXR2ZaOEJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZ59MA0G
CSqGSIb3DQEBCwUAA4IBAQCIvW4MoeJdsm2tNrXRuK6+YCdOWGsIAwvLBXrmdy42
s6pZn+c68G4XHRNYfRVj7hCA9nGdSeI57EWZswYtfAqbxNdej0MHeQOJZUKebaMz
BYPhRzG8cKSPAMq4k0nMn4SQDqh4hwAw4QrzWI8vee4EsmbO0Smu68sWd1+hVQuX
SiCYlwNzYxLisDK7OqtTL0zQNkQb1xR27Mis76FrV8yOJb2qx0YXSu9YoxEAA59n
n/XKnvnyzABtQGfCuKxOXAxO5MpPNj8myz4lxoDiqnl9eFnva37FuhbZUpxEVbFF
1dFOI5+l589E04DbGKdcDApsgB62MgsEnE04LSvHNbDm
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:45 2024 by rpki-client on console-fra.rpki-client.org