Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/IlIQdHhLjNbswYwLcDF4TdfDROY.roa
File: IlIQdHhLjNbswYwLcDF4TdfDROY.roa (raw, json)
Hash identifier: HRyyL0kDVV8S2jWvcnUbPbzjZ3+iE/gGFNWriLtSk3g=
Subject key identifier: 22:52:10:74:78:4B:8C:D6:EC:C1:8C:0B:70:31:78:4D:D7:C3:44:E6
Certificate issuer: /CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Certificate serial: 0187CC132E9D1D152A4D6F80E19814979A7C
Authority key identifier: BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/IlIQdHhLjNbswYwLcDF4TdfDROY.roa
Signing time: Sat 29 Apr 2023 08:13:41 +0000
ROA not before: Sat 29 Apr 2023 08:13:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22168
IP address blocks: 45.143.160.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:cc:13:2e:9d:1d:15:2a:4d:6f:80:e1:98:14:97:9a:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Validity
Not Before: Apr 29 08:13:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=22521074784b8cd6ecc18c0b7031784dd7c344e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:db:d0:84:6c:a2:5e:45:5f:d1:6b:29:1f:6f:
20:12:05:5d:a2:e5:40:62:02:bb:83:3f:8d:97:a3:
75:a8:b4:04:9f:c4:b8:ea:8b:a1:45:c7:51:73:3f:
04:0e:ef:f8:ea:6f:30:e4:fe:70:c8:55:27:ac:f1:
9f:69:fc:6b:f8:2a:48:18:6f:51:c9:a1:ce:5b:25:
8a:f5:bb:bc:17:c2:47:3d:52:9c:b2:b7:07:c2:a5:
fd:d4:8d:9b:b2:53:1a:a4:12:97:1b:21:33:31:59:
46:07:df:5d:91:90:30:1b:21:96:09:88:1a:f0:71:
0a:39:b9:ad:ba:d1:75:4f:7f:46:a2:6f:08:ef:df:
c8:15:14:02:51:39:08:08:09:45:79:9d:38:88:c0:
38:70:39:22:31:fe:c1:8b:c4:ea:e7:97:0a:d0:98:
9a:a0:d3:53:e9:c0:1b:45:82:bb:d8:9f:8d:5f:58:
f5:31:4c:8e:14:b7:5e:b5:b9:5e:49:92:fa:bd:85:
9b:16:cb:c0:d7:36:bf:ac:f5:d7:78:6a:08:b6:dd:
17:05:7d:7f:81:f9:b0:15:77:bc:a5:46:78:b1:90:
71:0e:fa:ac:56:3b:4f:8b:9a:a3:53:bd:59:0d:68:
8d:c2:62:15:08:5a:73:2a:9c:4a:f2:4b:42:83:26:
a6:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:52:10:74:78:4B:8C:D6:EC:C1:8C:0B:70:31:78:4D:D7:C3:44:E6
X509v3 Authority Key Identifier:
keyid:BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/IlIQdHhLjNbswYwLcDF4TdfDROY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.160.0/24
Signature Algorithm: sha256WithRSAEncryption
83:45:90:c3:89:ed:a3:1a:14:5c:5c:82:e6:7f:d7:66:cc:fc:
a6:60:8a:d5:3c:12:58:4c:87:10:ac:02:31:e9:37:82:94:e7:
04:5f:a9:e2:71:ce:2a:4b:e1:e4:9a:06:46:4a:a5:34:5c:4e:
22:a4:4d:b9:3b:52:91:71:7b:a3:67:1b:95:ca:45:16:50:d9:
1f:97:b7:67:54:58:66:f6:60:90:f6:b1:18:d3:68:09:4e:51:
48:00:d0:b5:d3:14:67:c0:b0:8e:97:00:58:ae:c5:81:ce:e4:
f0:6f:fa:49:58:36:40:05:d6:9f:08:b5:a0:e8:02:ce:a7:98:
3f:5d:8e:b5:54:fe:64:ca:ec:31:45:c1:09:00:fe:24:25:42:
e6:93:f2:4e:ce:c1:76:a1:f1:5e:fb:ab:e1:e3:9d:99:80:24:
15:3d:9a:6e:d8:8e:1b:63:ea:55:5c:ea:f5:81:41:dc:75:cb:
fd:f1:25:81:a0:51:8b:ba:be:b9:23:ae:b5:93:02:3f:54:e2:
13:7b:3c:75:f0:0f:a8:85:dd:c3:9f:2e:cc:cf:85:57:c9:1a:
44:ab:86:ff:3c:aa:40:b7:bd:15:7e:c6:d4:74:b5:e9:a3:22:
1c:3e:e0:1c:61:96:71:69:5c:9a:a1:0f:c4:d5:f3:5a:1a:d2:
5d:f1:79:c0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYfMEy6dHRUqTW+A4ZgUl5p8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhNGQwZTY5YWI3NjlmNjViYjJiMTU1YmRmYTgzYTcxODZl
ZWFjNDQwHhcNMjMwNDI5MDgxMzQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMjUyMTA3NDc4NGI4Y2Q2ZWNjMThjMGI3MDMxNzg0ZGQ3YzM0NGU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApdvQhGyiXkVf0WspH28gEgVdouVA
YgK7gz+Nl6N1qLQEn8S46ouhRcdRcz8EDu/46m8w5P5wyFUnrPGfafxr+CpIGG9R
yaHOWyWK9bu8F8JHPVKcsrcHwqX91I2bslMapBKXGyEzMVlGB99dkZAwGyGWCYga
8HEKObmtutF1T39Gom8I79/IFRQCUTkICAlFeZ04iMA4cDkiMf7Bi8Tq55cK0Jia
oNNT6cAbRYK72J+NX1j1MUyOFLdetbleSZL6vYWbFsvA1za/rPXXeGoItt0XBX1/
gfmwFXe8pUZ4sZBxDvqsVjtPi5qjU71ZDWiNwmIVCFpzKpxK8ktCgyamiwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCJSEHR4S4zW7MGMC3AxeE3Xw0TmMB8GA1UdIwQY
MBaAFLpNDmmrdp9luysVW9+oOnGG7qxEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWswT2FhdDJuMlc3S3hWYjM2ZzZjWWJ1ckVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC8zZDZkNmMtZjU4ZC00MmU2LWI2ODgt
OGVmZjNmZDNjNDhhLzEvSWxJUWRIaExqTmJzd1l3TGNERjRUZGZEUk9ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC8zZDZkNmMtZjU4ZC00MmU2LWI2ODgtOGVmZjNmZDNjNDhh
LzEvdWswT2FhdDJuMlc3S3hWYjM2ZzZjWWJ1ckVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALY+gMA0G
CSqGSIb3DQEBCwUAA4IBAQCDRZDDie2jGhRcXILmf9dmzPymYIrVPBJYTIcQrAIx
6TeClOcEX6nicc4qS+HkmgZGSqU0XE4ipE25O1KRcXujZxuVykUWUNkfl7dnVFhm
9mCQ9rEY02gJTlFIANC10xRnwLCOlwBYrsWBzuTwb/pJWDZABdafCLWg6ALOp5g/
XY61VP5kyuwxRcEJAP4kJULmk/JOzsF2ofFe+6vh452ZgCQVPZpu2I4bY+pVXOr1
gUHcdcv98SWBoFGLur65I661kwI/VOITezx18A+ohd3Dny7Mz4VXyRpEq4b/PKpA
t70VfsbUdLXpoyIcPuAcYZZxaVyaoQ/E1fNaGtJd8XnA
-----END CERTIFICATE-----
Generated at Mon Jan 1 19:27:31 2024 by rpki-client on console-fra.rpki-client.org