Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/ns5PtWYe8Y_mvQJj9jnao2FIANw.roa
File: ns5PtWYe8Y_mvQJj9jnao2FIANw.roa (raw, json)
Hash identifier: HA73v+rZQYSyEN/8RnTEzeJkYpl7H8gVHcb1X7E8f88=
Subject key identifier: 9E:CE:4F:B5:66:1E:F1:8F:E6:BD:02:63:F6:39:DA:A3:61:48:00:DC
Certificate issuer: /CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0
Certificate serial: 018570B07E24A4BD67F9F75221CF23707BE5
Authority key identifier: 0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/ns5PtWYe8Y_mvQJj9jnao2FIANw.roa
Signing time: Mon 02 Jan 2023 04:14:52 +0000
ROA not before: Mon 02 Jan 2023 04:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40676
IP address blocks: 45.150.224.0/24 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b0:7e:24:a4:bd:67:f9:f7:52:21:cf:23:70:7b:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0
Validity
Not Before: Jan 2 04:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9ece4fb5661ef18fe6bd0263f639daa3614800dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:83:a0:5e:02:cb:97:b0:00:df:d4:db:c4:e5:
f4:07:0e:e8:29:81:3b:77:b3:d7:8d:f6:bf:43:ca:
42:1e:39:65:45:b4:d4:ca:16:60:90:f8:f7:05:a2:
6f:d8:b1:0a:54:7d:23:6f:31:f2:19:55:28:d2:29:
15:27:a7:12:c2:a9:00:7e:37:80:9f:9c:83:ba:f7:
e6:94:35:d3:30:e4:28:db:1d:33:bf:66:ce:51:47:
c8:9a:47:47:b6:7e:16:ea:16:ca:77:ca:d1:e7:ef:
41:39:fa:e2:89:70:3b:d5:f0:07:c0:87:39:e5:5e:
8d:20:26:a2:7d:46:09:5f:dd:2b:cb:e1:b0:ea:63:
62:a3:56:75:ab:61:54:46:22:48:a2:bc:39:3b:90:
f2:38:10:c5:9f:57:39:03:f8:85:f5:0b:f8:f7:4c:
50:92:36:4f:80:eb:46:8d:ef:77:06:4c:2f:3a:d7:
e0:47:7a:91:ba:bd:93:98:c5:09:45:34:dd:2a:a2:
da:61:06:c2:94:e8:d2:44:37:a1:2a:2a:33:9d:99:
12:30:ad:8d:51:fc:6f:09:d1:18:a6:8b:be:d7:42:
ee:41:61:5e:76:a2:f9:1e:73:1e:e0:72:f3:aa:23:
77:62:0a:a1:cd:ac:d4:65:74:b1:a1:b6:9b:58:52:
b1:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:CE:4F:B5:66:1E:F1:8F:E6:BD:02:63:F6:39:DA:A3:61:48:00:DC
X509v3 Authority Key Identifier:
keyid:0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/ns5PtWYe8Y_mvQJj9jnao2FIANw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/DbZ8XH-n_iSS7sN89CdkK3HUJbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.224.0/24
Signature Algorithm: sha256WithRSAEncryption
67:9d:c9:e6:37:e5:bc:7e:7f:57:9f:ef:b1:78:77:41:57:9b:
6e:71:a8:db:3c:c1:01:21:c9:44:75:f3:28:da:f1:27:80:0a:
c9:48:fb:0c:55:25:b3:00:8d:48:fa:64:8b:2d:4e:ab:a1:d3:
40:ec:8f:13:f9:2c:e8:08:31:f7:8d:1b:ce:8d:75:67:c2:5a:
21:1c:98:8e:c9:fb:d1:c4:cb:27:8f:31:b6:66:50:af:07:ae:
f8:e6:46:fe:65:9f:ea:8d:d4:1f:ad:e6:33:2d:b5:8e:fa:fb:
5e:41:43:e2:08:bc:e0:74:1c:75:2e:41:fd:af:24:b4:2d:1b:
8b:fd:77:d0:76:f6:19:b0:00:2b:6e:0d:2d:24:48:3c:df:ce:
bb:11:76:1e:ba:f4:84:c9:fa:af:d8:59:77:b2:fb:89:da:a4:
77:c8:8a:f0:65:d7:00:21:6e:18:b9:9a:dc:31:26:ee:a4:0d:
69:39:e7:12:01:78:a9:f6:cd:d6:72:a4:64:17:5f:fb:16:30:
41:34:4c:45:a7:68:a0:4f:bb:76:ed:e5:76:2d:fb:c3:48:34:
e7:95:a9:44:ee:6f:23:ca:98:f3:1d:c4:7d:73:66:24:d7:a0:
79:08:36:27:34:e7:8c:d0:5a:35:49:72:ea:5d:8e:4e:79:87:
4c:2f:27:b2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwsH4kpL1n+fdSIc8jcHvlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkYjY3YzVjN2ZhN2ZlMjQ5MmVlYzM3Y2Y0Mjc2NDJiNzFk
NDI1YjAwHhcNMjMwMTAyMDQxNDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZWNlNGZiNTY2MWVmMThmZTZiZDAyNjNmNjM5ZGFhMzYxNDgwMGRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArIOgXgLLl7AA39TbxOX0Bw7oKYE7
d7PXjfa/Q8pCHjllRbTUyhZgkPj3BaJv2LEKVH0jbzHyGVUo0ikVJ6cSwqkAfjeA
n5yDuvfmlDXTMOQo2x0zv2bOUUfImkdHtn4W6hbKd8rR5+9BOfriiXA71fAHwIc5
5V6NICaifUYJX90ry+Gw6mNio1Z1q2FURiJIorw5O5DyOBDFn1c5A/iF9Qv490xQ
kjZPgOtGje93BkwvOtfgR3qRur2TmMUJRTTdKqLaYQbClOjSRDehKioznZkSMK2N
UfxvCdEYpou+10LuQWFedqL5HnMe4HLzqiN3YgqhzazUZXSxobabWFKxUwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJ7OT7VmHvGP5r0CY/Y52qNhSADcMB8GA1UdIwQY
MBaAFA22fFx/p/4kku7DfPQnZCtx1CWwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRGJaOFhILW5faVNTN3NOODlDZGtLM0hVSmJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS8wZjM3NTctZjBlZC00ZTdlLTkzMjkt
YjAzZGY5OTZlNDgxLzEvbnM1UHRXWWU4WV9tdlFKajlqbmFvMkZJQU53LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS8wZjM3NTctZjBlZC00ZTdlLTkzMjktYjAzZGY5OTZlNDgx
LzEvRGJaOFhILW5faVNTN3NOODlDZGtLM0hVSmJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZbgMA0G
CSqGSIb3DQEBCwUAA4IBAQBnncnmN+W8fn9Xn++xeHdBV5tucajbPMEBIclEdfMo
2vEngArJSPsMVSWzAI1I+mSLLU6rodNA7I8T+SzoCDH3jRvOjXVnwlohHJiOyfvR
xMsnjzG2ZlCvB6745kb+ZZ/qjdQfreYzLbWO+vteQUPiCLzgdBx1LkH9ryS0LRuL
/XfQdvYZsAArbg0tJEg83867EXYeuvSEyfqv2Fl3svuJ2qR3yIrwZdcAIW4YuZrc
MSbupA1pOecSAXip9s3WcqRkF1/7FjBBNExFp2igT7t27eV2LfvDSDTnlalE7m8j
ypjzHcR9c2Yk16B5CDYnNOeM0Fo1SXLqXY5OeYdMLyey
-----END CERTIFICATE-----
Generated at Mon Jan 1 23:30:22 2024 by rpki-client on console-ams.rpki-client.org