Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/1bcb2d-f58b-4e44-b133-dfcbdf3b1058/1/Cbhj1iiPFd2r1mqjhN9lxCABsWc.roa
File: Cbhj1iiPFd2r1mqjhN9lxCABsWc.roa (raw, json)
Hash identifier: Rq1iQDbdDBnm2bOEfnZRhJve8GQE0k6rsRH0vA+zJPk=
Subject key identifier: 09:B8:63:D6:28:8F:15:DD:AB:D6:6A:A3:84:DF:65:C4:20:01:B1:67
Certificate issuer: /CN=a1d0315373b09b061aa59f129d592eabf7b3aaef
Certificate serial: 0189CF589B4FAA2EDB26EFF13DE793ED63F8
Authority key identifier: A1:D0:31:53:73:B0:9B:06:1A:A5:9F:12:9D:59:2E:AB:F7:B3:AA:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/odAxU3OwmwYapZ8SnVkuq_ezqu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/1bcb2d-f58b-4e44-b133-dfcbdf3b1058/1/Cbhj1iiPFd2r1mqjhN9lxCABsWc.roa
Signing time: Mon 07 Aug 2023 09:33:57 +0000
ROA not before: Mon 07 Aug 2023 09:33:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136778
IP address blocks: 45.157.68.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:cf:58:9b:4f:aa:2e:db:26:ef:f1:3d:e7:93:ed:63:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1d0315373b09b061aa59f129d592eabf7b3aaef
Validity
Not Before: Aug 7 09:33:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=09b863d6288f15ddabd66aa384df65c42001b167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:0c:00:31:b7:5e:5f:90:7a:32:11:4b:b1:6e:
59:f8:91:93:3d:21:18:40:9e:3d:1c:c0:1d:56:3e:
df:48:e9:23:29:c7:36:5c:df:1e:d3:c2:af:0f:e7:
3e:3a:71:e3:6e:8f:11:c8:07:37:7b:7e:17:71:88:
11:09:34:72:b6:8b:8c:e2:1f:9f:9d:81:33:e8:15:
2f:d1:cb:10:de:c2:6e:ef:0b:85:ff:80:65:7a:22:
07:ab:72:8c:b0:07:a3:ec:24:b4:9c:dd:cb:3b:47:
c5:b4:87:12:88:13:b1:a0:f7:db:3b:1e:49:fb:f7:
fe:a5:86:9f:e4:8b:9a:a5:5f:ea:55:42:de:ed:a1:
b5:b0:00:f8:ba:fd:47:c2:8b:a1:14:31:bc:a9:e8:
ec:93:f8:d0:6a:e5:01:ba:54:01:3c:e5:7a:de:51:
39:ea:ec:0e:1e:f1:de:2d:2a:d8:40:6c:4d:43:05:
b1:fe:29:04:c6:aa:69:2a:45:ad:de:ab:b6:e4:6f:
7b:4b:b7:6b:4c:6e:bb:3e:20:e0:bf:1a:a2:11:ad:
71:a6:b8:ba:a7:6b:49:0f:84:a6:a6:61:b2:e0:a2:
f2:9c:60:d8:7f:9a:bd:ee:e3:a8:a1:5f:6d:4e:40:
0a:28:6d:66:0a:d3:59:ae:1b:01:4d:37:58:96:7f:
da:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:B8:63:D6:28:8F:15:DD:AB:D6:6A:A3:84:DF:65:C4:20:01:B1:67
X509v3 Authority Key Identifier:
keyid:A1:D0:31:53:73:B0:9B:06:1A:A5:9F:12:9D:59:2E:AB:F7:B3:AA:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/odAxU3OwmwYapZ8SnVkuq_ezqu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/1bcb2d-f58b-4e44-b133-dfcbdf3b1058/1/Cbhj1iiPFd2r1mqjhN9lxCABsWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/1bcb2d-f58b-4e44-b133-dfcbdf3b1058/1/odAxU3OwmwYapZ8SnVkuq_ezqu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.68.0/24
Signature Algorithm: sha256WithRSAEncryption
52:bb:f8:6b:47:24:06:30:d9:68:68:ca:13:61:6c:86:c1:13:
9a:73:68:35:84:20:0d:87:db:b0:26:aa:fa:79:77:a5:6c:55:
7f:7b:ac:6a:2c:b8:9a:11:20:42:f4:53:0f:91:4f:e6:1b:61:
0e:9e:44:98:76:86:81:4f:d9:82:5c:01:93:b2:dc:aa:7f:86:
5c:73:df:0a:2e:81:32:c9:bc:4c:a4:62:b3:15:6b:d4:55:01:
d9:3d:46:82:96:a8:b8:ed:43:d0:db:f8:89:58:a0:e9:26:cf:
d5:4a:3a:73:5b:c5:44:de:36:5f:c9:4a:ef:e3:e0:64:9c:b0:
c7:60:70:c8:6a:e9:1d:2c:a5:42:97:4c:c9:98:72:71:11:98:
8e:ef:a7:b8:f8:15:5e:63:e0:fe:34:9d:36:2c:0c:0e:dd:15:
01:23:44:29:e4:98:bf:ad:ba:b6:86:e0:1b:ef:85:54:8c:0f:
62:27:30:65:91:c7:97:3b:47:ab:04:b3:0d:2e:d0:33:52:68:
bb:08:37:6f:16:ed:39:72:87:0a:b6:bd:39:6b:02:3a:d1:80:
8e:b4:4c:f8:c4:19:61:91:74:fc:a9:2e:e9:73:bf:6e:7a:1c:
98:ef:1c:be:a1:b4:06:7e:77:2d:89:4d:b2:2a:59:ea:92:0f:
cf:1c:e1:f3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYnPWJtPqi7bJu/xPeeT7WP4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExZDAzMTUzNzNiMDliMDYxYWE1OWYxMjlkNTkyZWFiZjdi
M2FhZWYwHhcNMjMwODA3MDkzMzU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwOWI4NjNkNjI4OGYxNWRkYWJkNjZhYTM4NGRmNjVjNDIwMDFiMTY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhQwAMbdeX5B6MhFLsW5Z+JGTPSEY
QJ49HMAdVj7fSOkjKcc2XN8e08KvD+c+OnHjbo8RyAc3e34XcYgRCTRytouM4h+f
nYEz6BUv0csQ3sJu7wuF/4BleiIHq3KMsAej7CS0nN3LO0fFtIcSiBOxoPfbOx5J
+/f+pYaf5IuapV/qVULe7aG1sAD4uv1HwouhFDG8qejsk/jQauUBulQBPOV63lE5
6uwOHvHeLSrYQGxNQwWx/ikExqppKkWt3qu25G97S7drTG67PiDgvxqiEa1xpri6
p2tJD4SmpmGy4KLynGDYf5q97uOooV9tTkAKKG1mCtNZrhsBTTdYln/aFQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAm4Y9YojxXdq9Zqo4TfZcQgAbFnMB8GA1UdIwQY
MBaAFKHQMVNzsJsGGqWfEp1ZLqv3s6rvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2RBeFUzT3dtd1lhcFo4U25Wa3VxX2V6cXU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy8xYmNiMmQtZjU4Yi00ZTQ0LWIxMzMt
ZGZjYmRmM2IxMDU4LzEvQ2JoajFpaVBGZDJyMW1xamhOOWx4Q0FCc1djLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYy8xYmNiMmQtZjU4Yi00ZTQ0LWIxMzMtZGZjYmRmM2IxMDU4
LzEvb2RBeFUzT3dtd1lhcFo4U25Wa3VxX2V6cXU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZ1EMA0G
CSqGSIb3DQEBCwUAA4IBAQBSu/hrRyQGMNloaMoTYWyGwROac2g1hCANh9uwJqr6
eXelbFV/e6xqLLiaESBC9FMPkU/mG2EOnkSYdoaBT9mCXAGTstyqf4Zcc98KLoEy
ybxMpGKzFWvUVQHZPUaClqi47UPQ2/iJWKDpJs/VSjpzW8VE3jZfyUrv4+BknLDH
YHDIaukdLKVCl0zJmHJxEZiO76e4+BVeY+D+NJ02LAwO3RUBI0Qp5Ji/rbq2huAb
74VUjA9iJzBlkceXO0erBLMNLtAzUmi7CDdvFu05cocKtr05awI60YCOtEz4xBlh
kXT8qS7pc79uehyY7xy+obQGfnctiU2yKlnqkg/PHOHz
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:59 2024 by rpki-client on console-ams.rpki-client.org