Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/400685-f48e-4ab9-8e3f-042446b70fb1/1/7tpVBI8oE7mz76lPkxC86jwN9NI.roa
File: 7tpVBI8oE7mz76lPkxC86jwN9NI.roa (raw, json)
Hash identifier: CUTpFFp3/P+TCjxcPA2YvFgVFGklIkHkfmIu6qkRFh0=
Subject key identifier: EE:DA:55:04:8F:28:13:B9:B3:EF:A9:4F:93:10:BC:EA:3C:0D:F4:D2
Certificate issuer: /CN=c6169716d0ae64068703140aa3730e3788fdd4c6
Certificate serial: 0187A4438656535084AEC1FCC0BA2B14AF93
Authority key identifier: C6:16:97:16:D0:AE:64:06:87:03:14:0A:A3:73:0E:37:88:FD:D4:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhaXFtCuZAaHAxQKo3MON4j91MY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/400685-f48e-4ab9-8e3f-042446b70fb1/1/7tpVBI8oE7mz76lPkxC86jwN9NI.roa
Signing time: Fri 21 Apr 2023 14:41:41 +0000
ROA not before: Fri 21 Apr 2023 14:41:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12679
IP address blocks: 45.134.12.0/24 maxlen: 24
45.134.15.0/24 maxlen: 24
45.134.14.0/24 maxlen: 24
212.8.224.0/22 maxlen: 22
212.8.229.0/24 maxlen: 24
212.8.228.0/24 maxlen: 24
2a07:505::/32 maxlen: 32
2a0e:7c41::/32 maxlen: 32
2a0e:7c45::/32 maxlen: 32
2a07:501::/32 maxlen: 32
2a0e:7c44::/32 maxlen: 32
2a07:504::/32 maxlen: 32
2a0e:7c42::/32 maxlen: 32
2a07:502::/32 maxlen: 32
2a0e:7c43::/32 maxlen: 32
2a07:507::/32 maxlen: 32
2a0e:7c47::/32 maxlen: 32
2a07:506::/32 maxlen: 32
2a0e:7c40::/32 maxlen: 32
2a07:500::/32 maxlen: 32
2a0e:7c46::/32 maxlen: 32
2a07:503::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 26 May 2023 08:35:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a4:43:86:56:53:50:84:ae:c1:fc:c0:ba:2b:14:af:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6169716d0ae64068703140aa3730e3788fdd4c6
Validity
Not Before: Apr 21 14:41:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eeda55048f2813b9b3efa94f9310bcea3c0df4d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:0a:16:d9:53:9f:fb:07:1b:3a:8a:43:66:a0:
9b:73:82:8d:cf:c8:f5:ff:37:3e:a1:2c:29:c4:12:
a8:ec:7d:58:e7:5d:1d:93:78:90:fc:2c:9c:3e:d0:
bb:7f:42:1e:1f:e2:b6:a9:a1:fa:3f:e2:ce:8f:94:
1c:79:f1:e3:2b:6b:fb:66:26:2a:80:95:87:49:31:
a1:73:6a:f6:e1:2f:af:a9:e3:b5:50:39:c7:01:97:
1c:52:da:83:b4:22:06:79:3c:3a:d8:7b:53:2d:1c:
1b:57:70:a0:29:d3:d2:fa:75:fd:9d:07:0a:d6:26:
30:b2:e0:e9:0b:dc:d9:d3:3a:e6:b8:f9:0a:09:e3:
39:9d:21:37:98:fc:14:8d:d5:2b:0c:22:7c:f8:41:
5b:86:3c:95:d4:56:2f:21:1a:db:82:0a:cd:47:36:
5d:27:c4:82:6c:e6:bf:54:1f:2c:ba:30:f0:7c:63:
f4:00:d2:7d:84:8e:bd:89:94:5e:10:40:69:51:d4:
32:19:cc:1e:20:e5:da:23:02:7f:3e:db:d5:02:78:
2f:24:a4:38:b5:bc:c8:eb:05:cb:fd:04:af:62:ae:
fa:91:fb:2f:fb:b6:e6:44:0e:56:b9:48:75:4f:4d:
12:ef:bd:0a:08:41:41:8f:69:59:b5:54:f9:7c:67:
30:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:DA:55:04:8F:28:13:B9:B3:EF:A9:4F:93:10:BC:EA:3C:0D:F4:D2
X509v3 Authority Key Identifier:
keyid:C6:16:97:16:D0:AE:64:06:87:03:14:0A:A3:73:0E:37:88:FD:D4:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhaXFtCuZAaHAxQKo3MON4j91MY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/400685-f48e-4ab9-8e3f-042446b70fb1/1/7tpVBI8oE7mz76lPkxC86jwN9NI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/400685-f48e-4ab9-8e3f-042446b70fb1/1/xhaXFtCuZAaHAxQKo3MON4j91MY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.12.0/24
45.134.14.0/23
212.8.224.0-212.8.229.255
IPv6:
2a07:500::/29
2a0e:7c40::/29
Signature Algorithm: sha256WithRSAEncryption
24:78:a3:6e:4e:07:08:f4:1e:b5:e4:c5:0d:f6:a1:c3:f5:2e:
03:2a:bf:00:71:97:b2:76:e1:b7:db:34:06:3f:18:f5:d0:70:
07:be:5b:20:11:e0:f6:36:36:d0:d4:49:5a:7e:27:50:a5:08:
a1:fd:91:3e:1e:c9:6e:10:48:c3:80:35:74:b0:3e:2d:c5:58:
ee:99:a3:2f:33:76:3a:0b:0f:ba:6e:1f:6a:03:19:bd:38:ab:
52:62:8d:c2:74:57:d7:4d:c5:38:8e:23:8b:ce:e3:57:ea:3a:
e6:69:49:32:f5:b1:1d:f8:10:97:68:0b:bc:00:2c:e0:b1:2f:
11:87:95:13:33:c6:3d:f6:6d:82:50:af:c1:2c:c2:7e:22:f1:
67:34:fe:3c:a5:f7:d4:ad:c9:d8:08:c0:96:a2:2c:d6:0c:04:
a7:3f:97:db:63:23:b5:27:1c:4a:64:78:67:c2:a8:55:e1:17:
d5:25:4f:64:b9:a2:13:b4:a1:84:8d:18:e3:3a:35:c3:16:db:
32:f1:a4:e2:c7:be:2e:3a:06:06:5b:c6:43:83:92:5b:c9:94:
8f:a8:c2:47:40:84:c5:27:3f:26:74:b7:a8:f3:17:73:b2:10:
15:f5:a7:c8:38:6b:ee:27:a8:ca:4f:f0:72:c4:d7:6a:e5:90:
e3:b1:69:00
-----BEGIN CERTIFICATE-----
MIIFJzCCBA+gAwIBAgISAYekQ4ZWU1CErsH8wLorFK+TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2MTY5NzE2ZDBhZTY0MDY4NzAzMTQwYWEzNzMwZTM3ODhm
ZGQ0YzYwHhcNMjMwNDIxMTQ0MTQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZWRhNTUwNDhmMjgxM2I5YjNlZmE5NGY5MzEwYmNlYTNjMGRmNGQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkAoW2VOf+wcbOopDZqCbc4KNz8j1
/zc+oSwpxBKo7H1Y510dk3iQ/CycPtC7f0IeH+K2qaH6P+LOj5QcefHjK2v7ZiYq
gJWHSTGhc2r24S+vqeO1UDnHAZccUtqDtCIGeTw62HtTLRwbV3CgKdPS+nX9nQcK
1iYwsuDpC9zZ0zrmuPkKCeM5nSE3mPwUjdUrDCJ8+EFbhjyV1FYvIRrbggrNRzZd
J8SCbOa/VB8sujDwfGP0ANJ9hI69iZReEEBpUdQyGcweIOXaIwJ/PtvVAngvJKQ4
tbzI6wXL/QSvYq76kfsv+7bmRA5WuUh1T00S770KCEFBj2lZtVT5fGcwBQIDAQAB
o4ICMzCCAi8wHQYDVR0OBBYEFO7aVQSPKBO5s++pT5MQvOo8DfTSMB8GA1UdIwQY
MBaAFMYWlxbQrmQGhwMUCqNzDjeI/dTGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveGhhWEZ0Q3VaQWFIQXhRS28zTU9ONGo5MU1ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC80MDA2ODUtZjQ4ZS00YWI5LThlM2Yt
MDQyNDQ2YjcwZmIxLzEvN3RwVkJJOG9FN216NzZsUGt4Qzg2andOOU5JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZC80MDA2ODUtZjQ4ZS00YWI5LThlM2YtMDQyNDQ2YjcwZmIx
LzEveGhhWEZ0Q3VaQWFIQXhRS28zTU9ONGo5MU1ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEkGCCsGAQUFBwEHAQH/BDowODAgBAIAATAaAwQALYYMAwQB
LYYOMAwDBAXUCOADBAHUCOQwFAQCAAIwDgMFAyoHBQADBQMqDnxAMA0GCSqGSIb3
DQEBCwUAA4IBAQAkeKNuTgcI9B615MUN9qHD9S4DKr8AcZeyduG32zQGPxj10HAH
vlsgEeD2NjbQ1ElafidQpQih/ZE+HsluEEjDgDV0sD4txVjumaMvM3Y6Cw+6bh9q
Axm9OKtSYo3CdFfXTcU4jiOLzuNX6jrmaUky9bEd+BCXaAu8ACzgsS8Rh5UTM8Y9
9m2CUK/BLMJ+IvFnNP48pffUrcnYCMCWoizWDASnP5fbYyO1JxxKZHhnwqhV4RfV
JU9kuaITtKGEjRjjOjXDFtsy8aTix74uOgYGW8ZDg5JbyZSPqMJHQITFJz8mdLeo
8xdzshAV9afIOGvuJ6jKT/ByxNdq5ZDjsWkA
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:34 2024 by rpki-client on console-fra.rpki-client.org