Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/40Xmr6Jl3b2-60gO3zZ7b1i9ANY.roa
File: 40Xmr6Jl3b2-60gO3zZ7b1i9ANY.roa (raw, json)
Hash identifier: t+n8nJB4K6FfZnHubQgCac+fo/6wSsCOsATb6RT/fDo=
Subject key identifier: E3:45:E6:AF:A2:65:DD:BD:BE:EB:48:0E:DF:36:7B:6F:58:BD:00:D6
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 018C746DFBA195186ACD8577A5D9A56B9DB4
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/40Xmr6Jl3b2-60gO3zZ7b1i9ANY.roa
Signing time: Sat 16 Dec 2023 21:00:14 +0000
ROA not before: Sat 16 Dec 2023 21:00:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.177.24.0/24 maxlen: 24
45.150.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Dec 2023 18:08:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:74:6d:fb:a1:95:18:6a:cd:85:77:a5:d9:a5:6b:9d:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Dec 16 21:00:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e345e6afa265ddbdbeeb480edf367b6f58bd00d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:cc:f0:02:db:f9:d6:b6:f4:ff:a4:d5:ee:9b:
d0:51:0b:b1:f5:e8:e6:41:93:68:05:f2:9c:01:4f:
18:3d:bd:3e:a0:b1:a9:1e:38:b1:25:15:89:f4:81:
ce:a7:40:60:6b:a7:70:27:3b:e4:3b:4c:3d:7a:e8:
30:8a:9f:37:1a:63:9a:55:86:9c:1f:3a:f7:cf:c0:
31:8e:9f:00:b6:24:9c:8a:6f:2e:86:25:39:15:a8:
51:0f:8c:09:24:45:ef:4a:0d:c2:09:c9:fc:d0:06:
ce:fe:d2:11:a6:74:77:89:ab:3b:bf:a3:11:6b:cd:
36:4a:59:4e:c0:9f:76:51:b1:6c:c5:eb:5f:54:29:
f7:59:51:d8:5c:28:1c:b3:bc:61:63:4a:15:0a:03:
e6:dd:c1:5c:3e:7c:58:b7:ea:81:4f:99:ab:55:08:
ac:fa:fd:36:1b:4c:21:6d:f3:51:9e:c8:bc:d3:59:
55:0b:7e:eb:df:72:70:5a:22:b7:ab:08:e2:30:23:
ee:67:21:66:01:d4:cf:b1:fa:a1:cd:66:80:04:f3:
9c:2f:0b:97:54:e3:8d:79:87:c6:39:e2:e4:49:3f:
04:69:56:fb:bf:bb:ec:ed:eb:ff:23:18:2c:9d:9c:
c6:4e:62:f6:8d:f0:a7:65:d4:dd:1d:3a:7c:05:bd:
03:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:45:E6:AF:A2:65:DD:BD:BE:EB:48:0E:DF:36:7B:6F:58:BD:00:D6
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/40Xmr6Jl3b2-60gO3zZ7b1i9ANY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.55.0/24
185.177.24.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:b2:d5:5b:af:10:8b:c8:0e:7e:fc:c5:64:ae:b3:36:ac:c3:
48:84:b8:42:fb:7f:b1:ff:a4:0c:ac:7f:28:f7:7b:4c:88:b7:
4e:54:7f:b7:8c:ba:93:b8:81:63:1e:f6:54:41:db:70:df:d4:
7a:ea:37:f9:bc:ee:b2:07:77:6b:e4:57:cd:45:4d:6c:3d:5c:
bb:1e:a1:d9:bd:80:45:2d:ed:ba:e8:96:bf:12:56:98:b8:62:
00:f6:8a:3d:01:60:77:d2:99:62:3e:7a:4e:4f:16:ac:28:80:
6e:82:1e:f9:a3:d4:34:18:46:13:00:dc:a5:0d:aa:4a:84:ca:
00:9e:86:19:45:4f:6a:1f:81:d1:58:9f:82:f4:1c:33:af:70:
dd:72:09:92:31:26:7a:07:e6:fe:7d:21:7d:d6:3d:83:b4:6a:
56:ea:1d:49:13:a9:87:91:80:50:ab:fa:a3:c5:15:f2:55:c3:
c8:d4:f6:00:bc:f5:b3:cf:d6:d8:0f:fe:db:1e:63:93:d4:49:
70:c5:6f:ea:a4:f5:5d:6d:ce:0c:69:34:52:dc:27:3f:b9:9a:
39:e1:71:29:86:17:e6:f9:b2:c5:c9:d4:d5:12:b2:87:c0:cf:
00:ad:bb:5e:11:9b:bb:d4:50:84:75:5b:e5:e0:53:6b:de:66:
c6:65:da:ee
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYx0bfuhlRhqzYV3pdmla520MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDliMGMwZDA0MjI1NTY2ZGI5NWU5YWQzYjJlZjYwNTAxNDk3
NWFhYTIwHhcNMjMxMjE2MjEwMDE0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMzQ1ZTZhZmEyNjVkZGJkYmVlYjQ4MGVkZjM2N2I2ZjU4YmQwMGQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoMzwAtv51rb0/6TV7pvQUQux9ejm
QZNoBfKcAU8YPb0+oLGpHjixJRWJ9IHOp0Bga6dwJzvkO0w9eugwip83GmOaVYac
Hzr3z8Axjp8AtiScim8uhiU5FahRD4wJJEXvSg3CCcn80AbO/tIRpnR3ias7v6MR
a802SllOwJ92UbFsxetfVCn3WVHYXCgcs7xhY0oVCgPm3cFcPnxYt+qBT5mrVQis
+v02G0whbfNRnsi801lVC37r33JwWiK3qwjiMCPuZyFmAdTPsfqhzWaABPOcLwuX
VOONeYfGOeLkST8EaVb7v7vs7ev/IxgsnZzGTmL2jfCnZdTdHTp8Bb0DAwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFONF5q+iZd29vutIDt82e29YvQDWMB8GA1UdIwQY
MBaAFJsMDQQiVWbblemtOy72BQFJdaqiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbXd3TkJDSlZadHVWNmEwN0x2WUZBVWwxcXFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC8wZWM2ZDItZjFkNy00YjBhLWFkMzMt
ZThlZjJmMDk1OThlLzEvNDBYbXI2SmwzYjItNjBnTzN6WjdiMWk5QU5ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC8wZWM2ZDItZjFkNy00YjBhLWFkMzMtZThlZjJmMDk1OThl
LzEvbXd3TkJDSlZadHVWNmEwN0x2WUZBVWwxcXFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALZY3AwQA
ubEYMA0GCSqGSIb3DQEBCwUAA4IBAQBfstVbrxCLyA5+/MVkrrM2rMNIhLhC+3+x
/6QMrH8o93tMiLdOVH+3jLqTuIFjHvZUQdtw39R66jf5vO6yB3dr5FfNRU1sPVy7
HqHZvYBFLe266Ja/ElaYuGIA9oo9AWB30pliPnpOTxasKIBugh75o9Q0GEYTANyl
DapKhMoAnoYZRU9qH4HRWJ+C9Bwzr3DdcgmSMSZ6B+b+fSF91j2DtGpW6h1JE6mH
kYBQq/qjxRXyVcPI1PYAvPWzz9bYD/7bHmOT1ElwxW/qpPVdbc4MaTRS3Cc/uZo5
4XEphhfm+bLFydTVErKHwM8ArbteEZu71FCEdVvl4FNr3mbGZdru
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:42 2024 by rpki-client on console-ams.rpki-client.org