Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/G4xiRT91UZeilYKhLE6z7hsy6C4.roa
File: G4xiRT91UZeilYKhLE6z7hsy6C4.roa (raw, json)
Hash identifier: CDXNoE5A17an5z2DjIc7x81tb/Txv+1h5P6+BHRuFFo=
Subject key identifier: 1B:8C:62:45:3F:75:51:97:A2:95:82:A1:2C:4E:B3:EE:1B:32:E8:2E
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 01856C78546D7C01813B76B9C561712548C9
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/G4xiRT91UZeilYKhLE6z7hsy6C4.roa
Signing time: Sun 01 Jan 2023 08:35:03 +0000
ROA not before: Sun 01 Jan 2023 08:35:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1299
IP address blocks: 45.137.16.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 19 Jul 2023 17:56:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:78:54:6d:7c:01:81:3b:76:b9:c5:61:71:25:48:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jan 1 08:35:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1b8c62453f755197a29582a12c4eb3ee1b32e82e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:e7:eb:dd:09:36:44:6a:a1:30:3d:1d:29:2f:
28:c0:87:5b:ee:8e:9a:0f:ca:92:13:5d:a3:74:03:
e4:00:32:4e:b2:bc:fc:59:cb:ca:47:fe:1e:e5:f7:
3f:02:69:c4:fe:26:07:b7:50:04:62:00:4e:5b:2c:
be:56:6d:21:83:75:36:e8:66:60:e0:d2:59:fb:39:
ea:0d:a0:47:04:56:c1:81:19:87:3b:9e:47:54:8d:
9d:08:f1:a2:82:32:1b:ce:ef:b1:f5:0f:7e:00:16:
6c:e4:67:34:60:2d:5e:50:c8:a3:1f:20:75:00:a7:
d2:8c:3b:0f:d7:d6:f7:8c:b0:83:b1:88:3c:31:0f:
bc:98:6a:30:6a:0e:d7:8c:8d:b7:52:a3:d9:fb:5c:
d2:55:cd:1b:00:33:8c:df:97:aa:f4:b6:47:64:7e:
32:aa:88:44:75:0b:de:e0:90:3a:86:5c:27:89:fe:
44:18:66:ac:dc:20:87:1c:65:1b:56:34:3d:cb:1b:
cd:a4:f3:e2:2c:9b:77:53:bb:30:33:cb:44:77:05:
11:26:82:08:c4:34:96:e4:bc:e4:d1:30:86:92:21:
ad:e3:cf:ad:22:fa:92:92:3c:52:27:5c:2a:bf:23:
46:36:16:eb:37:eb:90:3d:fb:01:37:27:45:19:d9:
28:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:8C:62:45:3F:75:51:97:A2:95:82:A1:2C:4E:B3:EE:1B:32:E8:2E
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/G4xiRT91UZeilYKhLE6z7hsy6C4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.16.0/23
Signature Algorithm: sha256WithRSAEncryption
02:3d:94:29:75:c9:da:ca:d2:30:b9:16:a9:4c:09:63:4d:67:
9f:1c:4c:b6:23:b4:de:59:59:d9:07:68:fb:a2:fd:5d:a4:6a:
2f:6b:b8:d9:3e:2e:5f:54:38:a9:c4:3a:6d:d7:83:ce:b7:17:
a6:7e:0c:6f:32:ab:4b:8b:51:d6:07:d2:de:c1:c3:a1:f9:eb:
76:e9:41:ae:b8:76:af:60:6f:e6:d7:83:b4:28:8b:39:d5:eb:
09:e5:ba:51:c9:36:5a:0b:f9:9e:30:f6:6c:6b:00:4a:de:c8:
06:14:67:0c:9b:99:90:4d:62:42:9b:d7:a2:53:e7:b9:12:fd:
d4:43:8a:41:2d:b1:0a:b9:15:18:ab:4c:1c:1c:f1:9a:56:a2:
43:4d:d2:6c:20:44:d3:dd:7e:bd:dd:9f:0e:8f:90:36:c3:6c:
3c:44:58:60:f5:b7:83:73:bc:5c:56:f5:02:b5:10:46:a5:6d:
7d:f5:60:af:ce:28:d7:a6:b7:7d:26:2c:40:a5:e0:65:16:c1:
77:e0:38:09:3d:9f:2b:e9:e5:7a:23:fa:ed:81:d4:2c:8b:b8:
71:62:64:b2:7e:06:fa:80:87:ad:43:e1:7c:0d:bd:61:24:e3:
79:f9:23:0d:72:29:85:01:26:94:58:f0:23:76:58:21:5a:85:
49:db:18:c7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVseFRtfAGBO3a5xWFxJUjJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDliMGMwZDA0MjI1NTY2ZGI5NWU5YWQzYjJlZjYwNTAxNDk3
NWFhYTIwHhcNMjMwMTAxMDgzNTAzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYjhjNjI0NTNmNzU1MTk3YTI5NTgyYTEyYzRlYjNlZTFiMzJlODJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiOfr3Qk2RGqhMD0dKS8owIdb7o6a
D8qSE12jdAPkADJOsrz8WcvKR/4e5fc/AmnE/iYHt1AEYgBOWyy+Vm0hg3U26GZg
4NJZ+znqDaBHBFbBgRmHO55HVI2dCPGigjIbzu+x9Q9+ABZs5Gc0YC1eUMijHyB1
AKfSjDsP19b3jLCDsYg8MQ+8mGowag7XjI23UqPZ+1zSVc0bADOM35eq9LZHZH4y
qohEdQve4JA6hlwnif5EGGas3CCHHGUbVjQ9yxvNpPPiLJt3U7swM8tEdwURJoII
xDSW5Lzk0TCGkiGt48+tIvqSkjxSJ1wqvyNGNhbrN+uQPfsBNydFGdkovQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBuMYkU/dVGXopWCoSxOs+4bMuguMB8GA1UdIwQY
MBaAFJsMDQQiVWbblemtOy72BQFJdaqiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbXd3TkJDSlZadHVWNmEwN0x2WUZBVWwxcXFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC8wZWM2ZDItZjFkNy00YjBhLWFkMzMt
ZThlZjJmMDk1OThlLzEvRzR4aVJUOTFVWmVpbFlLaExFNno3aHN5NkM0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC8wZWM2ZDItZjFkNy00YjBhLWFkMzMtZThlZjJmMDk1OThl
LzEvbXd3TkJDSlZadHVWNmEwN0x2WUZBVWwxcXFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLYkQMA0G
CSqGSIb3DQEBCwUAA4IBAQACPZQpdcnaytIwuRapTAljTWefHEy2I7TeWVnZB2j7
ov1dpGova7jZPi5fVDipxDpt14POtxemfgxvMqtLi1HWB9LewcOh+et26UGuuHav
YG/m14O0KIs51esJ5bpRyTZaC/meMPZsawBK3sgGFGcMm5mQTWJCm9eiU+e5Ev3U
Q4pBLbEKuRUYq0wcHPGaVqJDTdJsIETT3X693Z8Oj5A2w2w8RFhg9beDc7xcVvUC
tRBGpW199WCvzijXprd9JixApeBlFsF34DgJPZ8r6eV6I/rtgdQsi7hxYmSyfgb6
gIetQ+F8Db1hJON5+SMNcimFASaUWPAjdlghWoVJ2xjH
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:42 2024 by rpki-client on console-ams.rpki-client.org