Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/LaZ9Hi8qUzbSvvSWFK5OltXYAhk.roa
File: LaZ9Hi8qUzbSvvSWFK5OltXYAhk.roa (raw, json)
Hash identifier: ld1v2lKwyZ+uLU6FgCjeBtkntSWKaOl1owViLR8dQSw=
Subject key identifier: 2D:A6:7D:1E:2F:2A:53:36:D2:BE:F4:96:14:AE:4E:96:D5:D8:02:19
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 0186FF6EA6D1F1A86FBC2A26569583C49BB1
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/LaZ9Hi8qUzbSvvSWFK5OltXYAhk.roa
Signing time: Mon 20 Mar 2023 14:31:27 +0000
ROA not before: Mon 20 Mar 2023 14:31:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.150.54.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 23 Mar 2023 21:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ff:6e:a6:d1:f1:a8:6f:bc:2a:26:56:95:83:c4:9b:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Mar 20 14:31:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2da67d1e2f2a5336d2bef49614ae4e96d5d80219
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d4:dd:b9:94:54:3e:9d:d2:e0:ee:42:0a:89:
81:93:f6:45:d5:a9:f4:18:bf:00:7b:f3:39:81:e1:
26:a1:0f:2d:76:1b:20:d7:f7:79:00:de:33:63:59:
c4:8f:2a:ba:55:a1:ff:dc:f2:0b:84:54:09:c3:a0:
2a:88:cc:08:f9:7e:5d:43:50:80:ba:20:02:c5:d8:
16:20:3e:3d:f7:94:92:b1:41:c6:58:1c:83:bb:cf:
c6:9e:b7:c8:92:6f:23:74:43:d2:da:e4:e7:af:c9:
87:40:31:3e:5f:26:83:3f:fe:ba:eb:e2:7f:3d:c9:
20:9b:d2:bc:c8:6c:ad:2a:4c:b5:33:dd:f0:4b:0d:
63:f9:c5:77:ab:f0:7b:1d:0c:a1:84:7c:3d:3a:ff:
d4:f4:d6:10:26:d8:b9:6e:a0:5a:2d:ca:d7:96:9b:
a5:e1:0e:77:61:76:72:4f:4a:e8:38:39:bf:06:d8:
c0:e1:04:f5:5b:b7:f5:8b:96:21:d4:4f:52:cb:21:
2f:ae:c4:2b:db:97:25:fc:79:01:34:5c:45:3e:68:
0a:9b:62:51:33:a8:55:e3:93:fa:6d:03:ae:13:03:
76:02:2e:d3:b6:70:4f:36:49:35:4b:27:bd:8a:d3:
e2:ce:9f:91:9c:ea:b7:1f:2d:b2:1d:e5:35:4b:69:
cc:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:A6:7D:1E:2F:2A:53:36:D2:BE:F4:96:14:AE:4E:96:D5:D8:02:19
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/LaZ9Hi8qUzbSvvSWFK5OltXYAhk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.54.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:cb:90:b3:48:21:8e:9e:41:63:2b:25:c7:e6:7a:f9:5b:36:
98:03:06:af:4a:d6:92:aa:3e:d5:72:2f:48:bc:ac:82:16:fc:
6c:12:6c:ec:f1:8b:55:21:c2:8d:11:48:02:db:61:33:95:43:
58:8e:52:65:6a:13:e9:57:cf:5a:8a:d2:6f:7d:18:85:d6:1f:
54:b9:2f:89:0e:9e:85:97:0c:45:a1:18:6d:94:cf:da:70:9c:
17:d5:ef:4c:57:86:cd:31:88:9e:93:ce:89:44:88:c6:b8:ba:
08:da:bc:e4:c3:4e:62:c6:aa:7b:27:94:8e:a6:4f:aa:92:c3:
87:6c:49:ed:3d:29:b8:f9:2e:a8:d3:d2:38:32:da:c4:45:ba:
36:ec:8c:ae:5f:30:9b:a0:8c:d0:7f:0b:ac:e1:96:ab:92:f3:
be:fd:33:67:ab:cb:a0:6a:84:30:ce:08:73:10:93:99:38:26:
6f:f2:d1:d8:f2:37:23:3e:5d:eb:8e:6d:54:9e:b7:f3:28:e2:
97:dd:6b:c9:e1:1d:3a:26:68:b9:61:85:75:df:b5:78:51:d4:
a9:7b:da:ae:8e:93:8c:ee:01:35:af:9a:18:83:69:4c:4f:db:
0d:cd:df:f9:a8:6b:95:d6:26:0e:e7:a8:41:8f:d0:2c:53:40:
fb:3d:00:82
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYb/bqbR8ahvvComVpWDxJuxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDliMGMwZDA0MjI1NTY2ZGI5NWU5YWQzYjJlZjYwNTAxNDk3
NWFhYTIwHhcNMjMwMzIwMTQzMTI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZGE2N2QxZTJmMmE1MzM2ZDJiZWY0OTYxNGFlNGU5NmQ1ZDgwMjE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwtTduZRUPp3S4O5CComBk/ZF1an0
GL8Ae/M5geEmoQ8tdhsg1/d5AN4zY1nEjyq6VaH/3PILhFQJw6AqiMwI+X5dQ1CA
uiACxdgWID4995SSsUHGWByDu8/GnrfIkm8jdEPS2uTnr8mHQDE+XyaDP/666+J/
Pckgm9K8yGytKky1M93wSw1j+cV3q/B7HQyhhHw9Ov/U9NYQJti5bqBaLcrXlpul
4Q53YXZyT0roODm/BtjA4QT1W7f1i5Yh1E9SyyEvrsQr25cl/HkBNFxFPmgKm2JR
M6hV45P6bQOuEwN2Ai7TtnBPNkk1Sye9itPizp+RnOq3Hy2yHeU1S2nMEwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC2mfR4vKlM20r70lhSuTpbV2AIZMB8GA1UdIwQY
MBaAFJsMDQQiVWbblemtOy72BQFJdaqiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbXd3TkJDSlZadHVWNmEwN0x2WUZBVWwxcXFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC8wZWM2ZDItZjFkNy00YjBhLWFkMzMt
ZThlZjJmMDk1OThlLzEvTGFaOUhpOHFVemJTdnZTV0ZLNU9sdFhZQWhrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC8wZWM2ZDItZjFkNy00YjBhLWFkMzMtZThlZjJmMDk1OThl
LzEvbXd3TkJDSlZadHVWNmEwN0x2WUZBVWwxcXFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLZY2MA0G
CSqGSIb3DQEBCwUAA4IBAQAOy5CzSCGOnkFjKyXH5nr5WzaYAwavStaSqj7Vci9I
vKyCFvxsEmzs8YtVIcKNEUgC22EzlUNYjlJlahPpV89aitJvfRiF1h9UuS+JDp6F
lwxFoRhtlM/acJwX1e9MV4bNMYiek86JRIjGuLoI2rzkw05ixqp7J5SOpk+qksOH
bEntPSm4+S6o09I4MtrERbo27IyuXzCboIzQfwus4ZarkvO+/TNnq8ugaoQwzghz
EJOZOCZv8tHY8jcjPl3rjm1UnrfzKOKX3WvJ4R06Jmi5YYV137V4UdSpe9qujpOM
7gE1r5oYg2lMT9sNzd/5qGuV1iYO56hBj9AsU0D7PQCC
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:42 2024 by rpki-client on console-ams.rpki-client.org