Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/oTiRYywrvLU0xyPQ7Om6_nq9haI.roa
File: oTiRYywrvLU0xyPQ7Om6_nq9haI.roa (raw, json)
Hash identifier: McmzvZI4HInuES33ASvApI/WO494azI92yk8ejBnAtA=
Subject key identifier: A1:38:91:63:2C:2B:BC:B5:34:C7:23:D0:EC:E9:BA:FE:7A:BD:85:A2
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 018AF8E1375DBADB558460B653D01BB81B4B
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/oTiRYywrvLU0xyPQ7Om6_nq9haI.roa
Signing time: Wed 04 Oct 2023 04:10:23 +0000
ROA not before: Wed 04 Oct 2023 04:10:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211772
IP address blocks: 45.137.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f8:e1:37:5d:ba:db:55:84:60:b6:53:d0:1b:b8:1b:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Oct 4 04:10:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a13891632c2bbcb534c723d0ece9bafe7abd85a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:70:a2:2c:50:3a:fb:ef:23:01:07:25:93:e0:
a4:9b:44:0c:99:fb:a5:1a:74:74:68:d1:49:de:0a:
53:fa:2a:4c:95:99:77:fb:56:c9:ec:29:8e:56:4c:
40:a4:ee:e7:66:b0:c7:ff:f5:da:b6:0a:19:d2:2d:
58:81:58:5b:d1:1f:87:bb:62:d6:cf:1f:95:2b:7b:
51:53:a9:a8:39:6c:c3:41:f0:c8:4e:e0:a1:fb:27:
89:d1:e2:3d:56:dd:83:f9:d0:85:5e:c5:2a:45:e5:
5e:c4:3a:5d:9c:a2:1f:94:c8:95:9b:5d:04:88:86:
6f:f9:1c:6b:34:d9:40:e7:a2:2c:77:59:49:47:6b:
39:05:78:e9:22:f6:aa:a1:c8:bd:70:0a:ab:fb:89:
f1:06:76:4b:3a:7b:0a:02:09:63:30:b2:d8:e4:f2:
ce:9c:33:94:0b:27:cf:ca:35:76:35:9c:08:9e:de:
8c:74:bb:a2:8b:5e:c2:d2:b2:82:c1:0e:c3:8b:6c:
3b:ea:23:ec:a9:48:f7:ac:3a:a6:8a:9c:60:bd:1a:
36:90:8c:42:7f:03:2e:45:96:9c:3e:bd:94:2c:b2:
60:51:31:c9:54:19:71:69:78:d8:c6:06:a1:98:39:
ca:88:99:c4:ad:da:fd:15:b9:31:cc:d3:64:94:c7:
85:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:38:91:63:2C:2B:BC:B5:34:C7:23:D0:EC:E9:BA:FE:7A:BD:85:A2
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/oTiRYywrvLU0xyPQ7Om6_nq9haI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.16.0/24
Signature Algorithm: sha256WithRSAEncryption
66:76:f6:be:da:68:df:73:de:8a:9e:e8:85:99:e8:56:d1:5f:
fb:d4:20:48:6e:98:78:09:e2:41:b6:9d:19:2c:e8:c7:e6:ef:
d1:ea:8e:fb:5e:30:47:79:94:0a:14:66:e7:a5:c7:6e:e1:33:
ec:90:29:2c:6b:78:72:e5:c2:ea:a9:f4:69:3e:d4:be:3c:d6:
34:e0:77:77:45:3e:b2:36:f5:aa:4f:c8:52:b5:49:cb:19:c0:
66:a8:7f:a3:b6:72:75:09:82:ad:98:cd:ef:95:d0:27:59:82:
f0:25:92:8c:35:70:0c:a1:50:84:88:ca:07:fc:fe:ba:2c:98:
be:6d:3e:57:36:3e:40:10:07:bf:b8:dd:08:63:24:b6:7e:6e:
83:8d:a8:95:03:bc:d9:b6:1a:02:68:66:c4:ed:c1:04:c0:e1:
76:c4:2d:7e:43:d3:ca:98:97:17:2c:d0:92:ca:ba:34:b1:74:
5b:3e:77:ad:a9:10:97:1f:41:68:98:e2:a7:e7:81:58:e9:40:
1f:f3:26:c7:9b:40:da:bd:da:bd:52:64:8a:e2:df:98:86:9f:
a5:93:d0:1b:ef:bc:0c:86:e0:7a:e5:00:1b:48:05:91:4b:4d:
dd:1e:e3:f8:c4:7b:c9:b4:0b:06:dd:b9:84:d8:96:fe:d2:c2:
ff:6e:96:55
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYr44TdduttVhGC2U9AbuBtLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDliMGMwZDA0MjI1NTY2ZGI5NWU5YWQzYjJlZjYwNTAxNDk3
NWFhYTIwHhcNMjMxMDA0MDQxMDIzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMTM4OTE2MzJjMmJiY2I1MzRjNzIzZDBlY2U5YmFmZTdhYmQ4NWEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhXCiLFA6++8jAQclk+Ckm0QMmful
GnR0aNFJ3gpT+ipMlZl3+1bJ7CmOVkxApO7nZrDH//XatgoZ0i1YgVhb0R+Hu2LW
zx+VK3tRU6moOWzDQfDITuCh+yeJ0eI9Vt2D+dCFXsUqReVexDpdnKIflMiVm10E
iIZv+RxrNNlA56Isd1lJR2s5BXjpIvaqoci9cAqr+4nxBnZLOnsKAgljMLLY5PLO
nDOUCyfPyjV2NZwInt6MdLuii17C0rKCwQ7Di2w76iPsqUj3rDqmipxgvRo2kIxC
fwMuRZacPr2ULLJgUTHJVBlxaXjYxgahmDnKiJnErdr9FbkxzNNklMeFwwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKE4kWMsK7y1NMcj0Ozpuv56vYWiMB8GA1UdIwQY
MBaAFJsMDQQiVWbblemtOy72BQFJdaqiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbXd3TkJDSlZadHVWNmEwN0x2WUZBVWwxcXFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC8wZWM2ZDItZjFkNy00YjBhLWFkMzMt
ZThlZjJmMDk1OThlLzEvb1RpUll5d3J2TFUweHlQUTdPbTZfbnE5aGFJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC8wZWM2ZDItZjFkNy00YjBhLWFkMzMtZThlZjJmMDk1OThl
LzEvbXd3TkJDSlZadHVWNmEwN0x2WUZBVWwxcXFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYkQMA0G
CSqGSIb3DQEBCwUAA4IBAQBmdva+2mjfc96KnuiFmehW0V/71CBIbph4CeJBtp0Z
LOjH5u/R6o77XjBHeZQKFGbnpcdu4TPskCksa3hy5cLqqfRpPtS+PNY04Hd3RT6y
NvWqT8hStUnLGcBmqH+jtnJ1CYKtmM3vldAnWYLwJZKMNXAMoVCEiMoH/P66LJi+
bT5XNj5AEAe/uN0IYyS2fm6DjaiVA7zZthoCaGbE7cEEwOF2xC1+Q9PKmJcXLNCS
yro0sXRbPnetqRCXH0FomOKn54FY6UAf8ybHm0Davdq9UmSK4t+Yhp+lk9Ab77wM
huB65QAbSAWRS03dHuP4xHvJtAsG3bmE2Jb+0sL/bpZV
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:49 2024 by rpki-client on console-ams.rpki-client.org