Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/Ti1PIIAVhk_nKv6-cr1BDBB84SQ.roa
File: Ti1PIIAVhk_nKv6-cr1BDBB84SQ.roa (raw, json)
Hash identifier: x/3aw6hSw+OKwecjqlzb8vQSIWFm6CF83QhQOYqlWwo=
Subject key identifier: 4E:2D:4F:20:80:15:86:4F:E7:2A:FE:BE:72:BD:41:0C:10:7C:E1:24
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018571030FD2EECDAABC9DC82D79C9D16906
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/Ti1PIIAVhk_nKv6-cr1BDBB84SQ.roa
Signing time: Mon 02 Jan 2023 05:45:04 +0000
ROA not before: Mon 02 Jan 2023 05:45:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60064
IP address blocks: 45.129.132.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 09 Aug 2023 07:18:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:03:0f:d2:ee:cd:aa:bc:9d:c8:2d:79:c9:d1:69:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 2 05:45:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e2d4f208015864fe72afebe72bd410c107ce124
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ea:e8:11:d7:fc:33:c6:e8:6a:13:0e:cb:3f:
93:7f:ef:bf:d4:d1:a3:a7:b6:8a:aa:1a:69:bf:16:
06:8a:7c:06:aa:13:b0:0c:4f:c4:79:d7:4f:4b:3d:
4c:51:e5:7b:03:4a:c5:36:60:aa:1a:18:ee:74:b8:
1b:8b:82:4d:25:19:51:13:38:6e:80:95:41:e5:36:
04:a4:b4:6c:68:71:aa:f9:9e:1e:cc:c3:fa:65:fe:
47:ec:97:7e:da:83:cd:64:1e:24:1c:eb:eb:ea:35:
b9:be:5b:12:1c:1b:8d:ef:e6:d4:cb:85:78:53:04:
ca:0c:45:71:0c:cd:7f:5b:ac:b4:b4:83:85:9a:df:
7c:31:c5:5b:11:b0:29:70:52:62:3f:e5:ae:65:c4:
2b:35:ec:72:a0:69:6a:36:62:f8:9f:7b:75:6b:96:
fa:e2:90:7f:94:83:ea:d6:a5:69:67:81:35:e1:5c:
80:81:fa:44:4b:ed:be:c3:5f:cb:24:6a:4a:41:95:
e0:fa:08:e2:4a:40:e9:ab:f5:78:f6:e1:20:f8:80:
96:bf:d1:12:63:5b:3d:48:5c:32:91:5c:f3:07:d8:
7a:70:dc:8a:21:3f:cf:cd:37:b6:1b:3b:03:f8:b2:
dd:82:b1:74:f9:2f:d1:69:93:16:9e:3b:98:7f:62:
25:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:2D:4F:20:80:15:86:4F:E7:2A:FE:BE:72:BD:41:0C:10:7C:E1:24
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/Ti1PIIAVhk_nKv6-cr1BDBB84SQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.132.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:db:4e:04:3f:05:c9:bc:5d:b3:12:04:5c:90:bb:a5:45:39:
39:52:9f:c1:84:50:eb:a9:52:38:e0:03:17:52:64:cd:71:a3:
4d:24:d5:ce:5d:0e:93:56:16:a8:44:41:d6:00:5a:92:c4:5f:
11:61:60:ac:ec:e0:ff:6d:62:28:db:de:7c:07:31:5c:93:a5:
c8:ed:ec:97:3e:4c:05:09:d5:6b:14:5c:35:e1:30:fe:3e:be:
fe:88:c4:40:57:bc:cf:90:42:f4:16:46:4d:82:f9:4e:55:bc:
bf:9c:48:d4:b3:11:c5:79:1b:c9:c9:0b:37:fe:c4:04:17:22:
4c:3d:6c:3e:71:5f:e3:83:18:2a:2d:e7:31:9d:75:db:ff:09:
f0:b6:ee:28:a3:7b:cf:3d:13:25:a6:44:c8:95:65:9f:f0:2f:
3c:75:11:5c:51:6a:fd:8e:64:cd:9a:4e:46:9d:97:c0:c0:04:
05:7b:cc:bd:77:55:1e:df:fa:bd:b6:43:2a:fd:a0:02:1c:78:
3b:76:a9:c6:7f:8c:db:62:37:5c:f0:ef:59:ae:e8:5a:a5:5f:
ae:a7:d6:f1:cc:1f:86:79:95:18:b7:d1:58:46:2e:78:68:1e:
da:66:51:cc:b6:4d:96:43:30:6d:b0:ba:6b:b9:94:eb:58:df:
12:f7:c7:fc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxAw/S7s2qvJ3ILXnJ0WkGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2YzJhNGI3ZDVkNzNjNWI1NzA0NjIyM2JmMzBlYjY1MzAw
NWIwZTIwHhcNMjMwMTAyMDU0NTA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZTJkNGYyMDgwMTU4NjRmZTcyYWZlYmU3MmJkNDEwYzEwN2NlMTI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAouroEdf8M8boahMOyz+Tf++/1NGj
p7aKqhppvxYGinwGqhOwDE/EeddPSz1MUeV7A0rFNmCqGhjudLgbi4JNJRlREzhu
gJVB5TYEpLRsaHGq+Z4ezMP6Zf5H7Jd+2oPNZB4kHOvr6jW5vlsSHBuN7+bUy4V4
UwTKDEVxDM1/W6y0tIOFmt98McVbEbApcFJiP+WuZcQrNexyoGlqNmL4n3t1a5b6
4pB/lIPq1qVpZ4E14VyAgfpES+2+w1/LJGpKQZXg+gjiSkDpq/V49uEg+ICWv9ES
Y1s9SFwykVzzB9h6cNyKIT/PzTe2GzsD+LLdgrF0+S/RaZMWnjuYf2Il+wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE4tTyCAFYZP5yr+vnK9QQwQfOEkMB8GA1UdIwQY
MBaAFDbCpLfV1zxbVwRiI78w62UwBbDiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGIt
MmNjZWRiOTY2YTU4LzEvVGkxUElJQVZoa19uS3Y2LWNyMUJEQkI4NFNRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGItMmNjZWRiOTY2YTU4
LzEvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYGEMA0G
CSqGSIb3DQEBCwUAA4IBAQB/204EPwXJvF2zEgRckLulRTk5Up/BhFDrqVI44AMX
UmTNcaNNJNXOXQ6TVhaoREHWAFqSxF8RYWCs7OD/bWIo2958BzFck6XI7eyXPkwF
CdVrFFw14TD+Pr7+iMRAV7zPkEL0FkZNgvlOVby/nEjUsxHFeRvJyQs3/sQEFyJM
PWw+cV/jgxgqLecxnXXb/wnwtu4oo3vPPRMlpkTIlWWf8C88dRFcUWr9jmTNmk5G
nZfAwAQFe8y9d1Ue3/q9tkMq/aACHHg7dqnGf4zbYjdc8O9ZruhapV+up9bxzB+G
eZUYt9FYRi54aB7aZlHMtk2WQzBtsLpruZTrWN8S98f8
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:11 2024 by rpki-client on console-ams.rpki-client.org