Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/zBpcXPYTY-F_x5ZKsINxQ5u5ymI.roa
File: zBpcXPYTY-F_x5ZKsINxQ5u5ymI.roa (raw, json)
Hash identifier: ldQpPhOhgdKehCWa02w5wUvnZ9bxP/A/S7yMmA0lvsg=
Subject key identifier: CC:1A:5C:5C:F6:13:63:E1:7F:C7:96:4A:B0:83:71:43:9B:B9:CA:62
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018CC5012BDCEBB28BCF353500178F9C8904
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/zBpcXPYTY-F_x5ZKsINxQ5u5ymI.roa
Signing time: Mon 01 Jan 2024 12:30:37 +0000
ROA not before: Mon 01 Jan 2024 12:30:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210773
IP address blocks: 45.156.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 13 Apr 2024 04:32:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:2b:dc:eb:b2:8b:cf:35:35:00:17:8f:9c:89:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 1 12:30:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cc1a5c5cf61363e17fc7964ab08371439bb9ca62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:d8:1b:38:dc:cb:55:8f:77:23:63:7b:24:67:
39:72:f2:6e:01:d1:18:9d:4b:67:df:bc:8d:89:aa:
49:de:2c:03:63:d9:07:79:83:ee:e7:f9:30:c1:c5:
03:63:c6:eb:5b:08:48:58:62:20:ba:25:fe:37:32:
8e:16:e9:d0:ef:30:36:50:05:8b:bd:1c:55:d8:cc:
ec:06:61:50:57:76:5e:3d:7a:e6:9f:42:59:04:96:
a7:1b:e2:d7:62:41:54:cd:4f:37:12:ca:8e:b8:31:
05:0a:a1:58:f7:7d:ec:12:58:30:d7:32:4a:6a:33:
ca:ad:a5:00:4a:6c:dd:fc:42:4a:10:e6:9b:d8:b4:
5d:fd:cf:4a:27:cf:3d:0c:f2:ed:c8:05:61:7e:80:
43:45:7a:a1:eb:4f:4a:99:63:08:59:4e:24:11:f5:
65:a0:d7:d5:23:ec:2e:9f:51:8f:45:1d:1e:bb:f0:
7e:e0:bc:bb:56:41:3d:ab:2a:cd:73:ca:d6:42:4c:
e0:9a:fa:07:24:cf:ef:a8:0a:16:ec:b9:4b:fe:5b:
cd:56:a3:9c:56:31:f8:2e:f6:d8:3b:18:26:f5:15:
03:b7:2c:e1:c8:0e:40:56:fa:e3:38:fc:cc:0d:0b:
f2:bb:77:91:17:c2:d0:d8:94:bc:01:f6:62:52:40:
9e:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:1A:5C:5C:F6:13:63:E1:7F:C7:96:4A:B0:83:71:43:9B:B9:CA:62
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/zBpcXPYTY-F_x5ZKsINxQ5u5ymI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.158.0/24
Signature Algorithm: sha256WithRSAEncryption
30:e1:95:96:b6:e0:b2:14:72:36:df:9a:b1:5a:61:88:43:ff:
ac:c1:06:21:c5:d1:c8:95:84:0f:4f:23:d7:59:19:77:d4:99:
b4:ca:16:f3:d1:33:27:13:61:2b:1e:4b:49:5a:5b:ce:d8:aa:
bc:95:35:a9:cc:4d:96:16:ab:29:13:62:95:84:9e:54:42:e7:
cb:7e:b8:8b:be:0f:f5:39:75:ea:ea:9e:80:de:7c:44:95:f7:
71:6f:40:b3:ca:40:31:cf:bb:21:fe:c5:91:13:18:6c:e5:4c:
9a:cc:78:b2:0e:0d:47:4f:18:c7:59:a6:b1:22:2f:b6:a5:da:
06:1b:5c:2b:68:b8:76:be:9e:12:38:50:42:3f:59:13:37:c6:
8d:00:f6:c9:ab:60:e3:65:e0:5d:e5:f6:a4:3e:f3:6a:4b:98:
d5:c8:bd:95:25:5d:0f:83:c3:3c:db:73:75:6a:c2:80:1b:0a:
fa:56:20:76:62:71:11:f4:d4:cd:ba:75:47:75:2f:6f:55:34:
ba:31:6d:40:0d:ec:39:c3:24:81:1c:42:fd:af:50:d2:ff:ad:
9a:0b:cf:3c:6d:32:5d:02:83:38:06:13:44:83:5c:f0:f4:c6:
2f:42:73:3f:5e:73:0d:b9:0b:d5:79:b1:67:cc:91:32:cd:cf:
03:26:56:cf
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzFASvc67KLzzU1ABePnIkEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2YzJhNGI3ZDVkNzNjNWI1NzA0NjIyM2JmMzBlYjY1MzAw
NWIwZTIwHhcNMjQwMTAxMTIzMDM3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYzFhNWM1Y2Y2MTM2M2UxN2ZjNzk2NGFiMDgzNzE0MzliYjljYTYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjdgbONzLVY93I2N7JGc5cvJuAdEY
nUtn37yNiapJ3iwDY9kHeYPu5/kwwcUDY8brWwhIWGIguiX+NzKOFunQ7zA2UAWL
vRxV2MzsBmFQV3ZePXrmn0JZBJanG+LXYkFUzU83EsqOuDEFCqFY933sElgw1zJK
ajPKraUASmzd/EJKEOab2LRd/c9KJ889DPLtyAVhfoBDRXqh609KmWMIWU4kEfVl
oNfVI+wun1GPRR0eu/B+4Ly7VkE9qyrNc8rWQkzgmvoHJM/vqAoW7LlL/lvNVqOc
VjH4LvbYOxgm9RUDtyzhyA5AVvrjOPzMDQvyu3eRF8LQ2JS8AfZiUkCehQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMwaXFz2E2Phf8eWSrCDcUObucpiMB8GA1UdIwQY
MBaAFDbCpLfV1zxbVwRiI78w62UwBbDiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGIt
MmNjZWRiOTY2YTU4LzEvekJwY1hQWVRZLUZfeDVaS3NJTnhRNXU1eW1JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGItMmNjZWRiOTY2YTU4
LzEvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZyeMA0G
CSqGSIb3DQEBCwUAA4IBAQAw4ZWWtuCyFHI235qxWmGIQ/+swQYhxdHIlYQPTyPX
WRl31Jm0yhbz0TMnE2ErHktJWlvO2Kq8lTWpzE2WFqspE2KVhJ5UQufLfriLvg/1
OXXq6p6A3nxElfdxb0CzykAxz7sh/sWRExhs5UyazHiyDg1HTxjHWaaxIi+2pdoG
G1wraLh2vp4SOFBCP1kTN8aNAPbJq2DjZeBd5fakPvNqS5jVyL2VJV0Pg8M823N1
asKAGwr6ViB2YnER9NTNunVHdS9vVTS6MW1ADew5wySBHEL9r1DS/62aC888bTJd
AoM4BhNEg1zw9MYvQnM/XnMNuQvVebFnzJEyzc8DJlbP
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:14 2024 by rpki-client on console-ams.rpki-client.org