Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/PJUb13RbIhVi-HOYyLOSGAyK2-k.roa
File: PJUb13RbIhVi-HOYyLOSGAyK2-k.roa (raw, json)
Hash identifier: RJrxc5qt5f8lynab2rg2mFLMJuZlC2yPPCy4gZmV8U0=
Subject key identifier: 3C:95:1B:D7:74:5B:22:15:62:F8:73:98:C8:B3:92:18:0C:8A:DB:E9
Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Certificate serial: 018570796EB1E913C5C3E6A2B47C3EC0F0CD
Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/PJUb13RbIhVi-HOYyLOSGAyK2-k.roa
Signing time: Mon 02 Jan 2023 03:14:44 +0000
ROA not before: Mon 02 Jan 2023 03:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44592
IP address blocks: 45.155.76.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 30 Jul 2023 17:46:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:6e:b1:e9:13:c5:c3:e6:a2:b4:7c:3e:c0:f0:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Validity
Not Before: Jan 2 03:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c951bd7745b221562f87398c8b392180c8adbe9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:4f:bf:8d:25:00:a9:68:bc:8e:1f:09:e1:7e:
a5:d3:9b:df:4e:20:58:4e:b8:ae:a8:69:53:b3:18:
cd:9e:d1:f2:ae:91:f9:af:d6:7b:da:53:c8:b0:a1:
9a:6c:38:1e:ea:0f:e2:17:08:4a:89:83:98:bf:fd:
a6:73:ca:f9:1e:c4:24:44:aa:ed:66:af:9d:82:33:
55:4b:78:be:03:69:f0:5a:2a:ef:b2:51:2b:d5:6f:
8f:f1:cb:73:8b:68:98:e5:d8:7b:de:e2:a8:b6:87:
ab:50:05:43:9c:44:01:dc:42:37:1f:dd:0e:c8:fa:
41:70:6a:83:e9:7e:82:f8:8a:3d:aa:4e:8f:17:96:
b6:08:15:f4:1f:2f:c8:c1:c4:b2:de:a7:8f:ab:2c:
c8:1b:b8:b8:08:30:18:30:1e:9e:76:86:82:91:45:
e0:ae:3d:4d:43:3d:cb:11:f9:31:7b:30:a8:58:69:
60:ac:74:98:2d:4f:97:e3:1a:1a:54:01:86:57:4f:
6e:06:a9:0d:5a:46:35:be:66:55:45:8c:ac:3e:d8:
40:78:40:50:54:60:02:0f:a7:46:4a:9a:61:80:5a:
3b:1f:d2:a0:72:7c:4e:94:3c:fe:31:e1:8e:34:42:
31:2a:8a:cd:ff:f9:29:45:bc:5e:bf:b1:45:72:39:
49:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:95:1B:D7:74:5B:22:15:62:F8:73:98:C8:B3:92:18:0C:8A:DB:E9
X509v3 Authority Key Identifier:
keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/PJUb13RbIhVi-HOYyLOSGAyK2-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.76.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:90:46:ba:11:49:37:6c:cc:fe:23:d7:15:a1:b9:78:a8:a3:
86:83:70:09:4f:b6:5a:97:2c:f2:60:b9:62:ca:0b:41:ce:8a:
f1:2c:a9:05:f3:5e:99:30:0c:c0:57:b3:47:d9:df:00:4d:7c:
b0:f7:98:28:07:d7:31:0c:66:a8:72:8d:6f:14:bf:02:f1:bd:
02:0d:e7:09:06:7a:2d:f5:ad:66:d8:21:0a:47:6a:43:9b:36:
9e:31:3c:0d:20:e9:ab:8e:79:2e:22:0a:dc:49:77:e4:93:17:
8b:ef:18:9c:53:b9:09:3e:82:ca:a2:2f:93:9f:05:9d:21:a2:
6c:64:91:e4:fc:c5:47:1f:2b:36:45:c5:cd:80:ec:6b:6d:8a:
23:1c:e4:fe:dc:36:63:04:fb:74:a1:d4:e5:06:d9:61:df:69:
6e:af:c5:5c:c1:13:97:2a:40:b7:3f:9c:a6:7a:62:f9:7c:0f:
33:c8:71:31:3b:45:8f:33:81:1f:c2:2e:87:5f:b7:b4:4b:e9:
fc:9e:67:5f:51:3d:63:f8:36:b4:86:26:74:4a:48:65:a5:15:
77:91:80:1b:8b:a5:c3:dd:4a:43:48:aa:2a:e6:80:e8:df:3f:
9b:74:2a:bf:37:61:c0:01:b5:22:14:30:bf:5a:3e:ab:f6:9f:
e5:65:47:c3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVweW6x6RPFw+aitHw+wPDNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMyNDc0YWM3Y2E4NWUwOWMyZDQ4YjMzZTdiZjY2ZjhlZDc2
NGRlMGYwHhcNMjMwMTAyMDMxNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYzk1MWJkNzc0NWIyMjE1NjJmODczOThjOGIzOTIxODBjOGFkYmU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqU+/jSUAqWi8jh8J4X6l05vfTiBY
TriuqGlTsxjNntHyrpH5r9Z72lPIsKGabDge6g/iFwhKiYOYv/2mc8r5HsQkRKrt
Zq+dgjNVS3i+A2nwWirvslEr1W+P8ctzi2iY5dh73uKotoerUAVDnEQB3EI3H90O
yPpBcGqD6X6C+Io9qk6PF5a2CBX0Hy/IwcSy3qePqyzIG7i4CDAYMB6edoaCkUXg
rj1NQz3LEfkxezCoWGlgrHSYLU+X4xoaVAGGV09uBqkNWkY1vmZVRYysPthAeEBQ
VGACD6dGSpphgFo7H9KgcnxOlDz+MeGONEIxKorN//kpRbxev7FFcjlJNQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDyVG9d0WyIVYvhzmMizkhgMitvpMB8GA1UdIwQY
MBaAFDJHSsfKheCcLUizPnv2b47XZN4PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8xZmQwYTYtNDUxNy00YTBiLWIzYzkt
MTJlYzIyYzljNWEyLzEvUEpVYjEzUmJJaFZpLUhPWXlMT1NHQXlLMi1rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC8xZmQwYTYtNDUxNy00YTBiLWIzYzktMTJlYzIyYzljNWEy
LzEvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZtMMA0G
CSqGSIb3DQEBCwUAA4IBAQAOkEa6EUk3bMz+I9cVobl4qKOGg3AJT7ZalyzyYLli
ygtBzorxLKkF816ZMAzAV7NH2d8ATXyw95goB9cxDGaoco1vFL8C8b0CDecJBnot
9a1m2CEKR2pDmzaeMTwNIOmrjnkuIgrcSXfkkxeL7xicU7kJPoLKoi+TnwWdIaJs
ZJHk/MVHHys2RcXNgOxrbYojHOT+3DZjBPt0odTlBtlh32lur8VcwROXKkC3P5ym
emL5fA8zyHExO0WPM4Efwi6HX7e0S+n8nmdfUT1j+Da0hiZ0SkhlpRV3kYAbi6XD
3UpDSKoq5oDo3z+bdCq/N2HAAbUiFDC/Wj6r9p/lZUfD
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:20 2024 by rpki-client on console-ams.rpki-client.org