Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/oIkNUca6D9xx6GdFzDI7dZYuaiU.roa
File: oIkNUca6D9xx6GdFzDI7dZYuaiU.roa (raw, json)
Hash identifier: byhGNRdOEVMXYUW1/Y++s+2+bYY8LAatsEFIcjkXcFQ=
Subject key identifier: A0:89:0D:51:C6:BA:0F:DC:71:E8:67:45:CC:32:3B:75:96:2E:6A:25
Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Certificate serial: 01857079741ECFA0BBC7CED4226AF7D97C44
Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/oIkNUca6D9xx6GdFzDI7dZYuaiU.roa
Signing time: Mon 02 Jan 2023 03:14:45 +0000
ROA not before: Mon 02 Jan 2023 03:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207925
IP address blocks: 45.141.55.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:74:1e:cf:a0:bb:c7:ce:d4:22:6a:f7:d9:7c:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Validity
Not Before: Jan 2 03:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0890d51c6ba0fdc71e86745cc323b75962e6a25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:35:93:3a:e4:6d:7c:f2:97:d5:f0:73:8c:6c:
c1:f3:c3:f8:69:8b:81:e9:16:65:58:22:cc:50:59:
59:bd:2a:70:99:f0:1d:dc:c7:3b:49:1f:41:90:65:
14:45:64:1c:37:74:63:5c:fc:bd:f9:84:6f:d9:0a:
f1:da:11:47:5c:c5:bc:4c:f1:6c:fa:48:43:a9:f9:
fe:32:d4:62:e9:cf:c1:1a:62:68:73:c8:99:c2:49:
70:2b:3c:8e:c3:4e:32:05:98:80:d6:27:c8:76:bf:
94:a7:64:93:81:21:a7:a3:2d:9f:f4:10:e0:99:14:
56:1b:93:fc:e4:fb:d9:eb:ff:70:78:25:d2:95:09:
72:bc:54:3b:a3:9b:c4:95:d6:17:08:b2:a7:8b:f2:
12:ca:35:32:48:0b:41:6f:71:f8:57:d3:ae:c5:6a:
6c:cd:93:16:2e:5e:16:c9:87:ed:75:07:1d:81:2f:
58:af:ae:1b:17:13:fd:3d:ce:82:f9:66:04:eb:a6:
eb:3d:e6:2a:8e:96:df:0b:1f:4c:79:cb:23:24:7e:
2c:12:c7:4c:a1:fe:3f:74:45:4f:68:e2:df:d2:5f:
88:bb:ef:b4:b8:c3:51:cd:f9:f9:8b:f1:e1:bc:51:
9e:b4:e2:49:8c:1f:d5:47:26:e2:5e:44:6a:99:56:
13:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:89:0D:51:C6:BA:0F:DC:71:E8:67:45:CC:32:3B:75:96:2E:6A:25
X509v3 Authority Key Identifier:
keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/oIkNUca6D9xx6GdFzDI7dZYuaiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.55.0/24
Signature Algorithm: sha256WithRSAEncryption
21:44:49:e6:3d:95:12:e5:cd:a8:74:c2:ff:53:32:87:09:e1:
14:a5:be:5e:cf:5e:93:af:ff:28:c2:c4:39:5a:98:a5:55:7d:
88:db:34:af:fa:54:0d:f7:0a:13:15:8b:2f:b3:5d:58:a1:aa:
f1:56:7f:af:b9:64:c9:bd:e3:74:7c:fe:93:5d:a5:17:7c:f1:
e5:35:ec:0a:c5:81:8a:ca:95:21:1f:7b:cb:be:b5:5e:73:d9:
ce:31:83:b9:ba:8d:ac:df:5c:d9:1b:c9:6b:e7:bc:39:f0:91:
cd:fa:c2:e5:b8:03:40:cd:c0:0a:e3:7b:36:cf:57:82:81:a7:
95:b1:1d:7e:28:d8:5a:7e:04:c1:de:38:a8:2e:ee:7e:55:74:
a3:72:07:fc:0b:47:a8:2d:74:85:83:e1:61:6d:3f:55:1f:ef:
9c:95:e5:d5:33:b6:83:06:8e:d5:bc:f2:ec:1b:34:c6:67:d5:
6d:ea:3f:b4:74:9c:3c:ac:e6:e4:4f:95:6f:a8:f3:9e:08:ab:
ae:65:e0:42:c7:73:d8:c2:8a:9b:54:0a:0a:e2:55:96:f1:24:
90:93:cf:8e:b3:70:5a:4c:35:93:1e:c0:3b:3e:e4:29:7e:2e:
01:8a:7a:64:d9:1d:17:54:b1:84:8b:d7:31:ce:f8:bb:5d:4b:
00:0f:ea:0b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVweXQez6C7x87UImr32XxEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMyNDc0YWM3Y2E4NWUwOWMyZDQ4YjMzZTdiZjY2ZjhlZDc2
NGRlMGYwHhcNMjMwMTAyMDMxNDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMDg5MGQ1MWM2YmEwZmRjNzFlODY3NDVjYzMyM2I3NTk2MmU2YTI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwTWTOuRtfPKX1fBzjGzB88P4aYuB
6RZlWCLMUFlZvSpwmfAd3Mc7SR9BkGUURWQcN3RjXPy9+YRv2Qrx2hFHXMW8TPFs
+khDqfn+MtRi6c/BGmJoc8iZwklwKzyOw04yBZiA1ifIdr+Up2STgSGnoy2f9BDg
mRRWG5P85PvZ6/9weCXSlQlyvFQ7o5vEldYXCLKni/ISyjUySAtBb3H4V9OuxWps
zZMWLl4WyYftdQcdgS9Yr64bFxP9Pc6C+WYE66brPeYqjpbfCx9MecsjJH4sEsdM
of4/dEVPaOLf0l+Iu++0uMNRzfn5i/HhvFGetOJJjB/VRybiXkRqmVYTJwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKCJDVHGug/ccehnRcwyO3WWLmolMB8GA1UdIwQY
MBaAFDJHSsfKheCcLUizPnv2b47XZN4PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8xZmQwYTYtNDUxNy00YTBiLWIzYzkt
MTJlYzIyYzljNWEyLzEvb0lrTlVjYTZEOXh4NkdkRnpESTdkWll1YWlVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC8xZmQwYTYtNDUxNy00YTBiLWIzYzktMTJlYzIyYzljNWEy
LzEvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALY03MA0G
CSqGSIb3DQEBCwUAA4IBAQAhREnmPZUS5c2odML/UzKHCeEUpb5ez16Tr/8owsQ5
WpilVX2I2zSv+lQN9woTFYsvs11YoarxVn+vuWTJveN0fP6TXaUXfPHlNewKxYGK
ypUhH3vLvrVec9nOMYO5uo2s31zZG8lr57w58JHN+sLluANAzcAK43s2z1eCgaeV
sR1+KNhafgTB3jioLu5+VXSjcgf8C0eoLXSFg+FhbT9VH++cleXVM7aDBo7VvPLs
GzTGZ9Vt6j+0dJw8rObkT5VvqPOeCKuuZeBCx3PYwoqbVAoK4lWW8SSQk8+Os3Ba
TDWTHsA7PuQpfi4Binpk2R0XVLGEi9cxzvi7XUsAD+oL
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:23:23 2024 by rpki-client on console-fra.rpki-client.org