Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/fb04c8-7057-45b7-a34c-dcfc6a9e0dc7/1/LgPfnyJeHdTH3xC_ncYYFQH0OFw.roa
File: LgPfnyJeHdTH3xC_ncYYFQH0OFw.roa (raw, json)
Hash identifier: OCuJHdKCvD7FkQOkHZlY3J8Wn8IY+CHdSVBS/kvKs8A=
Subject key identifier: 2E:03:DF:9F:22:5E:1D:D4:C7:DF:10:BF:9D:C6:18:15:01:F4:38:5C
Certificate issuer: /CN=51ecf9babc9ca6bae9085ce292fb1c2cc18d344f
Certificate serial: 018C820FDAD73B51DAF8F6C14C3DC4896C52
Authority key identifier: 51:EC:F9:BA:BC:9C:A6:BA:E9:08:5C:E2:92:FB:1C:2C:C1:8D:34:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uez5urycprrpCFzikvscLMGNNE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/fb04c8-7057-45b7-a34c-dcfc6a9e0dc7/1/LgPfnyJeHdTH3xC_ncYYFQH0OFw.roa
Signing time: Tue 19 Dec 2023 12:32:06 +0000
ROA not before: Tue 19 Dec 2023 12:32:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.158.62.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:82:0f:da:d7:3b:51:da:f8:f6:c1:4c:3d:c4:89:6c:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51ecf9babc9ca6bae9085ce292fb1c2cc18d344f
Validity
Not Before: Dec 19 12:32:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2e03df9f225e1dd4c7df10bf9dc6181501f4385c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:80:f0:50:04:36:a7:96:01:74:83:2c:e4:c6:
ab:ab:7f:ab:c9:2b:3d:fb:34:14:d6:78:4f:c9:bd:
01:ce:cc:2b:d6:4c:13:fe:71:27:a5:de:40:7f:4f:
2d:c5:a9:fb:55:70:6e:ee:85:f6:93:04:a8:9a:db:
64:ab:9d:ac:7d:dd:9e:8d:cc:19:f1:86:0b:6b:fb:
36:16:c3:14:ce:81:91:ec:01:55:41:bd:39:95:80:
75:e9:7d:a3:a9:38:a4:bc:e3:72:8a:9d:46:f0:52:
8b:36:f3:fe:d8:63:9c:26:9c:da:b8:ad:b4:b4:1f:
fa:9a:b7:11:de:bc:d2:de:12:31:cb:fc:b5:65:72:
bf:92:21:c2:9d:2d:30:c4:b7:76:76:c8:99:a0:77:
da:28:4d:da:5e:00:eb:b5:00:b5:df:ee:90:ad:d3:
e3:a5:c5:45:a9:9a:fc:64:0a:a0:1e:ac:3c:c8:e5:
ee:98:e1:e8:13:cb:dc:06:9d:92:0d:f7:ba:90:f8:
36:96:a6:cf:bc:85:38:fc:cd:52:09:2a:72:3f:9f:
ff:0e:39:e2:8e:6b:85:fd:86:a7:ab:a8:1d:03:51:
9c:93:28:98:8b:ef:e6:ab:64:67:7c:05:c6:6a:ab:
04:1f:62:91:39:4c:2c:c7:b0:97:5b:98:88:3e:ce:
da:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:03:DF:9F:22:5E:1D:D4:C7:DF:10:BF:9D:C6:18:15:01:F4:38:5C
X509v3 Authority Key Identifier:
keyid:51:EC:F9:BA:BC:9C:A6:BA:E9:08:5C:E2:92:FB:1C:2C:C1:8D:34:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uez5urycprrpCFzikvscLMGNNE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/fb04c8-7057-45b7-a34c-dcfc6a9e0dc7/1/LgPfnyJeHdTH3xC_ncYYFQH0OFw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/fb04c8-7057-45b7-a34c-dcfc6a9e0dc7/1/Uez5urycprrpCFzikvscLMGNNE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.62.0/23
Signature Algorithm: sha256WithRSAEncryption
93:4e:cb:51:df:a6:fc:65:ed:76:4c:a8:43:d0:59:fd:ad:ed:
15:95:86:5c:b3:6f:b3:e9:3a:f2:e5:ff:96:8e:0e:84:c0:00:
9a:5c:40:54:9d:46:bd:24:b2:77:05:83:e5:d3:5c:69:ca:64:
2b:a4:00:9d:ef:82:10:2d:bf:11:52:59:10:cb:f6:e4:e0:44:
c8:8b:75:4b:fc:f9:bd:c9:43:33:be:33:1b:81:2d:1e:c7:62:
1a:74:27:05:01:03:9b:95:a3:01:34:14:cf:0b:27:93:d4:cb:
7d:83:7c:1a:44:10:9b:71:5c:b6:aa:55:0a:1b:24:60:08:c0:
ce:62:53:15:2f:c8:3b:f4:0b:ba:36:3b:af:e8:60:35:3d:30:
2d:13:7c:a2:78:a9:c8:76:2c:ec:79:00:f2:b8:05:84:4c:44:
de:46:0b:70:e1:66:d1:e0:a8:6b:29:e1:9c:da:f4:4d:ee:47:
fd:36:ea:c0:bf:69:ad:2f:6e:6d:4e:59:68:18:57:81:ec:56:
78:5c:f1:c9:80:1e:35:fc:96:2e:24:46:a0:c1:6b:22:9f:e0:
81:fd:3c:12:9d:6d:e6:ea:3f:ad:95:8c:30:82:b0:50:d4:da:
e9:ec:b3:54:27:4e:44:61:e0:15:7e:5e:5b:af:91:51:85:d4:
a3:77:18:cb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYyCD9rXO1Ha+PbBTD3EiWxSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUxZWNmOWJhYmM5Y2E2YmFlOTA4NWNlMjkyZmIxYzJjYzE4
ZDM0NGYwHhcNMjMxMjE5MTIzMjA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZTAzZGY5ZjIyNWUxZGQ0YzdkZjEwYmY5ZGM2MTgxNTAxZjQzODVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtYDwUAQ2p5YBdIMs5Marq3+rySs9
+zQU1nhPyb0Bzswr1kwT/nEnpd5Af08txan7VXBu7oX2kwSomttkq52sfd2ejcwZ
8YYLa/s2FsMUzoGR7AFVQb05lYB16X2jqTikvONyip1G8FKLNvP+2GOcJpzauK20
tB/6mrcR3rzS3hIxy/y1ZXK/kiHCnS0wxLd2dsiZoHfaKE3aXgDrtQC13+6QrdPj
pcVFqZr8ZAqgHqw8yOXumOHoE8vcBp2SDfe6kPg2lqbPvIU4/M1SCSpyP5//Djni
jmuF/Yanq6gdA1GckyiYi+/mq2RnfAXGaqsEH2KROUwsx7CXW5iIPs7axwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC4D358iXh3Ux98Qv53GGBUB9DhcMB8GA1UdIwQY
MBaAFFHs+bq8nKa66Qhc4pL7HCzBjTRPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVWV6NXVyeWNwcnJwQ0Z6aWt2c2NMTUdOTkU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9mYjA0YzgtNzA1Ny00NWI3LWEzNGMt
ZGNmYzZhOWUwZGM3LzEvTGdQZm55SmVIZFRIM3hDX25jWVlGUUgwT0Z3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi9mYjA0YzgtNzA1Ny00NWI3LWEzNGMtZGNmYzZhOWUwZGM3
LzEvVWV6NXVyeWNwcnJwQ0Z6aWt2c2NMTUdOTkU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLZ4+MA0G
CSqGSIb3DQEBCwUAA4IBAQCTTstR36b8Ze12TKhD0Fn9re0VlYZcs2+z6Try5f+W
jg6EwACaXEBUnUa9JLJ3BYPl01xpymQrpACd74IQLb8RUlkQy/bk4ETIi3VL/Pm9
yUMzvjMbgS0ex2IadCcFAQOblaMBNBTPCyeT1Mt9g3waRBCbcVy2qlUKGyRgCMDO
YlMVL8g79Au6Njuv6GA1PTAtE3yieKnIdizseQDyuAWETETeRgtw4WbR4KhrKeGc
2vRN7kf9NurAv2mtL25tTlloGFeB7FZ4XPHJgB41/JYuJEagwWsin+CB/TwSnW3m
6j+tlYwwgrBQ1Nrp7LNUJ05EYeAVfl5br5FRhdSjdxjL
-----END CERTIFICATE-----
Generated at Mon Jan 1 23:30:29 2024 by rpki-client on console-ams.rpki-client.org