Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/fb04c8-7057-45b7-a34c-dcfc6a9e0dc7/1/gKU74nfTZNxdMI5HLIj2vRdn8qY.roa
File: gKU74nfTZNxdMI5HLIj2vRdn8qY.roa (raw, json)
Hash identifier: 0ndlD6QTHQJoRxaBhd6Xv8j9vDqLnh3sHChMRMsBXro=
Subject key identifier: 80:A5:3B:E2:77:D3:64:DC:5D:30:8E:47:2C:88:F6:BD:17:67:F2:A6
Certificate issuer: /CN=51ecf9babc9ca6bae9085ce292fb1c2cc18d344f
Certificate serial: 0189555DB6800A84786AF97BD9C0E836D112
Authority key identifier: 51:EC:F9:BA:BC:9C:A6:BA:E9:08:5C:E2:92:FB:1C:2C:C1:8D:34:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uez5urycprrpCFzikvscLMGNNE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/fb04c8-7057-45b7-a34c-dcfc6a9e0dc7/1/gKU74nfTZNxdMI5HLIj2vRdn8qY.roa
Signing time: Fri 14 Jul 2023 17:05:52 +0000
ROA not before: Fri 14 Jul 2023 17:05:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.158.61.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:55:5d:b6:80:0a:84:78:6a:f9:7b:d9:c0:e8:36:d1:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51ecf9babc9ca6bae9085ce292fb1c2cc18d344f
Validity
Not Before: Jul 14 17:05:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80a53be277d364dc5d308e472c88f6bd1767f2a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:c2:c1:b2:5f:54:1b:53:7b:5b:06:b3:f0:3c:
7a:7e:0f:59:3d:cc:ae:71:3f:10:04:dd:93:ae:c4:
0b:e5:80:b5:83:9d:ff:d2:a5:c9:b8:22:22:de:30:
b6:cb:c5:d7:54:50:3b:4e:17:c5:07:be:9f:01:05:
b1:39:56:df:19:ce:85:21:e1:15:ab:1d:33:2d:82:
b7:d5:50:40:5d:27:e7:90:47:8d:51:13:7c:53:05:
28:fb:22:b7:ab:0b:30:86:e3:f8:69:d7:84:f7:68:
80:eb:e2:ed:e7:0b:42:2e:5e:93:52:ea:a5:da:98:
0b:13:7c:92:a8:a1:55:3c:28:4a:83:a9:32:d7:57:
71:b8:c8:03:11:08:70:02:93:47:03:27:ab:94:e0:
40:f6:c8:bb:84:62:7a:cd:7d:34:98:a8:32:08:2b:
5b:55:d1:9f:8c:37:e8:d6:de:be:9a:ab:7d:e4:06:
50:7d:8a:3c:5e:4d:38:c3:f9:7a:79:b3:b0:2b:28:
d2:87:e5:5d:aa:f5:55:e3:ee:83:f8:e5:b5:25:4c:
e4:e8:31:d6:f9:35:00:39:fb:43:95:9b:13:81:38:
07:16:b2:bf:c2:f5:f4:27:fe:44:c9:57:b1:0e:f7:
ca:b3:af:cd:c6:05:4e:d7:4f:17:38:4e:e4:6f:e1:
05:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:A5:3B:E2:77:D3:64:DC:5D:30:8E:47:2C:88:F6:BD:17:67:F2:A6
X509v3 Authority Key Identifier:
keyid:51:EC:F9:BA:BC:9C:A6:BA:E9:08:5C:E2:92:FB:1C:2C:C1:8D:34:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uez5urycprrpCFzikvscLMGNNE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/fb04c8-7057-45b7-a34c-dcfc6a9e0dc7/1/gKU74nfTZNxdMI5HLIj2vRdn8qY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/fb04c8-7057-45b7-a34c-dcfc6a9e0dc7/1/Uez5urycprrpCFzikvscLMGNNE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.61.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:bf:5f:0c:d3:7a:29:16:ca:8f:63:fc:dd:a4:95:39:b0:11:
6a:09:cf:57:59:17:d7:33:d5:d7:44:68:f3:a4:b6:f4:b1:93:
46:fb:a5:be:28:0e:e1:3a:28:fb:fc:08:0a:d6:df:d1:4b:cb:
c5:3d:f5:fa:a6:73:91:e2:e3:4c:07:8e:0a:f5:5f:e6:39:2a:
db:d8:08:93:cc:b5:2c:1b:29:41:a3:b0:1e:59:b7:65:b1:f6:
66:d6:c4:32:a9:00:57:e2:2e:00:d4:8b:43:3b:df:ba:44:e8:
c2:c3:ae:57:d2:2b:78:6d:07:d7:02:ff:7b:84:56:96:b3:b1:
5d:a9:30:58:19:76:80:20:c1:f3:fb:38:9a:81:2c:5c:f9:03:
ca:9c:0c:69:6d:40:b8:00:74:75:25:5d:1d:08:49:88:04:2a:
1e:18:d1:51:26:75:91:28:ce:65:d7:66:a3:d1:f7:b7:e7:f2:
50:1c:b4:74:fb:ee:5a:a5:af:e8:f7:70:dd:25:39:64:25:53:
c8:10:40:db:c3:33:79:c7:f8:79:15:3c:e9:0d:64:cb:cd:f7:
9c:23:62:fc:00:d3:1f:bd:68:a9:9f:26:da:b5:a4:d9:b8:da:
60:68:d2:ed:47:53:85:b8:61:aa:94:48:f2:07:76:21:3a:3b:
24:92:5b:d8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYlVXbaACoR4avl72cDoNtESMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUxZWNmOWJhYmM5Y2E2YmFlOTA4NWNlMjkyZmIxYzJjYzE4
ZDM0NGYwHhcNMjMwNzE0MTcwNTUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MGE1M2JlMjc3ZDM2NGRjNWQzMDhlNDcyYzg4ZjZiZDE3NjdmMmE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj8LBsl9UG1N7Wwaz8Dx6fg9ZPcyu
cT8QBN2TrsQL5YC1g53/0qXJuCIi3jC2y8XXVFA7ThfFB76fAQWxOVbfGc6FIeEV
qx0zLYK31VBAXSfnkEeNURN8UwUo+yK3qwswhuP4adeE92iA6+Lt5wtCLl6TUuql
2pgLE3ySqKFVPChKg6ky11dxuMgDEQhwApNHAyerlOBA9si7hGJ6zX00mKgyCCtb
VdGfjDfo1t6+mqt95AZQfYo8Xk04w/l6ebOwKyjSh+VdqvVV4+6D+OW1JUzk6DHW
+TUAOftDlZsTgTgHFrK/wvX0J/5EyVexDvfKs6/NxgVO108XOE7kb+EFywIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIClO+J302TcXTCORyyI9r0XZ/KmMB8GA1UdIwQY
MBaAFFHs+bq8nKa66Qhc4pL7HCzBjTRPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVWV6NXVyeWNwcnJwQ0Z6aWt2c2NMTUdOTkU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9mYjA0YzgtNzA1Ny00NWI3LWEzNGMt
ZGNmYzZhOWUwZGM3LzEvZ0tVNzRuZlRaTnhkTUk1SExJajJ2UmRuOHFZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi9mYjA0YzgtNzA1Ny00NWI3LWEzNGMtZGNmYzZhOWUwZGM3
LzEvVWV6NXVyeWNwcnJwQ0Z6aWt2c2NMTUdOTkU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZ49MA0G
CSqGSIb3DQEBCwUAA4IBAQCov18M03opFsqPY/zdpJU5sBFqCc9XWRfXM9XXRGjz
pLb0sZNG+6W+KA7hOij7/AgK1t/RS8vFPfX6pnOR4uNMB44K9V/mOSrb2AiTzLUs
GylBo7AeWbdlsfZm1sQyqQBX4i4A1ItDO9+6ROjCw65X0it4bQfXAv97hFaWs7Fd
qTBYGXaAIMHz+ziagSxc+QPKnAxpbUC4AHR1JV0dCEmIBCoeGNFRJnWRKM5l12aj
0fe35/JQHLR0++5apa/o93DdJTlkJVPIEEDbwzN5x/h5FTzpDWTLzfecI2L8ANMf
vWipnybataTZuNpgaNLtR1OFuGGqlEjyB3YhOjskklvY
-----END CERTIFICATE-----
Generated at Wed Nov 15 00:44:15 2023 by rpki-client on console-ams.rpki-client.org