Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/1E5Rsw3JjhDBUtEKiHKf8R_KWwM.roa
File: 1E5Rsw3JjhDBUtEKiHKf8R_KWwM.roa (raw, json)
Hash identifier: zs9QOSDt7CXQWhd61wgX40fHwWdPt+ziTv7r0t1rKkc=
Subject key identifier: D4:4E:51:B3:0D:C9:8E:10:C1:52:D1:0A:88:72:9F:F1:1F:CA:5B:03
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 019011304758B35DB36C265A6596E2600478
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/1E5Rsw3JjhDBUtEKiHKf8R_KWwM.roa
Signing time: Thu 13 Jun 2024 10:41:35 +0000
ROA not before: Thu 13 Jun 2024 10:41:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 131642
IP address blocks: 45.12.62.0/23 maxlen: 23
45.12.62.0/24 maxlen: 24
45.12.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 30 Nov 2024 09:46:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:11:30:47:58:b3:5d:b3:6c:26:5a:65:96:e2:60:04:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Jun 13 10:41:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d44e51b30dc98e10c152d10a88729ff11fca5b03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:86:70:af:eb:0f:7b:35:cb:0a:fb:3f:bb:d4:
06:32:6d:e6:0a:f0:b0:47:3a:e3:39:4d:af:c4:42:
58:16:67:ca:1a:b6:c1:35:89:a3:fc:5e:f5:e3:c0:
2b:30:39:f1:1b:9e:03:47:a4:90:17:00:1a:f3:e9:
1c:ff:94:af:48:ab:dc:71:42:5b:49:8f:50:b2:1e:
90:11:f3:c1:5c:0c:48:16:f9:0b:7b:c1:4e:8a:b5:
e9:68:65:b2:e2:0b:4e:93:f9:c1:83:ca:9c:b6:1b:
f1:2d:e4:86:0b:65:5d:cc:3e:90:c9:b2:b3:4f:b7:
c2:ae:53:16:24:6e:ec:06:03:17:55:28:83:46:12:
f7:36:71:56:21:46:e5:dd:62:c7:ac:d7:25:94:41:
5a:cd:28:42:f3:b5:6c:37:1b:1d:fc:7c:25:07:39:
bd:f1:37:74:53:7c:fc:92:e0:96:30:1a:e1:1b:56:
0d:a0:98:8d:d7:fd:3f:61:7a:a7:08:49:e4:63:1c:
4c:2b:64:e3:23:c8:f9:1a:b4:7f:1c:c4:e9:75:8c:
8c:5e:c8:39:7a:eb:32:2a:d2:66:60:26:f5:14:8e:
19:f6:32:8f:6d:ee:3e:6d:f0:41:1c:a4:81:4f:34:
ba:9d:ab:37:60:db:ee:57:f6:e4:c1:78:20:8b:a1:
6c:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:4E:51:B3:0D:C9:8E:10:C1:52:D1:0A:88:72:9F:F1:1F:CA:5B:03
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/1E5Rsw3JjhDBUtEKiHKf8R_KWwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.62.0/23
Signature Algorithm: sha256WithRSAEncryption
91:30:a7:16:a8:ec:61:7c:84:72:66:cf:e9:c6:2f:51:a7:14:
18:ce:ce:ff:e5:e8:bc:87:0d:26:32:80:e7:17:87:e6:37:3d:
37:8c:d1:01:62:56:4b:43:94:8f:4c:3e:c6:36:b8:40:a2:68:
08:48:86:34:5e:9e:54:c1:42:a1:0a:4d:a8:fc:bd:04:51:75:
54:c7:0d:58:80:33:0a:b9:5d:0e:a8:59:96:a4:07:90:25:d7:
2c:1c:6f:58:d6:57:92:bf:c3:25:e8:7a:92:d0:ba:44:e6:fd:
26:24:ff:00:11:a2:25:0d:1c:71:77:32:68:16:fe:bb:38:1e:
bc:b8:1e:ef:fe:31:c1:01:f0:37:88:7d:be:9b:27:d3:8b:21:
a4:5a:a0:9c:85:24:a4:7e:d9:e5:56:c3:60:a9:d2:3e:83:3e:
8e:31:77:ff:0a:41:2c:f3:fe:f6:f1:e0:f4:5e:ff:fb:55:16:
5d:37:46:2b:1c:c8:9c:c7:c3:90:04:fb:c0:fc:82:ca:e1:42:
3f:b8:b2:8a:c4:b6:61:e5:d9:13:4b:59:f4:ec:a7:27:66:91:
9e:e1:b2:b6:01:b1:80:ef:70:41:77:52:b8:56:37:26:3e:d3:
8c:07:a0:e5:7b:4b:e7:da:a6:cd:46:2b:59:27:b6:b6:57:43:
f3:99:18:d3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZARMEdYs12zbCZaZZbiYAR4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjQwNjEzMTA0MTM1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNDRlNTFiMzBkYzk4ZTEwYzE1MmQxMGE4ODcyOWZmMTFmY2E1YjAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsIZwr+sPezXLCvs/u9QGMm3mCvCw
RzrjOU2vxEJYFmfKGrbBNYmj/F7148ArMDnxG54DR6SQFwAa8+kc/5SvSKvccUJb
SY9Qsh6QEfPBXAxIFvkLe8FOirXpaGWy4gtOk/nBg8qcthvxLeSGC2VdzD6QybKz
T7fCrlMWJG7sBgMXVSiDRhL3NnFWIUbl3WLHrNcllEFazShC87VsNxsd/HwlBzm9
8Td0U3z8kuCWMBrhG1YNoJiN1/0/YXqnCEnkYxxMK2TjI8j5GrR/HMTpdYyMXsg5
eusyKtJmYCb1FI4Z9jKPbe4+bfBBHKSBTzS6nas3YNvuV/bkwXggi6FsmwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNROUbMNyY4QwVLRCohyn/EfylsDMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEvMUU1UnN3M0pqaERCVXRFS2lIS2Y4Ul9LV3dNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLQw+MA0G
CSqGSIb3DQEBCwUAA4IBAQCRMKcWqOxhfIRyZs/pxi9RpxQYzs7/5ei8hw0mMoDn
F4fmNz03jNEBYlZLQ5SPTD7GNrhAomgISIY0Xp5UwUKhCk2o/L0EUXVUxw1YgDMK
uV0OqFmWpAeQJdcsHG9Y1leSv8Ml6HqS0LpE5v0mJP8AEaIlDRxxdzJoFv67OB68
uB7v/jHBAfA3iH2+myfTiyGkWqCchSSkftnlVsNgqdI+gz6OMXf/CkEs8/728eD0
Xv/7VRZdN0YrHMicx8OQBPvA/ILK4UI/uLKKxLZh5dkTS1n07KcnZpGe4bK2AbGA
73BBd1K4VjcmPtOMB6Dle0vn2qbNRitZJ7a2V0PzmRjT
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:12:44 2025 by rpki-client