Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/abc38c-57fb-448e-b603-8df20f87e77f/1/gdORv_hoANbXqnpqBzqgzMOtNKI.roa
File: gdORv_hoANbXqnpqBzqgzMOtNKI.roa (raw, json)
Hash identifier: LAz3Hjvaz57Nc5aELFFOce/zGnd+DxNWugIxxVyrhZI=
Subject key identifier: 81:D3:91:BF:F8:68:00:D6:D7:AA:7A:6A:07:3A:A0:CC:C3:AD:34:A2
Certificate issuer: /CN=a8122b9475d69daa928a5bdf1e4abd5e3900e4b3
Certificate serial: 0185718C20E33480E7D40685F36323E4F942
Authority key identifier: A8:12:2B:94:75:D6:9D:AA:92:8A:5B:DF:1E:4A:BD:5E:39:00:E4:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qBIrlHXWnaqSilvfHkq9XjkA5LM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/abc38c-57fb-448e-b603-8df20f87e77f/1/gdORv_hoANbXqnpqBzqgzMOtNKI.roa
Signing time: Mon 02 Jan 2023 08:14:46 +0000
ROA not before: Mon 02 Jan 2023 08:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15404
IP address blocks: 45.134.96.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:8c:20:e3:34:80:e7:d4:06:85:f3:63:23:e4:f9:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8122b9475d69daa928a5bdf1e4abd5e3900e4b3
Validity
Not Before: Jan 2 08:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=81d391bff86800d6d7aa7a6a073aa0ccc3ad34a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:61:42:cc:41:31:85:96:7b:4a:b9:42:86:7b:
61:39:ab:04:af:e1:86:3e:96:62:eb:c0:20:0d:e4:
a2:57:8b:e0:ac:24:aa:26:56:af:c8:fe:4b:06:c1:
22:f9:63:91:91:6a:30:86:15:5c:63:ff:08:03:d5:
0d:39:ee:a9:56:7b:10:c4:0a:18:e8:3b:a3:7e:19:
8d:94:b1:3a:6a:73:44:bf:d5:9f:2a:91:1a:f6:b9:
5f:58:b3:b2:91:a0:96:24:6b:ca:9f:1b:8b:06:31:
02:75:70:ec:27:9d:c8:6c:1d:e9:b4:f6:1a:c4:0e:
25:26:68:d0:99:29:65:ba:a8:46:89:45:67:b8:0c:
7d:3b:d3:5e:f1:8f:ee:b1:c1:2e:5b:37:5a:cb:99:
1d:32:05:57:70:e5:48:7c:32:a1:52:d5:e7:2f:33:
89:70:bf:eb:10:7b:5b:e1:b2:aa:c5:aa:f3:a1:0b:
7a:de:10:da:42:28:73:5f:e2:9f:b6:2f:a6:bd:1d:
1e:18:df:26:2a:bf:84:fe:ff:1e:9a:56:57:08:f8:
85:c8:79:d2:e3:8d:9b:d0:44:f9:0e:6c:90:c9:be:
7e:0b:09:e8:89:4d:11:21:61:c7:4a:25:7f:54:f9:
61:3b:f4:d5:20:a6:9c:a9:df:01:02:58:71:84:b9:
63:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:D3:91:BF:F8:68:00:D6:D7:AA:7A:6A:07:3A:A0:CC:C3:AD:34:A2
X509v3 Authority Key Identifier:
keyid:A8:12:2B:94:75:D6:9D:AA:92:8A:5B:DF:1E:4A:BD:5E:39:00:E4:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qBIrlHXWnaqSilvfHkq9XjkA5LM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/abc38c-57fb-448e-b603-8df20f87e77f/1/gdORv_hoANbXqnpqBzqgzMOtNKI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/abc38c-57fb-448e-b603-8df20f87e77f/1/qBIrlHXWnaqSilvfHkq9XjkA5LM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.96.0/22
Signature Algorithm: sha256WithRSAEncryption
a5:dc:13:30:05:6f:e6:8a:fa:82:6c:0c:83:cb:37:e4:19:b6:
f8:a0:85:1b:08:d0:26:ba:55:a8:38:c4:5c:8c:1e:5f:97:4d:
79:63:53:16:cb:28:34:42:0a:2f:44:ef:4c:fa:f3:54:4a:71:
34:11:da:a0:35:6d:c3:05:f8:48:89:d3:d9:f5:34:94:e9:20:
7d:a3:14:56:62:0b:a1:6e:1b:52:4e:bc:95:ea:0a:ad:0d:51:
df:b7:6d:a2:77:95:35:ca:7c:ce:59:1d:6e:ff:f8:44:57:ca:
fc:ff:9e:35:17:33:07:7f:8e:26:6f:3c:0f:f5:e9:2e:d0:c9:
09:99:00:3a:07:49:5c:9d:21:30:4e:03:d0:68:ff:39:41:67:
e9:fc:1e:73:4a:42:d8:d5:dd:b3:2e:fa:40:06:37:d4:05:9f:
0b:8e:e2:8e:ae:ed:46:59:64:15:2d:7e:80:9b:46:bb:27:ca:
8a:59:aa:f3:f2:ff:03:68:cc:a9:54:c6:ba:1b:08:36:1a:12:
63:3e:54:a9:18:f2:dd:65:eb:5f:6e:08:3d:78:42:2a:40:6d:
72:50:f9:fb:51:a0:0e:cb:e2:b4:ac:b9:38:64:7c:38:3e:b8:
fd:df:3c:3e:02:c3:65:1e:e6:95:20:06:ca:8e:2c:6f:1e:2d:
5b:b3:be:a3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxjCDjNIDn1AaF82Mj5PlCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE4MTIyYjk0NzVkNjlkYWE5MjhhNWJkZjFlNGFiZDVlMzkw
MGU0YjMwHhcNMjMwMTAyMDgxNDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MWQzOTFiZmY4NjgwMGQ2ZDdhYTdhNmEwNzNhYTBjY2MzYWQzNGEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnGFCzEExhZZ7SrlChnthOasEr+GG
PpZi68AgDeSiV4vgrCSqJlavyP5LBsEi+WORkWowhhVcY/8IA9UNOe6pVnsQxAoY
6DujfhmNlLE6anNEv9WfKpEa9rlfWLOykaCWJGvKnxuLBjECdXDsJ53IbB3ptPYa
xA4lJmjQmSlluqhGiUVnuAx9O9Ne8Y/uscEuWzday5kdMgVXcOVIfDKhUtXnLzOJ
cL/rEHtb4bKqxarzoQt63hDaQihzX+Kfti+mvR0eGN8mKr+E/v8emlZXCPiFyHnS
442b0ET5DmyQyb5+CwnoiU0RIWHHSiV/VPlhO/TVIKacqd8BAlhxhLljzQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIHTkb/4aADW16p6agc6oMzDrTSiMB8GA1UdIwQY
MBaAFKgSK5R11p2qkopb3x5KvV45AOSzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcUJJcmxIWFduYXFTaWx2ZkhrcTlYamtBNUxNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC9hYmMzOGMtNTdmYi00NDhlLWI2MDMt
OGRmMjBmODdlNzdmLzEvZ2RPUnZfaG9BTmJYcW5wcUJ6cWd6TU90TktJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC9hYmMzOGMtNTdmYi00NDhlLWI2MDMtOGRmMjBmODdlNzdm
LzEvcUJJcmxIWFduYXFTaWx2ZkhrcTlYamtBNUxNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLYZgMA0G
CSqGSIb3DQEBCwUAA4IBAQCl3BMwBW/mivqCbAyDyzfkGbb4oIUbCNAmulWoOMRc
jB5fl015Y1MWyyg0QgovRO9M+vNUSnE0EdqgNW3DBfhIidPZ9TSU6SB9oxRWYguh
bhtSTryV6gqtDVHft22id5U1ynzOWR1u//hEV8r8/541FzMHf44mbzwP9eku0MkJ
mQA6B0lcnSEwTgPQaP85QWfp/B5zSkLY1d2zLvpABjfUBZ8LjuKOru1GWWQVLX6A
m0a7J8qKWarz8v8DaMypVMa6Gwg2GhJjPlSpGPLdZetfbgg9eEIqQG1yUPn7UaAO
y+K0rLk4ZHw4Prj93zw+AsNlHuaVIAbKjixvHi1bs76j
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:16 2024 by rpki-client on console-ams.rpki-client.org