Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/1-MPGfuiaH3exYYSwfvTiabAnhcQ.roa
File: 1-MPGfuiaH3exYYSwfvTiabAnhcQ.roa (raw, json)
Hash identifier: 6jqFGZ2qzYH+VvJQpg2vykn8NhJFDXKB58otu4nguwA=
Subject key identifier: F8:C3:C6:7E:E8:9A:1F:77:B1:61:84:B0:7E:F4:E2:69:B0:27:85:C4
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0185710C2292327B706DC7F3D5AC41DDAA29
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/1-MPGfuiaH3exYYSwfvTiabAnhcQ.roa
Signing time: Mon 02 Jan 2023 05:54:58 +0000
ROA not before: Mon 02 Jan 2023 05:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50214
IP address blocks: 45.138.73.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:22:92:32:7b:70:6d:c7:f3:d5:ac:41:dd:aa:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 2 05:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f8c3c67ee89a1f77b16184b07ef4e269b02785c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:c3:f2:10:9c:e1:08:6a:2b:2f:13:de:7d:aa:
1d:37:b4:0a:f2:9a:16:ef:f7:12:b4:05:c9:82:df:
e1:01:2b:49:66:5f:c5:cb:90:fa:7f:bc:26:92:f0:
43:13:f4:cc:06:b0:15:c8:72:e4:64:7c:c5:7f:49:
60:ca:c3:d8:e3:8a:6a:61:f6:ab:68:83:81:13:85:
8d:57:dc:27:c9:56:5a:2b:bc:3e:5b:b7:47:aa:3b:
a0:59:18:37:ac:76:a5:b7:c7:97:fd:03:29:1c:40:
76:eb:db:cd:30:64:0b:5a:5a:5e:40:70:40:c0:9c:
c7:ba:d9:8b:c9:b9:9f:9a:48:f1:d9:9a:f3:3f:20:
c7:e6:5e:95:20:07:da:21:09:2d:d9:90:8d:de:4c:
4a:ff:cd:31:6e:ba:6c:3d:8f:01:d7:1d:b0:96:26:
46:e2:47:52:c3:ea:be:a2:07:a2:98:63:fd:28:1f:
2a:38:fa:8b:5d:99:6b:6b:ac:ed:82:67:e7:5d:11:
83:f0:ff:7f:a7:58:df:70:3a:c7:95:56:fc:26:5c:
5e:c3:f6:3c:a8:67:98:9c:18:75:fb:0b:ad:9c:bf:
f2:7f:7c:d9:8e:3c:56:90:1a:6f:32:42:eb:58:c5:
8e:c3:54:1a:9d:f5:9b:fd:00:5b:39:67:3c:e0:bc:
31:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:C3:C6:7E:E8:9A:1F:77:B1:61:84:B0:7E:F4:E2:69:B0:27:85:C4
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/1-MPGfuiaH3exYYSwfvTiabAnhcQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.73.0/24
Signature Algorithm: sha256WithRSAEncryption
24:42:6c:44:6b:c2:3b:82:ce:48:3a:5d:6b:6e:11:b0:f6:59:
52:3d:33:76:50:3a:5a:72:cc:df:e7:00:8d:e3:ce:55:39:50:
c5:3b:89:83:98:c0:f3:10:31:89:6c:18:80:3b:1f:30:99:27:
c4:34:ee:d0:a2:fe:6c:b5:11:6d:69:85:ea:29:dc:3e:cd:86:
72:92:53:69:c2:d4:3b:79:32:0a:13:73:91:61:76:56:55:ba:
5b:35:88:e0:a4:f2:e8:6c:b0:47:82:6a:6e:4c:cd:c3:7d:04:
49:77:33:f8:5e:58:d9:43:78:6e:ef:f1:0b:3e:a6:70:3b:6c:
5b:ac:7a:65:8a:e2:fd:c8:9f:91:9d:72:6a:ed:09:3f:65:1b:
b2:ad:f5:81:94:a9:07:62:61:18:28:26:af:c0:ee:83:27:ef:
19:69:2e:69:af:a2:bd:f1:5c:c6:63:0e:7e:f1:f2:95:bb:f2:
9c:db:f9:c3:04:9d:bd:b4:87:93:9c:60:93:68:3a:36:7d:e9:
9a:b4:aa:e1:a7:24:29:ec:44:ad:74:19:b9:a9:dd:bd:04:05:
39:04:ee:15:eb:9c:da:9d:58:38:3a:2b:e1:e9:f4:dc:05:16:
01:47:53:ca:00:57:99:20:1b:69:97:82:eb:87:e2:88:57:55:
eb:fb:eb:6e
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVxDCKSMntwbcfz1axB3aopMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0Zjk2MzQ1ZDNmMjJlZGIzOTVkMjQ3ZjdiODZkMmQ3M2U0
YTAwOTEwHhcNMjMwMTAyMDU1NDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOGMzYzY3ZWU4OWExZjc3YjE2MTg0YjA3ZWY0ZTI2OWIwMjc4NWM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAisPyEJzhCGorLxPefaodN7QK8poW
7/cStAXJgt/hAStJZl/Fy5D6f7wmkvBDE/TMBrAVyHLkZHzFf0lgysPY44pqYfar
aIOBE4WNV9wnyVZaK7w+W7dHqjugWRg3rHalt8eX/QMpHEB269vNMGQLWlpeQHBA
wJzHutmLybmfmkjx2ZrzPyDH5l6VIAfaIQkt2ZCN3kxK/80xbrpsPY8B1x2wliZG
4kdSw+q+ogeimGP9KB8qOPqLXZlra6ztgmfnXRGD8P9/p1jfcDrHlVb8Jlxew/Y8
qGeYnBh1+wutnL/yf3zZjjxWkBpvMkLrWMWOw1QanfWb/QBbOWc84Lwx0wIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPjDxn7omh93sWGEsH704mmwJ4XEMB8GA1UdIwQY
MBaAFLT5Y0XT8i7bOV0kf3uG0tc+SgCRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFBsalJkUHlMdHM1WFNSX2U0YlMxejVLQUpFLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS84ZTEyMWQtNzNiMy00MzhhLTgzYzQt
NmZjMzQzZDc3Y2QyLzEvMS1NUEdmdWlhSDNleFlZU3dmdlRpYWJBbmhjUS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvYzUvOGUxMjFkLTczYjMtNDM4YS04M2M0LTZmYzM0M2Q3N2Nk
Mi8xL3RQbGpSZFB5THRzNVhTUl9lNGJTMXo1S0FKRS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2KSTAN
BgkqhkiG9w0BAQsFAAOCAQEAJEJsRGvCO4LOSDpda24RsPZZUj0zdlA6WnLM3+cA
jePOVTlQxTuJg5jA8xAxiWwYgDsfMJknxDTu0KL+bLURbWmF6incPs2GcpJTacLU
O3kyChNzkWF2VlW6WzWI4KTy6GywR4JqbkzNw30ESXcz+F5Y2UN4bu/xCz6mcDts
W6x6ZYri/cifkZ1yau0JP2Ubsq31gZSpB2JhGCgmr8DugyfvGWkuaa+ivfFcxmMO
fvHylbvynNv5wwSdvbSHk5xgk2g6Nn3pmrSq4ackKexErXQZuandvQQFOQTuFeuc
2p1YODor4en03AUWAUdTygBXmSAbaZeC64fiiFdV6/vrbg==
-----END CERTIFICATE-----
Generated at Tue Jan 2 09:02:23 2024 by rpki-client on console-ams.rpki-client.org