Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/0Iz-7pERf4B3O0SFGJq-SEu3ng0.roa
File: 0Iz-7pERf4B3O0SFGJq-SEu3ng0.roa (raw, json)
Hash identifier: KPSi/hdadUwAmPUb0wEQfY0MXOXlxE1BREftO6vpmMo=
Subject key identifier: D0:8C:FE:EE:91:11:7F:80:77:3B:44:85:18:9A:BE:48:4B:B7:9E:0D
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 01923C15B62E63834D964EBFDFEFD740EFFA
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/0Iz-7pERf4B3O0SFGJq-SEu3ng0.roa
Signing time: Sun 29 Sep 2024 04:41:48 +0000
ROA not before: Sun 29 Sep 2024 04:41:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215411
IP address blocks: 45.67.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:54:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:3c:15:b6:2e:63:83:4d:96:4e:bf:df:ef:d7:40:ef:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Sep 29 04:41:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d08cfeee91117f80773b4485189abe484bb79e0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e7:aa:d3:87:af:ba:7f:68:5a:8b:e0:6a:a2:
c6:d7:e9:8f:0a:f4:c8:6b:b9:8e:9e:4b:b8:b5:8b:
b4:0c:9d:cc:07:60:6e:0b:11:24:a9:e2:6b:88:0b:
9e:6c:c3:b9:27:61:6d:4f:1a:ca:4f:57:13:e2:79:
c5:ff:5f:a8:55:a1:be:59:d0:37:58:98:d9:23:2e:
17:2d:8c:82:e8:03:48:fd:63:71:f5:7a:47:25:44:
9f:1d:65:37:7c:eb:bb:e1:ea:94:65:17:28:cc:d4:
98:92:24:85:f1:e4:d2:a5:a2:a3:cd:84:59:e0:18:
05:5f:f6:a8:85:45:c5:5b:77:ac:c6:62:87:62:88:
86:b6:32:de:1c:30:b8:6b:f7:1f:88:3a:61:42:c8:
1d:e8:1c:e8:82:96:69:ac:b1:09:ce:8a:5e:c5:64:
97:4b:4c:28:71:08:30:38:72:90:10:26:28:16:cb:
a4:c5:ce:e9:e1:58:9b:61:ef:b4:74:20:24:8b:da:
ab:6f:57:03:e0:98:2c:48:44:c0:98:db:0c:92:91:
ee:d2:2a:f8:1f:0c:6a:33:af:04:ae:9e:41:ed:5b:
6d:d1:a1:ac:27:73:60:03:0a:42:34:a4:57:5d:78:
80:b9:a7:2f:79:3b:ee:b0:e1:c5:c6:94:9e:19:06:
80:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:8C:FE:EE:91:11:7F:80:77:3B:44:85:18:9A:BE:48:4B:B7:9E:0D
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/0Iz-7pERf4B3O0SFGJq-SEu3ng0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.203.0/24
Signature Algorithm: sha256WithRSAEncryption
79:81:21:ed:91:27:bf:d4:8a:aa:be:e2:c1:0f:06:fb:b4:94:
d4:fa:5c:69:f1:cd:e8:6d:97:7b:e1:a1:2a:96:76:8d:39:c9:
7c:f5:83:e3:2f:34:29:37:35:78:47:00:0d:1b:39:cd:cb:0e:
67:0e:3f:77:eb:ce:ff:34:54:64:89:7f:3f:15:bd:81:22:7a:
3d:3b:e0:c8:b8:e1:62:72:3f:94:5b:91:8e:6f:02:c1:68:15:
ce:cf:80:b8:51:03:86:ae:19:e3:e0:5f:81:43:da:e0:46:a2:
ba:33:11:cd:4c:9a:db:d7:5a:19:5c:6d:a5:92:7e:f0:27:2a:
a1:c0:9d:46:53:99:c1:aa:07:4e:c7:06:38:1e:82:02:21:7a:
e4:94:02:ef:b9:75:98:b7:0c:0d:80:5d:d0:ac:e5:ee:74:2e:
65:22:d1:3a:7f:e5:52:31:fa:3f:80:4e:4e:4b:ca:a1:fd:e5:
2d:6d:21:31:62:d7:58:44:e2:e1:46:19:d4:08:e1:46:24:62:
0a:8c:fd:7d:a4:9b:b7:d7:14:37:8a:86:30:1c:ea:dd:f8:33:
c4:c8:c5:86:ed:26:03:51:10:38:5c:97:20:0d:7d:9e:d1:02:
bc:5e:93:61:d3:d7:dd:e9:56:5e:16:a9:a9:e7:bf:9b:10:4e:
a2:ca:ae:47
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZI8FbYuY4NNlk6/3+/XQO/6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzNjc3ZDdjYjkyNzFjZTM2MTI1NmU5ODMzY2M3YjE0ZmQw
MjNlYmUwHhcNMjQwOTI5MDQ0MTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMDhjZmVlZTkxMTE3ZjgwNzczYjQ0ODUxODlhYmU0ODRiYjc5ZTBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsOeq04evun9oWovgaqLG1+mPCvTI
a7mOnku4tYu0DJ3MB2BuCxEkqeJriAuebMO5J2FtTxrKT1cT4nnF/1+oVaG+WdA3
WJjZIy4XLYyC6ANI/WNx9XpHJUSfHWU3fOu74eqUZRcozNSYkiSF8eTSpaKjzYRZ
4BgFX/aohUXFW3esxmKHYoiGtjLeHDC4a/cfiDphQsgd6BzogpZprLEJzopexWSX
S0wocQgwOHKQECYoFsukxc7p4VibYe+0dCAki9qrb1cD4JgsSETAmNsMkpHu0ir4
HwxqM68Erp5B7Vtt0aGsJ3NgAwpCNKRXXXiAuacveTvusOHFxpSeGQaAHwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNCM/u6REX+AdztEhRiavkhLt54NMB8GA1UdIwQY
MBaAFJNnfXy5JxzjYSVumDPMexT9Aj6+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYt
OTlhY2I5OWNlNzU0LzEvMEl6LTdwRVJmNEIzTzBTRkdKcS1TRXUzbmcwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYtOTlhY2I5OWNlNzU0
LzEvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALUPLMA0G
CSqGSIb3DQEBCwUAA4IBAQB5gSHtkSe/1IqqvuLBDwb7tJTU+lxp8c3obZd74aEq
lnaNOcl89YPjLzQpNzV4RwANGznNyw5nDj93687/NFRkiX8/Fb2BIno9O+DIuOFi
cj+UW5GObwLBaBXOz4C4UQOGrhnj4F+BQ9rgRqK6MxHNTJrb11oZXG2lkn7wJyqh
wJ1GU5nBqgdOxwY4HoICIXrklALvuXWYtwwNgF3QrOXudC5lItE6f+VSMfo/gE5O
S8qh/eUtbSExYtdYROLhRhnUCOFGJGIKjP19pJu31xQ3ioYwHOrd+DPEyMWG7SYD
URA4XJcgDX2e0QK8XpNh09fd6VZeFqmp57+bEE6iyq5H
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:55:42 2025 by rpki-client