Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/0a50d0-564f-40e0-8589-c9f7d02f90c0/1/cO5LpN3nI3lmT-uvaJV27BjJBcU.roa
File: cO5LpN3nI3lmT-uvaJV27BjJBcU.roa (raw, json)
Hash identifier: 0LnagpIODWO9ePQtH6pGAiQwrrPW8JazEmB8aWGKaM8=
Subject key identifier: 70:EE:4B:A4:DD:E7:23:79:66:4F:EB:AF:68:95:76:EC:18:C9:05:C5
Certificate issuer: /CN=fbf2a5a5df4d95ac0115caedad194b62688f2bba
Certificate serial: 01857039A9065CAD8EC2741895FFE441E7D5
Authority key identifier: FB:F2:A5:A5:DF:4D:95:AC:01:15:CA:ED:AD:19:4B:62:68:8F:2B:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-_Klpd9NlawBFcrtrRlLYmiPK7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/0a50d0-564f-40e0-8589-c9f7d02f90c0/1/cO5LpN3nI3lmT-uvaJV27BjJBcU.roa
Signing time: Mon 02 Jan 2023 02:05:05 +0000
ROA not before: Mon 02 Jan 2023 02:05:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208603
IP address blocks: 45.90.252.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Mar 2023 18:10:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:a9:06:5c:ad:8e:c2:74:18:95:ff:e4:41:e7:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbf2a5a5df4d95ac0115caedad194b62688f2bba
Validity
Not Before: Jan 2 02:05:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=70ee4ba4dde72379664febaf689576ec18c905c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:13:d4:b0:d4:31:51:c0:f2:ee:08:e5:60:35:
3b:d8:2e:13:af:cd:ab:a2:6f:a2:ff:a6:48:b3:72:
d4:36:a9:1a:32:a6:a0:97:32:df:55:ab:04:6c:b4:
ab:a1:38:36:4e:91:7c:3a:2d:25:f6:db:72:d1:a1:
d9:23:96:73:b0:1d:58:8c:91:84:1e:80:ed:52:7d:
c3:a0:8d:71:be:5b:5c:78:67:83:d5:09:0b:08:ba:
78:aa:33:ae:4e:5d:48:47:a5:91:d3:ac:44:fb:f5:
a8:16:49:68:bd:7c:db:3d:9a:a0:41:7c:31:86:84:
8a:99:e9:2d:1c:dc:a6:f9:bc:f4:53:8b:41:e7:78:
83:fc:c9:29:6a:9b:91:61:71:c7:f8:75:78:66:36:
39:85:10:27:0e:d8:af:04:27:cd:42:2c:b8:a8:dc:
6a:81:2a:7a:98:ca:a0:e1:fb:5d:7d:90:c0:b2:6f:
57:06:02:75:04:f0:7a:21:7d:0c:09:fb:32:02:fb:
bb:a6:77:36:08:d0:73:e2:0b:7a:fa:d4:ce:3d:50:
86:74:3f:f2:b7:2f:88:a5:7f:6a:6f:97:2c:82:bd:
c5:c0:f4:bd:ca:7c:a6:de:77:bb:81:75:ff:57:57:
a2:63:81:03:74:2a:7c:4d:b3:f5:46:d6:e0:31:8c:
27:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:EE:4B:A4:DD:E7:23:79:66:4F:EB:AF:68:95:76:EC:18:C9:05:C5
X509v3 Authority Key Identifier:
keyid:FB:F2:A5:A5:DF:4D:95:AC:01:15:CA:ED:AD:19:4B:62:68:8F:2B:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-_Klpd9NlawBFcrtrRlLYmiPK7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/0a50d0-564f-40e0-8589-c9f7d02f90c0/1/cO5LpN3nI3lmT-uvaJV27BjJBcU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/0a50d0-564f-40e0-8589-c9f7d02f90c0/1/1-_Klpd9NlawBFcrtrRlLYmiPK7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.252.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:cf:a1:1e:4c:4f:da:64:f5:f2:8c:0c:e6:43:36:42:cc:86:
e5:55:10:82:16:24:cf:f0:02:44:64:0f:57:db:ca:ac:58:ff:
9f:f1:01:87:9f:a5:a9:8a:a7:86:7a:b8:6d:a6:c5:dc:45:18:
11:1a:bf:a5:53:fa:1f:cd:07:7b:6e:b8:cb:59:ed:af:51:81:
53:ea:89:21:12:c6:40:b1:eb:e6:88:0f:5e:d4:72:a9:4c:4a:
63:f1:a1:da:b3:e1:c8:d5:4d:0b:d0:34:d2:1f:fe:1a:f5:67:
b8:9e:0e:d8:51:7e:82:97:bf:41:d6:bd:09:85:27:1e:a9:2a:
b0:0e:20:3a:84:a8:69:33:9f:e5:aa:8d:fb:ac:be:e3:b7:a8:
8c:05:92:f5:e0:e9:07:23:8a:a5:46:5c:f3:a3:32:51:43:3c:
31:a2:c6:50:e1:58:6d:e7:35:ec:1e:8e:23:5c:d8:f5:07:77:
d9:97:a0:12:e7:ca:5f:e5:12:49:d8:10:c5:43:85:2e:33:29:
b7:84:ca:28:ae:d5:e9:1e:ad:fb:54:07:36:04:2c:2f:2c:d6:
5d:36:6b:9a:ff:0d:1c:20:04:d9:28:9c:f1:79:1c:6f:11:17:
13:72:ad:20:f6:60:f5:95:a8:dd:42:19:8a:71:bb:0f:aa:69:
b6:79:f1:e5
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYVwOakGXK2OwnQYlf/kQefVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZiZjJhNWE1ZGY0ZDk1YWMwMTE1Y2FlZGFkMTk0YjYyNjg4
ZjJiYmEwHhcNMjMwMTAyMDIwNTA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MGVlNGJhNGRkZTcyMzc5NjY0ZmViYWY2ODk1NzZlYzE4YzkwNWM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgBPUsNQxUcDy7gjlYDU72C4Tr82r
om+i/6ZIs3LUNqkaMqaglzLfVasEbLSroTg2TpF8Oi0l9tty0aHZI5ZzsB1YjJGE
HoDtUn3DoI1xvltceGeD1QkLCLp4qjOuTl1IR6WR06xE+/WoFklovXzbPZqgQXwx
hoSKmektHNym+bz0U4tB53iD/MkpapuRYXHH+HV4ZjY5hRAnDtivBCfNQiy4qNxq
gSp6mMqg4ftdfZDAsm9XBgJ1BPB6IX0MCfsyAvu7pnc2CNBz4gt6+tTOPVCGdD/y
ty+IpX9qb5csgr3FwPS9ynym3ne7gXX/V1eiY4EDdCp8TbP1RtbgMYwnewIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFHDuS6Td5yN5Zk/rr2iVduwYyQXFMB8GA1UdIwQY
MBaAFPvypaXfTZWsARXK7a0ZS2Jojyu6MA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1fS2xwZDlObGF3QkZjcnRyUmxMWW1pUEs3by5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2EvMGE1MGQwLTU2NGYtNDBlMC04NTg5
LWM5ZjdkMDJmOTBjMC8xL2NPNUxwTjNuSTNsbVQtdXZhSlYyN0JqSkJjVS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvY2EvMGE1MGQwLTU2NGYtNDBlMC04NTg5LWM5ZjdkMDJmOTBj
MC8xLzEtX0tscGQ5Tmxhd0JGY3J0clJsTFltaVBLN28uY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAItWvww
DQYJKoZIhvcNAQELBQADggEBAAzPoR5MT9pk9fKMDOZDNkLMhuVVEIIWJM/wAkRk
D1fbyqxY/5/xAYefpamKp4Z6uG2mxdxFGBEav6VT+h/NB3tuuMtZ7a9RgVPqiSES
xkCx6+aID17UcqlMSmPxodqz4cjVTQvQNNIf/hr1Z7ieDthRfoKXv0HWvQmFJx6p
KrAOIDqEqGkzn+WqjfusvuO3qIwFkvXg6QcjiqVGXPOjMlFDPDGixlDhWG3nNewe
jiNc2PUHd9mXoBLnyl/lEknYEMVDhS4zKbeEyiiu1ekerftUBzYELC8s1l02a5r/
DRwgBNkonPF5HG8RFxNyrSD2YPWVqN1CGYpxuw+qabZ58eU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:15 2024 by rpki-client on console-ams.rpki-client.org