Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/e64148-4c8c-4e84-925b-e022e3009a71/1/59Tv1gNhx-uiqlKXlqhEKUCtpU8.roa
File: 59Tv1gNhx-uiqlKXlqhEKUCtpU8.roa (raw, json)
Hash identifier: szFZjbcF8DyZc171zGS3Sdej1lO+RzU0IP1AtezkhlI=
Subject key identifier: E7:D4:EF:D6:03:61:C7:EB:A2:AA:52:97:96:A8:44:29:40:AD:A5:4F
Certificate issuer: /CN=8069d9ffe048a70003f16f06e24d9bf2db85eb52
Certificate serial: 018CC64B015C0C0A7290B96808F13065CBB5
Authority key identifier: 80:69:D9:FF:E0:48:A7:00:03:F1:6F:06:E2:4D:9B:F2:DB:85:EB:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gGnZ_-BIpwAD8W8G4k2b8tuF61I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/e64148-4c8c-4e84-925b-e022e3009a71/1/59Tv1gNhx-uiqlKXlqhEKUCtpU8.roa
Signing time: Mon 01 Jan 2024 18:30:53 +0000
ROA not before: Mon 01 Jan 2024 18:30:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208012
IP address blocks: 45.129.121.0/24 maxlen: 24
45.129.120.0/24 maxlen: 24
45.129.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 07 Jun 2024 09:28:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:01:5c:0c:0a:72:90:b9:68:08:f1:30:65:cb:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8069d9ffe048a70003f16f06e24d9bf2db85eb52
Validity
Not Before: Jan 1 18:30:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e7d4efd60361c7eba2aa529796a8442940ada54f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:19:81:2f:2b:53:32:1c:4c:7f:70:9d:cd:e6:
b1:9a:9d:b9:0b:ef:8f:dd:b2:c5:61:05:4b:16:a0:
c5:9a:fd:c5:e9:6c:0c:46:2f:15:91:26:aa:97:04:
46:16:cc:43:a1:ae:df:85:f7:7a:b3:23:b7:d8:37:
4e:fb:95:71:5d:a1:e0:05:e8:47:19:8c:39:1e:8b:
0c:5b:74:2f:c0:d4:80:1f:2d:8f:da:89:37:f9:11:
54:59:4c:88:d8:a9:a4:72:0c:c7:b6:79:2f:93:a2:
9c:f6:88:51:89:bc:ac:3b:8b:21:0c:97:c7:03:54:
10:be:c6:82:80:e7:e5:8d:54:0e:16:74:ac:8f:c4:
65:44:e8:a1:e0:4c:54:7f:d5:42:f4:e7:f5:3f:05:
ee:56:62:3d:b8:08:22:63:e6:29:00:31:72:7b:e6:
73:b4:77:f8:45:ab:9e:b7:99:5f:a4:fc:70:4c:e2:
56:ae:7e:35:e5:02:24:e3:dc:3e:a2:a0:5a:2b:4b:
36:bb:39:71:27:9c:ac:4f:6a:97:8f:68:6f:3e:8b:
e4:f9:53:5c:82:88:3e:62:fd:ac:f6:0e:94:20:da:
9c:29:22:ec:4a:d8:2e:85:1f:c1:f7:00:cf:0b:85:
ef:f0:44:43:23:af:41:87:85:40:48:af:f4:95:0f:
fc:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:D4:EF:D6:03:61:C7:EB:A2:AA:52:97:96:A8:44:29:40:AD:A5:4F
X509v3 Authority Key Identifier:
keyid:80:69:D9:FF:E0:48:A7:00:03:F1:6F:06:E2:4D:9B:F2:DB:85:EB:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gGnZ_-BIpwAD8W8G4k2b8tuF61I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/e64148-4c8c-4e84-925b-e022e3009a71/1/59Tv1gNhx-uiqlKXlqhEKUCtpU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/e64148-4c8c-4e84-925b-e022e3009a71/1/gGnZ_-BIpwAD8W8G4k2b8tuF61I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.120.0/23
45.129.123.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:d2:d8:2a:f7:8b:5f:19:3e:f1:9b:47:cb:f7:ad:64:7e:de:
70:3a:4b:db:f2:0f:42:82:70:98:1d:53:43:35:a5:57:6b:e2:
87:bf:e6:99:28:2d:e5:50:c0:f0:2c:64:dc:58:69:a6:f0:5b:
a7:98:e1:2d:25:d4:58:6a:e8:ab:a0:29:17:cb:5b:f7:e8:9c:
33:7c:d7:73:8d:34:8e:90:ac:2f:00:ad:d9:09:d8:dd:a1:8b:
46:75:87:c9:b2:18:5e:c5:d8:3b:3d:31:bb:b2:22:9a:3a:9e:
82:61:fa:70:1b:1f:69:2f:72:9a:75:fa:11:13:b4:2e:d0:3f:
8f:b8:4f:18:d6:a0:1c:e2:c1:ca:8b:1c:d0:ab:10:9c:8d:a8:
6f:5e:7e:92:c7:eb:d7:6f:bf:85:00:5d:8e:92:b2:cf:5f:04:
47:bd:e7:aa:d2:32:2d:c2:3f:54:ae:71:2b:91:61:2d:31:37:
4b:fe:e3:a7:31:26:2a:f8:62:57:2d:f7:63:c7:b8:fc:88:78:
ef:38:1b:40:fa:e2:7e:f0:57:43:35:25:63:92:3e:76:f5:50:
56:d1:72:d5:7a:bd:ab:6c:63:87:a0:5a:42:e3:36:ed:51:11:
51:92:8f:a5:44:25:00:a5:fa:97:5c:1f:27:40:d0:89:8d:57:
8b:94:d8:be
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzGSwFcDApykLloCPEwZcu1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgwNjlkOWZmZTA0OGE3MDAwM2YxNmYwNmUyNGQ5YmYyZGI4
NWViNTIwHhcNMjQwMTAxMTgzMDUzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlN2Q0ZWZkNjAzNjFjN2ViYTJhYTUyOTc5NmE4NDQyOTQwYWRhNTRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAphmBLytTMhxMf3Cdzeaxmp25C++P
3bLFYQVLFqDFmv3F6WwMRi8VkSaqlwRGFsxDoa7fhfd6syO32DdO+5VxXaHgBehH
GYw5HosMW3QvwNSAHy2P2ok3+RFUWUyI2KmkcgzHtnkvk6Kc9ohRibysO4shDJfH
A1QQvsaCgOfljVQOFnSsj8RlROih4ExUf9VC9Of1PwXuVmI9uAgiY+YpADFye+Zz
tHf4Rauet5lfpPxwTOJWrn415QIk49w+oqBaK0s2uzlxJ5ysT2qXj2hvPovk+VNc
gog+Yv2s9g6UINqcKSLsStguhR/B9wDPC4Xv8ERDI69Bh4VASK/0lQ/8rQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFOfU79YDYcfroqpSl5aoRClAraVPMB8GA1UdIwQY
MBaAFIBp2f/gSKcAA/FvBuJNm/LbhetSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ0duWl8tQklwd0FEOFc4RzRrMmI4dHVGNjFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS9lNjQxNDgtNGM4Yy00ZTg0LTkyNWIt
ZTAyMmUzMDA5YTcxLzEvNTlUdjFnTmh4LXVpcWxLWGxxaEVLVUN0cFU4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS9lNjQxNDgtNGM4Yy00ZTg0LTkyNWItZTAyMmUzMDA5YTcx
LzEvZ0duWl8tQklwd0FEOFc4RzRrMmI4dHVGNjFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBLYF4AwQA
LYF7MA0GCSqGSIb3DQEBCwUAA4IBAQAv0tgq94tfGT7xm0fL961kft5wOkvb8g9C
gnCYHVNDNaVXa+KHv+aZKC3lUMDwLGTcWGmm8FunmOEtJdRYauiroCkXy1v36Jwz
fNdzjTSOkKwvAK3ZCdjdoYtGdYfJshhexdg7PTG7siKaOp6CYfpwGx9pL3KadfoR
E7Qu0D+PuE8Y1qAc4sHKixzQqxCcjahvXn6Sx+vXb7+FAF2OkrLPXwRHveeq0jIt
wj9UrnErkWEtMTdL/uOnMSYq+GJXLfdjx7j8iHjvOBtA+uJ+8FdDNSVjkj529VBW
0XLVer2rbGOHoFpC4zbtURFRko+lRCUApfqXXB8nQNCJjVeLlNi+
-----END CERTIFICATE-----
Generated at Fri Jun 7 14:48:49 2024 by rpki-client on console-ams.rpki-client.org