Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/980e66-3631-4fde-8e2d-c849bc0f359b/1/97AaipFB_G8sgipvKOnEcJSyRHw.roa
File: 97AaipFB_G8sgipvKOnEcJSyRHw.roa (raw, json)
Hash identifier: v/QWic99kch1169GTqxntfRDjTdBfBO/fE8HwRv37Vc=
Subject key identifier: F7:B0:1A:8A:91:41:FC:6F:2C:82:2A:6F:28:E9:C4:70:94:B2:44:7C
Certificate issuer: /CN=75f1a763745c25dad28f4a8116688e82ce12028b
Certificate serial: 01857169DC14917EFF56695DE7A7D250D628
Authority key identifier: 75:F1:A7:63:74:5C:25:DA:D2:8F:4A:81:16:68:8E:82:CE:12:02:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dfGnY3RcJdrSj0qBFmiOgs4SAos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/980e66-3631-4fde-8e2d-c849bc0f359b/1/97AaipFB_G8sgipvKOnEcJSyRHw.roa
Signing time: Mon 02 Jan 2023 07:37:21 +0000
ROA not before: Mon 02 Jan 2023 07:37:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47890
IP address blocks: 45.8.44.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:dc:14:91:7e:ff:56:69:5d:e7:a7:d2:50:d6:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75f1a763745c25dad28f4a8116688e82ce12028b
Validity
Not Before: Jan 2 07:37:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f7b01a8a9141fc6f2c822a6f28e9c47094b2447c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:4d:07:fe:3e:d7:ac:2c:78:5e:3c:bc:6a:68:
7b:61:4a:bc:e3:3b:60:2c:95:aa:fe:76:7f:a4:78:
1e:fb:7f:84:5c:43:55:8e:de:99:44:47:41:d7:1c:
80:8c:2f:69:15:c9:8d:a6:fe:2c:2d:ef:22:80:93:
37:02:2a:af:78:f0:e9:41:cd:19:b6:4a:e5:10:25:
87:da:0b:fa:13:00:c8:6f:76:4a:c1:b1:1d:7c:fa:
95:d9:5b:06:80:44:e9:9f:7b:14:09:aa:9f:2c:e7:
d6:9f:8f:d3:54:0a:a0:53:e6:f5:4d:03:e1:e2:56:
04:6f:dc:2e:73:e7:56:56:d2:e6:4b:b8:f2:1f:cf:
d3:ca:cc:db:eb:5d:ed:39:cf:9a:df:22:87:5c:b9:
b0:cf:25:6c:3c:76:f7:6f:7d:05:5e:b7:ab:a4:e3:
89:a3:eb:23:14:89:4a:31:02:ff:58:67:00:41:68:
be:a4:9c:d4:f5:77:61:d8:b1:6a:e1:bf:79:54:3b:
45:ce:5b:8d:4d:46:c4:de:b3:a2:ef:39:88:ec:83:
b5:e2:47:26:e9:d0:c1:d3:20:28:1a:c4:d2:50:dd:
72:e3:df:78:83:72:ad:63:f8:01:b0:48:c3:66:d6:
54:8e:0e:f5:6e:c4:ae:91:02:b4:9e:a1:94:c5:9d:
d3:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:B0:1A:8A:91:41:FC:6F:2C:82:2A:6F:28:E9:C4:70:94:B2:44:7C
X509v3 Authority Key Identifier:
keyid:75:F1:A7:63:74:5C:25:DA:D2:8F:4A:81:16:68:8E:82:CE:12:02:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dfGnY3RcJdrSj0qBFmiOgs4SAos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/980e66-3631-4fde-8e2d-c849bc0f359b/1/97AaipFB_G8sgipvKOnEcJSyRHw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/980e66-3631-4fde-8e2d-c849bc0f359b/1/dfGnY3RcJdrSj0qBFmiOgs4SAos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.44.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:8c:8e:6d:e0:b1:88:b5:df:62:f4:6c:39:f5:d7:19:75:6c:
d1:d2:39:da:dc:de:70:ad:ed:08:06:47:ff:da:2c:ab:50:7f:
ac:60:5f:e6:89:75:5f:fd:07:b3:2b:fb:6f:c2:fd:37:dc:fc:
c7:81:ac:16:7f:74:4a:f6:63:3d:9d:cb:e0:44:8b:62:7b:46:
5a:3a:d0:dc:73:84:8e:8d:59:d5:f3:5d:0d:74:7a:d9:55:0e:
1c:c7:03:6a:6d:57:ca:41:95:fb:e7:b8:dc:8f:24:3a:26:29:
db:39:f9:1e:10:88:f5:01:3e:25:0f:44:7c:f5:2f:06:22:98:
cb:bb:95:34:1a:61:48:54:9b:fc:66:28:2d:46:78:f9:2b:7e:
bb:44:cf:9c:d9:74:18:36:a3:cd:fb:3f:98:2c:9b:17:04:8b:
dd:1d:cb:dc:5b:0e:e3:a8:55:db:f7:8e:27:29:04:19:b1:b1:
8a:61:bc:1b:65:9c:d6:1f:95:b0:4f:f8:d2:e3:78:2f:b5:c9:
e9:cf:45:a2:3c:1c:75:35:fb:54:be:47:10:85:af:c9:e0:1c:
ec:b7:b0:73:70:02:93:12:b9:4f:b2:37:98:b6:67:48:de:4c:
c3:b0:eb:38:7d:02:6f:6e:2f:14:e8:29:35:5f:d5:19:72:37:
5a:20:62:3e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxadwUkX7/Vmld56fSUNYoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1ZjFhNzYzNzQ1YzI1ZGFkMjhmNGE4MTE2Njg4ZTgyY2Ux
MjAyOGIwHhcNMjMwMTAyMDczNzIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmN2IwMWE4YTkxNDFmYzZmMmM4MjJhNmYyOGU5YzQ3MDk0YjI0NDdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqU0H/j7XrCx4Xjy8amh7YUq84ztg
LJWq/nZ/pHge+3+EXENVjt6ZREdB1xyAjC9pFcmNpv4sLe8igJM3AiqvePDpQc0Z
tkrlECWH2gv6EwDIb3ZKwbEdfPqV2VsGgETpn3sUCaqfLOfWn4/TVAqgU+b1TQPh
4lYEb9wuc+dWVtLmS7jyH8/Tyszb613tOc+a3yKHXLmwzyVsPHb3b30FXrerpOOJ
o+sjFIlKMQL/WGcAQWi+pJzU9Xdh2LFq4b95VDtFzluNTUbE3rOi7zmI7IO14kcm
6dDB0yAoGsTSUN1y4994g3KtY/gBsEjDZtZUjg71bsSukQK0nqGUxZ3TmQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPewGoqRQfxvLIIqbyjpxHCUskR8MB8GA1UdIwQY
MBaAFHXxp2N0XCXa0o9KgRZojoLOEgKLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZGZHblkzUmNKZHJTajBxQkZtaU9nczRTQW9zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi85ODBlNjYtMzYzMS00ZmRlLThlMmQt
Yzg0OWJjMGYzNTliLzEvOTdBYWlwRkJfRzhzZ2lwdktPbkVjSlN5Ukh3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi85ODBlNjYtMzYzMS00ZmRlLThlMmQtYzg0OWJjMGYzNTli
LzEvZGZHblkzUmNKZHJTajBxQkZtaU9nczRTQW9zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQgsMA0G
CSqGSIb3DQEBCwUAA4IBAQAtjI5t4LGItd9i9Gw59dcZdWzR0jna3N5wre0IBkf/
2iyrUH+sYF/miXVf/QezK/tvwv033PzHgawWf3RK9mM9ncvgRItie0ZaOtDcc4SO
jVnV810NdHrZVQ4cxwNqbVfKQZX757jcjyQ6JinbOfkeEIj1AT4lD0R89S8GIpjL
u5U0GmFIVJv8ZigtRnj5K367RM+c2XQYNqPN+z+YLJsXBIvdHcvcWw7jqFXb944n
KQQZsbGKYbwbZZzWH5WwT/jS43gvtcnpz0WiPBx1NftUvkcQha/J4Bzst7BzcAKT
ErlPsjeYtmdI3kzDsOs4fQJvbi8U6Ck1X9UZcjdaIGI+
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:28 2024 by rpki-client on console-ams.rpki-client.org