Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/ID49qftLNcab_12YnQ8yZGhBG2Q.roa
File: ID49qftLNcab_12YnQ8yZGhBG2Q.roa (raw, json)
Hash identifier: kSOFyekt2KcC1uoJO7e2CYaHNXf25g/1MeVUTez2iiM=
Subject key identifier: 20:3E:3D:A9:FB:4B:35:C6:9B:FF:5D:98:9D:0F:32:64:68:41:1B:64
Certificate issuer: /CN=7c3d022a240ce71e0a6e1e9aae0112da840cc34b
Certificate serial: 01914AE22362E72C39EE3A931B7FADCA8AAF
Authority key identifier: 7C:3D:02:2A:24:0C:E7:1E:0A:6E:1E:9A:AE:01:12:DA:84:0C:C3:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fD0CKiQM5x4Kbh6argES2oQMw0s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/ID49qftLNcab_12YnQ8yZGhBG2Q.roa
Signing time: Tue 13 Aug 2024 08:36:59 +0000
ROA not before: Tue 13 Aug 2024 08:36:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34918
IP address blocks: 45.11.187.0/24 maxlen: 24
2a05:9080:6::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 26 Aug 2024 17:38:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:4a:e2:23:62:e7:2c:39:ee:3a:93:1b:7f:ad:ca:8a:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3d022a240ce71e0a6e1e9aae0112da840cc34b
Validity
Not Before: Aug 13 08:36:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=203e3da9fb4b35c69bff5d989d0f326468411b64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:7b:3b:30:2f:36:e4:8c:83:98:02:90:09:63:
5a:a1:f2:7e:f6:a8:b0:f6:94:dd:85:19:e3:3f:78:
94:ce:70:fa:1c:61:47:26:43:30:87:09:db:70:16:
7d:1d:13:b8:89:dd:9d:33:8e:0e:1d:c5:b1:30:3f:
53:10:87:e7:f2:13:63:d0:9b:7c:75:05:9f:79:1b:
ea:59:3a:04:c7:02:92:b3:79:ad:80:69:5f:6f:ff:
b0:78:c0:97:90:10:c1:29:df:50:c6:e8:9f:71:a2:
70:a6:aa:c5:51:f7:cc:aa:82:07:79:b8:a6:12:ed:
e5:19:4e:d6:35:b3:be:f1:0b:2b:a8:44:d9:49:95:
99:10:02:7d:27:d7:62:fc:0c:7a:6f:3f:19:92:47:
86:2c:47:95:79:99:c9:e6:e6:fd:ef:1b:38:86:2a:
6b:91:23:70:5a:bc:c8:75:07:9a:0d:97:5e:4c:10:
76:fb:22:c3:0c:c7:ab:b0:7d:32:ed:63:39:9d:d6:
fd:d2:9a:d1:f8:04:5f:37:d8:28:00:2d:fb:5e:f6:
33:a0:35:7e:21:b8:8b:bd:5a:71:2f:4e:38:fc:2e:
88:1a:f8:ea:39:5d:27:85:df:6c:57:ec:69:be:a5:
4c:30:eb:6f:ad:6a:c8:73:56:b0:f6:4c:8d:5d:d0:
01:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:3E:3D:A9:FB:4B:35:C6:9B:FF:5D:98:9D:0F:32:64:68:41:1B:64
X509v3 Authority Key Identifier:
keyid:7C:3D:02:2A:24:0C:E7:1E:0A:6E:1E:9A:AE:01:12:DA:84:0C:C3:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD0CKiQM5x4Kbh6argES2oQMw0s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/ID49qftLNcab_12YnQ8yZGhBG2Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/fD0CKiQM5x4Kbh6argES2oQMw0s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.187.0/24
IPv6:
2a05:9080:6::/48
Signature Algorithm: sha256WithRSAEncryption
78:84:31:f0:e6:65:50:f8:c8:c2:12:fc:93:ef:43:d5:f1:55:
fa:a7:12:af:33:92:be:3d:88:15:5b:36:f4:c9:26:7d:68:7a:
37:34:5b:3e:54:a8:49:b8:e0:11:04:b5:09:bd:a7:da:6b:2e:
71:94:9c:2a:7f:68:f2:fa:8d:2b:c3:cc:04:18:03:73:1e:01:
81:37:1d:67:98:05:f8:c9:05:50:d8:6d:39:72:db:3f:3a:a2:
41:fa:ac:8b:8f:39:bc:bc:65:98:f5:22:6a:ec:f7:b2:b8:77:
b7:40:b5:ec:c2:2b:fc:0e:f1:44:68:2f:3d:09:39:60:0a:f8:
5f:e7:1c:be:96:a7:23:58:32:28:2e:f4:12:a3:61:bf:2e:46:
e6:eb:7c:b6:01:17:03:65:1e:0f:3b:04:09:0c:0a:70:ed:e9:
9e:d6:cd:63:cc:c6:d6:9a:0b:af:e4:6c:6b:74:c2:3c:46:9e:
3b:28:03:07:ca:91:ee:1a:af:cf:ab:3c:50:13:3b:ee:ab:ef:
b2:19:d3:3e:c6:e6:c1:e7:c6:97:11:25:ef:0b:22:00:dc:c4:
92:1b:00:0e:7b:0a:b2:3d:d9:e3:16:07:d5:ee:2e:1e:fc:59:
2f:bd:88:97:a2:6d:98:34:4d:c4:5a:a1:da:6a:7b:10:f3:24:
8c:58:24:ca
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAZFK4iNi5yw57jqTG3+tyoqvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdjM2QwMjJhMjQwY2U3MWUwYTZlMWU5YWFlMDExMmRhODQw
Y2MzNGIwHhcNMjQwODEzMDgzNjU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMDNlM2RhOWZiNGIzNWM2OWJmZjVkOTg5ZDBmMzI2NDY4NDExYjY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5Xs7MC825IyDmAKQCWNaofJ+9qiw
9pTdhRnjP3iUznD6HGFHJkMwhwnbcBZ9HRO4id2dM44OHcWxMD9TEIfn8hNj0Jt8
dQWfeRvqWToExwKSs3mtgGlfb/+weMCXkBDBKd9QxuifcaJwpqrFUffMqoIHebim
Eu3lGU7WNbO+8QsrqETZSZWZEAJ9J9di/Ax6bz8ZkkeGLEeVeZnJ5ub97xs4hipr
kSNwWrzIdQeaDZdeTBB2+yLDDMersH0y7WM5ndb90prR+ARfN9goAC37XvYzoDV+
IbiLvVpxL044/C6IGvjqOV0nhd9sV+xpvqVMMOtvrWrIc1aw9kyNXdABLQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFCA+Pan7SzXGm/9dmJ0PMmRoQRtkMB8GA1UdIwQY
MBaAFHw9AiokDOceCm4emq4BEtqEDMNLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZkQwQ0tpUU01eDRLYmg2YXJnRVMyb1FNdzBzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi9mZDM2MmYtYWZjYi00Y2Y1LTk4YzYt
MDk0ODk4OWU2ZDU1LzEvSUQ0OXFmdExOY2FiXzEyWW5ROHlaR2hCRzJRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZi9mZDM2MmYtYWZjYi00Y2Y1LTk4YzYtMDk0ODk4OWU2ZDU1
LzEvZkQwQ0tpUU01eDRLYmg2YXJnRVMyb1FNdzBzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQALQu7MA8E
AgACMAkDBwAqBZCAAAYwDQYJKoZIhvcNAQELBQADggEBAHiEMfDmZVD4yMIS/JPv
Q9XxVfqnEq8zkr49iBVbNvTJJn1oejc0Wz5UqEm44BEEtQm9p9prLnGUnCp/aPL6
jSvDzAQYA3MeAYE3HWeYBfjJBVDYbTly2z86okH6rIuPOby8ZZj1Imrs97K4d7dA
tezCK/wO8URoLz0JOWAK+F/nHL6WpyNYMigu9BKjYb8uRubrfLYBFwNlHg87BAkM
CnDt6Z7WzWPMxtaaC6/kbGt0wjxGnjsoAwfKke4ar8+rPFATO+6r77IZ0z7G5sHn
xpcRJe8LIgDcxJIbAA57CrI92eMWB9XuLh78WS+9iJeibZg0TcRaodpqexDzJIxY
JMo=
Generated at Mon Aug 26 20:25:09 2024 by rpki-client on console-fra.rpki-client.org