Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/a_ugRQJRzV7mlduxDvuhHVIdTVM.roa
File: a_ugRQJRzV7mlduxDvuhHVIdTVM.roa (raw, json)
Hash identifier: ZH3kt/1pzfcLgrFy7fgNX3o/PZ2sgUqODhU/iX/rXcA=
Subject key identifier: 6B:FB:A0:45:02:51:CD:5E:E6:95:DB:B1:0E:FB:A1:1D:52:1D:4D:53
Certificate issuer: /CN=7c3d022a240ce71e0a6e1e9aae0112da840cc34b
Certificate serial: 01915FB770015E6E12065F97E8672778CAD9
Authority key identifier: 7C:3D:02:2A:24:0C:E7:1E:0A:6E:1E:9A:AE:01:12:DA:84:0C:C3:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fD0CKiQM5x4Kbh6argES2oQMw0s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/a_ugRQJRzV7mlduxDvuhHVIdTVM.roa
Signing time: Sat 17 Aug 2024 09:42:22 +0000
ROA not before: Sat 17 Aug 2024 09:42:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214384
IP address blocks: 45.11.185.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Aug 2024 14:27:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:5f:b7:70:01:5e:6e:12:06:5f:97:e8:67:27:78:ca:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3d022a240ce71e0a6e1e9aae0112da840cc34b
Validity
Not Before: Aug 17 09:42:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6bfba0450251cd5ee695dbb10efba11d521d4d53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:53:4e:54:12:56:60:72:02:76:7c:60:7b:05:
92:ec:a8:55:a3:35:78:76:79:3e:92:bf:b9:ce:67:
0c:40:6e:87:85:92:da:8e:f7:2a:62:71:ad:29:1a:
86:ce:41:01:6c:1e:4e:ca:0f:22:63:82:2b:e1:57:
2c:19:bc:20:c9:2f:41:b1:9b:9c:21:a0:1f:9a:9d:
2f:77:fd:91:75:73:37:fb:56:6a:b8:c6:eb:d8:10:
75:61:d9:b6:54:2f:cf:4a:90:02:bc:2b:63:82:40:
2c:27:80:89:a4:97:35:dc:7f:6f:a1:f7:3e:0e:3a:
c7:e4:c0:c9:c9:e7:1a:d3:4a:8a:36:1f:fe:ab:bd:
b4:5e:06:f6:b6:17:08:d4:4b:93:89:50:f3:1d:a5:
d5:08:23:04:19:7a:9a:cc:4d:32:fa:8d:2f:fe:74:
3d:79:bb:6e:96:d5:2e:51:3b:74:20:4a:82:7e:c6:
58:5c:36:76:59:c3:74:13:3a:e5:54:00:26:c3:f0:
3b:5a:6f:77:08:b7:79:22:ec:f0:9b:46:06:9c:93:
cb:77:ae:c6:15:c2:af:7b:58:d6:f0:b0:0a:5b:df:
25:7a:3b:d1:e2:71:ea:7e:a4:10:db:d9:f3:5c:ae:
b4:c8:ef:76:68:e9:73:b5:9a:7f:77:e3:89:c3:dd:
89:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:FB:A0:45:02:51:CD:5E:E6:95:DB:B1:0E:FB:A1:1D:52:1D:4D:53
X509v3 Authority Key Identifier:
keyid:7C:3D:02:2A:24:0C:E7:1E:0A:6E:1E:9A:AE:01:12:DA:84:0C:C3:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD0CKiQM5x4Kbh6argES2oQMw0s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/a_ugRQJRzV7mlduxDvuhHVIdTVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/fD0CKiQM5x4Kbh6argES2oQMw0s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.185.0/24
Signature Algorithm: sha256WithRSAEncryption
08:70:fb:93:54:09:f7:4c:d7:eb:33:28:a8:10:21:39:9a:cb:
63:d3:1a:e5:02:31:50:4a:53:08:3d:96:ee:6a:cd:95:d7:39:
80:63:d7:55:b0:e8:4c:6c:6b:c8:1f:a1:8d:b9:25:68:b4:d7:
31:84:9b:33:88:72:ef:b1:cc:00:68:7c:f8:64:d4:57:dd:1a:
41:75:1d:10:c2:2f:71:50:dd:0f:50:23:30:b7:38:9f:6d:ed:
3b:6e:6b:e6:7a:62:13:58:c2:84:51:31:30:2a:9f:9a:a7:89:
d8:50:39:c2:df:59:4b:31:e0:0e:cb:72:aa:f9:18:33:41:63:
94:25:1e:7b:7c:a0:c0:67:6c:b5:03:6d:0e:96:96:19:c5:8a:
92:41:6d:4c:4b:6d:12:83:91:18:fa:51:91:a4:04:13:6d:1b:
cc:71:e7:1a:62:bb:84:a2:e6:c4:8c:5e:b8:a8:ab:28:1e:c7:
a5:4d:3c:5c:ad:fb:f5:88:9c:a4:3e:c4:f7:4f:35:45:30:bb:
19:1b:82:f3:40:a3:fe:91:68:20:92:40:4e:f2:04:e2:27:f9:
73:21:19:6e:4d:e6:6f:e9:09:6e:0f:84:a2:1d:0c:53:53:9c:
f3:31:0d:e8:a6:53:8d:9c:54:fd:1d:fb:74:e1:25:42:9f:1a:
9d:7d:26:c8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZFft3ABXm4SBl+X6GcneMrZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdjM2QwMjJhMjQwY2U3MWUwYTZlMWU5YWFlMDExMmRhODQw
Y2MzNGIwHhcNMjQwODE3MDk0MjIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YmZiYTA0NTAyNTFjZDVlZTY5NWRiYjEwZWZiYTExZDUyMWQ0ZDUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAulNOVBJWYHICdnxgewWS7KhVozV4
dnk+kr+5zmcMQG6HhZLajvcqYnGtKRqGzkEBbB5Oyg8iY4Ir4VcsGbwgyS9BsZuc
IaAfmp0vd/2RdXM3+1ZquMbr2BB1Ydm2VC/PSpACvCtjgkAsJ4CJpJc13H9vofc+
DjrH5MDJyeca00qKNh/+q720Xgb2thcI1EuTiVDzHaXVCCMEGXqazE0y+o0v/nQ9
ebtultUuUTt0IEqCfsZYXDZ2WcN0EzrlVAAmw/A7Wm93CLd5Iuzwm0YGnJPLd67G
FcKve1jW8LAKW98lejvR4nHqfqQQ29nzXK60yO92aOlztZp/d+OJw92JdQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGv7oEUCUc1e5pXbsQ77oR1SHU1TMB8GA1UdIwQY
MBaAFHw9AiokDOceCm4emq4BEtqEDMNLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZkQwQ0tpUU01eDRLYmg2YXJnRVMyb1FNdzBzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi9mZDM2MmYtYWZjYi00Y2Y1LTk4YzYt
MDk0ODk4OWU2ZDU1LzEvYV91Z1JRSlJ6VjdtbGR1eER2dWhIVklkVFZNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZi9mZDM2MmYtYWZjYi00Y2Y1LTk4YzYtMDk0ODk4OWU2ZDU1
LzEvZkQwQ0tpUU01eDRLYmg2YXJnRVMyb1FNdzBzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQu5MA0G
CSqGSIb3DQEBCwUAA4IBAQAIcPuTVAn3TNfrMyioECE5mstj0xrlAjFQSlMIPZbu
as2V1zmAY9dVsOhMbGvIH6GNuSVotNcxhJsziHLvscwAaHz4ZNRX3RpBdR0Qwi9x
UN0PUCMwtzifbe07bmvmemITWMKEUTEwKp+ap4nYUDnC31lLMeAOy3Kq+RgzQWOU
JR57fKDAZ2y1A20OlpYZxYqSQW1MS20Sg5EY+lGRpAQTbRvMcecaYruEoubEjF64
qKsoHselTTxcrfv1iJykPsT3TzVFMLsZG4LzQKP+kWggkkBO8gTiJ/lzIRluTeZv
6QluD4SiHQxTU5zzMQ3oplONnFT9Hft04SVCnxqdfSbI
Generated at Tue Aug 20 17:59:58 2024 by rpki-client on console-fra.rpki-client.org