Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ljP4yJKW6QK580ddDodOX7RrsiI.roa
File: ljP4yJKW6QK580ddDodOX7RrsiI.roa (raw, json)
Hash identifier: 3IVQmUM0FSm3hwzXhaF66wsP9qjHzWHTNgmFKn4070A=
Subject key identifier: 96:33:F8:C8:92:96:E9:02:B9:F3:47:5D:0E:87:4E:5F:B4:6B:B2:22
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018654481810CE4F4E6AE66C4AA07DC937BB
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ljP4yJKW6QK580ddDodOX7RrsiI.roa
Signing time: Wed 15 Feb 2023 08:54:16 +0000
ROA not before: Wed 15 Feb 2023 08:54:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34927
IP address blocks: 45.90.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:54:48:18:10:ce:4f:4e:6a:e6:6c:4a:a0:7d:c9:37:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Feb 15 08:54:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9633f8c89296e902b9f3475d0e874e5fb46bb222
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:41:03:4f:fc:85:a2:e9:2b:a0:0e:59:e3:45:
cd:2e:71:0b:ee:f1:39:21:63:90:81:ac:a1:42:83:
b4:69:ee:e6:3f:18:de:7c:4a:04:a9:3e:fc:6a:29:
f6:71:55:6e:85:e3:9f:1e:45:78:53:16:6e:bc:08:
48:50:5f:2b:24:e2:68:0f:34:59:69:57:e6:41:63:
f2:41:82:44:f9:be:cf:b0:7b:39:a3:e4:7c:f3:70:
14:1a:a5:87:de:24:73:79:34:45:85:48:d2:ae:12:
bc:7c:7e:3c:28:fd:ea:a7:37:1c:24:d2:c3:e8:22:
a6:68:cb:fa:13:eb:24:3e:56:9a:ef:b2:b6:c1:38:
94:8b:18:26:8c:69:50:8d:c7:47:8c:30:26:93:42:
a3:b9:47:5d:f4:fb:df:3c:fc:b3:9e:b0:a8:13:5f:
0f:11:75:f5:f0:2e:6c:48:b5:18:7b:4b:78:3c:8e:
5c:6a:a1:05:8c:92:15:33:ac:38:4f:ef:e2:5a:c0:
a8:e9:5c:ca:f1:9e:8c:40:bf:f7:ea:91:ea:97:c4:
4e:49:19:d2:74:96:bf:49:d3:ea:4a:ab:2c:56:4f:
3a:f9:67:e4:ac:c3:4d:e9:66:10:13:3d:a4:6d:a1:
69:ac:be:cd:65:8f:3c:00:ab:ff:8c:e5:34:63:33:
18:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:33:F8:C8:92:96:E9:02:B9:F3:47:5D:0E:87:4E:5F:B4:6B:B2:22
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/ljP4yJKW6QK580ddDodOX7RrsiI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.18.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:2d:a3:04:d4:9e:c9:72:ae:9d:df:3e:e9:c9:1d:35:bf:af:
67:3a:3b:ba:10:e6:ac:ec:4e:1f:04:14:78:b5:a8:5e:09:83:
00:c0:d3:99:af:14:3e:6b:31:be:5e:16:ed:7f:e1:7b:42:b4:
26:e6:1c:77:ca:a1:f6:35:86:54:3c:f3:cc:32:12:dc:2a:fa:
c5:0b:10:07:cc:83:d4:6b:94:07:33:ae:6b:f1:5d:92:12:bc:
79:83:92:2f:e2:80:82:09:a0:5b:df:e9:b9:b7:9d:1e:39:33:
a1:8c:33:62:d3:42:1e:eb:a4:66:0e:01:4e:57:68:e1:ac:3e:
e7:ee:94:e3:0b:b3:0d:53:97:01:01:5b:9f:e7:26:55:77:d8:
88:64:21:35:22:31:06:b4:1d:55:ce:79:4f:6b:94:29:9e:d7:
6d:73:63:7a:04:09:fd:57:5a:26:85:47:3b:42:d1:d5:e7:57:
a5:4b:69:9f:49:91:82:d5:eb:8e:a4:c5:9e:ef:40:c7:13:93:
fc:6c:46:a2:fe:c3:d8:e1:6e:b5:a9:b0:d9:22:7f:5c:72:5b:
43:9c:f3:32:9e:61:fe:6a:55:bc:13:da:28:47:c1:53:24:23:
c0:05:f0:08:54:75:13:ee:de:4f:02:f7:39:c9:0f:40:83:4c:
f4:a6:30:32
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYZUSBgQzk9OauZsSqB9yTe7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjMwMjE1MDg1NDE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NjMzZjhjODkyOTZlOTAyYjlmMzQ3NWQwZTg3NGU1ZmI0NmJiMjIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgEEDT/yFoukroA5Z40XNLnEL7vE5
IWOQgayhQoO0ae7mPxjefEoEqT78ain2cVVuheOfHkV4UxZuvAhIUF8rJOJoDzRZ
aVfmQWPyQYJE+b7PsHs5o+R883AUGqWH3iRzeTRFhUjSrhK8fH48KP3qpzccJNLD
6CKmaMv6E+skPlaa77K2wTiUixgmjGlQjcdHjDAmk0KjuUdd9PvfPPyznrCoE18P
EXX18C5sSLUYe0t4PI5caqEFjJIVM6w4T+/iWsCo6VzK8Z6MQL/36pHql8ROSRnS
dJa/SdPqSqssVk86+WfkrMNN6WYQEz2kbaFprL7NZY88AKv/jOU0YzMYJQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJYz+MiSlukCufNHXQ6HTl+0a7IiMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvbGpQNHlKS1c2UUs1ODBkZERvZE9YN1Jyc2lJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVoSMA0G
CSqGSIb3DQEBCwUAA4IBAQA/LaME1J7Jcq6d3z7pyR01v69nOju6EOas7E4fBBR4
taheCYMAwNOZrxQ+azG+Xhbtf+F7QrQm5hx3yqH2NYZUPPPMMhLcKvrFCxAHzIPU
a5QHM65r8V2SErx5g5Iv4oCCCaBb3+m5t50eOTOhjDNi00Ie66RmDgFOV2jhrD7n
7pTjC7MNU5cBAVuf5yZVd9iIZCE1IjEGtB1VznlPa5Qpntdtc2N6BAn9V1omhUc7
QtHV51elS2mfSZGC1euOpMWe70DHE5P8bEai/sPY4W61qbDZIn9ccltDnPMynmH+
alW8E9ooR8FTJCPABfAIVHUT7t5PAvc5yQ9Ag0z0pjAy
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org