Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/rDYBzwKc--NNy-Yb_fYZzE7cI_s.roa
File: rDYBzwKc--NNy-Yb_fYZzE7cI_s.roa (raw, json)
Hash identifier: I3nnA55IxUVMeqIO5N88Ll7+MHuYjxrK6TEyw3ExzwU=
Subject key identifier: AC:36:01:CF:02:9C:FB:E3:4D:CB:E6:1B:FD:F6:19:CC:4E:DC:23:FB
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018B2E2590EFF8720D8F64F5E60D2E576369
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/rDYBzwKc--NNy-Yb_fYZzE7cI_s.roa
Signing time: Sat 14 Oct 2023 12:24:55 +0000
ROA not before: Sat 14 Oct 2023 12:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206216
IP address blocks: 45.8.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:2e:25:90:ef:f8:72:0d:8f:64:f5:e6:0d:2e:57:63:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Oct 14 12:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac3601cf029cfbe34dcbe61bfdf619cc4edc23fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e3:a8:50:39:88:2f:5a:5b:6e:10:4c:88:3c:
fb:70:23:4d:92:72:bf:ef:41:e7:5b:9d:67:f0:c8:
29:b9:83:c0:b3:2a:7e:87:7c:7a:4a:32:28:e3:8c:
1c:09:91:a6:5a:51:94:9c:5b:2a:6b:42:cc:00:b2:
f2:ed:bb:db:7a:84:60:16:a8:4b:e1:94:a8:12:72:
49:7d:4c:77:6b:13:31:2d:fc:3c:44:72:d7:4c:10:
72:d7:7d:0b:60:62:a4:57:da:d6:29:f7:e8:39:ca:
aa:3c:55:27:0e:01:0a:d7:51:73:85:fc:be:99:ad:
d9:9a:c8:ca:32:ff:0a:2e:f6:05:71:bb:98:5b:54:
83:9e:8d:8c:6e:08:04:52:a6:d6:a0:62:cb:a8:03:
9e:c3:bb:7d:4d:67:4d:97:f9:2c:ca:47:85:a2:f0:
07:d0:70:a7:f6:37:d0:62:20:27:a5:07:e7:08:d7:
2e:d1:a1:2e:35:52:38:eb:eb:ac:1c:14:86:54:6f:
0f:c0:7a:fa:7a:5b:f7:3e:95:d2:f3:24:f7:ac:de:
f4:f6:17:14:ea:73:24:00:62:fc:fd:2d:d1:2d:e0:
88:a1:2e:36:f0:3d:ad:ff:3d:fa:92:2f:0e:55:c5:
c4:58:a5:2e:be:94:20:b9:40:db:57:f7:6d:29:fd:
c9:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:36:01:CF:02:9C:FB:E3:4D:CB:E6:1B:FD:F6:19:CC:4E:DC:23:FB
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/rDYBzwKc--NNy-Yb_fYZzE7cI_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.22.0/24
Signature Algorithm: sha256WithRSAEncryption
57:89:d6:62:86:df:fc:bb:e4:5d:c7:f3:a6:cb:be:39:f2:b4:
51:13:08:bc:67:76:59:d2:2e:b5:ac:64:5e:fb:6b:4b:6e:46:
74:85:3a:70:d6:01:fc:a9:de:b3:39:be:b5:5e:d1:64:a9:27:
21:59:54:d5:4a:8c:2f:2d:e2:9a:5f:bc:5c:76:a5:0d:9c:25:
e8:51:f8:ce:5a:ee:d5:aa:5c:f7:0b:5e:9d:43:55:f8:73:ff:
9e:48:47:1e:5f:98:51:01:3f:bf:02:c9:15:3f:c7:6d:87:96:
19:74:b9:23:38:58:bf:61:7d:fe:aa:f2:cb:41:38:ec:ae:c9:
87:20:51:ac:7a:83:ec:06:81:6c:5e:1c:71:01:0e:ee:04:07:
4c:ce:19:b0:f6:d6:a6:99:d2:ee:42:97:73:8b:1f:42:88:e1:
9e:b1:9a:b4:fa:23:27:00:87:76:52:e2:e7:fd:5c:10:4e:c8:
ab:8b:1c:90:e0:b5:3c:e4:08:9d:4e:1e:82:b0:dc:9b:83:6e:
1d:36:9f:dc:85:76:d9:d0:29:9b:5f:e5:1d:fe:59:93:98:e8:
7c:0f:1a:9b:ed:c7:b9:1d:08:84:55:a0:f4:07:8f:41:2d:c6:
d6:39:90:f5:35:f9:3e:d4:bc:f4:8a:48:5c:16:b6:5d:9f:aa:
cc:c6:1c:cc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYsuJZDv+HINj2T15g0uV2NpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjMxMDE0MTIyNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYzM2MDFjZjAyOWNmYmUzNGRjYmU2MWJmZGY2MTljYzRlZGMyM2ZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtOOoUDmIL1pbbhBMiDz7cCNNknK/
70HnW51n8MgpuYPAsyp+h3x6SjIo44wcCZGmWlGUnFsqa0LMALLy7bvbeoRgFqhL
4ZSoEnJJfUx3axMxLfw8RHLXTBBy130LYGKkV9rWKffoOcqqPFUnDgEK11Fzhfy+
ma3ZmsjKMv8KLvYFcbuYW1SDno2MbggEUqbWoGLLqAOew7t9TWdNl/ksykeFovAH
0HCn9jfQYiAnpQfnCNcu0aEuNVI46+usHBSGVG8PwHr6elv3PpXS8yT3rN709hcU
6nMkAGL8/S3RLeCIoS428D2t/z36ki8OVcXEWKUuvpQguUDbV/dtKf3J5wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKw2Ac8CnPvjTcvmG/32GcxO3CP7MB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvckRZQnp3S2MtLU5OeS1ZYl9mWVp6RTdjSV9zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQgWMA0G
CSqGSIb3DQEBCwUAA4IBAQBXidZiht/8u+Rdx/Omy7458rRREwi8Z3ZZ0i61rGRe
+2tLbkZ0hTpw1gH8qd6zOb61XtFkqSchWVTVSowvLeKaX7xcdqUNnCXoUfjOWu7V
qlz3C16dQ1X4c/+eSEceX5hRAT+/AskVP8dth5YZdLkjOFi/YX3+qvLLQTjsrsmH
IFGseoPsBoFsXhxxAQ7uBAdMzhmw9tammdLuQpdzix9CiOGesZq0+iMnAId2UuLn
/VwQTsirixyQ4LU85AidTh6CsNybg24dNp/chXbZ0CmbX+Ud/lmTmOh8Dxqb7ce5
HQiEVaD0B49BLcbWOZD1Nfk+1Lz0ikhcFrZdn6rMxhzM
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:29 2024 by rpki-client on console-ams.rpki-client.org