Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/0d8be8-b4b4-436e-86e2-ba4c56d8c0ce/1/rDZK7tW2iPQw_IcxRUlYMQITyuk.roa
File: rDZK7tW2iPQw_IcxRUlYMQITyuk.roa (raw, json)
Hash identifier: AIbnqPnvcMAV3eyh0vZw8pbdnDJ1PhLmNXLQ+iy4w5o=
Subject key identifier: AC:36:4A:EE:D5:B6:88:F4:30:FC:87:31:45:49:58:31:02:13:CA:E9
Certificate issuer: /CN=e1b9a3ce0f593910819c3271e1e8d0bd1371a6be
Certificate serial: 018C9156DEEC3BAF201F61004EF3B45FA46E
Authority key identifier: E1:B9:A3:CE:0F:59:39:10:81:9C:32:71:E1:E8:D0:BD:13:71:A6:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4bmjzg9ZORCBnDJx4ejQvRNxpr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/0d8be8-b4b4-436e-86e2-ba4c56d8c0ce/1/rDZK7tW2iPQw_IcxRUlYMQITyuk.roa
Signing time: Fri 22 Dec 2023 11:43:58 +0000
ROA not before: Fri 22 Dec 2023 11:43:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51809
IP address blocks: 45.157.124.0/22 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:91:56:de:ec:3b:af:20:1f:61:00:4e:f3:b4:5f:a4:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1b9a3ce0f593910819c3271e1e8d0bd1371a6be
Validity
Not Before: Dec 22 11:43:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac364aeed5b688f430fc8731454958310213cae9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ae:21:8e:f9:b6:6b:9f:4a:1e:fe:2e:8a:d1:
ef:68:fc:ae:21:e3:69:b0:ed:b6:ed:fc:fd:1a:60:
86:80:b6:b5:06:bb:37:d0:71:5d:b6:11:48:da:fb:
51:61:80:f0:5c:a7:f5:d9:a3:c7:bc:48:3c:7b:2e:
37:4b:9e:f6:e0:3c:08:5c:3e:01:1b:cc:ea:5c:99:
5b:97:10:3b:0f:09:c3:37:44:3f:0c:05:ba:80:72:
dd:46:5e:45:80:c1:be:a9:40:b3:a7:25:0a:7b:1d:
d1:be:74:9e:00:6e:13:e0:4a:03:e0:ac:b7:f6:6f:
c7:fa:cd:66:fc:ff:b2:f0:84:9f:eb:33:3c:b5:3f:
25:41:91:e4:a9:1f:a3:5c:56:3f:15:6b:52:71:05:
5e:aa:fc:83:1a:ad:3b:e5:28:7d:fa:a2:d3:24:2b:
8d:cb:d7:f4:f0:ea:b8:a6:aa:17:48:96:48:6a:a9:
f4:bd:b1:03:af:ee:08:2f:6a:00:7c:b6:2d:8b:f0:
66:43:96:ef:58:51:d7:79:e5:57:2b:d7:8a:bb:7e:
a5:21:f4:cd:eb:50:3a:19:88:d3:45:60:99:25:b6:
21:33:33:e3:e9:45:7a:fe:02:c2:06:bc:3e:0d:e3:
23:a7:8c:c1:49:47:6a:0a:e9:05:81:c9:54:df:98:
14:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:36:4A:EE:D5:B6:88:F4:30:FC:87:31:45:49:58:31:02:13:CA:E9
X509v3 Authority Key Identifier:
keyid:E1:B9:A3:CE:0F:59:39:10:81:9C:32:71:E1:E8:D0:BD:13:71:A6:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4bmjzg9ZORCBnDJx4ejQvRNxpr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/0d8be8-b4b4-436e-86e2-ba4c56d8c0ce/1/rDZK7tW2iPQw_IcxRUlYMQITyuk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/0d8be8-b4b4-436e-86e2-ba4c56d8c0ce/1/4bmjzg9ZORCBnDJx4ejQvRNxpr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.124.0/22
Signature Algorithm: sha256WithRSAEncryption
13:17:8e:80:79:b2:74:ce:30:00:9c:e0:60:d7:4a:d6:ea:d3:
f5:aa:5c:4d:8b:c0:d9:d0:f8:f8:33:7f:b7:b3:6a:cb:d5:c4:
1e:da:25:55:0e:18:4c:af:30:63:7a:0c:b4:65:8c:b3:e4:83:
f1:f9:65:fe:3d:6a:43:32:c0:10:ee:1b:d8:1e:a6:e7:2a:9d:
06:c7:60:2f:8c:1e:70:94:2d:80:d3:8e:11:e4:02:31:70:79:
96:58:f3:29:66:5b:24:4c:77:cb:20:7a:88:f8:8b:0b:84:80:
da:df:83:d7:aa:78:ce:f8:13:db:17:7f:ba:b0:cb:65:ab:a6:
f4:21:2d:7f:5c:81:cd:9e:6e:d7:f6:c1:5c:d1:cd:ba:89:6e:
9e:ef:32:94:7d:c3:4e:0d:15:23:34:bf:48:3e:a5:31:1e:5c:
8c:31:04:2f:06:2d:a2:63:04:04:8f:28:ee:4e:df:36:96:4b:
0a:04:32:48:75:2a:34:ff:f4:7c:f5:81:9c:b4:ec:70:44:0b:
8e:0f:c9:94:eb:57:2a:18:b2:d2:7d:3c:7a:53:70:96:db:51:
49:cb:1d:bb:7e:a3:9f:31:e0:45:a9:b1:e2:86:21:ee:e7:67:
f0:a7:f9:2d:00:67:40:7d:8d:0c:7a:94:f1:9e:b7:50:2f:83:
ae:6d:0e:16
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYyRVt7sO68gH2EATvO0X6RuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUxYjlhM2NlMGY1OTM5MTA4MTljMzI3MWUxZThkMGJkMTM3
MWE2YmUwHhcNMjMxMjIyMTE0MzU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYzM2NGFlZWQ1YjY4OGY0MzBmYzg3MzE0NTQ5NTgzMTAyMTNjYWU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnq4hjvm2a59KHv4uitHvaPyuIeNp
sO227fz9GmCGgLa1Brs30HFdthFI2vtRYYDwXKf12aPHvEg8ey43S5724DwIXD4B
G8zqXJlblxA7DwnDN0Q/DAW6gHLdRl5FgMG+qUCzpyUKex3RvnSeAG4T4EoD4Ky3
9m/H+s1m/P+y8ISf6zM8tT8lQZHkqR+jXFY/FWtScQVeqvyDGq075Sh9+qLTJCuN
y9f08Oq4pqoXSJZIaqn0vbEDr+4IL2oAfLYti/BmQ5bvWFHXeeVXK9eKu36lIfTN
61A6GYjTRWCZJbYhMzPj6UV6/gLCBrw+DeMjp4zBSUdqCukFgclU35gUJwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKw2Su7Vtoj0MPyHMUVJWDECE8rpMB8GA1UdIwQY
MBaAFOG5o84PWTkQgZwyceHo0L0Tcaa+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNGJtanpnOVpPUkNCbkRKeDRlalF2Uk54cHI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC8wZDhiZTgtYjRiNC00MzZlLTg2ZTIt
YmE0YzU2ZDhjMGNlLzEvckRaSzd0VzJpUFF3X0ljeFJVbFlNUUlUeXVrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC8wZDhiZTgtYjRiNC00MzZlLTg2ZTItYmE0YzU2ZDhjMGNl
LzEvNGJtanpnOVpPUkNCbkRKeDRlalF2Uk54cHI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLZ18MA0G
CSqGSIb3DQEBCwUAA4IBAQATF46AebJ0zjAAnOBg10rW6tP1qlxNi8DZ0Pj4M3+3
s2rL1cQe2iVVDhhMrzBjegy0ZYyz5IPx+WX+PWpDMsAQ7hvYHqbnKp0Gx2AvjB5w
lC2A044R5AIxcHmWWPMpZlskTHfLIHqI+IsLhIDa34PXqnjO+BPbF3+6sMtlq6b0
IS1/XIHNnm7X9sFc0c26iW6e7zKUfcNODRUjNL9IPqUxHlyMMQQvBi2iYwQEjyju
Tt82lksKBDJIdSo0//R89YGctOxwRAuOD8mU61cqGLLSfTx6U3CW21FJyx27fqOf
MeBFqbHihiHu52fwp/ktAGdAfY0MepTxnrdQL4OubQ4W
-----END CERTIFICATE-----
Generated at Mon Jan 1 17:26:30 2024 by rpki-client on console-fra.rpki-client.org