Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/6ade9b-3216-4fef-8049-f3e24e075e35/1/WPuFu9iKlh0KHXstbpmWsJxivI0.roa
File: WPuFu9iKlh0KHXstbpmWsJxivI0.roa (raw, json)
Hash identifier: xSQOsczATccSzYk2xE2A0MukRtA9NcufCqH3l/OEedk=
Subject key identifier: 58:FB:85:BB:D8:8A:96:1D:0A:1D:7B:2D:6E:99:96:B0:9C:62:BC:8D
Certificate issuer: /CN=ed3ff7836530d1c474f4d088b6b36224fbf6982d
Certificate serial: 01856D541981ED5A49CCDF82834214339575
Authority key identifier: ED:3F:F7:83:65:30:D1:C4:74:F4:D0:88:B6:B3:62:24:FB:F6:98:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7T_3g2Uw0cR09NCItrNiJPv2mC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/6ade9b-3216-4fef-8049-f3e24e075e35/1/WPuFu9iKlh0KHXstbpmWsJxivI0.roa
Signing time: Sun 01 Jan 2023 12:35:06 +0000
ROA not before: Sun 01 Jan 2023 12:35:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 45.88.31.0/24 maxlen: 24
45.88.28.0/24 maxlen: 24
45.88.30.0/24 maxlen: 24
45.88.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:54:19:81:ed:5a:49:cc:df:82:83:42:14:33:95:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed3ff7836530d1c474f4d088b6b36224fbf6982d
Validity
Not Before: Jan 1 12:35:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=58fb85bbd88a961d0a1d7b2d6e9996b09c62bc8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d9:5c:11:8f:07:a3:ed:d1:02:c8:32:3a:51:
a9:e4:e1:b3:60:45:56:af:b3:40:50:1f:2d:30:8f:
f0:fe:9f:ec:e4:a9:c1:04:45:7e:64:95:9c:a2:20:
4b:cf:fc:2f:99:aa:72:54:82:0e:6e:38:8c:c1:79:
6a:8e:d9:a6:b8:52:50:8b:26:00:40:58:23:29:90:
f7:19:c1:25:5b:e3:74:7f:db:14:e7:b0:cd:6b:45:
42:e8:6d:ac:be:df:46:8c:d7:c1:b1:15:b7:0e:e6:
5e:2a:fe:eb:0d:2d:7d:bc:fd:be:7e:d0:7c:2a:ea:
78:73:c8:75:43:75:60:f4:8c:f2:f5:66:45:43:3c:
27:c1:1e:4f:d0:1e:70:f2:51:ff:1f:04:7a:db:5d:
70:f4:4b:cb:72:53:99:f6:9e:d8:89:dc:01:fb:12:
b3:65:63:c2:36:4e:da:bb:8e:69:61:d6:12:8f:3e:
35:5e:85:b9:d5:1b:d6:89:ce:1f:80:49:d9:a1:20:
19:bc:bf:53:69:ce:e4:9f:1d:40:f3:03:87:51:26:
73:7e:25:23:83:6b:c9:b1:10:be:d5:a6:fd:12:b3:
9f:67:43:61:f9:78:68:51:cd:13:0f:15:cd:1a:8d:
d8:7b:98:e9:cb:74:eb:d5:c9:d1:1a:3b:06:95:06:
34:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:FB:85:BB:D8:8A:96:1D:0A:1D:7B:2D:6E:99:96:B0:9C:62:BC:8D
X509v3 Authority Key Identifier:
keyid:ED:3F:F7:83:65:30:D1:C4:74:F4:D0:88:B6:B3:62:24:FB:F6:98:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7T_3g2Uw0cR09NCItrNiJPv2mC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/6ade9b-3216-4fef-8049-f3e24e075e35/1/WPuFu9iKlh0KHXstbpmWsJxivI0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/6ade9b-3216-4fef-8049-f3e24e075e35/1/7T_3g2Uw0cR09NCItrNiJPv2mC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.28.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:a0:26:e9:62:1c:80:03:87:8e:ed:d8:cb:f2:78:41:06:85:
b7:25:59:4b:ed:de:78:f9:31:83:79:b3:84:40:0c:61:42:da:
fd:96:fb:53:6c:ee:d8:7b:13:e3:9e:25:c5:2f:8e:3c:40:61:
bf:1f:6c:c9:70:d0:ad:d6:23:83:9c:be:3b:77:e9:ac:73:28:
41:23:7f:90:11:5c:27:cf:95:87:52:f0:a9:13:1f:87:7d:c1:
b2:7c:a4:e3:02:a7:a6:0d:b2:54:fa:ad:c4:81:27:bf:ea:4a:
27:9a:c7:d4:c0:d2:ad:dd:fb:48:97:95:97:90:63:84:cc:58:
15:da:5e:65:0b:0a:b2:c7:8c:a1:48:61:17:9d:e6:23:0b:2d:
86:88:de:f7:c5:ad:8a:cc:65:73:16:98:96:09:68:60:63:f5:
16:48:5b:ff:13:d4:83:a1:89:09:d3:86:e0:80:9c:d1:69:a8:
ac:7e:76:fa:dd:92:1d:d5:b6:65:38:89:f4:3a:fc:94:39:14:
9b:22:43:51:f9:45:60:0c:4a:8f:d9:14:8f:9c:10:21:3e:3f:
85:41:19:67:6c:0d:b8:ed:e5:f1:6b:3f:b9:38:ee:e1:e2:78:
57:b4:e8:02:b7:f4:dd:cc:2b:e4:76:f3:f5:c5:32:ed:f3:ed:
94:6d:2f:c8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtVBmB7VpJzN+Cg0IUM5V1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVkM2ZmNzgzNjUzMGQxYzQ3NGY0ZDA4OGI2YjM2MjI0ZmJm
Njk4MmQwHhcNMjMwMTAxMTIzNTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OGZiODViYmQ4OGE5NjFkMGExZDdiMmQ2ZTk5OTZiMDljNjJiYzhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArdlcEY8Ho+3RAsgyOlGp5OGzYEVW
r7NAUB8tMI/w/p/s5KnBBEV+ZJWcoiBLz/wvmapyVIIObjiMwXlqjtmmuFJQiyYA
QFgjKZD3GcElW+N0f9sU57DNa0VC6G2svt9GjNfBsRW3DuZeKv7rDS19vP2+ftB8
Kup4c8h1Q3Vg9Izy9WZFQzwnwR5P0B5w8lH/HwR6211w9EvLclOZ9p7YidwB+xKz
ZWPCNk7au45pYdYSjz41XoW51RvWic4fgEnZoSAZvL9Tac7knx1A8wOHUSZzfiUj
g2vJsRC+1ab9ErOfZ0Nh+XhoUc0TDxXNGo3Ye5jpy3Tr1cnRGjsGlQY04QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFj7hbvYipYdCh17LW6ZlrCcYryNMB8GA1UdIwQY
MBaAFO0/94NlMNHEdPTQiLazYiT79pgtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN1RfM2cyVXcwY1IwOU5DSXRyTmlKUHYybUMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS82YWRlOWItMzIxNi00ZmVmLTgwNDkt
ZjNlMjRlMDc1ZTM1LzEvV1B1RnU5aUtsaDBLSFhzdGJwbVdzSnhpdkkwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNS82YWRlOWItMzIxNi00ZmVmLTgwNDktZjNlMjRlMDc1ZTM1
LzEvN1RfM2cyVXcwY1IwOU5DSXRyTmlKUHYybUMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLVgcMA0G
CSqGSIb3DQEBCwUAA4IBAQBuoCbpYhyAA4eO7djL8nhBBoW3JVlL7d54+TGDebOE
QAxhQtr9lvtTbO7YexPjniXFL448QGG/H2zJcNCt1iODnL47d+mscyhBI3+QEVwn
z5WHUvCpEx+HfcGyfKTjAqemDbJU+q3EgSe/6konmsfUwNKt3ftIl5WXkGOEzFgV
2l5lCwqyx4yhSGEXneYjCy2GiN73xa2KzGVzFpiWCWhgY/UWSFv/E9SDoYkJ04bg
gJzRaaisfnb63ZId1bZlOIn0OvyUORSbIkNR+UVgDEqP2RSPnBAhPj+FQRlnbA24
7eXxaz+5OO7h4nhXtOgCt/TdzCvkdvP1xTLt8+2UbS/I
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:29 2024 by rpki-client on console-ams.rpki-client.org