Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/ec583d-1aba-4798-8817-d6c9c6e86923/1/JKE8RatuxrfaeIB3VaDuou66t2E.roa
File: JKE8RatuxrfaeIB3VaDuou66t2E.roa (raw, json)
Hash identifier: 4vyMDAsxIQGCLeHZIjuUcoCs16SLIe7yn9SQikCTWcg=
Subject key identifier: 24:A1:3C:45:AB:6E:C6:B7:DA:78:80:77:55:A0:EE:A2:EE:BA:B7:61
Certificate issuer: /CN=83286fa6da7d252e7828f84923f55919142b007f
Certificate serial: 01856F547996C5E0ADA9877AE70291C46431
Authority key identifier: 83:28:6F:A6:DA:7D:25:2E:78:28:F8:49:23:F5:59:19:14:2B:00:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gyhvptp9JS54KPhJI_VZGRQrAH8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/ec583d-1aba-4798-8817-d6c9c6e86923/1/JKE8RatuxrfaeIB3VaDuou66t2E.roa
Signing time: Sun 01 Jan 2023 21:54:45 +0000
ROA not before: Sun 01 Jan 2023 21:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208169
IP address blocks: 45.151.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:79:96:c5:e0:ad:a9:87:7a:e7:02:91:c4:64:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83286fa6da7d252e7828f84923f55919142b007f
Validity
Not Before: Jan 1 21:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=24a13c45ab6ec6b7da78807755a0eea2eebab761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:da:d8:28:13:10:84:f9:0a:bb:17:27:a0:5f:
84:6c:f6:1e:c0:11:0c:07:2f:84:2f:5f:c2:cb:1b:
79:87:ed:3c:ce:d5:3e:63:c4:4f:99:1b:fe:94:bc:
77:52:a5:d0:10:03:6f:ca:62:b4:76:85:a7:fa:bf:
9b:0f:b7:b6:ad:2f:eb:23:1d:58:cf:dc:9f:ca:0a:
36:6e:51:47:d2:6f:9b:9b:fc:21:6f:19:2b:93:b7:
ad:a7:c6:af:5c:3d:47:9a:73:f2:e4:87:b2:45:01:
0f:a2:43:cf:1d:15:4c:78:71:30:6b:c0:28:43:dc:
4f:26:83:11:c7:ef:cb:b6:ca:29:79:a9:de:e3:c4:
e9:d6:a9:dd:09:e3:9d:7b:45:80:03:08:d9:ca:ad:
3f:c6:12:75:70:81:12:1b:e8:e2:ff:f6:ba:16:cb:
dd:22:ef:ce:57:2e:60:f8:5a:d0:48:c3:26:98:dc:
1f:84:2b:58:db:21:b0:20:2e:d6:f5:f3:8a:8d:90:
0b:09:e6:83:65:6c:3c:61:d5:bc:10:a6:6b:e7:5f:
3f:69:43:29:d8:b5:c3:e7:5a:ea:40:5b:bd:16:bc:
98:d7:3d:b0:40:93:45:2b:b5:28:b4:c6:1e:78:74:
aa:a7:02:8d:24:22:d2:25:93:f0:99:bb:7b:05:60:
c9:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:A1:3C:45:AB:6E:C6:B7:DA:78:80:77:55:A0:EE:A2:EE:BA:B7:61
X509v3 Authority Key Identifier:
keyid:83:28:6F:A6:DA:7D:25:2E:78:28:F8:49:23:F5:59:19:14:2B:00:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gyhvptp9JS54KPhJI_VZGRQrAH8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ec583d-1aba-4798-8817-d6c9c6e86923/1/JKE8RatuxrfaeIB3VaDuou66t2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ec583d-1aba-4798-8817-d6c9c6e86923/1/gyhvptp9JS54KPhJI_VZGRQrAH8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.167.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:0c:3a:3d:e1:a1:91:8d:1d:10:3d:a7:b0:60:9c:79:32:db:
c7:c9:5a:16:0b:e7:22:cb:69:45:e6:47:6d:60:b8:91:8f:a5:
a4:0a:04:02:32:1b:f4:c1:6b:db:98:df:f9:be:6e:33:3e:81:
22:ac:8d:3a:f3:37:69:8b:dd:4c:b9:cc:f7:5e:49:15:38:8c:
34:4d:53:c4:ff:b5:14:eb:ae:bc:5a:ca:91:69:43:41:bf:87:
15:4b:8b:ba:dc:32:55:ea:92:f9:d9:c0:7b:f2:b8:99:ac:75:
b6:ee:8a:96:c0:c1:aa:af:ff:d6:ad:cf:17:3b:8f:08:79:6e:
29:cb:fc:9b:c7:a8:f6:6a:8d:ab:78:d9:d0:af:d0:b4:c5:3d:
f7:09:bd:61:4f:99:2c:3d:ed:44:f1:d0:f4:95:bc:ed:e9:6b:
75:35:1f:a0:a1:7f:d8:58:88:6e:ce:9c:43:8f:18:99:11:f8:
79:cd:e5:e6:5a:ee:bd:90:22:7e:98:0d:95:2e:57:e6:ee:f1:
40:37:7e:eb:f5:22:05:30:23:16:69:54:df:6d:d4:53:56:b5:
3d:9e:21:1c:8a:6b:64:a9:87:db:ac:5c:aa:05:a2:81:de:8a:
b7:48:84:0b:54:7e:b4:4e:88:a1:21:72:4d:e0:d7:b3:a6:5d:
dd:22:2f:83
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvVHmWxeCtqYd65wKRxGQxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzMjg2ZmE2ZGE3ZDI1MmU3ODI4Zjg0OTIzZjU1OTE5MTQy
YjAwN2YwHhcNMjMwMTAxMjE1NDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNGExM2M0NWFiNmVjNmI3ZGE3ODgwNzc1NWEwZWVhMmVlYmFiNzYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApNrYKBMQhPkKuxcnoF+EbPYewBEM
By+EL1/Cyxt5h+08ztU+Y8RPmRv+lLx3UqXQEANvymK0doWn+r+bD7e2rS/rIx1Y
z9yfygo2blFH0m+bm/whbxkrk7etp8avXD1HmnPy5IeyRQEPokPPHRVMeHEwa8Ao
Q9xPJoMRx+/Ltsopeane48Tp1qndCeOde0WAAwjZyq0/xhJ1cIESG+ji//a6Fsvd
Iu/OVy5g+FrQSMMmmNwfhCtY2yGwIC7W9fOKjZALCeaDZWw8YdW8EKZr518/aUMp
2LXD51rqQFu9FryY1z2wQJNFK7UotMYeeHSqpwKNJCLSJZPwmbt7BWDJFwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCShPEWrbsa32niAd1Wg7qLuurdhMB8GA1UdIwQY
MBaAFIMob6bafSUueCj4SSP1WRkUKwB/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3lodnB0cDlKUzU0S1BoSklfVlpHUlFyQUg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS9lYzU4M2QtMWFiYS00Nzk4LTg4MTct
ZDZjOWM2ZTg2OTIzLzEvSktFOFJhdHV4cmZhZUlCM1ZhRHVvdTY2dDJFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS9lYzU4M2QtMWFiYS00Nzk4LTg4MTctZDZjOWM2ZTg2OTIz
LzEvZ3lodnB0cDlKUzU0S1BoSklfVlpHUlFyQUg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZenMA0G
CSqGSIb3DQEBCwUAA4IBAQCiDDo94aGRjR0QPaewYJx5MtvHyVoWC+ciy2lF5kdt
YLiRj6WkCgQCMhv0wWvbmN/5vm4zPoEirI068zdpi91Mucz3XkkVOIw0TVPE/7UU
6668WsqRaUNBv4cVS4u63DJV6pL52cB78riZrHW27oqWwMGqr//Wrc8XO48IeW4p
y/ybx6j2ao2reNnQr9C0xT33Cb1hT5ksPe1E8dD0lbzt6Wt1NR+goX/YWIhuzpxD
jxiZEfh5zeXmWu69kCJ+mA2VLlfm7vFAN37r9SIFMCMWaVTfbdRTVrU9niEcimtk
qYfbrFyqBaKB3oq3SIQLVH60ToihIXJN4Nezpl3dIi+D
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:14 2024 by rpki-client on console-ams.rpki-client.org