Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/K9MdtgOwdJ_qrxueXTHpTF_nV5w.roa
File: K9MdtgOwdJ_qrxueXTHpTF_nV5w.roa (raw, json)
Hash identifier: 7BvpbRfpkb0wRtA9+0oP0upKtMN1n/4oVI1GOzktgyU=
Subject key identifier: 2B:D3:1D:B6:03:B0:74:9F:EA:AF:1B:9E:5D:31:E9:4C:5F:E7:57:9C
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 01926BF29246C59ED6C99128B22A299DE1A0
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/K9MdtgOwdJ_qrxueXTHpTF_nV5w.roa
Signing time: Tue 08 Oct 2024 11:45:12 +0000
ROA not before: Tue 08 Oct 2024 11:45:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47436
IP address blocks: 45.147.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 09 Oct 2024 20:36:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:6b:f2:92:46:c5:9e:d6:c9:91:28:b2:2a:29:9d:e1:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Oct 8 11:45:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2bd31db603b0749feaaf1b9e5d31e94c5fe7579c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:72:e7:6b:2e:f8:38:f0:5d:be:12:08:85:12:
94:52:fb:b1:bd:3a:bc:3e:5e:f5:e4:92:2f:57:52:
ff:61:15:39:91:a6:1c:76:5a:ec:02:48:13:02:6a:
a4:f4:35:31:52:21:13:d8:b6:80:dd:a4:83:1c:91:
12:59:d0:69:6b:06:f3:76:f2:04:4f:a9:5f:2a:9a:
83:1c:d8:9b:bc:86:35:34:2c:4d:78:9e:8e:90:af:
e3:1f:d6:9a:95:65:7b:0a:e6:35:51:83:f4:d0:8c:
a5:ba:b4:98:2c:ec:0c:18:ae:97:f7:1d:7b:5d:1f:
6f:70:89:70:92:33:78:cd:95:78:ae:71:55:3a:1d:
dc:89:fa:aa:c6:a2:ae:58:37:44:f8:60:86:b9:d8:
4f:0a:ea:a5:25:bf:b9:b3:78:dd:c9:71:b1:cb:31:
f2:cd:d7:63:29:12:32:b1:0b:cd:8d:58:32:d1:76:
13:d7:ae:b0:1f:6f:a2:d8:bc:82:2b:f5:b5:8b:97:
92:ae:26:41:03:e5:eb:41:36:b9:02:08:a8:75:13:
b5:81:8c:f1:03:3b:8b:05:41:71:a2:90:60:23:8d:
7b:7f:2b:ca:fb:54:77:7a:09:cf:48:b2:eb:b9:7c:
92:6b:6d:f0:3a:40:75:99:14:3b:91:4e:0f:56:be:
a6:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:D3:1D:B6:03:B0:74:9F:EA:AF:1B:9E:5D:31:E9:4C:5F:E7:57:9C
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/K9MdtgOwdJ_qrxueXTHpTF_nV5w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.45.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:88:a4:72:ff:07:b5:70:b7:2c:dd:76:6f:3c:78:3c:84:10:
ac:75:db:16:3d:51:b7:aa:92:e1:76:2f:45:b2:c4:61:d4:3d:
6a:96:fa:51:f4:cd:87:85:ee:a4:70:b4:78:b8:78:71:1a:29:
05:e7:96:40:0e:49:aa:68:0d:47:1b:f2:a7:84:df:c6:af:89:
4b:39:a8:79:b1:59:c3:14:f4:d6:cf:3c:c1:03:2d:13:31:28:
4e:38:d3:06:b0:f9:78:31:56:30:c9:20:ec:d3:9e:d0:fb:45:
43:76:71:5f:d8:5d:44:5a:b9:ff:47:5e:9d:ce:a0:89:aa:a6:
1d:85:a0:81:a4:a7:05:a5:1b:02:3c:04:85:91:d5:7f:8d:54:
e5:18:1b:53:23:d6:2f:15:79:f9:4d:ea:c6:33:a4:e7:fd:69:
30:b6:f4:58:6b:47:81:46:ad:74:39:2f:39:1b:5c:94:8d:e5:
58:a0:a4:95:84:bb:c2:7d:62:12:74:0d:da:4c:e2:12:64:c2:
72:39:9b:e8:59:56:fc:71:70:f8:e2:dc:1c:a7:c0:4e:de:40:
d1:b3:57:c7:c7:1d:fd:90:5b:39:90:3a:ff:7b:53:a2:84:57:
06:b3:ec:12:3b:db:6d:d4:dd:0b:d2:df:c2:85:1d:b7:cc:3f:
a7:d4:03:57
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZJr8pJGxZ7WyZEosiopneGgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ4MDVmMTdjMmQ3MTMzZDJkYWQzYThkZjdlMzUzMTVlMzdl
ZjVkYWYwHhcNMjQxMDA4MTE0NTEyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYmQzMWRiNjAzYjA3NDlmZWFhZjFiOWU1ZDMxZTk0YzVmZTc1NzljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz3Lnay74OPBdvhIIhRKUUvuxvTq8
Pl715JIvV1L/YRU5kaYcdlrsAkgTAmqk9DUxUiET2LaA3aSDHJESWdBpawbzdvIE
T6lfKpqDHNibvIY1NCxNeJ6OkK/jH9aalWV7CuY1UYP00IylurSYLOwMGK6X9x17
XR9vcIlwkjN4zZV4rnFVOh3cifqqxqKuWDdE+GCGudhPCuqlJb+5s3jdyXGxyzHy
zddjKRIysQvNjVgy0XYT166wH2+i2LyCK/W1i5eSriZBA+XrQTa5AgiodRO1gYzx
AzuLBUFxopBgI417fyvK+1R3egnPSLLruXySa23wOkB1mRQ7kU4PVr6mYQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCvTHbYDsHSf6q8bnl0x6Uxf51ecMB8GA1UdIwQY
MBaAFEgF8XwtcTPS2tOo3341MV43712vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU0FYeGZDMXhNOUxhMDZqZmZqVXhYamZ2WGE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi84ZTA3ZGQtNGZlNS00ODIwLWJjYmUt
NWRkNmUyMmViYWIwLzEvSzlNZHRnT3dkSl9xcnh1ZVhUSHBURl9uVjV3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi84ZTA3ZGQtNGZlNS00ODIwLWJjYmUtNWRkNmUyMmViYWIw
LzEvU0FYeGZDMXhNOUxhMDZqZmZqVXhYamZ2WGE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZMtMA0G
CSqGSIb3DQEBCwUAA4IBAQAviKRy/we1cLcs3XZvPHg8hBCsddsWPVG3qpLhdi9F
ssRh1D1qlvpR9M2Hhe6kcLR4uHhxGikF55ZADkmqaA1HG/KnhN/Gr4lLOah5sVnD
FPTWzzzBAy0TMShOONMGsPl4MVYwySDs057Q+0VDdnFf2F1EWrn/R16dzqCJqqYd
haCBpKcFpRsCPASFkdV/jVTlGBtTI9YvFXn5TerGM6Tn/WkwtvRYa0eBRq10OS85
G1yUjeVYoKSVhLvCfWISdA3aTOISZMJyOZvoWVb8cXD44twcp8BO3kDRs1fHxx39
kFs5kDr/e1OihFcGs+wSO9tt1N0L0t/ChR23zD+n1ANX
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:44:49 2025 by rpki-client