Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/4VNtXzQklEJJPVFWqyHRa5WvWk8.roa
File: 4VNtXzQklEJJPVFWqyHRa5WvWk8.roa (raw, json)
Hash identifier: WuIOEpl3Ahr91VuNeD7ohWRgeN1rdETqL3bMyu4sRB0=
Subject key identifier: E1:53:6D:5F:34:24:94:42:49:3D:51:56:AB:21:D1:6B:95:AF:5A:4F
Certificate issuer: /CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Certificate serial: 018B42C2D4253008E0084B327568F0C09942
Authority key identifier: 5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/4VNtXzQklEJJPVFWqyHRa5WvWk8.roa
Signing time: Wed 18 Oct 2023 12:29:06 +0000
ROA not before: Wed 18 Oct 2023 12:29:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.157.92.0/24 maxlen: 24
45.157.93.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:42:c2:d4:25:30:08:e0:08:4b:32:75:68:f0:c0:99:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Validity
Not Before: Oct 18 12:29:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e1536d5f34249442493d5156ab21d16b95af5a4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b4:6e:96:4d:98:50:5d:2b:86:90:05:e1:36:
f3:36:73:5e:7b:a8:3a:eb:b3:8a:57:15:95:eb:79:
74:bb:c8:d8:4f:19:b2:18:ea:99:09:3a:4a:3c:8f:
8b:dc:e5:7a:3d:35:ee:2c:e2:26:61:f6:5c:d0:cb:
21:be:91:d6:b9:46:93:a1:dc:d1:c1:c5:c6:83:ee:
86:c1:1a:bc:28:6a:96:4e:2f:9d:23:0e:be:af:ad:
7d:e8:57:cf:ea:4e:5f:b7:fe:2c:23:a2:a2:fb:ca:
69:5f:7c:94:f4:f6:4e:0b:a3:54:37:51:1a:28:0a:
69:56:b3:3b:59:47:27:ea:80:75:68:d4:3f:96:50:
3e:6d:60:78:d0:69:8b:a8:0a:1a:20:cf:2e:65:14:
71:ed:93:ea:01:af:c3:62:d1:65:d4:bc:60:20:a2:
f7:5c:94:c0:65:d8:7c:bd:a7:70:b1:8f:5d:80:c3:
58:85:1e:fb:69:4d:6f:3b:d1:04:fa:ce:30:6c:86:
6a:51:34:5b:11:ba:72:ea:0f:69:ce:1f:39:c5:9e:
c6:d1:c8:ec:d5:98:2e:29:ea:40:84:30:a6:af:c9:
0e:05:fa:72:19:1c:1c:a9:f1:4e:81:47:ec:6b:97:
9a:27:4f:dc:4e:71:f4:29:33:56:9a:f9:2b:bf:fd:
fa:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:53:6D:5F:34:24:94:42:49:3D:51:56:AB:21:D1:6B:95:AF:5A:4F
X509v3 Authority Key Identifier:
keyid:5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/4VNtXzQklEJJPVFWqyHRa5WvWk8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.92.0/23
Signature Algorithm: sha256WithRSAEncryption
c4:88:96:9e:0c:26:40:99:19:be:dc:db:aa:f3:2c:f5:4d:d9:
02:6a:d7:15:ea:d7:f2:8a:d0:c7:3b:6d:18:8c:bc:d7:db:35:
10:c0:05:e3:46:52:a5:e1:72:54:17:55:bc:49:29:fb:46:cf:
f3:1d:49:9f:a5:dc:42:5a:6e:27:41:fb:86:5f:78:73:ee:9d:
8d:97:2f:79:3c:71:26:e5:2a:e2:50:43:71:f6:48:6e:b2:65:
e3:ba:fc:c8:b4:a1:f0:65:48:91:92:8e:87:47:d1:c9:c9:2e:
50:c0:36:0f:4e:1b:b5:e9:53:33:a7:23:63:f0:b5:de:3a:90:
74:1c:e0:39:59:bf:de:da:35:9f:bb:50:87:e6:62:7a:b3:e2:
01:84:71:c7:67:f8:dd:7e:24:dc:de:bb:72:f9:2c:5a:79:e7:
ec:51:f7:8c:17:28:ec:ca:67:dd:f8:3c:ed:36:9a:5a:4d:56:
07:e3:9b:e2:71:5d:58:f6:96:ef:09:1a:8b:a3:3a:22:9d:b6:
4f:7e:2c:18:2e:bc:f9:59:44:42:d0:e7:7f:b1:96:24:d1:05:
a9:51:69:fd:d5:e7:cb:ee:9b:e7:bc:01:24:9a:fe:42:37:c5:
95:ec:af:bd:34:a3:bd:7f:1c:a3:95:6a:9d:52:c0:c2:f5:b5:
2e:06:e8:4d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYtCwtQlMAjgCEsydWjwwJlCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDViMmRkOWZlNjI4YjZiYzEwMTQxZGUwMjQxNzY2YTFiN2E2
MzE5M2YwHhcNMjMxMDE4MTIyOTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMTUzNmQ1ZjM0MjQ5NDQyNDkzZDUxNTZhYjIxZDE2Yjk1YWY1YTRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqrRulk2YUF0rhpAF4TbzNnNee6g6
67OKVxWV63l0u8jYTxmyGOqZCTpKPI+L3OV6PTXuLOImYfZc0MshvpHWuUaTodzR
wcXGg+6GwRq8KGqWTi+dIw6+r6196FfP6k5ft/4sI6Ki+8ppX3yU9PZOC6NUN1Ea
KAppVrM7WUcn6oB1aNQ/llA+bWB40GmLqAoaIM8uZRRx7ZPqAa/DYtFl1LxgIKL3
XJTAZdh8vadwsY9dgMNYhR77aU1vO9EE+s4wbIZqUTRbEbpy6g9pzh85xZ7G0cjs
1ZguKepAhDCmr8kOBfpyGRwcqfFOgUfsa5eaJ0/cTnH0KTNWmvkrv/36LwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOFTbV80JJRCST1RVqsh0WuVr1pPMB8GA1UdIwQY
MBaAFFst2f5ii2vBAUHeAkF2aht6Yxk/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV3kzWl9tS0xhOEVCUWQ0Q1FYWnFHM3BqR1Q4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi80ZGU4ODktZGM5ZC00MWU1LWIzYWEt
MGQ3YjU1MWY4MjhjLzEvNFZOdFh6UWtsRUpKUFZGV3F5SFJhNVd2V2s4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi80ZGU4ODktZGM5ZC00MWU1LWIzYWEtMGQ3YjU1MWY4Mjhj
LzEvV3kzWl9tS0xhOEVCUWQ0Q1FYWnFHM3BqR1Q4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLZ1cMA0G
CSqGSIb3DQEBCwUAA4IBAQDEiJaeDCZAmRm+3Nuq8yz1TdkCatcV6tfyitDHO20Y
jLzX2zUQwAXjRlKl4XJUF1W8SSn7Rs/zHUmfpdxCWm4nQfuGX3hz7p2Nly95PHEm
5SriUENx9khusmXjuvzItKHwZUiRko6HR9HJyS5QwDYPThu16VMzpyNj8LXeOpB0
HOA5Wb/e2jWfu1CH5mJ6s+IBhHHHZ/jdfiTc3rty+SxaeefsUfeMFyjsymfd+Dzt
NppaTVYH45vicV1Y9pbvCRqLozoinbZPfiwYLrz5WURC0Od/sZYk0QWpUWn91efL
7pvnvAEkmv5CN8WV7K+9NKO9fxyjlWqdUsDC9bUuBuhN
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:52:58 2024 by rpki-client on console-fra.rpki-client.org