Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/FrpPJKSfxNBvBnev4zwK-7l2sAQ.roa
File: FrpPJKSfxNBvBnev4zwK-7l2sAQ.roa (raw, json)
Hash identifier: C8diGJkwEiIp5GGbA9ELmTZfc+hSJBgzw5eJEgbbTzY=
Subject key identifier: 16:BA:4F:24:A4:9F:C4:D0:6F:06:77:AF:E3:3C:0A:FB:B9:76:B0:04
Certificate issuer: /CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Certificate serial: 0189655B088F3A0765C331A4AE32138FF4E0
Authority key identifier: 5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/FrpPJKSfxNBvBnev4zwK-7l2sAQ.roa
Signing time: Mon 17 Jul 2023 19:36:52 +0000
ROA not before: Mon 17 Jul 2023 19:36:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 45.152.177.0/24 maxlen: 24
45.157.92.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:65:5b:08:8f:3a:07:65:c3:31:a4:ae:32:13:8f:f4:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Validity
Not Before: Jul 17 19:36:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=16ba4f24a49fc4d06f0677afe33c0afbb976b004
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:c3:3a:a8:b9:51:af:ac:5c:f9:12:a9:0d:1d:
4d:72:19:d3:b7:e3:32:50:cb:2b:b8:bd:26:23:87:
01:db:b3:42:36:38:a5:45:30:a0:9d:cc:5a:08:4c:
9e:db:61:b7:95:b6:9a:16:6c:a3:dc:04:4e:1b:e6:
d4:cf:69:b5:97:19:be:70:0f:31:50:04:d6:d6:79:
60:05:83:d6:3c:a5:a6:f5:94:d1:6f:39:8d:ed:71:
fe:f9:79:a3:01:e2:0b:fd:d3:ed:d8:f3:d5:54:9d:
f2:16:df:cd:8d:d7:0c:8d:6f:55:8c:bf:bd:76:c3:
e4:46:6a:b4:40:a4:4c:bd:72:23:66:9a:9d:6c:55:
0c:5e:13:7b:1b:ee:9b:f6:16:bc:7c:95:5f:df:6a:
21:8a:e1:44:dd:b7:50:09:c3:5e:86:db:c6:44:a5:
8e:c4:01:74:80:e7:e3:57:8e:2c:1e:80:e9:a6:c9:
e1:9c:cb:8f:94:31:63:5f:3a:94:9c:96:ea:f3:ab:
e7:a8:14:11:00:f8:eb:ac:ca:a8:09:9b:44:1f:bb:
05:1f:73:37:96:20:a8:51:72:54:5b:9e:c1:fc:61:
ba:3c:dd:dd:a2:33:bb:87:8b:7b:8f:c6:f3:d5:87:
17:ea:5c:7c:e8:f1:de:cf:75:1d:27:8f:00:ff:7f:
5b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:BA:4F:24:A4:9F:C4:D0:6F:06:77:AF:E3:3C:0A:FB:B9:76:B0:04
X509v3 Authority Key Identifier:
keyid:5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/FrpPJKSfxNBvBnev4zwK-7l2sAQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.177.0/24
45.157.92.0/22
Signature Algorithm: sha256WithRSAEncryption
62:81:77:a4:3b:c2:e3:df:f1:c7:d9:98:77:b4:41:d4:38:4c:
31:88:a0:9a:a8:ce:1d:a0:e8:7e:9f:97:b2:20:da:c3:f6:c0:
79:4a:26:6c:b9:00:87:0a:2f:d2:9a:30:f2:ec:6d:96:db:16:
37:4a:b1:e9:47:1c:9a:6e:5f:42:3b:88:97:6e:c4:ee:ba:8a:
87:b4:f2:68:77:4f:c1:b6:9d:cc:f4:a4:a7:a2:9b:3b:b6:d2:
05:b9:70:54:ef:92:59:77:d4:6c:12:0a:4c:cc:2b:9c:d7:45:
ab:85:61:79:06:9e:6b:6b:a8:79:fe:1a:54:63:3d:78:f7:63:
81:50:a6:51:5d:c6:9c:74:8a:98:d2:3e:d5:4b:cb:6e:16:9f:
b9:28:2f:ce:c1:c0:d5:69:63:55:02:fa:40:b0:d0:06:dd:88:
a8:b1:ab:f7:bd:3a:e9:84:a2:38:d5:80:e3:fe:91:8f:89:9f:
fd:25:92:bc:b4:ec:74:e7:1a:9e:57:9c:08:fb:26:d3:41:ae:
6b:a6:fb:75:04:f5:c7:73:59:6b:7f:ec:7c:9c:fc:c2:70:6b:
39:14:d4:8c:32:e5:5d:f5:18:68:93:2b:91:48:96:ff:05:5d:
26:49:29:01:cf:59:54:83:8f:17:46:3b:44:49:bc:7c:a6:fa:
c4:43:00:a2
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYllWwiPOgdlwzGkrjITj/TgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDViMmRkOWZlNjI4YjZiYzEwMTQxZGUwMjQxNzY2YTFiN2E2
MzE5M2YwHhcNMjMwNzE3MTkzNjUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNmJhNGYyNGE0OWZjNGQwNmYwNjc3YWZlMzNjMGFmYmI5NzZiMDA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5cM6qLlRr6xc+RKpDR1NchnTt+My
UMsruL0mI4cB27NCNjilRTCgncxaCEye22G3lbaaFmyj3AROG+bUz2m1lxm+cA8x
UATW1nlgBYPWPKWm9ZTRbzmN7XH++XmjAeIL/dPt2PPVVJ3yFt/NjdcMjW9VjL+9
dsPkRmq0QKRMvXIjZpqdbFUMXhN7G+6b9ha8fJVf32ohiuFE3bdQCcNehtvGRKWO
xAF0gOfjV44sHoDppsnhnMuPlDFjXzqUnJbq86vnqBQRAPjrrMqoCZtEH7sFH3M3
liCoUXJUW57B/GG6PN3dojO7h4t7j8bz1YcX6lx86PHez3UdJ48A/39bqwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFBa6TySkn8TQbwZ3r+M8Cvu5drAEMB8GA1UdIwQY
MBaAFFst2f5ii2vBAUHeAkF2aht6Yxk/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV3kzWl9tS0xhOEVCUWQ0Q1FYWnFHM3BqR1Q4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi80ZGU4ODktZGM5ZC00MWU1LWIzYWEt
MGQ3YjU1MWY4MjhjLzEvRnJwUEpLU2Z4TkJ2Qm5ldjR6d0stN2wyc0FRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi80ZGU4ODktZGM5ZC00MWU1LWIzYWEtMGQ3YjU1MWY4Mjhj
LzEvV3kzWl9tS0xhOEVCUWQ0Q1FYWnFHM3BqR1Q4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALZixAwQC
LZ1cMA0GCSqGSIb3DQEBCwUAA4IBAQBigXekO8Lj3/HH2Zh3tEHUOEwxiKCaqM4d
oOh+n5eyINrD9sB5SiZsuQCHCi/SmjDy7G2W2xY3SrHpRxyabl9CO4iXbsTuuoqH
tPJod0/Btp3M9KSnops7ttIFuXBU75JZd9RsEgpMzCuc10WrhWF5Bp5ra6h5/hpU
Yz1492OBUKZRXcacdIqY0j7VS8tuFp+5KC/OwcDVaWNVAvpAsNAG3Yiosav3vTrp
hKI41YDj/pGPiZ/9JZK8tOx05xqeV5wI+ybTQa5rpvt1BPXHc1lrf+x8nPzCcGs5
FNSMMuVd9RhokyuRSJb/BV0mSSkBz1lUg48XRjtESbx8pvrEQwCi
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:33:23 2024 by rpki-client on console-ams.rpki-client.org