Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/rqErDfKVBowAuYztPSJdvXFa-9c.roa
File: rqErDfKVBowAuYztPSJdvXFa-9c.roa (raw, json)
Hash identifier: IIRKtXLRSqkdIQsvm9t0REhLV2N69/Oq6R3TKp5nT8Q=
Subject key identifier: AE:A1:2B:0D:F2:95:06:8C:00:B9:8C:ED:3D:22:5D:BD:71:5A:FB:D7
Certificate issuer: /CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Certificate serial: 01857C0B21AC40B7C8C2BD2945FF609D6271
Authority key identifier: 5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/rqErDfKVBowAuYztPSJdvXFa-9c.roa
Signing time: Wed 04 Jan 2023 09:09:42 +0000
ROA not before: Wed 04 Jan 2023 09:09:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207279
IP address blocks: 45.152.176.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 03 Mar 2023 16:19:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:7c:0b:21:ac:40:b7:c8:c2:bd:29:45:ff:60:9d:62:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Validity
Not Before: Jan 4 09:09:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aea12b0df295068c00b98ced3d225dbd715afbd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:92:4d:de:48:89:0d:76:49:19:52:80:fb:7b:
e9:31:3b:f3:1b:27:6a:71:2f:f8:a5:49:51:5e:a9:
e3:58:ed:a3:bf:87:bb:00:f2:b5:26:74:ec:61:60:
33:57:b9:28:92:4f:97:0f:1c:24:4b:06:56:c5:4b:
33:78:8b:cf:52:f6:27:f5:69:69:f5:21:d5:8f:9b:
31:bb:12:b5:fd:f9:68:04:ee:22:35:59:fa:7c:3b:
fa:cc:ee:4d:52:e9:b7:2f:07:b1:eb:25:72:b9:46:
30:50:1e:52:ec:78:82:0c:f4:3f:51:58:a2:31:de:
02:67:6e:d4:66:a0:44:e4:98:9f:7c:05:d5:f6:60:
80:e7:38:00:40:e1:35:36:08:21:9e:ec:ae:b0:97:
93:56:1b:1a:d7:88:9d:ea:e7:15:a2:0a:0f:53:b7:
96:31:e9:1d:e8:6d:06:cc:4f:21:3a:60:fa:63:2e:
6d:7c:82:98:84:c3:75:5d:ed:02:8c:36:35:dc:95:
33:29:fe:52:27:7e:3e:b1:26:26:a0:e1:6f:84:b6:
f5:ef:34:ad:ad:04:de:e5:1e:3c:ce:34:ff:07:f1:
cf:4e:6b:12:d0:df:b3:10:52:15:5a:09:f1:fc:10:
10:ac:48:b8:01:f8:ee:16:6c:01:32:46:31:2f:6a:
4c:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:A1:2B:0D:F2:95:06:8C:00:B9:8C:ED:3D:22:5D:BD:71:5A:FB:D7
X509v3 Authority Key Identifier:
keyid:5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/rqErDfKVBowAuYztPSJdvXFa-9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.176.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:cf:7d:6f:41:df:ab:bc:da:26:bb:23:51:33:33:06:5d:d2:
14:39:14:2b:6b:9e:23:79:6b:50:36:e0:9c:b3:65:df:65:e9:
97:29:35:6d:51:ab:78:45:c9:3b:f9:02:6a:77:9f:42:79:55:
6a:e6:8d:37:5e:7c:1c:c9:a0:48:a4:9d:3f:be:47:c8:75:59:
06:02:42:cc:c0:e3:9e:84:63:44:4c:05:62:42:9a:9e:fe:da:
64:cd:0f:88:01:f4:68:5f:7f:6f:8f:ec:75:36:a6:ac:27:64:
31:5d:8d:b8:a1:c3:cd:94:ee:b2:ff:b1:77:f4:47:45:13:48:
28:90:2e:63:8c:fb:c3:ca:28:7e:e7:f3:0b:d5:0e:70:35:78:
dc:b2:10:c1:a8:da:4f:5c:d9:64:43:89:bb:67:f6:6e:b2:22:
ab:5b:c4:e2:1e:c8:37:d5:77:af:bf:6b:e5:a0:71:9a:43:e3:
09:92:b7:8e:a9:71:ef:fe:ac:57:9b:42:93:fd:04:84:c7:68:
b6:4e:ac:2a:e6:89:38:b7:56:91:47:e9:f1:6a:dc:99:ab:52:
30:f6:63:57:de:66:a6:60:47:9c:8c:e4:98:e5:b6:ff:17:81:
62:60:3f:a8:7a:ad:c3:e3:57:b8:d5:8e:23:2a:32:fb:a0:d5:
76:e0:1e:fe
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYV8CyGsQLfIwr0pRf9gnWJxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDViMmRkOWZlNjI4YjZiYzEwMTQxZGUwMjQxNzY2YTFiN2E2
MzE5M2YwHhcNMjMwMTA0MDkwOTQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZWExMmIwZGYyOTUwNjhjMDBiOThjZWQzZDIyNWRiZDcxNWFmYmQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiZJN3kiJDXZJGVKA+3vpMTvzGydq
cS/4pUlRXqnjWO2jv4e7APK1JnTsYWAzV7kokk+XDxwkSwZWxUszeIvPUvYn9Wlp
9SHVj5sxuxK1/floBO4iNVn6fDv6zO5NUum3Lwex6yVyuUYwUB5S7HiCDPQ/UVii
Md4CZ27UZqBE5JiffAXV9mCA5zgAQOE1NgghnuyusJeTVhsa14id6ucVogoPU7eW
Mekd6G0GzE8hOmD6Yy5tfIKYhMN1Xe0CjDY13JUzKf5SJ34+sSYmoOFvhLb17zSt
rQTe5R48zjT/B/HPTmsS0N+zEFIVWgnx/BAQrEi4AfjuFmwBMkYxL2pMnwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK6hKw3ylQaMALmM7T0iXb1xWvvXMB8GA1UdIwQY
MBaAFFst2f5ii2vBAUHeAkF2aht6Yxk/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV3kzWl9tS0xhOEVCUWQ0Q1FYWnFHM3BqR1Q4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi80ZGU4ODktZGM5ZC00MWU1LWIzYWEt
MGQ3YjU1MWY4MjhjLzEvcnFFckRmS1ZCb3dBdVl6dFBTSmR2WEZhLTljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi80ZGU4ODktZGM5ZC00MWU1LWIzYWEtMGQ3YjU1MWY4Mjhj
LzEvV3kzWl9tS0xhOEVCUWQ0Q1FYWnFHM3BqR1Q4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZiwMA0G
CSqGSIb3DQEBCwUAA4IBAQAKz31vQd+rvNomuyNRMzMGXdIUORQra54jeWtQNuCc
s2XfZemXKTVtUat4Rck7+QJqd59CeVVq5o03XnwcyaBIpJ0/vkfIdVkGAkLMwOOe
hGNETAViQpqe/tpkzQ+IAfRoX39vj+x1NqasJ2QxXY24ocPNlO6y/7F39EdFE0go
kC5jjPvDyih+5/ML1Q5wNXjcshDBqNpPXNlkQ4m7Z/ZusiKrW8TiHsg31Xevv2vl
oHGaQ+MJkreOqXHv/qxXm0KT/QSEx2i2Tqwq5ok4t1aRR+nxatyZq1Iw9mNX3mam
YEecjOSY5bb/F4FiYD+oeq3D41e41Y4jKjL7oNV24B7+
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:14 2024 by rpki-client on console-ams.rpki-client.org