Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/sv4PrfHgA75wlgwJb0sx-82pEkU.roa
File: sv4PrfHgA75wlgwJb0sx-82pEkU.roa (raw, json)
Hash identifier: wGmgHBHDZaGWmoaL9CkIor/TZ9KTF4I0TCem+cpSI6A=
Subject key identifier: B2:FE:0F:AD:F1:E0:03:BE:70:96:0C:09:6F:4B:31:FB:CD:A9:12:45
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 0189642100F17ED3DC3D7C042C7EEC82AAAC
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/sv4PrfHgA75wlgwJb0sx-82pEkU.roa
Signing time: Mon 17 Jul 2023 13:53:51 +0000
ROA not before: Mon 17 Jul 2023 13:53:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 45.141.234.0/24 maxlen: 24
94.190.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Sep 2023 12:35:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:21:00:f1:7e:d3:dc:3d:7c:04:2c:7e:ec:82:aa:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Jul 17 13:53:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b2fe0fadf1e003be70960c096f4b31fbcda91245
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:43:fe:88:cc:94:cc:17:d8:25:3b:d2:4f:88:
40:35:e8:7f:1a:27:5a:cb:e1:ce:67:c2:0b:69:ba:
82:2f:62:5c:59:69:44:df:70:b0:bc:82:ae:2a:dd:
8f:fd:9b:8b:73:12:94:29:8f:42:11:d3:61:0f:5e:
af:73:d7:5f:ad:0d:32:aa:7a:09:ba:0c:af:7e:f9:
32:2a:d0:c6:6a:ec:9b:d2:77:ef:e9:d1:87:8e:54:
eb:55:3e:ae:99:83:ad:cb:19:64:c1:8c:3b:9d:10:
10:ce:f9:a6:e1:6d:52:26:f8:8e:8d:f2:d4:83:74:
91:b1:67:1a:93:fa:50:8f:a7:3c:1b:5e:0c:a6:11:
8b:27:98:74:d1:a2:3a:2f:27:45:e2:a1:da:e1:2b:
d5:65:dc:d0:4d:dc:4e:e5:83:c6:cc:e3:57:d1:5b:
ef:a5:3d:99:c7:7d:1c:9f:d5:4d:c0:3a:98:cc:33:
f7:5d:c6:3a:08:75:db:c5:f0:87:67:13:d7:3c:a2:
bb:d9:d4:62:27:5f:dc:2e:a7:94:8d:02:94:f2:0e:
bc:8c:b1:47:ea:4a:18:c4:a5:9c:85:dd:da:12:43:
04:db:4f:b6:cc:ca:ad:9d:35:bc:02:e2:40:c4:8d:
c8:ed:c9:7b:a7:1d:5c:f6:89:8c:8f:35:93:50:e3:
b0:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:FE:0F:AD:F1:E0:03:BE:70:96:0C:09:6F:4B:31:FB:CD:A9:12:45
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/sv4PrfHgA75wlgwJb0sx-82pEkU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.234.0/24
94.190.195.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:0d:ac:be:f6:d8:aa:db:4b:88:d6:84:bc:c7:31:2a:79:07:
c7:e1:6e:46:f1:75:c7:f2:23:d4:d2:50:e0:c1:95:b0:aa:e8:
a6:2d:ae:a6:2f:d4:c4:b0:51:b6:3d:0d:50:81:8e:87:2e:e3:
f9:94:f6:89:67:00:8e:4c:91:96:41:c2:47:f2:a8:b3:14:fb:
73:5b:20:7e:7a:e9:2a:ca:d8:65:f5:87:b9:4c:78:5d:9a:7e:
4b:f8:a8:9e:d0:a0:c0:ed:01:b3:63:ee:1a:d1:c1:41:eb:ce:
d4:7a:00:bd:de:fc:ef:8a:e6:d6:37:49:98:0a:81:40:e0:83:
dd:df:76:a6:ed:9b:33:81:47:0c:4c:8b:d8:d6:78:86:c0:3c:
10:9a:72:e6:5b:1d:2d:6c:00:5d:a9:c1:48:3b:4b:b0:29:93:
d7:3d:0f:f9:5b:9d:6a:f4:df:00:9c:07:a9:a0:af:96:57:fe:
e5:6f:a7:d6:78:b1:64:6f:39:af:6c:79:01:60:26:d4:7b:86:
4e:cf:ea:00:b3:33:72:18:e3:ef:8a:23:a5:c4:ec:ca:00:66:
51:8e:74:f1:e7:c0:6a:a6:bf:68:da:38:f8:89:0d:eb:a8:20:
fc:2f:37:e2:7c:d4:9d:5a:5a:18:05:e0:01:71:32:c8:ce:6c:
47:60:c0:88
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYlkIQDxftPcPXwELH7sgqqsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJkMWNhYTY5MzU4ZjhjOThmN2E3MTlmMjU5N2Q1ZGFkZGJk
MDAxOGMwHhcNMjMwNzE3MTM1MzUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMmZlMGZhZGYxZTAwM2JlNzA5NjBjMDk2ZjRiMzFmYmNkYTkxMjQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn0P+iMyUzBfYJTvST4hANeh/Gida
y+HOZ8ILabqCL2JcWWlE33CwvIKuKt2P/ZuLcxKUKY9CEdNhD16vc9dfrQ0yqnoJ
ugyvfvkyKtDGauyb0nfv6dGHjlTrVT6umYOtyxlkwYw7nRAQzvmm4W1SJviOjfLU
g3SRsWcak/pQj6c8G14MphGLJ5h00aI6LydF4qHa4SvVZdzQTdxO5YPGzONX0Vvv
pT2Zx30cn9VNwDqYzDP3XcY6CHXbxfCHZxPXPKK72dRiJ1/cLqeUjQKU8g68jLFH
6koYxKWchd3aEkME20+2zMqtnTW8AuJAxI3I7cl7px1c9omMjzWTUOOwywIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFLL+D63x4AO+cJYMCW9LMfvNqRJFMB8GA1UdIwQY
MBaAFC0cqmk1j4yY96cZ8ll9Xa3b0AGMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTFJ5cWFUV1BqSmozcHhueVdYMWRyZHZRQVl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9hOTM2OTktMTg4Yi00NzBhLTk2Yjct
MjliMDg1ZGQyM2FkLzEvc3Y0UHJmSGdBNzV3bGd3SmIwc3gtODJwRWtVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi9hOTM2OTktMTg4Yi00NzBhLTk2YjctMjliMDg1ZGQyM2Fk
LzEvTFJ5cWFUV1BqSmozcHhueVdYMWRyZHZRQVl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALY3qAwQA
Xr7DMA0GCSqGSIb3DQEBCwUAA4IBAQAeDay+9tiq20uI1oS8xzEqeQfH4W5G8XXH
8iPU0lDgwZWwquimLa6mL9TEsFG2PQ1QgY6HLuP5lPaJZwCOTJGWQcJH8qizFPtz
WyB+eukqythl9Ye5THhdmn5L+Kie0KDA7QGzY+4a0cFB687UegC93vzviubWN0mY
CoFA4IPd33am7ZszgUcMTIvY1niGwDwQmnLmWx0tbABdqcFIO0uwKZPXPQ/5W51q
9N8AnAepoK+WV/7lb6fWeLFkbzmvbHkBYCbUe4ZOz+oAszNyGOPviiOlxOzKAGZR
jnTx58Bqpr9o2jj4iQ3rqCD8LzfifNSdWloYBeABcTLIzmxHYMCI
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:43 2024 by rpki-client on console-fra.rpki-client.org