Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/234dbb-9fe4-4bb8-a974-df1d5205c5d0/1/ljlGi4RW1UA_lWVbLd-kPv5B0sg.roa
File: ljlGi4RW1UA_lWVbLd-kPv5B0sg.roa (raw, json)
Hash identifier: 5wOwyh0eqqca2haY8IHKa0Ls2CzQgzIOoYdBJuGRwa8=
Subject key identifier: 96:39:46:8B:84:56:D5:40:3F:95:65:5B:2D:DF:A4:3E:FE:41:D2:C8
Certificate issuer: /CN=d251392cd7e6e40a45c1b8a4479880eef960f330
Certificate serial: 01856F1D9700D25EAFBC080511A960E69CDB
Authority key identifier: D2:51:39:2C:D7:E6:E4:0A:45:C1:B8:A4:47:98:80:EE:F9:60:F3:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0lE5LNfm5ApFwbikR5iA7vlg8zA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/234dbb-9fe4-4bb8-a974-df1d5205c5d0/1/ljlGi4RW1UA_lWVbLd-kPv5B0sg.roa
Signing time: Sun 01 Jan 2023 20:54:48 +0000
ROA not before: Sun 01 Jan 2023 20:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39389
IP address blocks: 45.131.88.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:97:00:d2:5e:af:bc:08:05:11:a9:60:e6:9c:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d251392cd7e6e40a45c1b8a4479880eef960f330
Validity
Not Before: Jan 1 20:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9639468b8456d5403f95655b2ddfa43efe41d2c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:e0:1e:34:38:2e:71:c1:ca:ef:9e:2c:a8:6e:
73:30:f3:8c:4e:ae:2c:ef:1d:41:69:af:b4:8f:5e:
09:c3:48:dd:22:f8:b8:4a:c1:46:00:96:93:cd:01:
e0:60:41:13:d6:44:92:6e:15:22:47:44:ba:f0:43:
60:06:1e:d4:e0:5e:89:9e:14:ae:f3:ec:00:27:3b:
a7:a6:4b:da:69:e4:9e:26:db:e6:29:e1:38:c6:c2:
b4:24:63:16:3a:da:f5:c6:ef:6f:14:33:8a:31:23:
06:fa:75:6b:b5:43:c5:46:00:00:fd:d7:8d:45:02:
aa:38:b6:7a:26:21:57:fb:5d:08:06:df:d9:ff:2c:
f0:f9:1d:fe:9c:bd:2f:e4:c2:2b:87:a1:69:de:5f:
2e:1b:05:8b:bb:66:a9:44:5b:38:78:fc:8d:7c:8d:
ba:80:03:9f:43:94:21:a8:93:36:9f:a8:99:ca:8c:
9e:a6:34:34:fa:9f:01:00:ed:8d:fc:e2:0f:31:d0:
24:e5:e7:31:2e:26:a4:d9:2f:14:6b:e3:04:b8:29:
1e:ae:cd:89:12:43:be:b7:7f:c9:b6:10:89:60:f5:
39:fd:f1:ff:ca:27:2e:bb:01:bd:f2:c3:57:57:6d:
4d:7f:ef:2f:30:9e:72:97:c2:de:bc:cb:3c:e4:8d:
2b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:39:46:8B:84:56:D5:40:3F:95:65:5B:2D:DF:A4:3E:FE:41:D2:C8
X509v3 Authority Key Identifier:
keyid:D2:51:39:2C:D7:E6:E4:0A:45:C1:B8:A4:47:98:80:EE:F9:60:F3:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0lE5LNfm5ApFwbikR5iA7vlg8zA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/234dbb-9fe4-4bb8-a974-df1d5205c5d0/1/ljlGi4RW1UA_lWVbLd-kPv5B0sg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/234dbb-9fe4-4bb8-a974-df1d5205c5d0/1/0lE5LNfm5ApFwbikR5iA7vlg8zA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.88.0/24
Signature Algorithm: sha256WithRSAEncryption
97:42:28:c0:8e:ae:10:ce:7d:15:7a:29:6d:b8:01:5f:4f:3a:
4d:2e:08:fd:14:21:fc:8a:b6:b2:9c:82:74:7d:41:f4:eb:06:
6b:53:f0:55:df:8a:21:70:0c:ce:14:cd:c2:80:1f:f9:35:ac:
62:12:cf:51:a1:19:8f:a2:37:9d:3b:9a:a0:94:c5:e3:28:0e:
79:65:2e:20:97:b6:a6:89:bf:2c:76:2f:f1:c7:90:f7:75:68:
1c:ab:f6:a4:55:ff:39:23:06:95:cc:cd:00:65:4c:18:19:10:
e9:92:af:db:5c:30:83:72:e0:26:ba:78:d8:ee:ca:bf:17:06:
44:5e:7d:51:66:c5:35:2d:10:89:50:74:d6:bf:98:74:3d:18:
b8:31:f2:10:d8:85:28:a9:a1:c2:bd:d2:ad:c4:33:85:10:e9:
b2:82:fc:7a:69:03:da:5a:15:fe:21:af:d9:65:e2:4e:b3:5d:
d7:62:e1:36:00:b5:98:30:b1:d8:03:c0:d9:af:c0:e7:9d:d4:
7d:be:27:83:89:aa:c4:00:d9:b4:14:0e:fa:2d:14:ab:53:3d:
58:8c:d4:03:4c:c8:23:fb:82:46:92:29:24:04:1c:b3:b8:95:
47:69:09:45:21:f3:71:be:9b:47:9f:a1:b7:cf:74:1c:66:f1:
f4:1d:79:c1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvHZcA0l6vvAgFEalg5pzbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyNTEzOTJjZDdlNmU0MGE0NWMxYjhhNDQ3OTg4MGVlZjk2
MGYzMzAwHhcNMjMwMTAxMjA1NDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NjM5NDY4Yjg0NTZkNTQwM2Y5NTY1NWIyZGRmYTQzZWZlNDFkMmM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiOAeNDguccHK754sqG5zMPOMTq4s
7x1Baa+0j14Jw0jdIvi4SsFGAJaTzQHgYEET1kSSbhUiR0S68ENgBh7U4F6JnhSu
8+wAJzunpkvaaeSeJtvmKeE4xsK0JGMWOtr1xu9vFDOKMSMG+nVrtUPFRgAA/deN
RQKqOLZ6JiFX+10IBt/Z/yzw+R3+nL0v5MIrh6Fp3l8uGwWLu2apRFs4ePyNfI26
gAOfQ5QhqJM2n6iZyoyepjQ0+p8BAO2N/OIPMdAk5ecxLiak2S8Ua+MEuCkers2J
EkO+t3/JthCJYPU5/fH/yicuuwG98sNXV21Nf+8vMJ5yl8LevMs85I0rwwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJY5RouEVtVAP5VlWy3fpD7+QdLIMB8GA1UdIwQY
MBaAFNJROSzX5uQKRcG4pEeYgO75YPMwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGxFNUxOZm01QXBGd2Jpa1I1aUE3dmxnOHpBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC8yMzRkYmItOWZlNC00YmI4LWE5NzQt
ZGYxZDUyMDVjNWQwLzEvbGpsR2k0UlcxVUFfbFdWYkxkLWtQdjVCMHNnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC8yMzRkYmItOWZlNC00YmI4LWE5NzQtZGYxZDUyMDVjNWQw
LzEvMGxFNUxOZm01QXBGd2Jpa1I1aUE3dmxnOHpBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYNYMA0G
CSqGSIb3DQEBCwUAA4IBAQCXQijAjq4Qzn0VeiltuAFfTzpNLgj9FCH8iraynIJ0
fUH06wZrU/BV34ohcAzOFM3CgB/5NaxiEs9RoRmPojedO5qglMXjKA55ZS4gl7am
ib8sdi/xx5D3dWgcq/akVf85IwaVzM0AZUwYGRDpkq/bXDCDcuAmunjY7sq/FwZE
Xn1RZsU1LRCJUHTWv5h0PRi4MfIQ2IUoqaHCvdKtxDOFEOmygvx6aQPaWhX+Ia/Z
ZeJOs13XYuE2ALWYMLHYA8DZr8DnndR9vieDiarEANm0FA76LRSrUz1YjNQDTMgj
+4JGkikkBByzuJVHaQlFIfNxvptHn6G3z3QcZvH0HXnB
-----END CERTIFICATE-----
Generated at Mon Jan 1 06:31:47 2024 by rpki-client on console-fra.rpki-client.org