Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/986dde-5f68-4c21-b546-d540df886bab/1/n4p_3aI-D44BDIpxRwOHImYS1mg.roa
File: n4p_3aI-D44BDIpxRwOHImYS1mg.roa (raw, json)
Hash identifier: GBgtGKEDg6ZUwKEaqn1mg/p00LDRQN/uxjPlinQ/8bQ=
Subject key identifier: 9F:8A:7F:DD:A2:3E:0F:8E:01:0C:8A:71:47:03:87:22:66:12:D6:68
Certificate issuer: /CN=e795c9617ca5a6a3bff263fc1837992fd1ac47f2
Certificate serial: 01856F0231FFFC1552918373B1D6823DB600
Authority key identifier: E7:95:C9:61:7C:A5:A6:A3:BF:F2:63:FC:18:37:99:2F:D1:AC:47:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/55XJYXylpqO_8mP8GDeZL9GsR_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/986dde-5f68-4c21-b546-d540df886bab/1/n4p_3aI-D44BDIpxRwOHImYS1mg.roa
Signing time: Sun 01 Jan 2023 20:24:52 +0000
ROA not before: Sun 01 Jan 2023 20:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1299
IP address blocks: 45.149.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Jun 2023 08:53:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:31:ff:fc:15:52:91:83:73:b1:d6:82:3d:b6:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e795c9617ca5a6a3bff263fc1837992fd1ac47f2
Validity
Not Before: Jan 1 20:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f8a7fdda23e0f8e010c8a71470387226612d668
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:6d:3b:f6:50:d5:16:71:11:dc:89:ef:72:1a:
40:b4:52:f0:72:6e:d8:41:a7:d4:ee:d0:64:89:da:
c4:dc:7f:42:a1:00:2b:14:39:b0:cd:9b:d1:33:d6:
f6:c0:73:fc:69:c0:25:f4:24:cc:86:a8:97:30:f5:
f9:0f:5c:b3:24:e2:71:30:d0:2d:0c:49:64:d2:16:
f3:b5:bf:8c:6a:01:51:8d:ed:44:c7:b6:75:e8:23:
07:cc:d3:3c:cd:ef:fb:f7:fe:db:97:75:1e:92:29:
7e:bf:c1:9c:33:f9:2d:a7:0c:a2:53:06:91:ef:88:
bb:cf:98:a4:75:12:e9:15:ec:61:9f:25:b1:9d:a1:
db:3f:4d:fa:64:e3:f1:d8:b6:cc:98:e9:40:c9:7e:
e9:0a:c6:68:e4:1e:f6:10:9b:32:0c:e1:be:b3:83:
45:fe:4e:e3:26:0e:f3:3b:0f:79:1a:1a:73:95:11:
03:0e:49:9e:ce:7f:20:87:aa:3c:05:40:23:27:e1:
ec:18:d4:d6:32:e4:2e:04:e8:55:26:64:1f:d8:6a:
86:4c:dc:e0:fe:c9:bf:f6:24:2f:6a:fb:c0:60:dd:
66:83:95:34:a4:6e:4d:a9:1f:16:ea:60:ca:5a:e2:
b5:2f:96:47:ba:05:f7:5f:1d:60:36:2b:d1:82:94:
a6:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:8A:7F:DD:A2:3E:0F:8E:01:0C:8A:71:47:03:87:22:66:12:D6:68
X509v3 Authority Key Identifier:
keyid:E7:95:C9:61:7C:A5:A6:A3:BF:F2:63:FC:18:37:99:2F:D1:AC:47:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/55XJYXylpqO_8mP8GDeZL9GsR_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/986dde-5f68-4c21-b546-d540df886bab/1/n4p_3aI-D44BDIpxRwOHImYS1mg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/986dde-5f68-4c21-b546-d540df886bab/1/55XJYXylpqO_8mP8GDeZL9GsR_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.153.0/24
Signature Algorithm: sha256WithRSAEncryption
df:09:f9:d2:0f:b9:c1:14:f5:fd:f4:f8:27:f2:39:92:ef:98:
7f:41:52:05:a8:69:91:a2:4e:67:13:07:e3:d2:a8:c7:07:0c:
e5:92:e1:89:d1:98:6c:93:ec:16:bc:f2:b4:23:a5:47:1b:e8:
da:64:50:aa:bf:9f:63:1c:f8:da:40:95:dc:38:ab:c2:00:4a:
f1:f7:df:3a:c5:4f:86:1b:3d:7d:2e:21:74:79:cb:69:c7:71:
13:2e:e3:a0:a1:dd:22:57:42:f9:79:98:aa:82:72:36:68:b2:
21:63:03:86:85:d1:84:e8:b8:a6:e4:43:0f:77:c2:d9:0f:1d:
5d:19:47:48:9c:d8:03:f2:50:8b:45:f1:5e:f8:f8:f1:7a:2b:
be:65:a4:19:a6:19:a9:29:8e:09:e2:2b:25:d0:3e:aa:b9:7c:
71:79:60:af:0c:fa:2f:38:cc:78:7f:31:10:a0:4f:bf:25:12:
9c:c0:75:29:78:88:12:a4:5f:7d:ec:fb:7a:89:7e:1c:8b:db:
7f:ac:6a:00:e8:a0:1b:ac:ed:18:de:ef:7a:80:33:9b:bf:da:
74:3a:0f:5d:e5:2d:66:2a:4b:7b:8b:4c:ec:eb:75:17:e4:8e:
cb:3f:d0:49:b3:c4:da:70:70:4a:63:98:09:fb:85:66:cb:4a:
e4:01:97:31
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvAjH//BVSkYNzsdaCPbYAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3OTVjOTYxN2NhNWE2YTNiZmYyNjNmYzE4Mzc5OTJmZDFh
YzQ3ZjIwHhcNMjMwMTAxMjAyNDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZjhhN2ZkZGEyM2UwZjhlMDEwYzhhNzE0NzAzODcyMjY2MTJkNjY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn2079lDVFnER3InvchpAtFLwcm7Y
QafU7tBkidrE3H9CoQArFDmwzZvRM9b2wHP8acAl9CTMhqiXMPX5D1yzJOJxMNAt
DElk0hbztb+MagFRje1Ex7Z16CMHzNM8ze/79/7bl3Uekil+v8GcM/ktpwyiUwaR
74i7z5ikdRLpFexhnyWxnaHbP036ZOPx2LbMmOlAyX7pCsZo5B72EJsyDOG+s4NF
/k7jJg7zOw95GhpzlREDDkmezn8gh6o8BUAjJ+HsGNTWMuQuBOhVJmQf2GqGTNzg
/sm/9iQvavvAYN1mg5U0pG5NqR8W6mDKWuK1L5ZHugX3Xx1gNivRgpSmEQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJ+Kf92iPg+OAQyKcUcDhyJmEtZoMB8GA1UdIwQY
MBaAFOeVyWF8paajv/Jj/Bg3mS/RrEfyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNTVYSllYeWxwcU9fOG1QOEdEZVpMOUdzUl9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC85ODZkZGUtNWY2OC00YzIxLWI1NDYt
ZDU0MGRmODg2YmFiLzEvbjRwXzNhSS1ENDRCRElweFJ3T0hJbVlTMW1nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC85ODZkZGUtNWY2OC00YzIxLWI1NDYtZDU0MGRmODg2YmFi
LzEvNTVYSllYeWxwcU9fOG1QOEdEZVpMOUdzUl9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZWZMA0G
CSqGSIb3DQEBCwUAA4IBAQDfCfnSD7nBFPX99Pgn8jmS75h/QVIFqGmRok5nEwfj
0qjHBwzlkuGJ0Zhsk+wWvPK0I6VHG+jaZFCqv59jHPjaQJXcOKvCAErx9986xU+G
Gz19LiF0ectpx3ETLuOgod0iV0L5eZiqgnI2aLIhYwOGhdGE6Lim5EMPd8LZDx1d
GUdInNgD8lCLRfFe+Pjxeiu+ZaQZphmpKY4J4isl0D6quXxxeWCvDPovOMx4fzEQ
oE+/JRKcwHUpeIgSpF997Pt6iX4ci9t/rGoA6KAbrO0Y3u96gDObv9p0Og9d5S1m
Kkt7i0zs63UX5I7LP9BJs8TacHBKY5gJ+4Vmy0rkAZcx
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:53 2024 by rpki-client on console-fra.rpki-client.org