Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/f834ad-df0f-4505-9613-2a04d3923d22/1/tra53WVXHoHoeEZPU_k-W77elxI.roa
File: tra53WVXHoHoeEZPU_k-W77elxI.roa (raw, json)
Hash identifier: daUTFbgBHRZWeZRnXF8/UPyD5YUFofNfmCQbnQ1tNw8=
Subject key identifier: B6:B6:B9:DD:65:57:1E:81:E8:78:46:4F:53:F9:3E:5B:BE:DE:97:12
Certificate issuer: /CN=1e30a62262dccb21a0104b34edb82b9515cacdfb
Certificate serial: 01856F5487B10B7B1803A699C93C9B4513AB
Authority key identifier: 1E:30:A6:22:62:DC:CB:21:A0:10:4B:34:ED:B8:2B:95:15:CA:CD:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HjCmImLcyyGgEEs07bgrlRXKzfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/f834ad-df0f-4505-9613-2a04d3923d22/1/tra53WVXHoHoeEZPU_k-W77elxI.roa
Signing time: Sun 01 Jan 2023 21:54:48 +0000
ROA not before: Sun 01 Jan 2023 21:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208613
IP address blocks: 45.87.72.0/22 maxlen: 24
2a0e:f680::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:87:b1:0b:7b:18:03:a6:99:c9:3c:9b:45:13:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e30a62262dccb21a0104b34edb82b9515cacdfb
Validity
Not Before: Jan 1 21:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b6b6b9dd65571e81e878464f53f93e5bbede9712
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:7a:9f:ff:50:b9:4c:b7:8d:fb:49:7a:01:6c:
37:a3:6f:98:b9:57:9b:9f:70:eb:fe:12:a3:31:04:
93:4a:c0:81:42:d6:e0:19:c6:08:45:24:a8:16:a6:
06:44:05:9d:a7:1e:9f:82:ab:1f:38:9f:97:92:6d:
a4:1e:6e:6e:64:c7:43:e9:99:0a:b9:6e:34:3a:32:
0b:eb:76:66:dd:ec:6e:38:e4:55:e4:01:8e:f6:27:
d7:a4:f3:b4:65:fa:ec:95:75:af:c5:39:7d:e9:d1:
29:b4:6f:23:c1:c5:c0:31:26:5d:ae:a1:83:db:ec:
f6:d6:62:b7:aa:0c:4d:f0:f9:83:e7:a6:ad:07:4f:
9a:8c:9e:ae:f0:0a:cb:3a:38:de:75:b0:c1:62:c7:
4b:0a:f4:d6:da:d1:6e:6c:37:5e:a8:09:7f:06:fa:
23:3a:58:1d:ee:17:df:7d:24:82:1c:f1:90:af:04:
44:0a:a7:ca:b3:e8:aa:35:e6:73:18:91:7b:17:7c:
f5:b2:9f:42:e0:5d:0b:7e:02:c5:64:91:5d:bc:d4:
aa:ad:88:0e:35:d3:39:22:b8:7f:64:04:79:79:4a:
4d:30:b4:94:99:3a:8d:69:bd:5c:07:37:d3:37:27:
da:36:47:fc:17:9d:89:73:34:e2:67:bf:df:2f:b3:
14:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:B6:B9:DD:65:57:1E:81:E8:78:46:4F:53:F9:3E:5B:BE:DE:97:12
X509v3 Authority Key Identifier:
keyid:1E:30:A6:22:62:DC:CB:21:A0:10:4B:34:ED:B8:2B:95:15:CA:CD:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HjCmImLcyyGgEEs07bgrlRXKzfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/f834ad-df0f-4505-9613-2a04d3923d22/1/tra53WVXHoHoeEZPU_k-W77elxI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/f834ad-df0f-4505-9613-2a04d3923d22/1/HjCmImLcyyGgEEs07bgrlRXKzfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.72.0/22
IPv6:
2a0e:f680::/29
Signature Algorithm: sha256WithRSAEncryption
0d:72:c3:61:86:5f:10:11:bb:28:65:e8:ee:59:23:04:fc:b6:
e5:ed:26:f5:fb:62:cb:6e:0c:e0:e5:01:8f:0d:db:42:01:70:
b2:f8:db:a1:39:d5:be:74:74:78:b2:16:14:70:12:55:eb:ef:
e6:02:e8:50:a1:ea:f3:b9:b5:f6:a5:9d:de:c9:b6:b5:a2:0d:
e8:74:e9:43:43:60:03:b9:1f:c5:28:9e:ab:da:3d:96:8d:32:
cf:44:02:97:41:22:87:8c:28:5d:a6:ae:ad:9d:da:eb:9a:d7:
17:82:50:35:63:6e:84:c9:96:2d:db:fd:a7:34:83:f1:ff:6f:
60:8c:05:e4:61:5e:5b:cc:50:42:df:74:b9:9e:4e:c9:a2:64:
ea:90:0c:b2:1e:51:2c:66:1a:e6:da:c4:db:00:ec:ce:05:d4:
95:bf:5f:de:e3:10:43:75:29:2e:f2:96:a1:7b:c6:5c:50:2f:
b9:6c:f1:36:fe:9b:d5:5c:86:22:0e:e2:8f:9d:30:15:5b:9f:
7a:7e:67:3c:12:6b:7b:53:fb:71:2e:48:49:de:9c:7f:a2:ba:
68:cc:07:21:ec:11:ef:2d:7b:f1:c7:8e:41:82:31:f4:a1:59:
10:9d:db:31:01:ef:58:99:d2:14:96:de:50:18:5a:5a:8d:08:
d1:c6:24:62
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVvVIexC3sYA6aZyTybRROrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlMzBhNjIyNjJkY2NiMjFhMDEwNGIzNGVkYjgyYjk1MTVj
YWNkZmIwHhcNMjMwMTAxMjE1NDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNmI2YjlkZDY1NTcxZTgxZTg3ODQ2NGY1M2Y5M2U1YmJlZGU5NzEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlnqf/1C5TLeN+0l6AWw3o2+YuVeb
n3Dr/hKjMQSTSsCBQtbgGcYIRSSoFqYGRAWdpx6fgqsfOJ+Xkm2kHm5uZMdD6ZkK
uW40OjIL63Zm3exuOORV5AGO9ifXpPO0ZfrslXWvxTl96dEptG8jwcXAMSZdrqGD
2+z21mK3qgxN8PmD56atB0+ajJ6u8ArLOjjedbDBYsdLCvTW2tFubDdeqAl/Bvoj
Olgd7hfffSSCHPGQrwRECqfKs+iqNeZzGJF7F3z1sp9C4F0LfgLFZJFdvNSqrYgO
NdM5Irh/ZAR5eUpNMLSUmTqNab1cBzfTNyfaNkf8F52JczTiZ7/fL7MUgwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFLa2ud1lVx6B6HhGT1P5Plu+3pcSMB8GA1UdIwQY
MBaAFB4wpiJi3MshoBBLNO24K5UVys37MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGpDbUltTGN5eUdnRUVzMDdiZ3JsUlhLemZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC9mODM0YWQtZGYwZi00NTA1LTk2MTMt
MmEwNGQzOTIzZDIyLzEvdHJhNTNXVlhIb0hvZUVaUFVfay1XNzdlbHhJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC9mODM0YWQtZGYwZi00NTA1LTk2MTMtMmEwNGQzOTIzZDIy
LzEvSGpDbUltTGN5eUdnRUVzMDdiZ3JsUlhLemZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCLVdIMA0E
AgACMAcDBQMqDvaAMA0GCSqGSIb3DQEBCwUAA4IBAQANcsNhhl8QEbsoZejuWSME
/Lbl7Sb1+2LLbgzg5QGPDdtCAXCy+NuhOdW+dHR4shYUcBJV6+/mAuhQoerzubX2
pZ3eyba1og3odOlDQ2ADuR/FKJ6r2j2WjTLPRAKXQSKHjChdpq6tndrrmtcXglA1
Y26EyZYt2/2nNIPx/29gjAXkYV5bzFBC33S5nk7JomTqkAyyHlEsZhrm2sTbAOzO
BdSVv1/e4xBDdSku8pahe8ZcUC+5bPE2/pvVXIYiDuKPnTAVW596fmc8Emt7U/tx
LkhJ3px/orpozAch7BHvLXvxx45BgjH0oVkQndsxAe9YmdIUlt5QGFpajQjRxiRi
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:55 2024 by rpki-client on console-fra.rpki-client.org