Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/hO6Xp2esWgqYvYHVgujbKbz0sCo.roa
File: hO6Xp2esWgqYvYHVgujbKbz0sCo.roa (raw, json)
Hash identifier: 6D+ExDtsydZGqbuxwM7Y3b9VE4W3+EtGyTa49XTuFn8=
Subject key identifier: 84:EE:97:A7:67:AC:5A:0A:98:BD:81:D5:82:E8:DB:29:BC:F4:B0:2A
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 018B24FB11F521EA8617031DE3264A426382
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/hO6Xp2esWgqYvYHVgujbKbz0sCo.roa
Signing time: Thu 12 Oct 2023 17:41:55 +0000
ROA not before: Thu 12 Oct 2023 17:41:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54252
IP address blocks: 45.153.164.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:24:fb:11:f5:21:ea:86:17:03:1d:e3:26:4a:42:63:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: Oct 12 17:41:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=84ee97a767ac5a0a98bd81d582e8db29bcf4b02a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:69:0f:81:fb:7f:5d:00:87:4b:fe:af:0c:16:
0c:ea:76:45:18:cc:6b:65:b2:ab:d9:8f:79:6e:37:
8e:fc:d2:55:7c:3b:67:b2:c9:c2:5e:6f:5c:92:bc:
9d:7c:f0:97:35:3f:40:a2:4f:80:9e:3d:65:12:1d:
86:69:99:65:44:eb:b4:ef:25:64:ea:66:96:78:6d:
e5:43:f5:11:bf:39:d0:91:51:76:b6:65:94:22:d6:
e6:a5:48:7a:cd:16:37:5a:df:fd:13:1a:16:0d:32:
dd:b2:49:b6:c3:a8:32:76:c4:7c:38:8b:2e:90:ed:
93:4e:fe:57:4d:f2:34:9c:90:d1:e0:d3:25:b1:9f:
fc:4a:fb:75:0a:7c:5d:4c:30:61:25:46:88:51:eb:
cd:99:53:ca:c1:8e:3a:70:5b:17:b9:1c:92:0a:de:
79:63:87:eb:11:01:19:a9:02:05:54:2d:44:7c:2c:
cc:b4:15:a2:95:38:d8:a7:65:40:d6:d4:5d:9b:bf:
09:1f:5f:7b:5c:da:f8:1a:92:30:6f:cb:25:17:64:
fb:e1:20:19:4a:53:5e:bf:22:4c:78:32:f8:bc:92:
0f:c7:f8:3e:ce:66:e5:53:5a:84:e1:3e:52:5e:56:
d1:db:57:b9:72:12:42:a6:36:70:fc:23:2c:2e:60:
11:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:EE:97:A7:67:AC:5A:0A:98:BD:81:D5:82:E8:DB:29:BC:F4:B0:2A
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/hO6Xp2esWgqYvYHVgujbKbz0sCo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.164.0/24
Signature Algorithm: sha256WithRSAEncryption
65:ca:8e:2f:36:da:43:5e:9e:ab:ea:c0:1d:85:2e:ed:88:95:
1f:4c:91:fd:8e:8f:0b:68:6e:d0:f0:f5:eb:ce:3c:18:1d:de:
48:ae:13:09:52:03:e2:06:c7:02:41:73:04:2e:e0:b4:22:c7:
63:c4:30:37:8a:73:b2:98:d3:ae:69:ad:34:eb:67:9d:27:07:
d7:96:ef:b2:e4:d7:aa:35:f7:c3:66:15:14:b0:5d:3e:34:5b:
c1:8a:1b:5f:30:a9:ee:4d:84:6f:8a:be:cf:60:54:5a:be:ac:
bc:42:51:f0:b3:01:4c:f1:55:6c:db:45:d6:3e:d4:01:2f:81:
60:c9:09:9e:77:62:ae:b0:48:4c:bf:e8:06:0f:48:fb:30:e2:
d7:05:35:68:1f:d5:dd:80:76:37:d6:6c:1a:a1:15:da:c2:c5:
09:cb:13:ef:a4:15:44:ef:1a:f3:dd:15:32:d0:41:bd:9e:a9:
26:f8:2b:1d:9c:ef:50:e1:ec:28:d6:74:af:d6:f6:81:33:79:
01:6e:d8:6d:d1:a0:cd:08:85:82:ff:99:a3:30:0a:ce:27:b2:
e1:b9:08:c0:98:a0:f5:96:8a:af:cf:dc:ad:44:58:bd:db:23:
c2:e2:79:1f:29:67:21:c1:c5:12:86:0e:36:fa:54:85:4d:02:
3a:7e:78:fa
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYsk+xH1IeqGFwMd4yZKQmOCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjZDk4YzJjNTRiMGNiZWExMzRlMjdhOTgxY2ZkZGU3MzIz
NmUwNTUwHhcNMjMxMDEyMTc0MTU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NGVlOTdhNzY3YWM1YTBhOThiZDgxZDU4MmU4ZGIyOWJjZjRiMDJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvWkPgft/XQCHS/6vDBYM6nZFGMxr
ZbKr2Y95bjeO/NJVfDtnssnCXm9ckrydfPCXNT9Aok+Anj1lEh2GaZllROu07yVk
6maWeG3lQ/URvznQkVF2tmWUItbmpUh6zRY3Wt/9ExoWDTLdskm2w6gydsR8OIsu
kO2TTv5XTfI0nJDR4NMlsZ/8Svt1CnxdTDBhJUaIUevNmVPKwY46cFsXuRySCt55
Y4frEQEZqQIFVC1EfCzMtBWilTjYp2VA1tRdm78JH197XNr4GpIwb8slF2T74SAZ
SlNevyJMeDL4vJIPx/g+zmblU1qE4T5SXlbR21e5chJCpjZw/CMsLmARbwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFITul6dnrFoKmL2B1YLo2ym89LAqMB8GA1UdIwQY
MBaAFGzZjCxUsMvqE04nqYHP3ecyNuBVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYk5tTUxGU3d5LW9UVGllcGdjX2Q1ekkyNEZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS8wMTYzOGMtNmNiOS00NTg5LTkwOWIt
ZDM3ZGY2MzRhOTI5LzEvaE82WHAyZXNXZ3FZdllIVmd1amJLYnowc0NvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS8wMTYzOGMtNmNiOS00NTg5LTkwOWItZDM3ZGY2MzRhOTI5
LzEvYk5tTUxGU3d5LW9UVGllcGdjX2Q1ekkyNEZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZmkMA0G
CSqGSIb3DQEBCwUAA4IBAQBlyo4vNtpDXp6r6sAdhS7tiJUfTJH9jo8LaG7Q8PXr
zjwYHd5IrhMJUgPiBscCQXMELuC0IsdjxDA3inOymNOuaa0062edJwfXlu+y5Neq
NffDZhUUsF0+NFvBihtfMKnuTYRvir7PYFRavqy8QlHwswFM8VVs20XWPtQBL4Fg
yQmed2KusEhMv+gGD0j7MOLXBTVoH9XdgHY31mwaoRXawsUJyxPvpBVE7xrz3RUy
0EG9nqkm+CsdnO9Q4ewo1nSv1vaBM3kBbtht0aDNCIWC/5mjMArOJ7LhuQjAmKD1
loqvz9ytRFi92yPC4nkfKWchwcUShg42+lSFTQI6fnj6
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:56 2024 by rpki-client on console-fra.rpki-client.org