Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/DLf5nLQQJixDJ1FAuE6LtVUgyYc.roa
File: DLf5nLQQJixDJ1FAuE6LtVUgyYc.roa (raw, json)
Hash identifier: Ex9iHVNlnE7CYDM24jXZaadQLbcS7QgeaAKba2ynkic=
Subject key identifier: 0C:B7:F9:9C:B4:10:26:2C:43:27:51:40:B8:4E:8B:B5:55:20:C9:87
Certificate issuer: /CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Certificate serial: 018D5CD501A183104BF036BAFB60A259A69C
Authority key identifier: BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/DLf5nLQQJixDJ1FAuE6LtVUgyYc.roa
Signing time: Wed 31 Jan 2024 00:04:39 +0000
ROA not before: Wed 31 Jan 2024 00:04:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.95.224.0/23 maxlen: 24
45.95.226.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Mar 2024 11:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5c:d5:01:a1:83:10:4b:f0:36:ba:fb:60:a2:59:a6:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Validity
Not Before: Jan 31 00:04:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0cb7f99cb410262c43275140b84e8bb55520c987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:64:d3:01:e7:02:03:2f:5e:d1:8d:83:99:8d:
b7:fd:76:2e:87:2c:aa:19:a8:aa:21:70:16:c3:6a:
4d:7a:02:4a:80:e6:9b:33:c8:17:e0:37:d4:29:53:
da:b0:e4:f4:b2:55:44:a5:4b:01:03:78:d4:ae:97:
d8:21:bb:ba:53:4c:73:62:a6:27:46:69:f6:93:b8:
f5:15:df:f6:04:a7:bc:26:97:25:ff:ac:73:75:f7:
df:b3:fe:8c:4f:1a:1c:8a:e8:1c:d9:63:6e:d0:40:
ec:35:21:b4:cb:8d:f1:84:e5:fe:39:c2:a7:4f:fa:
c7:6d:5f:8f:6b:45:d6:cd:5a:60:d3:77:94:4c:6d:
9f:07:f0:6b:79:77:c5:36:a5:70:69:e7:ae:0a:7f:
07:c8:16:75:9a:72:86:b0:4c:30:68:da:9e:66:6f:
18:5d:88:88:ee:4c:e1:f8:49:ae:6e:c5:0f:63:b4:
85:a5:c1:69:ff:db:fa:46:1d:57:5d:2d:16:b3:84:
a4:b7:b5:bd:e3:ac:2a:27:e5:74:76:ea:b3:50:01:
96:64:df:20:bb:38:b7:3d:52:30:9a:69:22:2a:43:
b3:0b:83:3f:b1:07:7f:d2:b4:c8:68:c1:6c:8c:18:
b5:c8:22:c1:a9:85:cd:28:dc:c9:40:76:d6:81:de:
0e:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:B7:F9:9C:B4:10:26:2C:43:27:51:40:B8:4E:8B:B5:55:20:C9:87
X509v3 Authority Key Identifier:
keyid:BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/DLf5nLQQJixDJ1FAuE6LtVUgyYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/vTZoYo8N950EfsoNmtz8C2aT4wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.224.0-45.95.226.255
Signature Algorithm: sha256WithRSAEncryption
16:88:da:39:e5:9a:ed:32:80:e5:f3:18:28:c0:9f:49:c4:51:
20:f0:81:b8:42:e4:e4:ad:d2:6f:69:c3:d6:85:56:02:99:f7:
8f:43:6b:ce:ea:7e:a6:ba:87:37:ad:c5:45:12:56:aa:6d:35:
e3:af:77:be:ad:d8:3a:15:c2:da:7b:98:63:7a:3e:16:98:58:
d7:4e:ba:3c:8c:bf:d0:95:02:7a:91:75:d7:fd:cd:c0:3f:bd:
af:b0:98:14:ac:a5:64:02:14:23:b2:95:cf:9e:92:ba:3c:ba:
2c:f7:1f:3b:29:be:0d:ac:ee:ad:61:ea:cf:0d:aa:d9:4f:0f:
3b:3c:29:8a:04:12:de:8c:5c:53:26:45:7c:c7:cc:80:32:82:
4c:a4:97:27:4b:7b:f0:71:39:fb:f6:61:2e:70:16:3f:d4:81:
e3:35:90:ce:40:90:a6:b4:bd:00:9a:00:45:4c:51:8c:1f:db:
a6:cc:da:eb:6f:89:7e:9d:13:3f:8a:2d:37:6d:90:85:30:9b:
e1:ac:cd:b8:ad:d1:72:f3:26:f6:77:a1:5e:aa:51:cb:e1:8f:
ee:21:03:8a:1f:d5:a4:f1:a3:6a:ad:b0:64:fd:bb:76:73:e3:
65:ea:4c:d8:42:eb:02:49:b5:ca:01:88:05:16:f0:74:e1:20:
ba:48:8e:af
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAY1c1QGhgxBL8Da6+2CiWaacMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkMzY2ODYyOGYwZGY3OWQwNDdlY2EwZDlhZGNmYzBiNjY5
M2UzMDkwHhcNMjQwMTMxMDAwNDM5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwY2I3Zjk5Y2I0MTAyNjJjNDMyNzUxNDBiODRlOGJiNTU1MjBjOTg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiWTTAecCAy9e0Y2DmY23/XYuhyyq
GaiqIXAWw2pNegJKgOabM8gX4DfUKVPasOT0slVEpUsBA3jUrpfYIbu6U0xzYqYn
Rmn2k7j1Fd/2BKe8Jpcl/6xzdfffs/6MTxociugc2WNu0EDsNSG0y43xhOX+OcKn
T/rHbV+Pa0XWzVpg03eUTG2fB/BreXfFNqVwaeeuCn8HyBZ1mnKGsEwwaNqeZm8Y
XYiI7kzh+EmubsUPY7SFpcFp/9v6Rh1XXS0Ws4Skt7W946wqJ+V0duqzUAGWZN8g
uzi3PVIwmmkiKkOzC4M/sQd/0rTIaMFsjBi1yCLBqYXNKNzJQHbWgd4OTQIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFAy3+Zy0ECYsQydRQLhOi7VVIMmHMB8GA1UdIwQY
MBaAFL02aGKPDfedBH7KDZrc/Atmk+MJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdlRab1lvOE45NTBFZnNvTm10ejhDMmFUNHdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi8xYjU3MjItMWRkYS00ZGYzLWE0NWMt
ZTZiZjMxNmM5NGExLzEvRExmNW5MUVFKaXhESjFGQXVFNkx0VlVneVljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi8xYjU3MjItMWRkYS00ZGYzLWE0NWMtZTZiZjMxNmM5NGEx
LzEvdlRab1lvOE45NTBFZnNvTm10ejhDMmFUNHdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAUtX+AD
BAAtX+IwDQYJKoZIhvcNAQELBQADggEBABaI2jnlmu0ygOXzGCjAn0nEUSDwgbhC
5OSt0m9pw9aFVgKZ949Da87qfqa6hzetxUUSVqptNeOvd76t2DoVwtp7mGN6PhaY
WNdOujyMv9CVAnqRddf9zcA/va+wmBSspWQCFCOylc+ekro8uiz3Hzspvg2s7q1h
6s8NqtlPDzs8KYoEEt6MXFMmRXzHzIAygkyklydLe/BxOfv2YS5wFj/UgeM1kM5A
kKa0vQCaAEVMUYwf26bM2utviX6dEz+KLTdtkIUwm+Gszbit0XLzJvZ3oV6qUcvh
j+4hA4of1aTxo2qtsGT9u3Zz42XqTNhC6wJJtcoBiAUW8HThILpIjq8=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:04 2024 by rpki-client on console-fra.rpki-client.org