Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/FIQLbUMJspD3rSTxwmJI8FMg7DM.roa
File: FIQLbUMJspD3rSTxwmJI8FMg7DM.roa (raw, json)
Hash identifier: mUA9QYgViMhN7M1unueRoQ1KgTsiMKKpGH2EaSX9GRg=
Subject key identifier: 14:84:0B:6D:43:09:B2:90:F7:AD:24:F1:C2:62:48:F0:53:20:EC:33
Certificate issuer: /CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Certificate serial: 019039F71CAC56B8B0A0B1AB91CFC84EF56D
Authority key identifier: BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/FIQLbUMJspD3rSTxwmJI8FMg7DM.roa
Signing time: Fri 21 Jun 2024 08:43:34 +0000
ROA not before: Fri 21 Jun 2024 08:43:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 45.140.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Jul 2024 19:45:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:39:f7:1c:ac:56:b8:b0:a0:b1:ab:91:cf:c8:4e:f5:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Validity
Not Before: Jun 21 08:43:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=14840b6d4309b290f7ad24f1c26248f05320ec33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:64:22:55:68:5e:a3:cf:8e:c4:11:c5:df:fd:
d8:d3:b7:09:00:4c:7d:55:b0:39:25:51:1c:49:e9:
4a:2b:28:c6:ef:fe:8f:7d:a2:d3:46:3d:8e:42:b3:
92:72:f5:c4:4c:f3:13:b1:bb:6a:67:4a:97:1f:de:
ae:b9:b3:9e:d7:04:d5:d3:d7:16:9d:12:f4:2a:bb:
87:1e:b7:e0:a2:a2:8c:4a:6b:58:37:c4:2f:13:51:
55:21:a4:68:84:93:de:ef:91:3a:fa:d6:ba:03:8e:
bf:3d:09:93:43:06:82:24:a8:29:0d:7a:2f:39:27:
46:bc:69:08:97:58:92:92:b4:7e:58:63:87:a0:3a:
a6:f8:ff:50:64:2c:b8:21:93:45:7e:1f:e1:e0:0c:
8a:54:20:5c:49:a5:b0:d6:00:bf:13:ae:15:56:fb:
e9:96:6d:b2:e5:b6:da:c0:dd:a5:4d:ee:78:47:b4:
2a:0a:ce:7e:7c:73:f9:71:89:bd:42:02:58:66:43:
ba:01:38:1a:a0:4b:9a:de:8a:43:09:b4:39:e8:9d:
5e:6b:6a:de:88:ef:c7:0f:82:1d:58:ac:1f:06:50:
c5:f4:d7:4e:05:30:bc:99:3c:72:10:df:87:28:43:
65:7e:71:01:3d:49:f6:bc:a0:9f:3c:ca:e9:71:55:
b3:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:84:0B:6D:43:09:B2:90:F7:AD:24:F1:C2:62:48:F0:53:20:EC:33
X509v3 Authority Key Identifier:
keyid:BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/FIQLbUMJspD3rSTxwmJI8FMg7DM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/vTZoYo8N950EfsoNmtz8C2aT4wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.58.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:f6:f6:7a:49:ad:c8:b0:09:fd:9e:aa:56:04:0f:2b:7f:6c:
12:bf:4d:d6:f8:42:f7:bd:22:64:81:ab:ff:84:78:3b:fe:e3:
1a:38:1b:20:03:de:62:a2:1b:4b:2e:05:dc:f6:d2:48:0a:fc:
96:cc:bf:ad:8e:a0:39:ce:32:b0:a7:bb:51:10:ea:49:4a:4e:
d9:df:8a:a9:10:ae:26:46:9c:1c:d2:14:1c:65:45:41:53:20:
e7:f2:93:89:26:52:ef:f7:44:2a:c7:1b:72:02:52:c6:32:f5:
d0:2f:25:ea:80:87:f5:37:43:c1:1d:11:a5:02:7a:41:3e:0e:
8a:65:5e:cc:05:e0:88:d6:ad:5c:ea:04:c3:35:49:b4:b8:78:
bb:6b:73:2d:f6:15:1b:d8:b4:f2:f0:8c:1e:b4:f9:92:10:78:
ba:d7:b2:e3:6d:18:fd:81:6a:14:f3:07:41:a5:8e:eb:01:3e:
40:f4:e0:f6:40:fb:20:71:32:26:54:6e:f5:f7:a0:dc:cb:92:
ca:f2:79:5d:56:52:6d:1f:03:5d:d5:40:5c:9c:8c:5d:45:26:
3b:0d:f2:a3:57:43:9a:c6:6b:92:54:f7:61:06:93:27:0d:80:
8e:b4:e5:e5:4d:20:fe:27:67:d0:fa:ed:2c:1d:4c:08:55:a0:
b5:b6:45:5d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZA59xysVriwoLGrkc/ITvVtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkMzY2ODYyOGYwZGY3OWQwNDdlY2EwZDlhZGNmYzBiNjY5
M2UzMDkwHhcNMjQwNjIxMDg0MzM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNDg0MGI2ZDQzMDliMjkwZjdhZDI0ZjFjMjYyNDhmMDUzMjBlYzMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtGQiVWheo8+OxBHF3/3Y07cJAEx9
VbA5JVEcSelKKyjG7/6PfaLTRj2OQrOScvXETPMTsbtqZ0qXH96uubOe1wTV09cW
nRL0KruHHrfgoqKMSmtYN8QvE1FVIaRohJPe75E6+ta6A46/PQmTQwaCJKgpDXov
OSdGvGkIl1iSkrR+WGOHoDqm+P9QZCy4IZNFfh/h4AyKVCBcSaWw1gC/E64VVvvp
lm2y5bbawN2lTe54R7QqCs5+fHP5cYm9QgJYZkO6ATgaoEua3opDCbQ56J1ea2re
iO/HD4IdWKwfBlDF9NdOBTC8mTxyEN+HKENlfnEBPUn2vKCfPMrpcVWzhQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBSEC21DCbKQ960k8cJiSPBTIOwzMB8GA1UdIwQY
MBaAFL02aGKPDfedBH7KDZrc/Atmk+MJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdlRab1lvOE45NTBFZnNvTm10ejhDMmFUNHdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi8xYjU3MjItMWRkYS00ZGYzLWE0NWMt
ZTZiZjMxNmM5NGExLzEvRklRTGJVTUpzcEQzclNUeHdtSkk4Rk1nN0RNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi8xYjU3MjItMWRkYS00ZGYzLWE0NWMtZTZiZjMxNmM5NGEx
LzEvdlRab1lvOE45NTBFZnNvTm10ejhDMmFUNHdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYw6MA0G
CSqGSIb3DQEBCwUAA4IBAQBf9vZ6Sa3IsAn9nqpWBA8rf2wSv03W+EL3vSJkgav/
hHg7/uMaOBsgA95iohtLLgXc9tJICvyWzL+tjqA5zjKwp7tREOpJSk7Z34qpEK4m
Rpwc0hQcZUVBUyDn8pOJJlLv90QqxxtyAlLGMvXQLyXqgIf1N0PBHRGlAnpBPg6K
ZV7MBeCI1q1c6gTDNUm0uHi7a3Mt9hUb2LTy8IwetPmSEHi617LjbRj9gWoU8wdB
pY7rAT5A9OD2QPsgcTImVG7196Dcy5LK8nldVlJtHwNd1UBcnIxdRSY7DfKjV0Oa
xmuSVPdhBpMnDYCOtOXlTSD+J2fQ+u0sHUwIVaC1tkVd
-----END CERTIFICATE-----
Generated at Mon Jul 22 21:28:39 2024 by rpki-client on console-fra.rpki-client.org