Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/TcRuNpWJV87zqmGaerFDTTl0tj8.roa
File: TcRuNpWJV87zqmGaerFDTTl0tj8.roa (raw, json)
Hash identifier: u7/4qLwXJESlmV7g6FldwqUa4hBknGemiEQpJ6rnDrY=
Subject key identifier: 4D:C4:6E:36:95:89:57:CE:F3:AA:61:9A:7A:B1:43:4D:39:74:B6:3F
Certificate issuer: /CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Certificate serial: 01889F12D77B14359CD328613EDC749B8573
Authority key identifier: BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/TcRuNpWJV87zqmGaerFDTTl0tj8.roa
Signing time: Fri 09 Jun 2023 07:33:12 +0000
ROA not before: Fri 09 Jun 2023 07:33:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.95.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Jul 2023 08:41:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9f:12:d7:7b:14:35:9c:d3:28:61:3e:dc:74:9b:85:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd3668628f0df79d047eca0d9adcfc0b6693e309
Validity
Not Before: Jun 9 07:33:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4dc46e36958957cef3aa619a7ab1434d3974b63f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:6d:92:90:11:23:5a:c3:d3:0e:61:2f:b9:2b:
68:8b:d3:90:d4:f1:de:8e:27:17:d8:b0:0d:cc:88:
cc:3b:4b:13:09:54:bb:61:be:4b:81:6e:05:c3:1b:
7b:84:8e:00:ba:89:01:a9:ef:da:80:37:11:51:49:
06:9b:56:43:89:49:30:69:3b:8c:c0:7f:ee:be:41:
b9:36:ca:f1:35:e2:0b:60:9c:fd:6e:1c:35:e9:8e:
d3:24:e4:76:a2:f1:4e:55:9c:c7:ac:93:e1:0d:ff:
04:29:32:40:5d:f8:54:b8:ac:c7:2e:6a:28:37:ef:
2c:93:ce:5f:16:38:85:f2:9e:ef:06:14:39:73:60:
76:2d:1c:16:cb:e7:52:3c:b4:4c:a2:63:b9:f0:03:
84:0e:55:d4:b7:d5:ff:cc:ce:94:e7:6e:e4:55:13:
40:31:08:9d:18:3b:a8:f2:f0:c0:d5:7f:54:47:2c:
6d:ab:1c:d1:1a:06:12:bf:3f:2c:62:2e:83:7d:70:
1f:eb:11:82:9a:b4:c3:9d:29:4a:af:77:76:fa:72:
07:49:50:12:88:12:d8:b1:f4:7d:34:d5:75:f3:9f:
60:12:04:6d:33:e7:14:d8:a1:3f:06:39:76:c7:8b:
15:6e:0d:7e:0c:23:f3:60:e2:3c:f6:05:ac:78:11:
72:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:C4:6E:36:95:89:57:CE:F3:AA:61:9A:7A:B1:43:4D:39:74:B6:3F
X509v3 Authority Key Identifier:
keyid:BD:36:68:62:8F:0D:F7:9D:04:7E:CA:0D:9A:DC:FC:0B:66:93:E3:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vTZoYo8N950EfsoNmtz8C2aT4wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/TcRuNpWJV87zqmGaerFDTTl0tj8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1b5722-1dda-4df3-a45c-e6bf316c94a1/1/vTZoYo8N950EfsoNmtz8C2aT4wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.224.0/24
Signature Algorithm: sha256WithRSAEncryption
86:4b:8e:01:b4:1a:06:50:c3:16:29:f5:5a:ef:f2:d7:c2:9d:
14:f3:9c:35:c0:0b:f8:38:36:53:f8:04:80:7e:9c:60:fb:6b:
25:4d:53:77:7f:f4:e2:12:9c:ef:b5:ba:9f:60:de:59:b9:d3:
ac:69:d6:38:72:84:56:32:f7:86:96:ee:a5:94:b4:c1:dd:c3:
87:b0:f6:c2:d2:03:37:7c:75:84:2e:f2:e7:ce:0f:8a:08:28:
ae:da:33:ad:fb:9c:c2:5d:b8:67:07:6e:ad:a8:6a:f6:c8:eb:
ba:f1:9f:70:cc:f6:a9:1f:fc:88:8e:22:d4:78:4f:bc:fe:4e:
ce:88:5f:1d:86:77:1c:c8:f3:a9:5c:11:83:27:48:9c:56:bf:
27:01:19:09:0a:a2:ce:62:6f:4f:ce:aa:8d:9b:ab:24:cd:e7:
f7:56:20:89:5b:66:9a:18:a8:33:68:fc:28:d2:b1:02:c5:93:
86:08:92:4f:c4:bd:93:d7:31:21:92:8e:6c:6c:99:5a:a8:2f:
a4:cd:22:45:9f:8c:a2:21:de:4b:e6:50:45:6a:d7:10:ff:b2:
36:c4:3f:dd:4d:58:ab:be:a5:cb:16:1d:f4:39:d3:64:56:e4:
ff:5e:00:3d:5b:a4:76:ed:35:f2:4a:8f:34:0f:d8:20:b6:24:
ca:3a:c8:c9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYifEtd7FDWc0yhhPtx0m4VzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkMzY2ODYyOGYwZGY3OWQwNDdlY2EwZDlhZGNmYzBiNjY5
M2UzMDkwHhcNMjMwNjA5MDczMzEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZGM0NmUzNjk1ODk1N2NlZjNhYTYxOWE3YWIxNDM0ZDM5NzRiNjNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuG2SkBEjWsPTDmEvuStoi9OQ1PHe
jicX2LANzIjMO0sTCVS7Yb5LgW4Fwxt7hI4AuokBqe/agDcRUUkGm1ZDiUkwaTuM
wH/uvkG5NsrxNeILYJz9bhw16Y7TJOR2ovFOVZzHrJPhDf8EKTJAXfhUuKzHLmoo
N+8sk85fFjiF8p7vBhQ5c2B2LRwWy+dSPLRMomO58AOEDlXUt9X/zM6U527kVRNA
MQidGDuo8vDA1X9URyxtqxzRGgYSvz8sYi6DfXAf6xGCmrTDnSlKr3d2+nIHSVAS
iBLYsfR9NNV1859gEgRtM+cU2KE/Bjl2x4sVbg1+DCPzYOI89gWseBFyrwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE3EbjaViVfO86phmnqxQ005dLY/MB8GA1UdIwQY
MBaAFL02aGKPDfedBH7KDZrc/Atmk+MJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdlRab1lvOE45NTBFZnNvTm10ejhDMmFUNHdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi8xYjU3MjItMWRkYS00ZGYzLWE0NWMt
ZTZiZjMxNmM5NGExLzEvVGNSdU5wV0pWODd6cW1HYWVyRkRUVGwwdGo4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi8xYjU3MjItMWRkYS00ZGYzLWE0NWMtZTZiZjMxNmM5NGEx
LzEvdlRab1lvOE45NTBFZnNvTm10ejhDMmFUNHdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALV/gMA0G
CSqGSIb3DQEBCwUAA4IBAQCGS44BtBoGUMMWKfVa7/LXwp0U85w1wAv4ODZT+ASA
fpxg+2slTVN3f/TiEpzvtbqfYN5ZudOsadY4coRWMveGlu6llLTB3cOHsPbC0gM3
fHWELvLnzg+KCCiu2jOt+5zCXbhnB26tqGr2yOu68Z9wzPapH/yIjiLUeE+8/k7O
iF8dhnccyPOpXBGDJ0icVr8nARkJCqLOYm9PzqqNm6skzef3ViCJW2aaGKgzaPwo
0rECxZOGCJJPxL2T1zEhko5sbJlaqC+kzSJFn4yiId5L5lBFatcQ/7I2xD/dTVir
vqXLFh30OdNkVuT/XgA9W6R27TXySo80D9ggtiTKOsjJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:56 2024 by rpki-client on console-ams.rpki-client.org