Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/681e1e-7f3f-4ea8-af30-522690be548d/1/1GszaGqCnaCAJU9qgJL-8Qi7kuY.roa
File: 1GszaGqCnaCAJU9qgJL-8Qi7kuY.roa (raw, json)
Hash identifier: OM+ExT5IxYH7LoRy4X65xgsQrUPpDr2PgJOs1tjEQqs=
Subject key identifier: D4:6B:33:68:6A:82:9D:A0:80:25:4F:6A:80:92:FE:F1:08:BB:92:E6
Certificate issuer: /CN=89703a9823512b18d176e362ea023ca824784d22
Certificate serial: 0185704BCC4D89080A5C5C56B87C67A83923
Authority key identifier: 89:70:3A:98:23:51:2B:18:D1:76:E3:62:EA:02:3C:A8:24:78:4D:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iXA6mCNRKxjRduNi6gI8qCR4TSI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/681e1e-7f3f-4ea8-af30-522690be548d/1/1GszaGqCnaCAJU9qgJL-8Qi7kuY.roa
Signing time: Mon 02 Jan 2023 02:24:53 +0000
ROA not before: Mon 02 Jan 2023 02:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197415
IP address blocks: 45.146.96.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:4b:cc:4d:89:08:0a:5c:5c:56:b8:7c:67:a8:39:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89703a9823512b18d176e362ea023ca824784d22
Validity
Not Before: Jan 2 02:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d46b33686a829da080254f6a8092fef108bb92e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b6:32:53:f0:2b:02:8c:8b:de:57:48:10:a1:
8a:d9:2a:0e:67:ad:73:bc:d2:8a:39:f4:66:7b:89:
d0:5c:fc:c5:46:2f:82:f1:a6:98:be:2c:7f:e2:03:
32:87:33:b7:7b:d0:0c:70:b9:43:2d:77:b1:15:76:
9e:34:bc:78:cc:95:e2:96:83:1d:fc:be:6c:68:eb:
bc:ef:7d:b5:e6:bc:d6:4a:75:0a:40:d8:91:98:41:
a8:8f:48:4e:af:21:7a:45:5b:bd:08:9a:a8:9d:35:
91:34:ac:c0:35:40:bd:c9:c8:33:ae:ed:75:93:96:
6c:78:3d:87:5f:23:17:18:c3:af:43:01:42:5d:3c:
5b:fe:37:41:23:ea:38:39:4a:6e:a0:b6:e7:83:8d:
c8:f4:ed:cd:61:c7:05:46:8b:52:55:35:dd:6d:ae:
81:d9:9c:50:38:ee:4b:17:6e:89:24:7a:59:03:69:
e6:cd:ac:8c:db:68:41:20:95:a7:13:17:c0:19:4f:
78:7f:c1:22:ee:a6:35:ed:7d:e0:99:80:a5:7a:a9:
22:e8:60:00:00:fc:bb:43:82:b0:a1:3d:c2:d2:42:
39:5d:27:74:dc:37:35:88:5b:cb:2a:c9:95:13:2b:
96:cf:db:cc:5b:de:e9:25:6b:3e:06:df:29:9d:be:
56:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:6B:33:68:6A:82:9D:A0:80:25:4F:6A:80:92:FE:F1:08:BB:92:E6
X509v3 Authority Key Identifier:
keyid:89:70:3A:98:23:51:2B:18:D1:76:E3:62:EA:02:3C:A8:24:78:4D:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iXA6mCNRKxjRduNi6gI8qCR4TSI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/681e1e-7f3f-4ea8-af30-522690be548d/1/1GszaGqCnaCAJU9qgJL-8Qi7kuY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/681e1e-7f3f-4ea8-af30-522690be548d/1/iXA6mCNRKxjRduNi6gI8qCR4TSI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.96.0/23
Signature Algorithm: sha256WithRSAEncryption
6e:75:13:3b:df:82:69:4f:4a:45:cf:3f:da:66:c8:90:7f:85:
9a:85:46:56:e9:82:d6:0e:6a:d1:3f:82:97:55:b0:3a:10:ed:
6e:61:98:44:26:8e:88:eb:22:22:57:8f:39:a1:9b:b0:0a:59:
ad:de:53:ad:59:20:d5:17:e2:ba:a7:90:4c:26:fe:20:94:de:
45:56:a2:cd:8c:c4:0e:c4:d6:de:9d:47:c1:8c:e3:56:a2:61:
d2:96:a1:f7:c9:55:54:11:b4:cc:68:bf:cd:05:48:61:dc:b4:
ea:17:bb:55:b1:33:9e:47:10:f4:bd:07:ba:ce:6d:96:1d:ca:
85:60:32:a9:7b:fc:8a:e5:b1:2e:97:70:00:d1:c4:10:b3:97:
e2:91:ed:22:59:8f:fe:1b:b6:61:df:73:95:d4:99:ff:92:71:
a3:12:ee:17:9e:bd:60:db:bd:e4:8e:c7:80:d4:f6:e4:48:0c:
8a:8b:cd:6d:1f:8c:1e:d5:d7:0b:5d:ae:ab:cb:bc:b8:93:13:
05:11:c7:8c:e2:a2:94:cc:49:5d:98:91:16:2b:01:bc:ea:db:
85:f2:27:d6:a3:27:ec:97:75:75:28:6c:67:f3:14:58:13:d0:
1c:fc:fa:02:d6:73:e4:7d:6a:9e:ba:61:9c:8a:67:1b:88:d8:
37:32:bf:f9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwS8xNiQgKXFxWuHxnqDkjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5NzAzYTk4MjM1MTJiMThkMTc2ZTM2MmVhMDIzY2E4MjQ3
ODRkMjIwHhcNMjMwMTAyMDIyNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNDZiMzM2ODZhODI5ZGEwODAyNTRmNmE4MDkyZmVmMTA4YmI5MmU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy7YyU/ArAoyL3ldIEKGK2SoOZ61z
vNKKOfRme4nQXPzFRi+C8aaYvix/4gMyhzO3e9AMcLlDLXexFXaeNLx4zJXiloMd
/L5saOu873215rzWSnUKQNiRmEGoj0hOryF6RVu9CJqonTWRNKzANUC9ycgzru11
k5ZseD2HXyMXGMOvQwFCXTxb/jdBI+o4OUpuoLbng43I9O3NYccFRotSVTXdba6B
2ZxQOO5LF26JJHpZA2nmzayM22hBIJWnExfAGU94f8Ei7qY17X3gmYCleqki6GAA
APy7Q4KwoT3C0kI5XSd03Dc1iFvLKsmVEyuWz9vMW97pJWs+Bt8pnb5WIwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNRrM2hqgp2ggCVPaoCS/vEIu5LmMB8GA1UdIwQY
MBaAFIlwOpgjUSsY0XbjYuoCPKgkeE0iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVhBNm1DTlJLeGpSZHVOaTZnSThxQ1I0VFNJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC82ODFlMWUtN2YzZi00ZWE4LWFmMzAt
NTIyNjkwYmU1NDhkLzEvMUdzemFHcUNuYUNBSlU5cWdKTC04UWk3a3VZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOC82ODFlMWUtN2YzZi00ZWE4LWFmMzAtNTIyNjkwYmU1NDhk
LzEvaVhBNm1DTlJLeGpSZHVOaTZnSThxQ1I0VFNJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLZJgMA0G
CSqGSIb3DQEBCwUAA4IBAQBudRM734JpT0pFzz/aZsiQf4WahUZW6YLWDmrRP4KX
VbA6EO1uYZhEJo6I6yIiV485oZuwClmt3lOtWSDVF+K6p5BMJv4glN5FVqLNjMQO
xNbenUfBjONWomHSlqH3yVVUEbTMaL/NBUhh3LTqF7tVsTOeRxD0vQe6zm2WHcqF
YDKpe/yK5bEul3AA0cQQs5fike0iWY/+G7Zh33OV1Jn/knGjEu4Xnr1g273kjseA
1PbkSAyKi81tH4we1dcLXa6ry7y4kxMFEceM4qKUzEldmJEWKwG86tuF8ifWoyfs
l3V1KGxn8xRYE9Ac/PoC1nPkfWqeumGcimcbiNg3Mr/5
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:59 2024 by rpki-client on console-fra.rpki-client.org