Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/phxTNKnA_2HLzbBiYM7AvnVR1ws.roa
File: phxTNKnA_2HLzbBiYM7AvnVR1ws.roa (raw, json)
Hash identifier: CLDcP3OBuHxgNU4dtuwwOqI2nXJK2+CC/zcCUIUaMcs=
Subject key identifier: A6:1C:53:34:A9:C0:FF:61:CB:CD:B0:62:60:CE:C0:BE:75:51:D7:0B
Certificate issuer: /CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Certificate serial: 018FAA3EF1D50FBF5FBAAE4E855D0CAD1118
Authority key identifier: 06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/phxTNKnA_2HLzbBiYM7AvnVR1ws.roa
Signing time: Fri 24 May 2024 10:56:42 +0000
ROA not before: Fri 24 May 2024 10:56:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 45.155.243.0/24 maxlen: 24
194.143.214.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Jun 2024 10:39:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:aa:3e:f1:d5:0f:bf:5f:ba:ae:4e:85:5d:0c:ad:11:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Validity
Not Before: May 24 10:56:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a61c5334a9c0ff61cbcdb06260cec0be7551d70b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:15:41:38:a2:3b:25:34:c5:dd:df:e6:32:b2:
00:71:67:a8:68:71:87:bd:f0:ff:a8:89:fd:32:06:
0a:e3:9f:89:bf:a0:02:f6:a4:12:f8:eb:2e:ee:d5:
64:3f:87:42:93:a0:52:19:a8:0f:3b:2d:08:e6:05:
fa:a5:a4:0f:a7:e1:07:67:89:61:df:b3:8d:9b:1a:
d1:c3:a5:c9:7c:b2:38:2c:e9:d0:8b:5e:41:02:5f:
80:8a:40:ff:24:05:35:17:a2:dd:fb:3c:20:39:b8:
32:3b:43:57:53:a9:db:84:c1:a6:ad:e1:fe:d5:e6:
8b:a6:86:85:ff:16:df:a0:2b:50:0e:3f:4d:32:09:
5d:c5:78:21:d3:38:47:7e:b5:ec:41:9b:88:fc:24:
ca:72:17:f4:5b:a8:76:b8:cd:20:c8:ea:6a:a8:0b:
e4:1a:97:62:21:64:d2:6f:10:d1:2c:28:bf:23:ef:
72:54:30:e6:f7:6a:c7:2b:06:36:ec:92:7a:11:bd:
32:57:0d:b3:fb:00:4d:24:81:00:6f:8d:26:82:f6:
0d:da:b0:38:e8:d7:4f:83:f3:97:5e:00:27:69:28:
53:2e:52:ad:a0:df:43:73:d6:a5:46:eb:70:e1:ca:
44:bb:83:fa:16:2b:c8:3b:8e:16:e2:4a:20:d3:04:
3f:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:1C:53:34:A9:C0:FF:61:CB:CD:B0:62:60:CE:C0:BE:75:51:D7:0B
X509v3 Authority Key Identifier:
keyid:06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/phxTNKnA_2HLzbBiYM7AvnVR1ws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/BnHcx6msc1HHHgvCJ4z0X9Agri4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.243.0/24
194.143.214.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:cf:a4:f5:7f:de:68:0b:a8:55:22:c9:30:89:c6:2f:2b:4d:
0a:f7:f2:40:9e:1f:1b:16:82:e5:6c:06:8e:32:10:0f:0d:b9:
01:9e:87:1d:66:e0:18:f9:09:f2:77:dd:d2:71:88:9d:a4:cd:
bb:c2:36:f4:e2:fe:ab:9b:29:74:84:49:d0:a6:61:35:8a:ff:
55:8e:42:90:85:74:7e:79:2f:12:f3:fe:51:cd:2a:00:38:14:
20:4d:c8:ab:3e:e7:a2:65:cb:87:e8:88:ac:b4:55:17:50:45:
2f:db:d3:d7:51:12:a0:1a:d4:fc:4e:9d:8b:e7:e0:33:17:7e:
07:71:5d:c6:c3:5e:36:9e:8e:87:5e:ef:5e:e4:e6:19:e8:d8:
a8:07:81:ad:1c:9a:af:e7:cf:ed:8d:65:8e:43:2c:d6:f2:3f:
15:69:6f:3f:9e:82:bd:b3:aa:59:03:dc:b8:34:7c:77:c8:3e:
51:89:51:ca:d1:a6:82:f4:cd:b4:01:a2:f6:f2:9b:59:4f:68:
f8:7f:53:40:50:6b:83:d8:88:7e:ed:b7:95:11:a1:69:84:21:
6d:83:4d:17:71:cc:2a:37:8a:2c:88:0b:e0:a1:7d:da:91:a8:
99:c2:84:fc:96:a5:c9:47:b7:e7:66:bc:33:e8:c4:01:5f:c0:
90:47:14:40
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY+qPvHVD79fuq5OhV0MrREYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2NzFkY2M3YTlhYzczNTFjNzFlMGJjMjI3OGNmNDVmZDAy
MGFlMmUwHhcNMjQwNTI0MTA1NjQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNjFjNTMzNGE5YzBmZjYxY2JjZGIwNjI2MGNlYzBiZTc1NTFkNzBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuxVBOKI7JTTF3d/mMrIAcWeoaHGH
vfD/qIn9MgYK45+Jv6AC9qQS+Osu7tVkP4dCk6BSGagPOy0I5gX6paQPp+EHZ4lh
37ONmxrRw6XJfLI4LOnQi15BAl+AikD/JAU1F6Ld+zwgObgyO0NXU6nbhMGmreH+
1eaLpoaF/xbfoCtQDj9NMgldxXgh0zhHfrXsQZuI/CTKchf0W6h2uM0gyOpqqAvk
GpdiIWTSbxDRLCi/I+9yVDDm92rHKwY27JJ6Eb0yVw2z+wBNJIEAb40mgvYN2rA4
6NdPg/OXXgAnaShTLlKtoN9Dc9alRutw4cpEu4P6FivIO44W4kog0wQ//QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFKYcUzSpwP9hy82wYmDOwL51UdcLMB8GA1UdIwQY
MBaAFAZx3MeprHNRxx4LwieM9F/QIK4uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQm5IY3g2bXNjMUhISGd2Q0o0ejBYOUFncmk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS8xZjk0OTMtZDQ2OC00YTdjLThjNGIt
MWRkZWM0Y2NlMjRjLzEvcGh4VE5LbkFfMkhMemJCaVlNN0F2blZSMXdzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS8xZjk0OTMtZDQ2OC00YTdjLThjNGItMWRkZWM0Y2NlMjRj
LzEvQm5IY3g2bXNjMUhISGd2Q0o0ejBYOUFncmk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALZvzAwQA
wo/WMA0GCSqGSIb3DQEBCwUAA4IBAQDAz6T1f95oC6hVIskwicYvK00K9/JAnh8b
FoLlbAaOMhAPDbkBnocdZuAY+Qnyd93ScYidpM27wjb04v6rmyl0hEnQpmE1iv9V
jkKQhXR+eS8S8/5RzSoAOBQgTcirPueiZcuH6IistFUXUEUv29PXURKgGtT8Tp2L
5+AzF34HcV3Gw142no6HXu9e5OYZ6NioB4GtHJqv58/tjWWOQyzW8j8VaW8/noK9
s6pZA9y4NHx3yD5RiVHK0aaC9M20AaL28ptZT2j4f1NAUGuD2Ih+7beVEaFphCFt
g00XccwqN4osiAvgoX3akaiZwoT8lqXJR7fnZrwz6MQBX8CQRxRA
-----END CERTIFICATE-----
Generated at Mon Jun 10 14:02:08 2024 by rpki-client on console-fra.rpki-client.org