Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/hxBfZfUUWdl40G4yWABZ40JcjxA.roa
File: hxBfZfUUWdl40G4yWABZ40JcjxA.roa (raw, json)
Hash identifier: dteFXJuPEp2pX6778Ops65bkLxDcDKfjtu/fazmqqA0=
Subject key identifier: 87:10:5F:65:F5:14:59:D9:78:D0:6E:32:58:00:59:E3:42:5C:8F:10
Certificate issuer: /CN=c6a249a0eacd8abcbea0d82ef71016d386e8ef94
Certificate serial: 0193B1F8083976B7BC609973841378A73385
Authority key identifier: C6:A2:49:A0:EA:CD:8A:BC:BE:A0:D8:2E:F7:10:16:D3:86:E8:EF:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xqJJoOrNiry-oNgu9xAW04bo75Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/hxBfZfUUWdl40G4yWABZ40JcjxA.roa
Signing time: Tue 10 Dec 2024 19:07:22 +0000
ROA not before: Tue 10 Dec 2024 19:07:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3320
IP address blocks: 45.157.158.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 10 Dec 2024 21:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b1:f8:08:39:76:b7:bc:60:99:73:84:13:78:a7:33:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6a249a0eacd8abcbea0d82ef71016d386e8ef94
Validity
Not Before: Dec 10 19:07:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=87105f65f51459d978d06e32580059e3425c8f10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e1:01:fc:19:33:e0:c8:19:8b:e4:b6:91:af:
c6:a0:77:31:e9:6e:b0:f6:2e:d9:04:3d:19:97:93:
67:37:11:70:98:52:4c:94:53:18:ae:de:4b:98:ae:
50:fa:b3:c2:ba:b2:ba:20:28:5f:7f:c1:60:b2:d5:
63:db:03:e4:da:5b:92:7f:07:72:75:01:b6:81:1e:
fc:1b:e7:86:14:d4:c5:08:a9:33:4f:a9:38:45:c8:
a6:50:45:61:80:58:e9:00:08:8a:47:ef:2d:38:3a:
a9:db:39:8b:4e:e6:03:2e:da:8d:be:ae:77:77:e7:
3b:5b:62:5f:74:09:05:d0:96:62:a1:5d:d7:27:8f:
78:74:b0:45:35:e4:33:7a:a7:cb:44:fb:3c:5f:5e:
98:9f:96:f2:2f:19:52:ee:7d:93:d7:6c:88:62:89:
f0:2d:41:17:b2:87:43:f7:38:f9:ff:29:6a:50:3e:
53:b6:88:ce:fe:e5:2f:87:91:52:92:c9:c6:4f:27:
2d:f7:f1:9d:e5:48:6f:ef:db:76:0f:ac:0a:5d:35:
31:09:e7:fa:a0:19:eb:a2:40:3a:26:92:f1:0e:ac:
fa:ff:0c:21:7f:67:33:9d:94:f9:27:b2:6f:3d:ab:
99:71:ea:d3:d3:63:2d:2a:85:01:18:29:40:b9:dc:
25:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:10:5F:65:F5:14:59:D9:78:D0:6E:32:58:00:59:E3:42:5C:8F:10
X509v3 Authority Key Identifier:
keyid:C6:A2:49:A0:EA:CD:8A:BC:BE:A0:D8:2E:F7:10:16:D3:86:E8:EF:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xqJJoOrNiry-oNgu9xAW04bo75Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/hxBfZfUUWdl40G4yWABZ40JcjxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/30f186-90e2-4ca6-917e-21057d228d05/1/xqJJoOrNiry-oNgu9xAW04bo75Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.158.0/23
Signature Algorithm: sha256WithRSAEncryption
90:a0:4f:ed:d9:9c:45:2d:bc:1b:0d:01:c8:88:c0:b0:8d:09:
9e:f7:91:bc:51:56:b0:69:0d:05:af:a0:eb:9b:9e:93:90:0e:
69:d3:21:1f:7a:87:9a:42:ac:65:4a:ed:e0:5c:c6:2a:df:c9:
63:3e:35:34:6a:a3:63:0e:ad:88:7e:1e:35:6d:a4:cc:62:25:
e6:d5:d0:f5:3f:c5:e1:d9:e3:24:a9:b3:04:8a:e9:80:47:a1:
19:d8:18:50:e6:4a:8c:3e:19:c6:16:e3:55:2a:9b:cd:0a:e6:
54:e4:9c:e0:37:6e:59:65:82:6e:3b:71:84:ca:7d:b8:23:af:
e1:89:8e:df:0c:99:3e:01:3c:1e:07:c7:cd:7c:59:6c:8f:61:
4d:57:dc:45:93:05:31:40:f5:00:56:4a:df:a3:0c:06:6e:ac:
53:b6:51:6c:e7:f7:51:54:45:db:57:b1:90:23:c7:ce:b3:fa:
fa:de:f2:78:c4:29:f7:71:ad:fc:47:54:38:f0:f6:85:a3:75:
ad:aa:21:d7:4d:6a:32:6c:69:50:9d:40:2c:9e:19:91:16:24:
28:44:3b:a8:20:7c:ba:85:7d:ec:25:89:ad:d9:bb:3e:c8:c9:
33:7f:c0:58:ff:76:cd:5d:4f:85:d1:3e:07:52:c1:8d:22:f6:
80:5b:c4:63
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZOx+Ag5dre8YJlzhBN4pzOFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2YTI0OWEwZWFjZDhhYmNiZWEwZDgyZWY3MTAxNmQzODZl
OGVmOTQwHhcNMjQxMjEwMTkwNzIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NzEwNWY2NWY1MTQ1OWQ5NzhkMDZlMzI1ODAwNTllMzQyNWM4ZjEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAveEB/Bkz4MgZi+S2ka/GoHcx6W6w
9i7ZBD0Zl5NnNxFwmFJMlFMYrt5LmK5Q+rPCurK6IChff8FgstVj2wPk2luSfwdy
dQG2gR78G+eGFNTFCKkzT6k4RcimUEVhgFjpAAiKR+8tODqp2zmLTuYDLtqNvq53
d+c7W2JfdAkF0JZioV3XJ494dLBFNeQzeqfLRPs8X16Yn5byLxlS7n2T12yIYonw
LUEXsodD9zj5/ylqUD5TtojO/uUvh5FSksnGTyct9/Gd5Uhv79t2D6wKXTUxCef6
oBnrokA6JpLxDqz6/wwhf2cznZT5J7JvPauZcerT02MtKoUBGClAudwlDwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIcQX2X1FFnZeNBuMlgAWeNCXI8QMB8GA1UdIwQY
MBaAFMaiSaDqzYq8vqDYLvcQFtOG6O+UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveHFKSm9Pck5pcnktb05ndTl4QVcwNGJvNzVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC8zMGYxODYtOTBlMi00Y2E2LTkxN2Ut
MjEwNTdkMjI4ZDA1LzEvaHhCZlpmVVVXZGw0MEc0eVdBQlo0MEpjanhBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNC8zMGYxODYtOTBlMi00Y2E2LTkxN2UtMjEwNTdkMjI4ZDA1
LzEveHFKSm9Pck5pcnktb05ndTl4QVcwNGJvNzVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLZ2eMA0G
CSqGSIb3DQEBCwUAA4IBAQCQoE/t2ZxFLbwbDQHIiMCwjQme95G8UVawaQ0Fr6Dr
m56TkA5p0yEfeoeaQqxlSu3gXMYq38ljPjU0aqNjDq2Ifh41baTMYiXm1dD1P8Xh
2eMkqbMEiumAR6EZ2BhQ5kqMPhnGFuNVKpvNCuZU5JzgN25ZZYJuO3GEyn24I6/h
iY7fDJk+ATweB8fNfFlsj2FNV9xFkwUxQPUAVkrfowwGbqxTtlFs5/dRVEXbV7GQ
I8fOs/r63vJ4xCn3ca38R1Q48PaFo3WtqiHXTWoybGlQnUAsnhmRFiQoRDuoIHy6
hX3sJYmt2bs+yMkzf8BY/3bNXU+F0T4HUsGNIvaAW8Rj
-----END CERTIFICATE-----
Generated at Wed Apr 16 08:35:20 2025 by rpki-client