Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/8db67a-c4fc-4c2c-9978-a7be5fa0ff65/1/SRE71VXU8gKQvzHJJEFM9yt5khM.roa
File: SRE71VXU8gKQvzHJJEFM9yt5khM.roa (raw, json)
Hash identifier: 6vL0YSiUEdsHaExwfsVnxEvFABsDD5SdwYBh+Xubcog=
Subject key identifier: 49:11:3B:D5:55:D4:F2:02:90:BF:31:C9:24:41:4C:F7:2B:79:92:13
Certificate issuer: /CN=ed624c590027a5a8c9eeb369726e4a630cdf414c
Certificate serial: 018DC1AE9B1ED4195DCDF640A6E2404EB1A4
Authority key identifier: ED:62:4C:59:00:27:A5:A8:C9:EE:B3:69:72:6E:4A:63:0C:DF:41:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7WJMWQAnpajJ7rNpcm5KYwzfQUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/8db67a-c4fc-4c2c-9978-a7be5fa0ff65/1/SRE71VXU8gKQvzHJJEFM9yt5khM.roa
Signing time: Mon 19 Feb 2024 14:04:22 +0000
ROA not before: Mon 19 Feb 2024 14:04:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 45.89.128.0/22 maxlen: 22
2a0b:a200::/31 maxlen: 31
Validation: Failed, certificate revoked on Fri 01 Mar 2024 12:02:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c1:ae:9b:1e:d4:19:5d:cd:f6:40:a6:e2:40:4e:b1:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed624c590027a5a8c9eeb369726e4a630cdf414c
Validity
Not Before: Feb 19 14:04:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=49113bd555d4f20290bf31c924414cf72b799213
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:7b:53:e2:94:5b:78:d0:97:8c:5d:e2:f0:53:
bd:41:70:f9:dc:c3:22:35:bc:25:af:7e:76:77:61:
35:0b:3c:cb:18:e4:ce:f6:4b:86:3c:ae:84:08:fb:
d3:f3:c3:1d:f6:9b:03:8a:bf:d9:35:8e:84:3b:74:
14:a0:52:c2:18:cd:8f:81:e3:40:49:fb:27:7a:24:
a6:9d:8b:92:a2:2c:bf:7f:b2:43:a1:b8:36:40:5b:
c4:ae:3e:a8:4f:e3:91:cd:51:5f:66:de:ad:c5:f1:
15:a0:1f:10:68:95:83:67:4d:ec:80:96:34:7c:d4:
b6:e3:c5:16:c1:e8:c3:a5:a9:86:2a:8f:cd:8e:f4:
c5:e9:4c:b2:23:47:db:e9:7f:14:10:74:bd:c2:04:
cf:d2:83:b4:d8:fc:ad:0e:c8:9a:70:44:1b:97:54:
23:71:65:16:ca:4c:d9:e4:d6:6c:a2:e9:14:b3:ac:
b3:71:e4:0f:d6:ac:68:b6:39:7f:4f:4b:b1:aa:16:
b2:99:1f:32:08:33:b7:41:e3:44:9f:f9:67:6a:31:
1e:fb:2a:92:75:24:aa:8f:1e:8b:e1:62:2e:97:08:
37:6d:06:e7:3d:2f:ca:b4:91:e6:26:69:a8:93:98:
0b:54:82:e1:9b:86:44:03:e9:ee:80:c9:ec:50:5a:
8a:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:11:3B:D5:55:D4:F2:02:90:BF:31:C9:24:41:4C:F7:2B:79:92:13
X509v3 Authority Key Identifier:
keyid:ED:62:4C:59:00:27:A5:A8:C9:EE:B3:69:72:6E:4A:63:0C:DF:41:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7WJMWQAnpajJ7rNpcm5KYwzfQUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/8db67a-c4fc-4c2c-9978-a7be5fa0ff65/1/SRE71VXU8gKQvzHJJEFM9yt5khM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/8db67a-c4fc-4c2c-9978-a7be5fa0ff65/1/7WJMWQAnpajJ7rNpcm5KYwzfQUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.128.0/22
IPv6:
2a0b:a200::/31
Signature Algorithm: sha256WithRSAEncryption
88:b1:2f:84:bb:32:d7:40:83:3e:70:47:77:c0:81:d6:a1:db:
de:94:3b:12:99:ea:26:9c:cb:b8:93:20:0d:6f:82:2c:24:7d:
9f:8f:14:90:c4:a7:5b:c8:1d:78:64:2f:3a:58:af:31:ac:70:
f6:59:09:28:d3:64:9b:b4:a8:8a:de:e8:00:ac:0a:9c:5d:06:
6c:1b:24:b7:eb:fa:2d:e8:53:5b:e5:75:59:82:65:08:67:64:
3f:0d:46:b5:44:5b:bb:89:35:ce:d1:89:f9:57:00:66:7f:a5:
7b:34:d0:9d:75:02:0d:a4:9b:aa:44:50:6d:2a:03:96:7b:dc:
e3:48:52:3e:ec:6c:db:07:d9:45:09:d7:97:a1:f2:b3:d7:37:
13:a6:f6:09:21:c5:9c:b7:5c:f8:d8:ff:9b:a3:fb:af:34:30:
00:a4:40:dc:2e:92:d9:ae:61:ec:a0:04:84:51:7d:ca:53:49:
0e:c8:1b:81:ee:ca:76:62:cd:fb:8c:94:c2:b2:6c:f2:a4:b2:
59:fc:86:3c:59:b6:12:4b:88:d6:36:67:13:b4:f4:7b:8b:19:
05:b8:6c:73:cd:21:2d:8a:58:ef:80:51:26:7b:6b:4e:3e:65:
c0:64:35:15:48:10:28:08:a2:d0:79:dc:dc:eb:e1:08:99:4a:
79:19:67:28
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAY3Brpse1BldzfZApuJATrGkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVkNjI0YzU5MDAyN2E1YThjOWVlYjM2OTcyNmU0YTYzMGNk
ZjQxNGMwHhcNMjQwMjE5MTQwNDIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OTExM2JkNTU1ZDRmMjAyOTBiZjMxYzkyNDQxNGNmNzJiNzk5MjEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzHtT4pRbeNCXjF3i8FO9QXD53MMi
Nbwlr352d2E1CzzLGOTO9kuGPK6ECPvT88Md9psDir/ZNY6EO3QUoFLCGM2PgeNA
SfsneiSmnYuSoiy/f7JDobg2QFvErj6oT+ORzVFfZt6txfEVoB8QaJWDZ03sgJY0
fNS248UWwejDpamGKo/NjvTF6UyyI0fb6X8UEHS9wgTP0oO02PytDsiacEQbl1Qj
cWUWykzZ5NZsoukUs6yzceQP1qxotjl/T0uxqhaymR8yCDO3QeNEn/lnajEe+yqS
dSSqjx6L4WIulwg3bQbnPS/KtJHmJmmok5gLVILhm4ZEA+nugMnsUFqKJQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFEkRO9VV1PICkL8xySRBTPcreZITMB8GA1UdIwQY
MBaAFO1iTFkAJ6Woye6zaXJuSmMM30FMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN1dKTVdRQW5wYWpKN3JOcGNtNUtZd3pmUVV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy84ZGI2N2EtYzRmYy00YzJjLTk5Nzgt
YTdiZTVmYTBmZjY1LzEvU1JFNzFWWFU4Z0tRdnpISkpFRk05eXQ1a2hNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy84ZGI2N2EtYzRmYy00YzJjLTk5NzgtYTdiZTVmYTBmZjY1
LzEvN1dKTVdRQW5wYWpKN3JOcGNtNUtZd3pmUVV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCLVmAMA0E
AgACMAcDBQEqC6IAMA0GCSqGSIb3DQEBCwUAA4IBAQCIsS+EuzLXQIM+cEd3wIHW
odvelDsSmeomnMu4kyANb4IsJH2fjxSQxKdbyB14ZC86WK8xrHD2WQko02SbtKiK
3ugArAqcXQZsGyS36/ot6FNb5XVZgmUIZ2Q/DUa1RFu7iTXO0Yn5VwBmf6V7NNCd
dQINpJuqRFBtKgOWe9zjSFI+7GzbB9lFCdeXofKz1zcTpvYJIcWct1z42P+bo/uv
NDAApEDcLpLZrmHsoASEUX3KU0kOyBuB7sp2Ys37jJTCsmzypLJZ/IY8WbYSS4jW
NmcTtPR7ixkFuGxzzSEtiljvgFEme2tOPmXAZDUVSBAoCKLQedzc6+EImUp5GWco
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:12 2024 by rpki-client on console-ams.rpki-client.org