Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/f816d6-016a-4135-99e3-8c42bb2231ab/1/R2lQdsOhcAnQ_wz4KWQYJnhf8rU.roa
File: R2lQdsOhcAnQ_wz4KWQYJnhf8rU.roa (raw, json)
Hash identifier: RdbXVRNmxrRIbciy4dgmQ62JR630z5GyZb5Wq4wMgDQ=
Subject key identifier: 47:69:50:76:C3:A1:70:09:D0:FF:0C:F8:29:64:18:26:78:5F:F2:B5
Certificate issuer: /CN=72df697430cbb57c49a0a1993024d6d329f7e565
Certificate serial: 01857139CE17E835A0EDED1D39CBB95B7080
Authority key identifier: 72:DF:69:74:30:CB:B5:7C:49:A0:A1:99:30:24:D6:D3:29:F7:E5:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ct9pdDDLtXxJoKGZMCTW0yn35WU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/f816d6-016a-4135-99e3-8c42bb2231ab/1/R2lQdsOhcAnQ_wz4KWQYJnhf8rU.roa
Signing time: Mon 02 Jan 2023 06:44:51 +0000
ROA not before: Mon 02 Jan 2023 06:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211222
IP address blocks: 45.95.10.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:ce:17:e8:35:a0:ed:ed:1d:39:cb:b9:5b:70:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72df697430cbb57c49a0a1993024d6d329f7e565
Validity
Not Before: Jan 2 06:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=47695076c3a17009d0ff0cf829641826785ff2b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:fc:28:8a:f6:39:a5:e7:38:be:7c:8f:11:5c:
1f:92:55:68:ab:00:10:09:63:7c:16:a3:e0:bd:4d:
b6:25:b4:56:83:36:0d:28:cf:f8:75:22:af:b8:33:
e1:56:84:6c:f8:54:a0:c5:89:fa:a8:96:26:8d:da:
fa:45:bd:6e:28:f6:e8:3c:70:83:75:a4:f2:bb:54:
17:5d:b4:2b:ad:f6:03:e4:bb:04:7d:00:c9:c9:24:
83:a5:60:05:46:de:5d:43:fb:cb:d0:d3:b2:e3:48:
3d:69:27:9d:45:89:e5:8a:23:d0:e2:3e:a3:67:17:
29:79:e0:a8:29:7e:9c:37:52:45:ed:e0:36:79:2a:
cd:2d:d0:01:a3:a6:8b:65:57:bf:30:93:9a:a1:26:
15:3f:94:1d:12:b4:40:dd:2d:fd:53:f9:71:b3:56:
13:2a:57:7d:15:88:ca:9d:0b:c0:fa:70:72:21:2a:
64:cd:34:be:54:2a:4a:d3:98:90:5b:94:65:52:dd:
c3:d6:d4:f0:a1:05:a3:be:34:d9:56:b1:fe:a8:6f:
a1:ad:98:c4:bb:94:1e:30:1a:b7:77:99:aa:21:d4:
58:65:66:80:73:b3:3b:41:02:4d:60:08:c0:3f:e0:
15:d6:20:25:03:df:30:ed:f4:de:c2:54:85:6e:89:
9e:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:69:50:76:C3:A1:70:09:D0:FF:0C:F8:29:64:18:26:78:5F:F2:B5
X509v3 Authority Key Identifier:
keyid:72:DF:69:74:30:CB:B5:7C:49:A0:A1:99:30:24:D6:D3:29:F7:E5:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ct9pdDDLtXxJoKGZMCTW0yn35WU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/f816d6-016a-4135-99e3-8c42bb2231ab/1/R2lQdsOhcAnQ_wz4KWQYJnhf8rU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/f816d6-016a-4135-99e3-8c42bb2231ab/1/ct9pdDDLtXxJoKGZMCTW0yn35WU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.10.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:b3:22:af:d7:fe:19:b6:2b:18:4e:17:d5:db:ad:db:3f:8f:
1e:2e:84:bc:a5:76:f6:52:59:33:7a:29:a3:ed:8d:a2:55:8e:
5e:b5:96:d1:16:01:fb:d7:a2:ea:01:87:1d:42:01:77:78:f2:
db:08:46:95:c1:11:ec:27:5e:bd:a1:78:d5:37:75:42:a5:37:
40:6e:92:93:07:fc:0d:ac:69:e4:92:b0:73:43:8a:56:d2:02:
88:c9:ac:46:1b:6d:13:fc:4a:99:15:39:e5:d5:4b:5a:45:4b:
9f:3e:28:18:c6:26:6c:2a:59:79:3b:ed:0d:c4:85:3e:de:e8:
a5:4c:63:c7:8f:3f:4f:e2:ac:90:65:32:91:3f:2f:60:c6:77:
53:0c:0f:7e:2e:e8:4c:b6:af:88:3e:3d:32:a1:7b:1c:ee:c4:
33:92:46:0a:52:04:d6:2f:f2:f9:af:02:33:28:69:0e:b3:34:
b1:6d:8b:ea:6d:5c:6f:c9:4f:71:d6:4a:5b:ea:c7:2b:b0:07:
41:61:0b:67:ba:9f:ed:5f:76:3c:4c:a9:09:45:c7:0f:58:a7:
79:a8:72:1b:42:ef:5e:67:1c:c8:e2:09:db:a4:3b:65:33:0c:
c1:59:8c:48:a6:6e:d6:d3:fe:43:8a:7c:7d:0e:2a:28:f5:0a:
19:03:3a:19
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxOc4X6DWg7e0dOcu5W3CAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyZGY2OTc0MzBjYmI1N2M0OWEwYTE5OTMwMjRkNmQzMjlm
N2U1NjUwHhcNMjMwMTAyMDY0NDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NzY5NTA3NmMzYTE3MDA5ZDBmZjBjZjgyOTY0MTgyNjc4NWZmMmI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnvwoivY5pec4vnyPEVwfklVoqwAQ
CWN8FqPgvU22JbRWgzYNKM/4dSKvuDPhVoRs+FSgxYn6qJYmjdr6Rb1uKPboPHCD
daTyu1QXXbQrrfYD5LsEfQDJySSDpWAFRt5dQ/vL0NOy40g9aSedRYnliiPQ4j6j
ZxcpeeCoKX6cN1JF7eA2eSrNLdABo6aLZVe/MJOaoSYVP5QdErRA3S39U/lxs1YT
Kld9FYjKnQvA+nByISpkzTS+VCpK05iQW5RlUt3D1tTwoQWjvjTZVrH+qG+hrZjE
u5QeMBq3d5mqIdRYZWaAc7M7QQJNYAjAP+AV1iAlA98w7fTewlSFbome4QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEdpUHbDoXAJ0P8M+ClkGCZ4X/K1MB8GA1UdIwQY
MBaAFHLfaXQwy7V8SaChmTAk1tMp9+VlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY3Q5cGREREx0WHhKb0tHWk1DVFcweW4zNVdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9mODE2ZDYtMDE2YS00MTM1LTk5ZTMt
OGM0MmJiMjIzMWFiLzEvUjJsUWRzT2hjQW5RX3d6NEtXUVlKbmhmOHJVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS9mODE2ZDYtMDE2YS00MTM1LTk5ZTMtOGM0MmJiMjIzMWFi
LzEvY3Q5cGREREx0WHhKb0tHWk1DVFcweW4zNVdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALV8KMA0G
CSqGSIb3DQEBCwUAA4IBAQCisyKv1/4ZtisYThfV263bP48eLoS8pXb2Ulkzeimj
7Y2iVY5etZbRFgH716LqAYcdQgF3ePLbCEaVwRHsJ169oXjVN3VCpTdAbpKTB/wN
rGnkkrBzQ4pW0gKIyaxGG20T/EqZFTnl1UtaRUufPigYxiZsKll5O+0NxIU+3uil
TGPHjz9P4qyQZTKRPy9gxndTDA9+LuhMtq+IPj0yoXsc7sQzkkYKUgTWL/L5rwIz
KGkOszSxbYvqbVxvyU9x1kpb6scrsAdBYQtnup/tX3Y8TKkJRccPWKd5qHIbQu9e
ZxzI4gnbpDtlMwzBWYxIpm7W0/5Dinx9Dioo9QoZAzoZ
-----END CERTIFICATE-----
Generated at Mon Jan 1 14:10:12 2024 by rpki-client on console.sobornost.net