Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/d10841-7d44-46da-b29c-381f23f183d7/1/ifAI62NhaK55suqQHI7qn6tUOKM.roa
File: ifAI62NhaK55suqQHI7qn6tUOKM.roa (raw, json)
Hash identifier: U+3i5Nf31iihQD0J/R2SBExXp6oHkQq2QBhmJ2t3q18=
Subject key identifier: 89:F0:08:EB:63:61:68:AE:79:B2:EA:90:1C:8E:EA:9F:AB:54:38:A3
Certificate issuer: /CN=1a14445259732aa6736c248234465947fc2374d0
Certificate serial: 019113F75F4FBE74165C9413C8D130BD8689
Authority key identifier: 1A:14:44:52:59:73:2A:A6:73:6C:24:82:34:46:59:47:FC:23:74:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GhREUllzKqZzbCSCNEZZR_wjdNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/d10841-7d44-46da-b29c-381f23f183d7/1/ifAI62NhaK55suqQHI7qn6tUOKM.roa
Signing time: Fri 02 Aug 2024 16:41:04 +0000
ROA not before: Fri 02 Aug 2024 16:41:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204300
IP address blocks: 91.214.160.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 18 Sep 2024 13:58:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:13:f7:5f:4f:be:74:16:5c:94:13:c8:d1:30:bd:86:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a14445259732aa6736c248234465947fc2374d0
Validity
Not Before: Aug 2 16:41:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=89f008eb636168ae79b2ea901c8eea9fab5438a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:98:e8:aa:ea:11:06:11:93:f7:cf:f6:80:85:
3d:8f:02:60:b4:92:19:b1:54:31:66:fd:91:af:60:
43:40:d0:87:3e:7c:bd:2f:03:87:13:cc:ea:3e:8a:
0c:71:c0:42:3d:d3:36:1a:6e:bf:67:32:d9:33:a8:
80:3b:2e:52:20:d3:d7:cb:c6:90:df:2f:20:b7:03:
af:fe:c7:3a:4f:a4:dd:4a:03:1e:63:e3:45:39:77:
16:10:e2:01:be:5b:9e:cd:a7:28:4b:2b:ff:9b:04:
db:9a:03:f4:9a:a3:cf:19:54:f9:32:24:73:21:59:
29:0c:9e:69:15:c4:d9:6b:4b:41:d2:c8:03:d2:d5:
b8:b7:64:f2:8f:6a:3d:83:cf:cf:1c:4e:52:61:55:
2c:71:20:c2:80:12:e1:a5:fc:26:a5:93:9f:f0:f1:
be:80:be:fc:14:59:53:81:44:a7:9c:79:21:1d:78:
13:29:c4:dd:84:fd:68:d6:72:8d:0f:e7:a5:d3:bb:
a9:4b:b0:8a:d8:fd:71:4a:dd:b8:d1:b1:ef:6d:98:
1e:61:02:78:32:6c:3e:27:3d:8d:cf:bc:58:f5:c1:
bd:e2:ee:86:bd:a6:57:89:32:cc:45:c5:97:b5:73:
87:61:de:a4:72:f9:fe:18:0a:63:d6:bf:7b:68:cf:
35:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:F0:08:EB:63:61:68:AE:79:B2:EA:90:1C:8E:EA:9F:AB:54:38:A3
X509v3 Authority Key Identifier:
keyid:1A:14:44:52:59:73:2A:A6:73:6C:24:82:34:46:59:47:FC:23:74:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GhREUllzKqZzbCSCNEZZR_wjdNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d10841-7d44-46da-b29c-381f23f183d7/1/ifAI62NhaK55suqQHI7qn6tUOKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d10841-7d44-46da-b29c-381f23f183d7/1/GhREUllzKqZzbCSCNEZZR_wjdNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.214.160.0/22
Signature Algorithm: sha256WithRSAEncryption
8c:6c:7b:90:24:9b:68:9f:11:d9:f6:f8:cc:e1:88:55:15:60:
29:bd:c4:ce:37:7c:1c:0e:4f:5f:2d:c7:6c:60:18:ea:bc:9a:
0f:e8:0b:fd:9e:a9:ef:48:63:9e:06:d8:e5:75:5a:1d:47:cf:
d7:f0:17:cc:04:c7:68:cb:51:f9:33:03:5b:33:fc:f7:8e:39:
c0:36:cb:91:0c:ed:dc:b7:27:14:26:1d:6c:9d:35:37:12:9b:
94:89:58:f0:f4:df:f2:f6:26:54:28:b0:9c:48:d8:a0:ef:14:
8b:2b:70:ea:02:11:e2:5a:7b:c8:f3:1f:9a:42:04:38:01:74:
3a:a6:34:6e:bb:d3:41:89:8d:65:92:37:3f:f2:0b:22:00:6a:
e8:fe:42:33:58:55:b3:b8:e3:55:10:a1:f5:f4:9f:52:42:21:
20:73:24:7f:73:3d:05:21:43:84:ce:38:18:68:18:82:a7:ed:
72:96:93:72:d0:84:cb:33:74:da:85:85:04:e9:7c:06:60:03:
45:c4:6c:b6:37:33:33:b0:8e:56:20:a0:45:5e:af:7b:c5:1f:
53:51:6b:37:9b:2f:d1:42:e5:16:0a:d1:3a:46:6b:16:af:0a:
61:d2:04:a4:a0:94:e0:71:08:4a:4d:b2:5f:df:29:6b:35:8b:
f3:70:b1:a7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZET919PvnQWXJQTyNEwvYaJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFhMTQ0NDUyNTk3MzJhYTY3MzZjMjQ4MjM0NDY1OTQ3ZmMy
Mzc0ZDAwHhcNMjQwODAyMTY0MTA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OWYwMDhlYjYzNjE2OGFlNzliMmVhOTAxYzhlZWE5ZmFiNTQzOGEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr5joquoRBhGT98/2gIU9jwJgtJIZ
sVQxZv2Rr2BDQNCHPny9LwOHE8zqPooMccBCPdM2Gm6/ZzLZM6iAOy5SINPXy8aQ
3y8gtwOv/sc6T6TdSgMeY+NFOXcWEOIBvluezacoSyv/mwTbmgP0mqPPGVT5MiRz
IVkpDJ5pFcTZa0tB0sgD0tW4t2Tyj2o9g8/PHE5SYVUscSDCgBLhpfwmpZOf8PG+
gL78FFlTgUSnnHkhHXgTKcTdhP1o1nKND+el07upS7CK2P1xSt240bHvbZgeYQJ4
Mmw+Jz2Nz7xY9cG94u6GvaZXiTLMRcWXtXOHYd6kcvn+GApj1r97aM81KwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFInwCOtjYWiuebLqkByO6p+rVDijMB8GA1UdIwQY
MBaAFBoURFJZcyqmc2wkgjRGWUf8I3TQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR2hSRVVsbHpLcVp6YkNTQ05FWlpSX3dqZE5BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi9kMTA4NDEtN2Q0NC00NmRhLWIyOWMt
MzgxZjIzZjE4M2Q3LzEvaWZBSTYyTmhhSzU1c3VxUUhJN3FuNnRVT0tNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi9kMTA4NDEtN2Q0NC00NmRhLWIyOWMtMzgxZjIzZjE4M2Q3
LzEvR2hSRVVsbHpLcVp6YkNTQ05FWlpSX3dqZE5BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCW9agMA0G
CSqGSIb3DQEBCwUAA4IBAQCMbHuQJJtonxHZ9vjM4YhVFWApvcTON3wcDk9fLcds
YBjqvJoP6Av9nqnvSGOeBtjldVodR8/X8BfMBMdoy1H5MwNbM/z3jjnANsuRDO3c
tycUJh1snTU3EpuUiVjw9N/y9iZUKLCcSNig7xSLK3DqAhHiWnvI8x+aQgQ4AXQ6
pjRuu9NBiY1lkjc/8gsiAGro/kIzWFWzuONVEKH19J9SQiEgcyR/cz0FIUOEzjgY
aBiCp+1ylpNy0ITLM3TahYUE6XwGYANFxGy2NzMzsI5WIKBFXq97xR9TUWs3my/R
QuUWCtE6RmsWrwph0gSkoJTgcQhKTbJf3ylrNYvzcLGn
-----END CERTIFICATE-----
Generated at Wed Sep 18 19:10:59 2024 by rpki-client on console-fra.rpki-client.org