Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/vRuL4gJ7HnWnZ7-KNxNR1uJXl8k.roa
File: vRuL4gJ7HnWnZ7-KNxNR1uJXl8k.roa (raw, json)
Hash identifier: FRbgnzU4wsM4bQ8cE+1enKk2QrJOVEEN7Z5xPfxF07E=
Subject key identifier: BD:1B:8B:E2:02:7B:1E:75:A7:67:BF:8A:37:13:51:D6:E2:57:97:C9
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 018F4CB58A2DC94FDE6658524DD2E70B68AA
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/vRuL4gJ7HnWnZ7-KNxNR1uJXl8k.roa
Signing time: Mon 06 May 2024 07:01:56 +0000
ROA not before: Mon 06 May 2024 07:01:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 400866
IP address blocks: 91.210.145.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 May 2024 08:17:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4c:b5:8a:2d:c9:4f:de:66:58:52:4d:d2:e7:0b:68:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: May 6 07:01:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bd1b8be2027b1e75a767bf8a371351d6e25797c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:be:8e:16:75:b5:69:92:ce:f0:0f:1a:ac:73:
69:a6:43:f4:d0:79:4a:47:35:0d:38:0d:38:48:ef:
97:38:2f:d3:57:86:b5:89:0e:04:46:fc:58:b5:31:
db:aa:d0:bc:db:2f:36:e3:5a:ff:dd:b7:ce:b4:6e:
71:11:a7:e0:c6:bf:0c:b7:12:e5:ba:da:bc:a9:8c:
ad:e3:c4:7b:47:84:57:93:6f:be:10:c2:91:ce:a0:
94:05:ee:95:17:1f:eb:1f:fc:86:39:d7:3f:74:31:
83:7e:f8:9a:4d:0b:1c:75:ae:04:f6:a2:62:6e:bf:
49:4e:77:f7:19:d9:80:39:0b:84:aa:c9:5b:01:af:
d2:d3:89:c1:03:59:7c:23:58:e0:ca:f4:57:eb:00:
5b:9b:cc:bc:98:39:29:0b:20:4a:4b:3c:21:e5:d5:
e2:8c:70:fa:1f:df:7e:5b:e8:b7:43:63:aa:c0:03:
e0:64:06:9d:7d:8f:e2:f4:e9:0a:22:41:0f:72:ec:
1d:4b:f0:68:cd:7c:9b:26:a9:69:37:20:ae:34:b0:
1e:f6:d0:7a:0d:ad:0d:a5:f9:33:a1:6c:30:15:14:
dc:eb:7a:86:3e:8d:f2:5b:59:d2:5f:e2:99:ed:e1:
23:39:37:ad:1a:ce:1d:c8:16:d8:97:06:b8:3e:16:
9b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:1B:8B:E2:02:7B:1E:75:A7:67:BF:8A:37:13:51:D6:E2:57:97:C9
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/vRuL4gJ7HnWnZ7-KNxNR1uJXl8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.210.145.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:f0:aa:c8:9d:68:cc:9c:c2:72:46:59:1d:c7:8a:36:9e:14:
2c:c0:44:85:61:2d:69:24:a3:9b:4d:1f:13:33:96:92:e8:92:
97:4d:7c:6e:e6:c1:e8:3d:c0:a7:f2:50:85:01:a1:40:65:17:
ae:71:22:48:ae:88:35:e8:09:ff:2f:e3:a4:fc:46:dd:2c:c7:
1f:27:70:c5:58:02:aa:33:81:30:d1:2e:93:98:2a:f0:a4:5d:
80:67:52:56:10:83:ed:4d:ba:a6:fc:3f:c0:11:e6:0e:38:b3:
b8:e9:37:cc:06:e6:0a:71:a1:e5:b8:aa:66:16:4d:36:a3:71:
d6:65:07:1d:e8:b2:02:94:6b:44:8d:99:c4:82:9f:d4:db:7a:
57:f4:28:2a:21:06:a6:10:57:1e:76:02:ff:ad:82:bd:b2:53:
2f:3f:30:ea:e0:f4:28:e9:ba:82:d5:20:3a:ff:e1:49:db:87:
8e:04:e3:7c:a5:a7:9c:0b:6e:41:32:5a:7c:01:8c:26:60:78:
1f:c1:f0:f0:a5:03:6c:63:63:b5:fe:d9:8f:fb:bf:5e:d6:c2:
cc:be:46:89:24:1e:52:6b:ed:d1:3c:d9:8e:ff:fb:01:a4:6d:
28:39:3e:2e:4e:04:d3:2d:2f:a4:89:b3:23:24:90:06:3a:2a:
b9:8a:66:41
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY9MtYotyU/eZlhSTdLnC2iqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzM2UzZjVlZjgyNTU1NmIwMTRhMDg1ZDMyNTY1YmIwY2Jj
NWFjOGQwHhcNMjQwNTA2MDcwMTU2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZDFiOGJlMjAyN2IxZTc1YTc2N2JmOGEzNzEzNTFkNmUyNTc5N2M5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt76OFnW1aZLO8A8arHNppkP00HlK
RzUNOA04SO+XOC/TV4a1iQ4ERvxYtTHbqtC82y8241r/3bfOtG5xEafgxr8MtxLl
utq8qYyt48R7R4RXk2++EMKRzqCUBe6VFx/rH/yGOdc/dDGDfviaTQscda4E9qJi
br9JTnf3GdmAOQuEqslbAa/S04nBA1l8I1jgyvRX6wBbm8y8mDkpCyBKSzwh5dXi
jHD6H99+W+i3Q2OqwAPgZAadfY/i9OkKIkEPcuwdS/BozXybJqlpNyCuNLAe9tB6
Da0NpfkzoWwwFRTc63qGPo3yW1nSX+KZ7eEjOTetGs4dyBbYlwa4PhabWwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFL0bi+ICex51p2e/ijcTUdbiV5fJMB8GA1UdIwQY
MBaAFIM+P174JVVrAUoIXTJWW7DLxayNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAt
MzE4YTI2ZDRhOGM5LzEvdlJ1TDRnSjdIblduWjctS054TlIxdUpYbDhrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAtMzE4YTI2ZDRhOGM5
LzEvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9KRMA0G
CSqGSIb3DQEBCwUAA4IBAQBN8KrInWjMnMJyRlkdx4o2nhQswESFYS1pJKObTR8T
M5aS6JKXTXxu5sHoPcCn8lCFAaFAZReucSJIrog16An/L+Ok/EbdLMcfJ3DFWAKq
M4Ew0S6TmCrwpF2AZ1JWEIPtTbqm/D/AEeYOOLO46TfMBuYKcaHluKpmFk02o3HW
ZQcd6LIClGtEjZnEgp/U23pX9CgqIQamEFcedgL/rYK9slMvPzDq4PQo6bqC1SA6
/+FJ24eOBON8paecC25BMlp8AYwmYHgfwfDwpQNsY2O1/tmP+79e1sLMvkaJJB5S
a+3RPNmO//sBpG0oOT4uTgTTLS+kibMjJJAGOiq5imZB
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:07 2024 by rpki-client on console-ams.rpki-client.org