Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/0157a2-9076-4a80-be23-053f3dfc1521/1/WdpzJA7nFa-F-k0XD7XQb6suXAs.roa
File: WdpzJA7nFa-F-k0XD7XQb6suXAs.roa (raw, json)
Hash identifier: 9hYdxxYNoAw/VlMdHWg2CuEPJa+iyeQZ7eyUcWhyRE8=
Subject key identifier: 59:DA:73:24:0E:E7:15:AF:85:FA:4D:17:0F:B5:D0:6F:AB:2E:5C:0B
Certificate issuer: /CN=9bdffc8bdb844970b8e28b9b4be6f2c06dfd7985
Certificate serial: 018572BA5CBF458EEEAE23357B41B6A1ECE7
Authority key identifier: 9B:DF:FC:8B:DB:84:49:70:B8:E2:8B:9B:4B:E6:F2:C0:6D:FD:79:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9_8i9uESXC44oubS-bywG39eYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/0157a2-9076-4a80-be23-053f3dfc1521/1/WdpzJA7nFa-F-k0XD7XQb6suXAs.roa
Signing time: Mon 02 Jan 2023 13:44:54 +0000
ROA not before: Mon 02 Jan 2023 13:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213138
IP address blocks: 91.218.57.0/24 maxlen: 24
2a07:fec0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:5c:bf:45:8e:ee:ae:23:35:7b:41:b6:a1:ec:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bdffc8bdb844970b8e28b9b4be6f2c06dfd7985
Validity
Not Before: Jan 2 13:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=59da73240ee715af85fa4d170fb5d06fab2e5c0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ab:b1:fc:fc:28:1f:61:3d:8d:f0:a2:76:2a:
f9:3b:9e:c7:fb:0d:2d:59:4d:b0:e4:64:cc:91:a4:
7e:7d:53:28:4f:a0:b9:0a:57:2a:48:fc:61:12:9d:
53:46:63:86:4d:c6:5a:b4:00:71:24:74:94:8c:aa:
94:f6:09:25:4f:25:d4:e6:fa:68:01:3e:72:7f:c8:
04:99:a0:c1:0e:b6:d7:50:46:d5:e7:50:e4:cc:7c:
f2:6d:22:69:56:04:60:69:12:a3:0b:73:69:19:1a:
46:ce:69:36:1a:a4:34:8c:fa:85:0a:bc:8e:40:e1:
30:5a:8f:0a:f8:72:19:e2:fc:8b:f9:81:ca:62:d0:
60:76:3e:53:7d:4b:69:ed:47:44:5c:10:4c:5a:16:
f2:b5:70:8f:3d:12:72:de:13:29:a4:97:82:e3:be:
48:fb:03:d5:95:d0:35:e5:8b:34:b0:21:2f:46:dd:
33:6a:14:b1:e8:af:de:6d:6e:d8:12:2b:36:47:8b:
29:11:79:7b:45:2f:a7:50:2c:1a:76:d5:ae:50:04:
c1:6d:74:0a:df:b1:c6:6d:74:af:c1:ca:d7:0b:b1:
5f:dd:b9:f2:36:67:0a:26:12:20:a2:56:9a:d3:54:
da:d3:5b:39:52:77:52:54:64:7a:2a:27:68:e2:a6:
c4:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:DA:73:24:0E:E7:15:AF:85:FA:4D:17:0F:B5:D0:6F:AB:2E:5C:0B
X509v3 Authority Key Identifier:
keyid:9B:DF:FC:8B:DB:84:49:70:B8:E2:8B:9B:4B:E6:F2:C0:6D:FD:79:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9_8i9uESXC44oubS-bywG39eYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/0157a2-9076-4a80-be23-053f3dfc1521/1/WdpzJA7nFa-F-k0XD7XQb6suXAs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/0157a2-9076-4a80-be23-053f3dfc1521/1/m9_8i9uESXC44oubS-bywG39eYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.218.57.0/24
IPv6:
2a07:fec0::/29
Signature Algorithm: sha256WithRSAEncryption
71:69:7e:90:96:18:24:22:68:a1:9e:aa:75:c4:db:dd:59:17:
d3:32:47:5b:21:4a:35:b5:fc:b5:d8:15:11:83:99:18:29:df:
93:d5:c1:dc:92:61:9e:cf:7a:18:d2:af:71:25:5d:11:dc:d0:
f4:37:bb:6c:ee:78:13:2e:2b:d3:a9:53:17:1c:ab:cc:7a:47:
91:53:63:a1:63:e8:5f:67:b1:a3:e3:57:e4:1c:ef:55:a6:8b:
d1:91:dd:9b:99:50:9c:6b:06:6d:1b:ee:aa:7c:38:e2:94:dd:
a3:c9:4a:4d:5f:0e:08:76:f5:bb:f3:69:27:5f:b4:07:93:eb:
b5:3d:59:c9:a8:25:93:6c:36:d2:2e:b2:5f:34:99:8a:5d:47:
4f:43:bd:17:cc:6b:d4:01:8c:cb:c3:35:a7:be:6d:d9:4e:64:
32:15:11:71:e0:4b:dc:2c:47:90:87:a4:7a:d6:e9:14:36:86:
1e:37:55:42:a9:19:5b:dd:2e:1d:a5:04:06:21:38:e2:8a:b2:
7d:22:96:5d:f0:c3:ca:4e:73:64:a9:72:cc:17:9b:cd:ed:7e:
1f:08:d1:a0:3b:1a:c9:8c:0c:54:6b:4b:3c:66:11:70:d1:9f:
51:ab:0a:30:c1:1f:96:5c:03:75:f0:aa:c0:49:f4:6e:21:59:
74:06:95:30
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVyuly/RY7uriM1e0G2oeznMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDliZGZmYzhiZGI4NDQ5NzBiOGUyOGI5YjRiZTZmMmMwNmRm
ZDc5ODUwHhcNMjMwMTAyMTM0NDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OWRhNzMyNDBlZTcxNWFmODVmYTRkMTcwZmI1ZDA2ZmFiMmU1YzBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl6ux/PwoH2E9jfCidir5O57H+w0t
WU2w5GTMkaR+fVMoT6C5ClcqSPxhEp1TRmOGTcZatABxJHSUjKqU9gklTyXU5vpo
AT5yf8gEmaDBDrbXUEbV51DkzHzybSJpVgRgaRKjC3NpGRpGzmk2GqQ0jPqFCryO
QOEwWo8K+HIZ4vyL+YHKYtBgdj5TfUtp7UdEXBBMWhbytXCPPRJy3hMppJeC475I
+wPVldA15Ys0sCEvRt0zahSx6K/ebW7YEis2R4spEXl7RS+nUCwadtWuUATBbXQK
37HGbXSvwcrXC7Ff3bnyNmcKJhIgolaa01Ta01s5UndSVGR6Kido4qbEfwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFFnacyQO5xWvhfpNFw+10G+rLlwLMB8GA1UdIwQY
MBaAFJvf/IvbhElwuOKLm0vm8sBt/XmFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbTlfOGk5dUVTWEM0NG91YlMtYnl3RzM5ZVlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi8wMTU3YTItOTA3Ni00YTgwLWJlMjMt
MDUzZjNkZmMxNTIxLzEvV2RwekpBN25GYS1GLWswWEQ3WFFiNnN1WEFzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi8wMTU3YTItOTA3Ni00YTgwLWJlMjMtMDUzZjNkZmMxNTIx
LzEvbTlfOGk5dUVTWEM0NG91YlMtYnl3RzM5ZVlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAW9o5MA0E
AgACMAcDBQMqB/7AMA0GCSqGSIb3DQEBCwUAA4IBAQBxaX6QlhgkImihnqp1xNvd
WRfTMkdbIUo1tfy12BURg5kYKd+T1cHckmGez3oY0q9xJV0R3ND0N7ts7ngTLivT
qVMXHKvMekeRU2OhY+hfZ7Gj41fkHO9VpovRkd2bmVCcawZtG+6qfDjilN2jyUpN
Xw4IdvW782knX7QHk+u1PVnJqCWTbDbSLrJfNJmKXUdPQ70XzGvUAYzLwzWnvm3Z
TmQyFRFx4EvcLEeQh6R61ukUNoYeN1VCqRlb3S4dpQQGITjiirJ9IpZd8MPKTnNk
qXLMF5vN7X4fCNGgOxrJjAxUa0s8ZhFw0Z9RqwowwR+WXAN18KrASfRuIVl0BpUw
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:15 2024 by rpki-client on console-fra.rpki-client.org