Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/18RiZv98c-2BH4Q-XMDmP66RhyY.roa
File: 18RiZv98c-2BH4Q-XMDmP66RhyY.roa (raw, json)
Hash identifier: ZeMQKExF6ajwH7VqVVGNdSBhJCwM9Clb5CXqJl23SXM=
Subject key identifier: D7:C4:62:66:FF:7C:73:ED:81:1F:84:3E:5C:C0:E6:3F:AE:91:87:26
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 018FA5340BAC8B36CADF1A13E79FF34FE037
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/18RiZv98c-2BH4Q-XMDmP66RhyY.roa
Signing time: Thu 23 May 2024 11:26:42 +0000
ROA not before: Thu 23 May 2024 11:26:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49217
IP address blocks: 91.228.15.0/24 maxlen: 24
94.154.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 20 Jun 2024 07:11:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a5:34:0b:ac:8b:36:ca:df:1a:13:e7:9f:f3:4f:e0:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: May 23 11:26:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d7c46266ff7c73ed811f843e5cc0e63fae918726
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:67:3a:48:24:7e:ae:24:c4:f4:6b:7b:8a:e9:
b2:66:06:07:95:9b:d3:85:c5:63:af:91:47:bc:de:
f4:b7:e5:da:6e:34:20:32:55:7b:9c:3d:19:5a:a2:
81:9a:a9:f6:d5:a7:c5:ba:20:db:40:ad:9b:5a:aa:
ec:cf:5c:46:e0:d4:98:67:a0:20:c9:3a:55:97:4d:
68:97:44:9f:e3:e6:f3:0a:16:c4:8c:94:22:40:00:
37:9b:17:f3:3a:33:30:b5:f1:c2:20:a1:57:dd:c6:
04:e8:7a:9d:06:ed:1e:1c:e2:24:81:fc:8d:64:1f:
f1:df:b4:4c:33:cc:e5:b4:2f:ec:2d:30:2a:15:4e:
b0:f0:18:3c:11:26:d6:a7:ea:76:7a:30:ae:46:db:
9e:fd:ec:25:88:e8:2f:20:f0:aa:06:d2:37:fb:12:
d3:f3:2c:39:61:12:30:75:66:29:62:b4:99:4f:e8:
e6:25:89:42:31:5d:52:db:29:99:49:52:ae:88:ce:
10:fa:1e:f0:d6:fe:28:6a:c1:ca:df:58:0c:74:33:
b8:49:54:93:3b:f5:b2:0f:9f:12:bd:19:36:a9:33:
be:ad:88:0c:20:75:7a:e0:b5:ce:2f:ee:14:cd:df:
61:58:fd:ed:18:a8:bd:8a:48:d2:50:66:40:62:9e:
8a:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:C4:62:66:FF:7C:73:ED:81:1F:84:3E:5C:C0:E6:3F:AE:91:87:26
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/18RiZv98c-2BH4Q-XMDmP66RhyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.15.0/24
94.154.35.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:ee:79:28:d3:1c:b4:9c:87:d4:de:21:2b:32:06:da:89:39:
77:87:58:9f:9c:51:41:4f:41:76:05:1d:41:c2:f6:94:47:fe:
9f:f1:35:01:48:f4:d8:af:79:8f:72:15:1a:42:1c:ca:4f:4d:
9b:f8:5c:bf:0b:4a:d4:5f:8c:9e:b6:93:57:82:55:be:dc:4f:
4e:07:4d:4f:71:b5:95:54:b5:15:a3:2f:f7:16:51:6c:d2:e7:
66:87:77:77:8c:67:21:3b:be:b4:2b:a3:3a:23:7f:94:e9:b9:
7d:5c:f4:04:db:ac:54:a8:b7:ef:c0:e5:3e:09:71:7c:f8:89:
75:4a:2d:b9:cc:c7:08:8b:fb:3b:06:89:64:11:e3:8f:a3:39:
01:76:7d:c6:ad:b7:74:17:c5:db:54:98:dc:09:3e:e8:9f:1c:
6d:1a:79:80:eb:93:c1:13:a9:98:f1:63:90:62:2f:84:7a:68:
a7:41:b0:ce:58:b6:66:6d:27:b6:ac:b4:5f:86:23:88:fc:b5:
e5:5c:cc:7e:a9:48:8d:b5:a6:b2:0e:ca:89:a7:0e:de:8c:79:
18:16:5f:29:96:99:2c:ff:2e:ca:06:4b:c6:f6:de:ea:78:da:
e9:04:1e:a3:ad:1d:18:b8:b2:ef:e6:b8:51:c8:c7:1e:15:1b:
c3:f5:43:5c
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY+lNAusizbK3xoT55/zT+A3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3Y2YzODg0Yjc4MDA3YTI1ZGJlMmUyY2VmMGNjNzNiNjk5
MjFmODgwHhcNMjQwNTIzMTEyNjQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkN2M0NjI2NmZmN2M3M2VkODExZjg0M2U1Y2MwZTYzZmFlOTE4NzI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlGc6SCR+riTE9Gt7iumyZgYHlZvT
hcVjr5FHvN70t+XabjQgMlV7nD0ZWqKBmqn21afFuiDbQK2bWqrsz1xG4NSYZ6Ag
yTpVl01ol0Sf4+bzChbEjJQiQAA3mxfzOjMwtfHCIKFX3cYE6HqdBu0eHOIkgfyN
ZB/x37RMM8zltC/sLTAqFU6w8Bg8ESbWp+p2ejCuRtue/ewliOgvIPCqBtI3+xLT
8yw5YRIwdWYpYrSZT+jmJYlCMV1S2ymZSVKuiM4Q+h7w1v4oasHK31gMdDO4SVST
O/WyD58SvRk2qTO+rYgMIHV64LXOL+4Uzd9hWP3tGKi9ikjSUGZAYp6KAwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFNfEYmb/fHPtgR+EPlzA5j+ukYcmMB8GA1UdIwQY
MBaAFOfPOIS3gAeiXb4uLO8Mxztpkh+IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNTg4NGhMZUFCNkpkdmk0czd3ekhPMm1TSDRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC80ZTdiYzctMjYwZS00N2U2LTgzODgt
YTE4NGYzNTU2ZTQzLzEvMThSaVp2OThjLTJCSDRRLVhNRG1QNjZSaHlZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC80ZTdiYzctMjYwZS00N2U2LTgzODgtYTE4NGYzNTU2ZTQz
LzEvNTg4NGhMZUFCNkpkdmk0czd3ekhPMm1TSDRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW+QPAwQA
XpojMA0GCSqGSIb3DQEBCwUAA4IBAQAP7nko0xy0nIfU3iErMgbaiTl3h1ifnFFB
T0F2BR1BwvaUR/6f8TUBSPTYr3mPchUaQhzKT02b+Fy/C0rUX4yetpNXglW+3E9O
B01PcbWVVLUVoy/3FlFs0udmh3d3jGchO760K6M6I3+U6bl9XPQE26xUqLfvwOU+
CXF8+Il1Si25zMcIi/s7BolkEeOPozkBdn3Grbd0F8XbVJjcCT7onxxtGnmA65PB
E6mY8WOQYi+EeminQbDOWLZmbSe2rLRfhiOI/LXlXMx+qUiNtaayDsqJpw7ejHkY
Fl8plpks/y7KBkvG9t7qeNrpBB6jrR0YuLLv5rhRyMceFRvD9UNc
-----END CERTIFICATE-----
Generated at Thu Jun 20 10:21:02 2024 by rpki-client on console-fra.rpki-client.org