Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/2dfa97-8c53-4e74-9a2c-484a06a61717/1/Z2rIcADMBYkWKY1HaVfZRoY-2tc.roa
File: Z2rIcADMBYkWKY1HaVfZRoY-2tc.roa (raw, json)
Hash identifier: n+Oebjtef0okzZz/KTBCtsVFB9f6JA6uQDfPUFSI9bA=
Subject key identifier: 67:6A:C8:70:00:CC:05:89:16:29:8D:47:69:57:D9:46:86:3E:DA:D7
Certificate issuer: /CN=3bec12c21108134f00c0353107d60ccdaebefb2e
Certificate serial: 018B03A9D589CB4BD10C6EE478BE93F37735
Authority key identifier: 3B:EC:12:C2:11:08:13:4F:00:C0:35:31:07:D6:0C:CD:AE:BE:FB:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O-wSwhEIE08AwDUxB9YMza6--y4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/2dfa97-8c53-4e74-9a2c-484a06a61717/1/Z2rIcADMBYkWKY1HaVfZRoY-2tc.roa
Signing time: Fri 06 Oct 2023 06:25:43 +0000
ROA not before: Fri 06 Oct 2023 06:25:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209828
IP address blocks: 91.208.204.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:30:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:03:a9:d5:89:cb:4b:d1:0c:6e:e4:78:be:93:f3:77:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bec12c21108134f00c0353107d60ccdaebefb2e
Validity
Not Before: Oct 6 06:25:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=676ac87000cc058916298d476957d946863edad7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:52:38:62:d4:44:28:03:be:cc:27:49:ef:cc:
43:50:b9:e7:1b:5e:83:1f:8f:ee:cd:f9:72:42:ed:
3a:7c:1e:d5:c7:25:b1:67:ee:81:af:f1:ea:c5:94:
5d:30:98:d1:da:af:71:81:64:2c:7f:13:37:7d:c1:
84:82:0a:f0:a8:79:21:de:7b:52:b0:7b:94:b6:ff:
11:68:d9:9a:a6:24:c6:ec:3a:d1:a8:5e:3e:3c:0c:
36:9d:83:f4:14:14:e9:cf:37:c1:45:f2:fb:76:05:
a6:49:e2:14:f3:ac:55:4c:cf:36:ec:ed:07:74:e3:
5c:55:4a:e3:39:d7:c2:46:15:41:27:8e:37:a6:eb:
a6:9b:42:a9:ef:46:f1:5e:9a:cd:ac:17:f0:70:d1:
5b:37:b8:77:f6:4d:bf:d2:e7:a6:d7:f6:3c:c9:1e:
5f:bd:25:7d:d7:57:50:19:0e:e0:9e:09:e9:06:9e:
60:72:9b:46:b9:37:d5:a7:b1:2f:9e:f9:79:7c:33:
42:aa:37:55:f4:9f:cc:b8:da:01:8f:2a:8e:e5:b5:
08:22:17:18:13:f7:43:33:c8:de:8d:85:b7:8e:ce:
6e:ed:e5:6c:db:68:ef:44:95:c1:de:16:00:26:06:
0e:e7:75:f9:e5:49:52:f3:a5:43:44:b2:89:19:87:
f1:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:6A:C8:70:00:CC:05:89:16:29:8D:47:69:57:D9:46:86:3E:DA:D7
X509v3 Authority Key Identifier:
keyid:3B:EC:12:C2:11:08:13:4F:00:C0:35:31:07:D6:0C:CD:AE:BE:FB:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O-wSwhEIE08AwDUxB9YMza6--y4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2dfa97-8c53-4e74-9a2c-484a06a61717/1/Z2rIcADMBYkWKY1HaVfZRoY-2tc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/2dfa97-8c53-4e74-9a2c-484a06a61717/1/O-wSwhEIE08AwDUxB9YMza6--y4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.204.0/24
Signature Algorithm: sha256WithRSAEncryption
38:92:29:36:a3:9e:ef:e6:5c:8f:c2:be:0e:c2:af:85:ed:a7:
83:2f:5a:e3:93:97:72:65:5d:ea:ac:da:77:f3:24:0d:78:49:
1a:83:35:02:3d:3a:1f:06:35:77:c0:6f:17:f7:f0:68:7e:2e:
8c:ab:5b:85:56:0e:55:69:d3:ec:cd:45:88:47:da:de:0a:a1:
b9:39:17:91:97:10:97:bd:7d:91:4b:4e:8a:91:cc:25:44:16:
35:34:50:13:c1:81:ed:a4:99:d9:8b:7a:ab:a6:a6:94:e2:b5:
6c:7f:28:f0:d6:1c:8c:dd:86:f4:ad:e2:b8:7f:cc:33:1a:1b:
22:82:93:0a:9d:b9:59:c3:c6:54:72:0a:64:d9:5d:79:aa:24:
59:a7:71:a8:c0:13:2d:a1:1d:58:cb:dd:00:b5:5b:3b:5b:fe:
6a:9e:03:40:52:af:7e:b8:4d:b8:d7:42:dd:6c:6e:12:af:89:
87:d4:20:1d:6a:49:3c:4d:3d:5b:55:86:b2:89:6c:2b:98:af:
0f:18:60:1e:a5:b6:46:bc:54:40:98:0c:0e:19:fb:9e:6b:d1:
41:4f:1f:a3:4f:96:e9:05:8b:f0:65:5f:fb:b5:d6:1d:84:13:
ed:95:38:74:49:d2:a4:ac:fa:4e:ea:4b:83:2a:47:e1:4c:d2:
9f:9e:d4:97
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYsDqdWJy0vRDG7keL6T83c1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiZWMxMmMyMTEwODEzNGYwMGMwMzUzMTA3ZDYwY2NkYWVi
ZWZiMmUwHhcNMjMxMDA2MDYyNTQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NzZhYzg3MDAwY2MwNTg5MTYyOThkNDc2OTU3ZDk0Njg2M2VkYWQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk1I4YtREKAO+zCdJ78xDULnnG16D
H4/uzflyQu06fB7VxyWxZ+6Br/HqxZRdMJjR2q9xgWQsfxM3fcGEggrwqHkh3ntS
sHuUtv8RaNmapiTG7DrRqF4+PAw2nYP0FBTpzzfBRfL7dgWmSeIU86xVTM827O0H
dONcVUrjOdfCRhVBJ443puumm0Kp70bxXprNrBfwcNFbN7h39k2/0uem1/Y8yR5f
vSV911dQGQ7gngnpBp5gcptGuTfVp7Evnvl5fDNCqjdV9J/MuNoBjyqO5bUIIhcY
E/dDM8jejYW3js5u7eVs22jvRJXB3hYAJgYO53X55UlS86VDRLKJGYfxJwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGdqyHAAzAWJFimNR2lX2UaGPtrXMB8GA1UdIwQY
MBaAFDvsEsIRCBNPAMA1MQfWDM2uvvsuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTy13U3doRUlFMDhBd0RVeEI5WU16YTYtLXk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS8yZGZhOTctOGM1My00ZTc0LTlhMmMt
NDg0YTA2YTYxNzE3LzEvWjJySWNBRE1CWWtXS1kxSGFWZlpSb1ktMnRjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS8yZGZhOTctOGM1My00ZTc0LTlhMmMtNDg0YTA2YTYxNzE3
LzEvTy13U3doRUlFMDhBd0RVeEI5WU16YTYtLXk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9DMMA0G
CSqGSIb3DQEBCwUAA4IBAQA4kik2o57v5lyPwr4Owq+F7aeDL1rjk5dyZV3qrNp3
8yQNeEkagzUCPTofBjV3wG8X9/Bofi6Mq1uFVg5VadPszUWIR9reCqG5OReRlxCX
vX2RS06KkcwlRBY1NFATwYHtpJnZi3qrpqaU4rVsfyjw1hyM3Yb0reK4f8wzGhsi
gpMKnblZw8ZUcgpk2V15qiRZp3GowBMtoR1Yy90AtVs7W/5qngNAUq9+uE2410Ld
bG4Sr4mH1CAdakk8TT1bVYayiWwrmK8PGGAepbZGvFRAmAwOGfuea9FBTx+jT5bp
BYvwZV/7tdYdhBPtlTh0SdKkrPpO6kuDKkfhTNKfntSX
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:52 2024 by rpki-client on console-ams.rpki-client.org