Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/25e6d6-ced1-4283-8c9f-c84ccba4e607/1/4Yc7CHs_79r3GlQjyNgFiDK7dUk.roa
File: 4Yc7CHs_79r3GlQjyNgFiDK7dUk.roa (raw, json)
Hash identifier: nAR6Wfegydn7OE+zfOp4m06yQ+23T3R3MtLGAuZTSgY=
Subject key identifier: E1:87:3B:08:7B:3F:EF:DA:F7:1A:54:23:C8:D8:05:88:32:BB:75:49
Certificate issuer: /CN=b543ef9bc3c2132361c1240972a180912bf7a859
Certificate serial: 01856D4AD6BE4F046CF5E1E6C3E18B147CA7
Authority key identifier: B5:43:EF:9B:C3:C2:13:23:61:C1:24:09:72:A1:80:91:2B:F7:A8:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUPvm8PCEyNhwSQJcqGAkSv3qFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/25e6d6-ced1-4283-8c9f-c84ccba4e607/1/4Yc7CHs_79r3GlQjyNgFiDK7dUk.roa
Signing time: Sun 01 Jan 2023 12:24:59 +0000
ROA not before: Sun 01 Jan 2023 12:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9044
IP address blocks: 91.199.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:4a:d6:be:4f:04:6c:f5:e1:e6:c3:e1:8b:14:7c:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b543ef9bc3c2132361c1240972a180912bf7a859
Validity
Not Before: Jan 1 12:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e1873b087b3fefdaf71a5423c8d8058832bb7549
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:a6:a3:7f:0e:d1:dc:74:31:4c:71:f3:e7:ea:
4c:40:1b:81:d0:d2:85:46:86:05:89:87:c3:e1:ad:
45:c1:4d:ec:8d:cd:e8:18:3a:fd:b0:29:59:85:1a:
b1:9e:a0:87:31:cf:48:66:91:7e:94:aa:7b:3f:56:
d2:e3:16:78:e4:03:01:ea:c6:78:0b:4e:60:21:df:
b3:00:d5:8c:48:a5:f0:ea:bc:de:b9:cd:b7:84:1c:
3d:20:99:e7:88:c4:36:6d:bf:f1:06:d3:21:e5:b6:
1f:b3:12:86:15:db:c5:04:da:86:48:40:ce:b8:2a:
fd:f5:2a:09:46:58:4b:c6:64:8b:38:6c:0b:a2:ae:
d8:e6:5d:89:71:f4:4d:42:31:d5:dc:ab:f5:66:54:
f8:a7:5b:e1:ff:f9:78:a1:fd:50:08:2e:ba:31:fd:
80:ff:e6:e3:44:6a:e8:77:c4:44:81:05:99:f6:b3:
3e:f0:b5:7d:64:69:99:80:92:90:98:0d:16:37:1e:
5b:7d:5d:b8:41:d2:be:ee:c9:cf:c6:6f:ed:71:42:
0d:b5:c7:53:b5:7a:35:94:4a:02:92:c0:1f:1f:a8:
a8:bf:72:01:e3:b6:d9:2a:30:42:6e:20:09:36:85:
f1:48:2d:9e:85:3c:f5:e9:59:ab:49:d6:8f:4a:27:
22:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:87:3B:08:7B:3F:EF:DA:F7:1A:54:23:C8:D8:05:88:32:BB:75:49
X509v3 Authority Key Identifier:
keyid:B5:43:EF:9B:C3:C2:13:23:61:C1:24:09:72:A1:80:91:2B:F7:A8:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUPvm8PCEyNhwSQJcqGAkSv3qFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/25e6d6-ced1-4283-8c9f-c84ccba4e607/1/4Yc7CHs_79r3GlQjyNgFiDK7dUk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/25e6d6-ced1-4283-8c9f-c84ccba4e607/1/tUPvm8PCEyNhwSQJcqGAkSv3qFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.228.0/24
Signature Algorithm: sha256WithRSAEncryption
77:7a:35:52:a3:63:af:17:eb:7a:ae:40:8d:c5:c7:3f:73:39:
a2:48:d3:ab:a0:ba:b0:94:08:96:d0:8e:58:f3:68:dc:ae:02:
18:9e:12:ae:e5:3d:f2:26:5c:bd:bd:f7:c0:ee:2e:d2:c8:6b:
b1:a4:cd:29:94:3f:76:71:5a:13:a6:8c:67:5b:ee:33:15:11:
98:ad:70:a7:b5:da:06:7a:da:37:c6:80:6e:b6:4d:89:66:2c:
28:15:6b:28:ca:32:33:6e:20:95:09:13:72:b9:f2:44:9d:0c:
18:61:b1:b1:f0:de:6f:c7:06:65:de:4f:5e:74:07:8b:97:14:
15:d3:da:d6:68:d8:ed:7d:47:3e:46:aa:f6:3e:8f:49:2b:16:
2a:46:19:28:5e:8b:ce:82:0e:48:19:f1:12:9a:bf:3d:cd:e5:
68:86:c3:61:ef:ec:9f:80:be:ef:0c:a0:d0:08:a4:14:cd:97:
92:4e:97:a4:b3:3b:f7:f4:d6:87:7f:f1:9f:9c:74:dc:4f:d9:
88:bd:6d:d7:94:29:48:25:fe:ef:bd:04:61:5e:ef:cf:cc:9e:
bf:d4:86:03:b4:6e:32:6c:84:bd:27:d1:c5:a3:69:a2:e3:f7:
fe:f0:f1:31:7c:4d:82:3e:4e:53:25:10:4f:44:ce:7a:08:db:
90:be:e1:c1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtSta+TwRs9eHmw+GLFHynMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NDNlZjliYzNjMjEzMjM2MWMxMjQwOTcyYTE4MDkxMmJm
N2E4NTkwHhcNMjMwMTAxMTIyNDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMTg3M2IwODdiM2ZlZmRhZjcxYTU0MjNjOGQ4MDU4ODMyYmI3NTQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhqajfw7R3HQxTHHz5+pMQBuB0NKF
RoYFiYfD4a1FwU3sjc3oGDr9sClZhRqxnqCHMc9IZpF+lKp7P1bS4xZ45AMB6sZ4
C05gId+zANWMSKXw6rzeuc23hBw9IJnniMQ2bb/xBtMh5bYfsxKGFdvFBNqGSEDO
uCr99SoJRlhLxmSLOGwLoq7Y5l2JcfRNQjHV3Kv1ZlT4p1vh//l4of1QCC66Mf2A
/+bjRGrod8REgQWZ9rM+8LV9ZGmZgJKQmA0WNx5bfV24QdK+7snPxm/tcUINtcdT
tXo1lEoCksAfH6iov3IB47bZKjBCbiAJNoXxSC2ehTz16VmrSdaPSiciBwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOGHOwh7P+/a9xpUI8jYBYgyu3VJMB8GA1UdIwQY
MBaAFLVD75vDwhMjYcEkCXKhgJEr96hZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFVQdm04UENFeU5od1NRSmNxR0FrU3YzcUZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC8yNWU2ZDYtY2VkMS00MjgzLThjOWYt
Yzg0Y2NiYTRlNjA3LzEvNFljN0NIc183OXIzR2xRanlOZ0ZpREs3ZFVrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZC8yNWU2ZDYtY2VkMS00MjgzLThjOWYtYzg0Y2NiYTRlNjA3
LzEvdFVQdm04UENFeU5od1NRSmNxR0FrU3YzcUZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8fkMA0G
CSqGSIb3DQEBCwUAA4IBAQB3ejVSo2OvF+t6rkCNxcc/czmiSNOroLqwlAiW0I5Y
82jcrgIYnhKu5T3yJly9vffA7i7SyGuxpM0plD92cVoTpoxnW+4zFRGYrXCntdoG
eto3xoButk2JZiwoFWsoyjIzbiCVCRNyufJEnQwYYbGx8N5vxwZl3k9edAeLlxQV
09rWaNjtfUc+Rqr2Po9JKxYqRhkoXovOgg5IGfESmr89zeVohsNh7+yfgL7vDKDQ
CKQUzZeSTpekszv39NaHf/GfnHTcT9mIvW3XlClIJf7vvQRhXu/PzJ6/1IYDtG4y
bIS9J9HFo2mi4/f+8PExfE2CPk5TJRBPRM56CNuQvuHB
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:38 2024 by rpki-client on console-ams.rpki-client.org