Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/5I7Y5s_h4ttB9zHLkZczKGLYge8.roa
File: 5I7Y5s_h4ttB9zHLkZczKGLYge8.roa (raw, json)
Hash identifier: QAZRjy28tgcF2q4fP+CKfyKOuHXnNvdTko2EH8KiiwI=
Subject key identifier: E4:8E:D8:E6:CF:E1:E2:DB:41:F7:31:CB:91:97:33:28:62:D8:81:EF
Certificate issuer: /CN=27c8b427c313598a92e8d8ec60e2950da39fc2c9
Certificate serial: 018C3DFC9EAB2CD63DDE4164905707912480
Authority key identifier: 27:C8:B4:27:C3:13:59:8A:92:E8:D8:EC:60:E2:95:0D:A3:9F:C2:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J8i0J8MTWYqS6NjsYOKVDaOfwsk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/5I7Y5s_h4ttB9zHLkZczKGLYge8.roa
Signing time: Wed 06 Dec 2023 07:16:54 +0000
ROA not before: Wed 06 Dec 2023 07:16:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43289
IP address blocks: 91.102.165.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3d:fc:9e:ab:2c:d6:3d:de:41:64:90:57:07:91:24:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27c8b427c313598a92e8d8ec60e2950da39fc2c9
Validity
Not Before: Dec 6 07:16:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e48ed8e6cfe1e2db41f731cb9197332862d881ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:a8:d2:3c:95:bc:33:66:98:89:e5:0c:89:60:
1e:aa:fc:0f:94:38:65:a3:52:e3:b6:c3:ce:ea:6c:
ac:bb:b2:ca:4a:70:98:53:e6:19:3f:fa:93:b7:a6:
e4:bf:35:11:d0:e8:c3:ad:fd:2c:07:b2:62:71:44:
68:7d:12:95:08:d6:66:6b:98:c3:81:51:f1:34:1c:
cf:0e:1f:82:4e:3c:83:8a:45:74:07:54:d1:e6:0e:
28:e6:e9:c2:d2:96:e4:8a:7a:c2:6f:a4:51:e4:b8:
af:34:cf:9f:b7:cc:67:aa:2f:c5:62:10:f7:4e:6f:
9a:28:dc:40:36:8b:35:35:83:cf:d1:25:0a:12:45:
96:3d:57:9d:2a:79:1b:b9:10:1d:f4:bb:7e:12:6f:
76:bb:bb:4a:a8:10:a5:82:97:5f:42:a3:9a:0c:16:
20:71:66:1b:47:89:f2:5a:47:17:6f:b7:ec:d7:56:
b0:58:5b:0f:b6:5a:2d:ad:09:28:11:39:3b:a8:ba:
05:8e:2d:30:e1:6c:d0:ce:42:f3:56:e7:a2:65:fa:
4b:4b:5f:3a:00:bb:f2:b5:90:38:5a:49:1d:5f:a2:
55:7f:36:65:12:18:fd:c0:93:73:91:7f:f1:9b:fe:
dd:03:b9:31:b6:fc:bd:0e:ed:40:8a:27:64:f6:a3:
84:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:8E:D8:E6:CF:E1:E2:DB:41:F7:31:CB:91:97:33:28:62:D8:81:EF
X509v3 Authority Key Identifier:
keyid:27:C8:B4:27:C3:13:59:8A:92:E8:D8:EC:60:E2:95:0D:A3:9F:C2:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J8i0J8MTWYqS6NjsYOKVDaOfwsk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/5I7Y5s_h4ttB9zHLkZczKGLYge8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/J8i0J8MTWYqS6NjsYOKVDaOfwsk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.102.165.0/24
Signature Algorithm: sha256WithRSAEncryption
10:0c:52:5b:24:5a:fb:63:0b:e3:8c:a3:d2:8d:cb:a8:cf:21:
8c:71:94:53:03:cb:01:a6:86:4e:81:e0:f2:7d:74:2f:0c:e8:
2a:80:8f:88:bb:58:d7:42:cd:13:45:c7:9d:e4:f3:50:e1:8d:
f8:18:36:17:f0:ff:57:c9:cf:5c:64:30:aa:31:82:3b:a6:40:
2d:b5:34:7c:57:00:78:5e:13:f2:28:c3:82:34:f9:5a:8c:1c:
8c:b0:85:d6:6d:80:91:19:f2:67:7f:64:e2:51:57:91:aa:f5:
d7:a3:70:6b:c6:a6:7d:21:09:ae:2e:22:1f:cc:3f:ee:05:d9:
1d:4b:15:a0:2c:e6:09:76:f7:d7:34:67:bc:68:5a:0d:da:70:
40:89:95:82:41:be:b4:df:b4:5e:04:da:92:bf:96:eb:5b:22:
b7:0a:3c:71:6c:98:6c:8d:b3:ce:fc:7e:7f:54:a4:61:c4:bd:
8d:2d:fe:62:62:9f:67:0f:28:5d:3f:ce:65:32:e0:82:60:d8:
7e:99:48:69:db:86:3a:11:6a:7c:83:29:57:5b:13:f2:5f:63:
d0:2e:7a:e5:1b:69:25:28:53:fc:0e:f3:1e:d8:0a:1e:ff:e2:
38:8c:60:81:15:b4:32:79:89:a3:88:22:a6:e5:33:2a:1a:b9:
66:a7:20:6f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYw9/J6rLNY93kFkkFcHkSSAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI3YzhiNDI3YzMxMzU5OGE5MmU4ZDhlYzYwZTI5NTBkYTM5
ZmMyYzkwHhcNMjMxMjA2MDcxNjU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNDhlZDhlNmNmZTFlMmRiNDFmNzMxY2I5MTk3MzMyODYyZDg4MWVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk6jSPJW8M2aYieUMiWAeqvwPlDhl
o1LjtsPO6mysu7LKSnCYU+YZP/qTt6bkvzUR0OjDrf0sB7JicURofRKVCNZma5jD
gVHxNBzPDh+CTjyDikV0B1TR5g4o5unC0pbkinrCb6RR5LivNM+ft8xnqi/FYhD3
Tm+aKNxANos1NYPP0SUKEkWWPVedKnkbuRAd9Lt+Em92u7tKqBClgpdfQqOaDBYg
cWYbR4nyWkcXb7fs11awWFsPtlotrQkoETk7qLoFji0w4WzQzkLzVueiZfpLS186
ALvytZA4WkkdX6JVfzZlEhj9wJNzkX/xm/7dA7kxtvy9Du1Aiidk9qOErQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOSO2ObP4eLbQfcxy5GXMyhi2IHvMB8GA1UdIwQY
MBaAFCfItCfDE1mKkujY7GDilQ2jn8LJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSjhpMEo4TVRXWXFTNk5qc1lPS1ZEYU9md3NrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS9hN2NkYmYtZGE4ZS00ZDQzLWJkYzct
MWM2ZWU0NGUxMWFkLzEvNUk3WTVzX2g0dHRCOXpITGtaY3pLR0xZZ2U4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZS9hN2NkYmYtZGE4ZS00ZDQzLWJkYzctMWM2ZWU0NGUxMWFk
LzEvSjhpMEo4TVRXWXFTNk5qc1lPS1ZEYU9md3NrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW2alMA0G
CSqGSIb3DQEBCwUAA4IBAQAQDFJbJFr7YwvjjKPSjcuozyGMcZRTA8sBpoZOgeDy
fXQvDOgqgI+Iu1jXQs0TRced5PNQ4Y34GDYX8P9Xyc9cZDCqMYI7pkAttTR8VwB4
XhPyKMOCNPlajByMsIXWbYCRGfJnf2TiUVeRqvXXo3BrxqZ9IQmuLiIfzD/uBdkd
SxWgLOYJdvfXNGe8aFoN2nBAiZWCQb6037ReBNqSv5brWyK3CjxxbJhsjbPO/H5/
VKRhxL2NLf5iYp9nDyhdP85lMuCCYNh+mUhp24Y6EWp8gylXWxPyX2PQLnrlG2kl
KFP8DvMe2Aoe/+I4jGCBFbQyeYmjiCKm5TMqGrlmpyBv
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:51 2024 by rpki-client on console-ams.rpki-client.org