Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/b66429-4f20-4b90-a6b8-4c10e3360577/1/JHBPE7cTlVEW2I2yD4q56OWalGk.roa
File: JHBPE7cTlVEW2I2yD4q56OWalGk.roa (raw, json)
Hash identifier: 9Mbz2HEVASnGD4hBppbGvnh6tLN+4bLBYA49+TSV8rY=
Subject key identifier: 24:70:4F:13:B7:13:95:51:16:D8:8D:B2:0F:8A:B9:E8:E5:9A:94:69
Certificate issuer: /CN=a3c03158aed81161d4f57c1742d460834173a79e
Certificate serial: 018B8B50477983AD6B94A5E5BC164300F0FF
Authority key identifier: A3:C0:31:58:AE:D8:11:61:D4:F5:7C:17:42:D4:60:83:41:73:A7:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o8AxWK7YEWHU9XwXQtRgg0Fzp54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/b66429-4f20-4b90-a6b8-4c10e3360577/1/JHBPE7cTlVEW2I2yD4q56OWalGk.roa
Signing time: Wed 01 Nov 2023 14:36:16 +0000
ROA not before: Wed 01 Nov 2023 14:36:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 91.194.236.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8b:50:47:79:83:ad:6b:94:a5:e5:bc:16:43:00:f0:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3c03158aed81161d4f57c1742d460834173a79e
Validity
Not Before: Nov 1 14:36:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=24704f13b713955116d88db20f8ab9e8e59a9469
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:ac:f8:b2:24:65:c0:62:9b:47:a3:5e:05:3f:
77:ea:24:a9:71:aa:18:c8:d4:77:52:34:99:0a:41:
01:56:5f:c8:44:fd:e1:7a:0b:bb:9b:6a:12:e2:63:
44:9c:3c:9a:14:7b:b8:14:d6:14:e7:c5:44:4c:27:
fb:e9:ef:6a:cb:94:71:68:b5:bf:00:0c:22:b3:89:
56:fe:2f:29:18:bb:9c:16:77:4b:37:d6:f4:9d:b3:
cd:68:a0:a4:e9:7d:73:d0:63:c6:86:df:07:1c:f3:
19:ce:43:d2:42:9f:46:4c:7a:ac:dd:dd:ec:32:0c:
c4:93:51:65:f8:e2:f5:02:a2:5e:ab:2c:46:53:f8:
5c:99:63:75:3b:1c:78:f1:bd:34:4a:b4:46:c4:0a:
89:3c:c4:88:53:2b:02:6c:0a:61:08:4b:61:8f:b7:
8b:6b:b6:43:ce:57:a9:66:10:0c:ed:f3:3c:4d:58:
68:16:8e:3f:88:95:f0:8a:5c:a4:05:90:8b:dd:97:
78:4a:44:46:ce:c0:bf:56:33:99:ab:e4:df:29:a0:
48:36:de:0a:fd:3a:25:e7:dc:ce:b0:fe:25:a0:5e:
56:f9:fe:3b:a4:f5:f4:53:8a:4a:ba:7c:cc:82:28:
8e:34:76:0b:a3:ec:42:73:a3:b7:c9:fe:f6:d6:3c:
9d:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:70:4F:13:B7:13:95:51:16:D8:8D:B2:0F:8A:B9:E8:E5:9A:94:69
X509v3 Authority Key Identifier:
keyid:A3:C0:31:58:AE:D8:11:61:D4:F5:7C:17:42:D4:60:83:41:73:A7:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o8AxWK7YEWHU9XwXQtRgg0Fzp54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/b66429-4f20-4b90-a6b8-4c10e3360577/1/JHBPE7cTlVEW2I2yD4q56OWalGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/b66429-4f20-4b90-a6b8-4c10e3360577/1/o8AxWK7YEWHU9XwXQtRgg0Fzp54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.236.0/24
Signature Algorithm: sha256WithRSAEncryption
13:cd:d3:ed:12:19:88:09:c9:6a:9f:8b:95:99:35:2e:7f:d3:
99:f6:12:81:f1:0a:ce:ba:15:68:ad:06:c5:56:6a:9d:c9:06:
8e:d8:ad:a5:4b:4a:5a:5b:b2:cf:ca:11:d2:08:f3:05:58:ab:
21:fc:d7:05:6f:d4:2c:b1:f9:74:12:88:a2:30:a1:33:bd:90:
c9:ce:eb:aa:dc:c0:ed:34:52:6c:d2:ee:b3:6f:13:65:81:eb:
4c:27:49:ae:2f:62:04:85:b8:40:f4:4b:59:cb:0f:c1:70:12:
bc:59:28:0b:fa:a0:af:b3:b4:ac:f0:0c:91:1e:1b:15:a0:f7:
44:b7:7e:11:0c:de:ef:06:c7:3e:0b:ab:48:b7:88:8a:af:b5:
46:99:e5:69:ce:c0:b2:08:d6:3f:09:db:2a:16:d7:68:36:aa:
cb:ba:16:e0:ed:da:a9:b9:6c:09:eb:af:fb:01:5e:c9:f0:30:
2f:4d:2a:b1:dd:e3:78:75:66:b9:64:08:57:29:4c:60:49:8a:
94:e0:1c:cd:80:fa:e8:a7:99:a9:e6:3a:a5:7d:4c:50:f7:7c:
ad:a4:df:8f:5a:4a:11:48:d6:4c:d7:e1:ba:78:a1:5b:a2:d7:
ef:df:d5:87:5a:62:c6:c0:fa:7d:f7:00:ac:7c:7f:8c:c8:88:
f5:08:62:2c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYuLUEd5g61rlKXlvBZDAPD/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzYzAzMTU4YWVkODExNjFkNGY1N2MxNzQyZDQ2MDgzNDE3
M2E3OWUwHhcNMjMxMTAxMTQzNjE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNDcwNGYxM2I3MTM5NTUxMTZkODhkYjIwZjhhYjllOGU1OWE5NDY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7qz4siRlwGKbR6NeBT936iSpcaoY
yNR3UjSZCkEBVl/IRP3hegu7m2oS4mNEnDyaFHu4FNYU58VETCf76e9qy5RxaLW/
AAwis4lW/i8pGLucFndLN9b0nbPNaKCk6X1z0GPGht8HHPMZzkPSQp9GTHqs3d3s
MgzEk1Fl+OL1AqJeqyxGU/hcmWN1Oxx48b00SrRGxAqJPMSIUysCbAphCEthj7eL
a7ZDzlepZhAM7fM8TVhoFo4/iJXwilykBZCL3Zd4SkRGzsC/VjOZq+TfKaBINt4K
/Tol59zOsP4loF5W+f47pPX0U4pKunzMgiiONHYLo+xCc6O3yf721jydtwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCRwTxO3E5VRFtiNsg+KuejlmpRpMB8GA1UdIwQY
MBaAFKPAMViu2BFh1PV8F0LUYINBc6eeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbzhBeFdLN1lFV0hVOVh3WFF0UmdnMEZ6cDU0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC9iNjY0MjktNGYyMC00YjkwLWE2Yjgt
NGMxMGUzMzYwNTc3LzEvSkhCUEU3Y1RsVkVXMkkyeUQ0cTU2T1dhbEdrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC9iNjY0MjktNGYyMC00YjkwLWE2YjgtNGMxMGUzMzYwNTc3
LzEvbzhBeFdLN1lFV0hVOVh3WFF0UmdnMEZ6cDU0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8LsMA0G
CSqGSIb3DQEBCwUAA4IBAQATzdPtEhmICclqn4uVmTUuf9OZ9hKB8QrOuhVorQbF
VmqdyQaO2K2lS0paW7LPyhHSCPMFWKsh/NcFb9Qssfl0EoiiMKEzvZDJzuuq3MDt
NFJs0u6zbxNlgetMJ0muL2IEhbhA9EtZyw/BcBK8WSgL+qCvs7Ss8AyRHhsVoPdE
t34RDN7vBsc+C6tIt4iKr7VGmeVpzsCyCNY/CdsqFtdoNqrLuhbg7dqpuWwJ66/7
AV7J8DAvTSqx3eN4dWa5ZAhXKUxgSYqU4BzNgProp5mp5jqlfUxQ93ytpN+PWkoR
SNZM1+G6eKFbotfv39WHWmLGwPp99wCsfH+MyIj1CGIs
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:39 2024 by rpki-client on console-fra.rpki-client.org