Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/b66429-4f20-4b90-a6b8-4c10e3360577/1/io7_1n0fGzjtRUetFsEv-iyfqsk.roa
File: io7_1n0fGzjtRUetFsEv-iyfqsk.roa (raw, json)
Hash identifier: 4Rvi8jFcLlBIY/fsJElofOgNvBX1jFJoxGFqnOmoYR4=
Subject key identifier: 8A:8E:FF:D6:7D:1F:1B:38:ED:45:47:AD:16:C1:2F:FA:2C:9F:AA:C9
Certificate issuer: /CN=a3c03158aed81161d4f57c1742d460834173a79e
Certificate serial: 0189E4E94092603578330273A4B35B2FB9F0
Authority key identifier: A3:C0:31:58:AE:D8:11:61:D4:F5:7C:17:42:D4:60:83:41:73:A7:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o8AxWK7YEWHU9XwXQtRgg0Fzp54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/b66429-4f20-4b90-a6b8-4c10e3360577/1/io7_1n0fGzjtRUetFsEv-iyfqsk.roa
Signing time: Fri 11 Aug 2023 14:03:58 +0000
ROA not before: Fri 11 Aug 2023 14:03:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 91.194.236.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 12 Oct 2023 23:54:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:e4:e9:40:92:60:35:78:33:02:73:a4:b3:5b:2f:b9:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3c03158aed81161d4f57c1742d460834173a79e
Validity
Not Before: Aug 11 14:03:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a8effd67d1f1b38ed4547ad16c12ffa2c9faac9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:fe:12:79:39:73:ee:a7:89:cd:d2:ab:4d:bf:
27:58:90:76:19:da:8a:45:26:c0:42:b3:bd:ce:9b:
30:a0:28:16:86:6b:9a:5c:af:d4:9c:ba:dc:d3:9d:
7e:0d:9b:7e:b5:ea:81:f0:ef:ff:8b:df:ae:3a:44:
01:0a:34:2b:88:7c:b1:b3:e9:99:bd:86:1b:da:2e:
cb:c7:47:cf:38:7f:5d:7d:1a:24:c3:09:4c:14:5c:
5c:37:45:c1:06:24:47:d6:94:20:4e:3a:44:c5:ee:
c9:5b:ab:75:e2:17:87:92:8a:2c:6c:91:5f:7c:b5:
b1:79:76:cc:d1:d6:eb:d4:93:db:8b:16:44:be:3a:
96:c5:d5:a7:5e:7c:4b:af:b8:49:1a:67:26:34:69:
4a:fc:c8:09:03:24:99:0c:81:76:3b:e3:88:09:f3:
ad:0d:0e:a5:df:1b:45:f4:a7:eb:a7:5c:08:74:f9:
88:11:ed:b5:75:1c:0a:cf:ba:da:a0:e8:e7:12:3f:
e6:57:a2:e1:a8:03:8f:f4:3c:26:cd:7d:75:f4:ed:
ad:b9:f4:9a:f1:38:3e:55:a9:05:b6:39:ef:31:16:
22:f4:c5:41:4e:c3:de:52:8b:42:1b:9e:a2:0a:42:
5f:02:ec:86:9c:9d:b2:dd:4d:6b:0a:0f:8a:84:3e:
f1:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:8E:FF:D6:7D:1F:1B:38:ED:45:47:AD:16:C1:2F:FA:2C:9F:AA:C9
X509v3 Authority Key Identifier:
keyid:A3:C0:31:58:AE:D8:11:61:D4:F5:7C:17:42:D4:60:83:41:73:A7:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o8AxWK7YEWHU9XwXQtRgg0Fzp54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/b66429-4f20-4b90-a6b8-4c10e3360577/1/io7_1n0fGzjtRUetFsEv-iyfqsk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/b66429-4f20-4b90-a6b8-4c10e3360577/1/o8AxWK7YEWHU9XwXQtRgg0Fzp54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.236.0/23
Signature Algorithm: sha256WithRSAEncryption
5d:fc:c6:ea:d1:f9:95:4f:f8:20:39:81:ed:b3:da:61:cc:5c:
72:87:0a:39:b0:97:f2:39:62:07:6d:52:55:d0:c3:55:6f:28:
49:e5:a1:e4:87:71:da:81:a4:4d:20:47:b6:12:66:ef:ea:cf:
88:c5:2d:76:3c:21:d3:f4:95:d9:47:00:96:01:d8:3b:02:a3:
e8:be:34:1b:36:8b:f1:42:c1:c1:e7:39:86:31:93:4c:9c:8d:
28:96:69:32:82:1e:86:27:e7:7f:25:7b:f3:7c:d9:0f:57:08:
74:06:09:cf:bd:14:e7:84:ab:2b:e4:40:2a:a5:c7:12:a7:9d:
e9:df:d9:a5:99:6a:b8:00:2e:47:d4:5e:1f:52:65:a0:bb:eb:
6f:86:a3:43:1c:db:ea:23:d0:1a:73:3e:bf:5c:ab:c1:ff:92:
8f:15:4e:f4:fd:4c:74:1e:a9:74:65:bb:07:79:fe:99:0d:1e:
0b:61:7b:fd:05:ab:e0:4e:fc:f7:ee:e3:8d:34:e6:85:a6:23:
f3:67:99:47:09:a0:2b:0e:f1:89:2a:59:0d:f8:8c:ab:e8:84:
0e:f9:e4:ed:68:9d:ab:7d:c7:18:d0:d3:32:3b:36:56:da:89:
cd:be:5c:d4:bb:03:ae:2e:bb:27:1a:53:61:dc:19:19:a2:48:
64:3e:3c:88
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYnk6UCSYDV4MwJzpLNbL7nwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzYzAzMTU4YWVkODExNjFkNGY1N2MxNzQyZDQ2MDgzNDE3
M2E3OWUwHhcNMjMwODExMTQwMzU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YThlZmZkNjdkMWYxYjM4ZWQ0NTQ3YWQxNmMxMmZmYTJjOWZhYWM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm/4SeTlz7qeJzdKrTb8nWJB2GdqK
RSbAQrO9zpswoCgWhmuaXK/UnLrc051+DZt+teqB8O//i9+uOkQBCjQriHyxs+mZ
vYYb2i7Lx0fPOH9dfRokwwlMFFxcN0XBBiRH1pQgTjpExe7JW6t14heHkoosbJFf
fLWxeXbM0dbr1JPbixZEvjqWxdWnXnxLr7hJGmcmNGlK/MgJAySZDIF2O+OICfOt
DQ6l3xtF9Kfrp1wIdPmIEe21dRwKz7raoOjnEj/mV6LhqAOP9DwmzX119O2tufSa
8Tg+VakFtjnvMRYi9MVBTsPeUotCG56iCkJfAuyGnJ2y3U1rCg+KhD7xSQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIqO/9Z9Hxs47UVHrRbBL/osn6rJMB8GA1UdIwQY
MBaAFKPAMViu2BFh1PV8F0LUYINBc6eeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbzhBeFdLN1lFV0hVOVh3WFF0UmdnMEZ6cDU0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC9iNjY0MjktNGYyMC00YjkwLWE2Yjgt
NGMxMGUzMzYwNTc3LzEvaW83XzFuMGZHemp0UlVldEZzRXYtaXlmcXNrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC9iNjY0MjktNGYyMC00YjkwLWE2YjgtNGMxMGUzMzYwNTc3
LzEvbzhBeFdLN1lFV0hVOVh3WFF0UmdnMEZ6cDU0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW8LsMA0G
CSqGSIb3DQEBCwUAA4IBAQBd/Mbq0fmVT/ggOYHts9phzFxyhwo5sJfyOWIHbVJV
0MNVbyhJ5aHkh3HagaRNIEe2Embv6s+IxS12PCHT9JXZRwCWAdg7AqPovjQbNovx
QsHB5zmGMZNMnI0olmkygh6GJ+d/JXvzfNkPVwh0BgnPvRTnhKsr5EAqpccSp53p
39mlmWq4AC5H1F4fUmWgu+tvhqNDHNvqI9Aacz6/XKvB/5KPFU70/Ux0Hql0ZbsH
ef6ZDR4LYXv9BavgTvz37uONNOaFpiPzZ5lHCaArDvGJKlkN+Iyr6IQO+eTtaJ2r
fccY0NMyOzZW2onNvlzUuwOuLrsnGlNh3BkZokhkPjyI
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:22 2024 by rpki-client on console-ams.rpki-client.org