Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/02f9bb-6e6a-478a-bac8-5911fe63af79/1/lVwK_6m0cFRoRusUIJsLCgfyeFQ.roa
File: lVwK_6m0cFRoRusUIJsLCgfyeFQ.roa (raw, json)
Hash identifier: uKXAV4HYX2nrlureDSZhgd8xi8Gehzd1vOw0qCvTh7I=
Subject key identifier: 95:5C:0A:FF:A9:B4:70:54:68:46:EB:14:20:9B:0B:0A:07:F2:78:54
Certificate issuer: /CN=4de4f96771d91f87c21be9f00d120327f5bbf2ea
Certificate serial: 01857102ECC99196E63B2D0B1CDC27770441
Authority key identifier: 4D:E4:F9:67:71:D9:1F:87:C2:1B:E9:F0:0D:12:03:27:F5:BB:F2:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TeT5Z3HZH4fCG-nwDRIDJ_W78uo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/02f9bb-6e6a-478a-bac8-5911fe63af79/1/lVwK_6m0cFRoRusUIJsLCgfyeFQ.roa
Signing time: Mon 02 Jan 2023 05:44:55 +0000
ROA not before: Mon 02 Jan 2023 05:44:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28907
IP address blocks: 91.228.146.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:02:ec:c9:91:96:e6:3b:2d:0b:1c:dc:27:77:04:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4de4f96771d91f87c21be9f00d120327f5bbf2ea
Validity
Not Before: Jan 2 05:44:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=955c0affa9b470546846eb14209b0b0a07f27854
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:4f:73:45:02:88:46:cf:1b:f0:ec:50:fd:64:
1f:6c:45:7b:47:07:01:07:ce:ce:11:3f:80:32:87:
1a:05:7f:05:65:13:ee:3c:5b:e9:1a:33:6e:3d:50:
2f:32:25:f1:46:1d:5a:3c:1a:03:76:56:b0:f0:fc:
c6:4d:34:66:ab:4d:36:70:b8:e8:ff:49:ef:c4:05:
c8:f9:d7:fd:2f:67:85:10:c7:32:7b:5e:ca:04:84:
33:6a:0c:85:68:b1:df:9a:44:ba:13:f7:b3:b9:f0:
3e:90:0b:27:15:36:ca:d8:e2:32:52:18:6a:02:89:
2b:6d:72:5b:99:a7:6c:83:e5:b6:b7:7f:ac:74:ad:
32:d6:4c:64:d5:ce:4a:a3:b0:47:fd:12:7c:a2:75:
08:5f:af:58:c2:31:f0:e0:25:fe:1f:a0:04:b6:5f:
db:dd:b4:54:10:bd:2b:ed:c2:32:35:ac:df:eb:44:
cf:ea:9b:e4:1c:da:26:10:0d:83:d3:58:96:98:08:
9d:cf:15:35:10:31:df:eb:61:ea:71:11:2c:f8:10:
86:82:b1:ae:d4:e4:2e:d6:a7:e8:8d:38:83:65:97:
e7:18:36:2d:4d:ea:21:a5:d7:d8:5e:7d:65:49:3c:
57:ae:e1:7f:c1:28:59:e1:3f:00:f5:71:19:a9:b7:
1d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:5C:0A:FF:A9:B4:70:54:68:46:EB:14:20:9B:0B:0A:07:F2:78:54
X509v3 Authority Key Identifier:
keyid:4D:E4:F9:67:71:D9:1F:87:C2:1B:E9:F0:0D:12:03:27:F5:BB:F2:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TeT5Z3HZH4fCG-nwDRIDJ_W78uo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/02f9bb-6e6a-478a-bac8-5911fe63af79/1/lVwK_6m0cFRoRusUIJsLCgfyeFQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/02f9bb-6e6a-478a-bac8-5911fe63af79/1/TeT5Z3HZH4fCG-nwDRIDJ_W78uo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.146.0/23
Signature Algorithm: sha256WithRSAEncryption
24:b6:3c:1a:ed:1e:09:27:e0:ce:a7:23:f0:2d:70:70:09:0a:
65:01:9c:e9:36:7b:b1:f2:90:6c:ba:c6:d2:91:c3:e3:f8:85:
ba:43:c9:68:90:63:0b:48:26:82:ff:61:6a:4e:2f:a9:15:b9:
45:ff:de:f4:e2:66:1b:6b:16:dd:a1:83:0e:7a:01:45:b5:9a:
a0:c0:2b:37:dd:7b:90:47:b0:8c:43:57:6f:a2:a2:57:32:e6:
ad:83:d0:d6:4e:6c:9b:aa:e7:3e:18:30:9d:25:71:20:3b:d5:
15:63:e9:0a:d3:7c:6f:3f:e6:a3:8a:9e:fc:b7:26:09:b4:1e:
2e:38:ea:f9:3a:46:51:78:39:10:dc:65:ea:be:d3:4f:db:36:
c5:9b:ab:bc:db:ba:56:9e:b1:be:f7:a9:03:4e:81:a4:c5:b6:
3d:d5:5e:78:c6:65:2f:ef:8b:b5:d0:59:57:d0:5a:05:07:66:
37:d5:c6:31:05:09:e2:80:f6:2d:e9:15:c9:62:5c:d6:ae:aa:
7e:2a:74:9d:d0:53:0f:57:cd:2e:e8:ba:9f:bf:46:c5:34:f2:
b4:f8:59:c7:2b:f5:de:aa:00:d3:57:01:ab:19:7d:ff:8e:6f:
bc:6e:dd:50:42:83:21:e6:14:1f:2b:01:57:19:b9:86:0f:57:
8c:73:03:ca
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxAuzJkZbmOy0LHNwndwRBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkZTRmOTY3NzFkOTFmODdjMjFiZTlmMDBkMTIwMzI3ZjVi
YmYyZWEwHhcNMjMwMTAyMDU0NDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NTVjMGFmZmE5YjQ3MDU0Njg0NmViMTQyMDliMGIwYTA3ZjI3ODU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnU9zRQKIRs8b8OxQ/WQfbEV7RwcB
B87OET+AMocaBX8FZRPuPFvpGjNuPVAvMiXxRh1aPBoDdlaw8PzGTTRmq002cLjo
/0nvxAXI+df9L2eFEMcye17KBIQzagyFaLHfmkS6E/ezufA+kAsnFTbK2OIyUhhq
AokrbXJbmadsg+W2t3+sdK0y1kxk1c5Ko7BH/RJ8onUIX69YwjHw4CX+H6AEtl/b
3bRUEL0r7cIyNazf60TP6pvkHNomEA2D01iWmAidzxU1EDHf62HqcREs+BCGgrGu
1OQu1qfojTiDZZfnGDYtTeohpdfYXn1lSTxXruF/wShZ4T8A9XEZqbcdZQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJVcCv+ptHBUaEbrFCCbCwoH8nhUMB8GA1UdIwQY
MBaAFE3k+Wdx2R+Hwhvp8A0SAyf1u/LqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVGVUNVozSFpINGZDRy1ud0RSSURKX1c3OHVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi8wMmY5YmItNmU2YS00NzhhLWJhYzgt
NTkxMWZlNjNhZjc5LzEvbFZ3S182bTBjRlJvUnVzVUlKc0xDZ2Z5ZUZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi8wMmY5YmItNmU2YS00NzhhLWJhYzgtNTkxMWZlNjNhZjc5
LzEvVGVUNVozSFpINGZDRy1ud0RSSURKX1c3OHVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW+SSMA0G
CSqGSIb3DQEBCwUAA4IBAQAktjwa7R4JJ+DOpyPwLXBwCQplAZzpNnux8pBsusbS
kcPj+IW6Q8lokGMLSCaC/2FqTi+pFblF/9704mYbaxbdoYMOegFFtZqgwCs33XuQ
R7CMQ1dvoqJXMuatg9DWTmybquc+GDCdJXEgO9UVY+kK03xvP+ajip78tyYJtB4u
OOr5OkZReDkQ3GXqvtNP2zbFm6u827pWnrG+96kDToGkxbY91V54xmUv74u10FlX
0FoFB2Y31cYxBQnigPYt6RXJYlzWrqp+KnSd0FMPV80u6Lqfv0bFNPK0+FnHK/Xe
qgDTVwGrGX3/jm+8bt1QQoMh5hQfKwFXGbmGD1eMcwPK
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:40 2024 by rpki-client on console-ams.rpki-client.org