Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/42252e-0321-4da2-92f4-35a0241a4301/1/Dw56F-AWrW6RRl5_oRls5LZAMjU.roa
File: Dw56F-AWrW6RRl5_oRls5LZAMjU.roa (raw, json)
Hash identifier: 6o2KlULF0mXg6znVVFUB2aSeX3Q/qxf41TT8KDDSQTI=
Subject key identifier: 0F:0E:7A:17:E0:16:AD:6E:91:46:5E:7F:A1:19:6C:E4:B6:40:32:35
Certificate issuer: /CN=3e34b02edc7c2878f94c5104cafa8978afb6752d
Certificate serial: 0188D29D4E48C0C737D30CB93CC538E425BA
Authority key identifier: 3E:34:B0:2E:DC:7C:28:78:F9:4C:51:04:CA:FA:89:78:AF:B6:75:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PjSwLtx8KHj5TFEEyvqJeK-2dS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/42252e-0321-4da2-92f4-35a0241a4301/1/Dw56F-AWrW6RRl5_oRls5LZAMjU.roa
Signing time: Mon 19 Jun 2023 07:45:04 +0000
ROA not before: Mon 19 Jun 2023 07:45:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30885
IP address blocks: 91.212.110.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Jun 2023 06:34:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d2:9d:4e:48:c0:c7:37:d3:0c:b9:3c:c5:38:e4:25:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e34b02edc7c2878f94c5104cafa8978afb6752d
Validity
Not Before: Jun 19 07:45:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f0e7a17e016ad6e91465e7fa1196ce4b6403235
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a1:27:7a:31:bd:9f:16:57:94:61:67:30:53:
fc:62:08:73:2b:c8:e6:89:e4:a5:7c:d1:2e:53:6c:
79:2a:31:7d:23:fd:3d:6d:41:a8:94:0b:18:c6:7c:
38:b6:ad:15:a9:c3:f0:b9:55:92:cb:c2:04:24:c3:
e0:97:52:77:66:ce:e4:6a:c7:a3:fe:de:da:9e:98:
6b:42:27:cb:6b:00:fe:dd:b7:f1:eb:f2:04:f6:d9:
92:17:e1:82:70:2f:51:98:3d:6c:e7:0c:d2:19:7f:
fd:d5:c7:92:36:5d:db:45:3e:59:95:67:d1:a4:28:
9a:04:85:62:bd:32:8c:57:f4:af:94:05:42:8a:5c:
06:c0:61:5a:56:81:93:8b:0d:ec:31:d0:f8:25:82:
23:4e:68:f9:56:20:16:1e:96:c3:4b:f1:0a:94:0c:
6f:dd:58:f3:ce:94:68:89:99:b4:45:eb:8b:ca:5e:
c3:d7:6d:b4:5d:37:2f:2d:01:f0:fc:b0:85:43:12:
1e:77:ac:f3:2f:dc:52:34:fc:99:07:f8:ab:15:dd:
91:6b:9e:d4:6e:ea:7a:22:e1:51:94:5d:74:df:c3:
18:dc:08:e1:51:01:c0:bb:fa:b4:41:38:d5:a2:b8:
26:0c:fe:18:16:d4:e6:bd:d9:e2:65:f1:ad:6e:82:
b0:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:0E:7A:17:E0:16:AD:6E:91:46:5E:7F:A1:19:6C:E4:B6:40:32:35
X509v3 Authority Key Identifier:
keyid:3E:34:B0:2E:DC:7C:28:78:F9:4C:51:04:CA:FA:89:78:AF:B6:75:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PjSwLtx8KHj5TFEEyvqJeK-2dS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/42252e-0321-4da2-92f4-35a0241a4301/1/Dw56F-AWrW6RRl5_oRls5LZAMjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/42252e-0321-4da2-92f4-35a0241a4301/1/PjSwLtx8KHj5TFEEyvqJeK-2dS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.110.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:c1:27:95:88:f1:94:60:ab:a5:60:67:83:5e:9a:5b:4c:95:
ef:cd:06:e8:1f:78:db:1a:bf:0b:01:f5:bb:55:a3:f3:9e:66:
dd:7d:a3:19:5c:7e:15:0c:62:73:95:46:08:46:3d:93:ba:d0:
26:17:6a:6f:85:f5:75:0d:01:cd:e1:7a:d1:dc:18:6c:d7:8f:
76:e6:f2:38:fb:e1:fc:f4:9a:62:20:53:e2:07:f1:16:69:52:
18:d2:f2:32:ff:54:5e:41:83:bc:df:e8:c9:da:ca:49:90:03:
25:69:09:1b:a7:4c:de:00:38:b1:e8:45:86:02:5e:22:fa:16:
1b:a8:68:ce:58:8b:43:84:1a:27:e8:84:99:ca:ec:1c:de:a5:
07:d4:2b:e4:25:28:fd:90:21:70:5b:98:f5:cc:d1:b9:de:e6:
30:a3:04:11:ca:01:0b:2d:22:21:dc:41:64:7e:c6:d0:ed:2e:
57:e1:e7:d7:63:d5:b1:b0:ac:66:40:2d:81:9c:57:a2:c6:e6:
29:98:39:bd:b3:64:ec:36:63:a4:08:8c:6f:ca:16:f7:a6:26:
6c:63:c6:3b:b5:5d:b2:bb:b6:58:c8:a5:c1:9d:c3:b8:06:d5:
86:49:dd:c0:73:7a:7b:58:74:44:7a:cd:e8:02:2d:e9:28:bd:
91:eb:96:65
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYjSnU5IwMc30wy5PMU45CW6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlMzRiMDJlZGM3YzI4NzhmOTRjNTEwNGNhZmE4OTc4YWZi
Njc1MmQwHhcNMjMwNjE5MDc0NTA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZjBlN2ExN2UwMTZhZDZlOTE0NjVlN2ZhMTE5NmNlNGI2NDAzMjM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq6EnejG9nxZXlGFnMFP8YghzK8jm
ieSlfNEuU2x5KjF9I/09bUGolAsYxnw4tq0VqcPwuVWSy8IEJMPgl1J3Zs7kasej
/t7anphrQifLawD+3bfx6/IE9tmSF+GCcC9RmD1s5wzSGX/91ceSNl3bRT5ZlWfR
pCiaBIVivTKMV/SvlAVCilwGwGFaVoGTiw3sMdD4JYIjTmj5ViAWHpbDS/EKlAxv
3VjzzpRoiZm0ReuLyl7D1220XTcvLQHw/LCFQxIed6zzL9xSNPyZB/irFd2Ra57U
bup6IuFRlF1038MY3AjhUQHAu/q0QTjVorgmDP4YFtTmvdniZfGtboKw/QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA8OehfgFq1ukUZef6EZbOS2QDI1MB8GA1UdIwQY
MBaAFD40sC7cfCh4+UxRBMr6iXivtnUtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUGpTd0x0eDhLSGo1VEZFRXl2cUplSy0yZFMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi80MjI1MmUtMDMyMS00ZGEyLTkyZjQt
MzVhMDI0MWE0MzAxLzEvRHc1NkYtQVdyVzZSUmw1X29SbHM1TFpBTWpVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi80MjI1MmUtMDMyMS00ZGEyLTkyZjQtMzVhMDI0MWE0MzAx
LzEvUGpTd0x0eDhLSGo1VEZFRXl2cUplSy0yZFMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9RuMA0G
CSqGSIb3DQEBCwUAA4IBAQCbwSeViPGUYKulYGeDXppbTJXvzQboH3jbGr8LAfW7
VaPznmbdfaMZXH4VDGJzlUYIRj2TutAmF2pvhfV1DQHN4XrR3Bhs14925vI4++H8
9JpiIFPiB/EWaVIY0vIy/1ReQYO83+jJ2spJkAMlaQkbp0zeADix6EWGAl4i+hYb
qGjOWItDhBon6ISZyuwc3qUH1CvkJSj9kCFwW5j1zNG53uYwowQRygELLSIh3EFk
fsbQ7S5X4efXY9WxsKxmQC2BnFeixuYpmDm9s2TsNmOkCIxvyhb3piZsY8Y7tV2y
u7ZYyKXBncO4BtWGSd3Ac3p7WHREes3oAi3pKL2R65Zl
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:26 2024 by rpki-client on console-fra.rpki-client.org