Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/42252e-0321-4da2-92f4-35a0241a4301/1/aDEqzlnW5gxXU0WjKcPz0XgwOvE.roa
File: aDEqzlnW5gxXU0WjKcPz0XgwOvE.roa (raw, json)
Hash identifier: HPtrEccPvwoA0RD+pBD4ZmwjZnB1v20HEWvFfVR2xEQ=
Subject key identifier: 68:31:2A:CE:59:D6:E6:0C:57:53:45:A3:29:C3:F3:D1:78:30:3A:F1
Certificate issuer: /CN=3e34b02edc7c2878f94c5104cafa8978afb6752d
Certificate serial: 0188DDE5A588AA18975141EBBEA0A549DC59
Authority key identifier: 3E:34:B0:2E:DC:7C:28:78:F9:4C:51:04:CA:FA:89:78:AF:B6:75:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PjSwLtx8KHj5TFEEyvqJeK-2dS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/42252e-0321-4da2-92f4-35a0241a4301/1/aDEqzlnW5gxXU0WjKcPz0XgwOvE.roa
Signing time: Wed 21 Jun 2023 12:19:54 +0000
ROA not before: Wed 21 Jun 2023 12:19:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 55002
IP address blocks: 91.212.110.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Jun 2023 11:54:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:dd:e5:a5:88:aa:18:97:51:41:eb:be:a0:a5:49:dc:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e34b02edc7c2878f94c5104cafa8978afb6752d
Validity
Not Before: Jun 21 12:19:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=68312ace59d6e60c575345a329c3f3d178303af1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:1f:98:c3:cc:3b:b9:49:9a:1d:00:77:d2:24:
6c:a0:6a:03:36:cb:f7:35:1c:4a:f1:39:77:1e:f5:
2e:04:af:95:b7:84:a9:63:26:90:10:e3:4e:69:17:
b7:14:79:7d:3e:88:93:4a:ff:cd:33:16:98:58:96:
34:1c:0c:ef:f8:73:f9:75:40:74:d2:a4:1b:8b:52:
14:8e:89:93:b1:77:b4:c0:13:ec:5a:f6:39:03:75:
f3:e2:97:26:84:5a:8b:7e:5b:e7:f0:e7:c5:00:e4:
9b:09:34:56:0a:76:ae:c0:da:51:a4:64:d6:f8:95:
6b:5d:9d:c2:62:93:01:4a:d6:3a:b1:44:18:bc:08:
ce:66:c5:26:e6:7d:ba:14:14:8c:8c:3d:0c:24:1e:
18:9a:97:8b:85:42:d9:0b:c9:ec:20:4b:72:f8:b4:
dc:bd:28:46:56:ed:0c:10:72:52:cd:2e:7d:5d:ca:
b1:bc:1f:46:64:61:11:a9:64:fd:74:07:3b:b4:88:
90:2c:9d:d6:35:c5:74:5e:f2:74:f4:dc:19:80:b8:
01:ef:30:8f:f6:34:97:a7:78:f4:e3:b8:73:26:01:
58:95:bc:02:5f:f3:3e:d0:49:f0:d6:b7:50:bd:66:
04:1f:7f:80:16:56:24:16:b7:87:6b:24:0c:c8:d4:
3e:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:31:2A:CE:59:D6:E6:0C:57:53:45:A3:29:C3:F3:D1:78:30:3A:F1
X509v3 Authority Key Identifier:
keyid:3E:34:B0:2E:DC:7C:28:78:F9:4C:51:04:CA:FA:89:78:AF:B6:75:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PjSwLtx8KHj5TFEEyvqJeK-2dS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/42252e-0321-4da2-92f4-35a0241a4301/1/aDEqzlnW5gxXU0WjKcPz0XgwOvE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/42252e-0321-4da2-92f4-35a0241a4301/1/PjSwLtx8KHj5TFEEyvqJeK-2dS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.110.0/24
Signature Algorithm: sha256WithRSAEncryption
88:c3:97:b4:01:4a:a3:c4:5e:a8:6c:41:79:d0:68:ec:a6:6a:
10:c8:fc:79:87:7c:e3:2c:3c:e1:83:5a:86:54:64:e3:71:74:
38:00:e9:db:08:04:de:3b:86:dd:b1:81:cf:4e:2a:0d:19:a9:
30:96:66:cd:9c:68:e5:8d:b0:31:6d:ca:be:45:a7:cf:bb:4c:
25:05:ce:6c:da:67:dc:29:48:2d:c3:6e:4d:7e:8f:3c:a2:df:
52:09:1c:6b:6d:77:aa:37:85:17:7e:ec:cf:bb:6a:16:8b:81:
6b:1c:bf:64:97:d4:fa:94:be:02:f0:5b:f2:3d:6f:5b:fa:9d:
5a:71:2f:5e:f2:75:33:a8:40:96:cf:3a:8a:67:c8:f0:6e:ef:
5f:d6:b4:9f:c4:98:86:a6:cb:77:1e:6c:5c:9d:98:1d:07:18:
ac:8f:b1:bf:79:ff:cb:9d:1e:d5:16:30:1c:7c:5f:df:9e:84:
14:f0:c5:91:54:0b:89:0c:8f:92:e7:5d:6b:82:80:00:e5:0b:
50:55:96:b4:6c:65:f8:17:f2:00:43:3b:7d:64:37:f6:39:78:
e5:57:a0:1c:f8:ad:6f:c4:7e:19:44:3d:77:63:15:47:c1:89:
b6:46:5c:5b:8d:5f:ae:00:87:b4:32:7a:fb:cb:54:2b:2e:4e:
35:37:35:d7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYjd5aWIqhiXUUHrvqClSdxZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlMzRiMDJlZGM3YzI4NzhmOTRjNTEwNGNhZmE4OTc4YWZi
Njc1MmQwHhcNMjMwNjIxMTIxOTU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ODMxMmFjZTU5ZDZlNjBjNTc1MzQ1YTMyOWMzZjNkMTc4MzAzYWYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjB+Yw8w7uUmaHQB30iRsoGoDNsv3
NRxK8Tl3HvUuBK+Vt4SpYyaQEONOaRe3FHl9PoiTSv/NMxaYWJY0HAzv+HP5dUB0
0qQbi1IUjomTsXe0wBPsWvY5A3Xz4pcmhFqLflvn8OfFAOSbCTRWCnauwNpRpGTW
+JVrXZ3CYpMBStY6sUQYvAjOZsUm5n26FBSMjD0MJB4YmpeLhULZC8nsIEty+LTc
vShGVu0MEHJSzS59XcqxvB9GZGERqWT9dAc7tIiQLJ3WNcV0XvJ09NwZgLgB7zCP
9jSXp3j047hzJgFYlbwCX/M+0Enw1rdQvWYEH3+AFlYkFreHayQMyNQ+1wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGgxKs5Z1uYMV1NFoynD89F4MDrxMB8GA1UdIwQY
MBaAFD40sC7cfCh4+UxRBMr6iXivtnUtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUGpTd0x0eDhLSGo1VEZFRXl2cUplSy0yZFMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi80MjI1MmUtMDMyMS00ZGEyLTkyZjQt
MzVhMDI0MWE0MzAxLzEvYURFcXpsblc1Z3hYVTBXaktjUHowWGd3T3ZFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi80MjI1MmUtMDMyMS00ZGEyLTkyZjQtMzVhMDI0MWE0MzAx
LzEvUGpTd0x0eDhLSGo1VEZFRXl2cUplSy0yZFMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9RuMA0G
CSqGSIb3DQEBCwUAA4IBAQCIw5e0AUqjxF6obEF50GjspmoQyPx5h3zjLDzhg1qG
VGTjcXQ4AOnbCATeO4bdsYHPTioNGakwlmbNnGjljbAxbcq+RafPu0wlBc5s2mfc
KUgtw25Nfo88ot9SCRxrbXeqN4UXfuzPu2oWi4FrHL9kl9T6lL4C8FvyPW9b+p1a
cS9e8nUzqECWzzqKZ8jwbu9f1rSfxJiGpst3HmxcnZgdBxisj7G/ef/LnR7VFjAc
fF/fnoQU8MWRVAuJDI+S511rgoAA5QtQVZa0bGX4F/IAQzt9ZDf2OXjlV6Ac+K1v
xH4ZRD13YxVHwYm2RlxbjV+uAIe0Mnr7y1QrLk41NzXX
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:43 2024 by rpki-client on console-ams.rpki-client.org