Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/B1FvrKZ9sMjvqE3AR6fxHMdjp0E.roa
File: B1FvrKZ9sMjvqE3AR6fxHMdjp0E.roa (raw, json)
Hash identifier: SEqPynJoJRyXSApmnMJ7O4FnYDA0lewltC4La5QLCjA=
Subject key identifier: 07:51:6F:AC:A6:7D:B0:C8:EF:A8:4D:C0:47:A7:F1:1C:C7:63:A7:41
Certificate issuer: /CN=ab45364e49dc3a15beff269c3a32b3c0541c8b66
Certificate serial: 018CCA2A66C0EC366B1B31CE6467F2E4B156
Authority key identifier: AB:45:36:4E:49:DC:3A:15:BE:FF:26:9C:3A:32:B3:C0:54:1C:8B:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/B1FvrKZ9sMjvqE3AR6fxHMdjp0E.roa
Signing time: Tue 02 Jan 2024 12:33:45 +0000
ROA not before: Tue 02 Jan 2024 12:33:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56513
IP address blocks: 91.224.172.0/23 maxlen: 23
2001:67c:548::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 06 Mar 2024 13:28:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:66:c0:ec:36:6b:1b:31:ce:64:67:f2:e4:b1:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab45364e49dc3a15beff269c3a32b3c0541c8b66
Validity
Not Before: Jan 2 12:33:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=07516faca67db0c8efa84dc047a7f11cc763a741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:2b:da:2a:22:02:60:d8:23:d2:f4:21:dd:22:
be:9c:b3:2f:1e:cf:52:c2:0b:ff:83:30:c6:56:b7:
99:13:e6:05:e7:f1:d6:c2:3d:6e:8d:68:2a:f8:66:
e6:e2:00:2d:8a:52:bf:9b:45:9c:f9:52:a8:83:d2:
2b:78:0c:3e:4c:e3:83:7b:8b:c3:fa:b3:7b:c8:7c:
a8:9a:b3:af:30:fd:10:f9:2f:5b:7d:e0:c8:a6:55:
c2:07:e2:26:1c:35:ce:ca:4a:1e:e5:d5:e1:28:67:
98:fa:f2:f5:9f:45:5c:5d:f4:cd:eb:90:0a:b9:f2:
5a:dc:54:08:46:e2:3f:24:79:0a:0c:04:79:c6:db:
d6:cc:0d:f8:16:e7:62:ce:fc:9e:9e:f9:f4:ec:fc:
69:57:41:cd:e8:6f:b4:f0:b0:68:60:4d:90:53:c8:
10:28:ef:07:fc:55:72:56:1d:2a:97:ec:18:5d:5c:
96:d3:0c:77:01:d2:86:d1:2b:fb:8f:fe:f9:ef:1d:
c5:06:5f:a3:3c:62:9d:ae:d9:98:af:21:d8:06:af:
63:59:13:bc:b5:cf:b6:1c:c6:63:92:41:6e:46:7e:
18:55:da:17:b6:e7:ab:08:63:37:a4:dc:69:c6:32:
41:7c:4d:f5:a1:64:57:18:25:26:5e:6d:70:65:5b:
ac:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:51:6F:AC:A6:7D:B0:C8:EF:A8:4D:C0:47:A7:F1:1C:C7:63:A7:41
X509v3 Authority Key Identifier:
keyid:AB:45:36:4E:49:DC:3A:15:BE:FF:26:9C:3A:32:B3:C0:54:1C:8B:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q0U2TkncOhW-_yacOjKzwFQci2Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/B1FvrKZ9sMjvqE3AR6fxHMdjp0E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/5aaf25-9748-4592-a497-f8bd250454eb/1/q0U2TkncOhW-_yacOjKzwFQci2Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.224.172.0/23
IPv6:
2001:67c:548::/48
Signature Algorithm: sha256WithRSAEncryption
21:f1:f2:8e:fc:ef:5d:9a:35:78:ea:03:db:42:a9:ee:17:3c:
72:85:20:c1:0e:13:e7:6b:42:56:71:fa:a0:34:0e:1e:30:fc:
8e:d9:26:be:19:6f:9a:1e:db:d8:a7:5f:d3:b5:2d:1f:59:14:
e1:bf:04:63:b1:e9:14:02:d9:2f:64:11:2e:a4:e4:2b:0e:33:
db:c8:e2:b8:31:ff:c8:4a:4f:6b:d1:e3:bc:2f:37:df:16:a2:
eb:78:00:3f:fe:ab:9f:5d:4e:c8:72:66:d8:54:af:3b:ad:d6:
60:58:4b:05:41:6f:77:c4:6c:35:8b:01:9c:8c:b7:5d:a2:eb:
2e:9e:ad:7e:97:6a:e7:e3:22:5d:98:df:5d:a6:2e:ce:3f:ea:
c5:5f:06:82:db:73:f8:92:0f:c5:d0:31:ec:f2:da:ef:e2:04:
6f:ec:64:e2:32:0c:b4:9e:00:6b:63:85:33:d1:57:76:9f:6c:
08:86:39:8c:6e:fc:9e:a8:3a:87:e2:58:de:0f:c8:c0:c3:5a:
1c:77:9e:17:75:46:32:23:58:27:3b:94:2a:df:ee:56:35:1d:
fb:ef:03:cc:29:a2:dd:5c:54:05:29:f0:f0:a7:e7:f3:67:c2:
f4:19:c5:cd:ec:74:57:43:39:c7:93:44:67:60:a8:7d:d3:67:
1f:06:c2:cc
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYzKKmbA7DZrGzHOZGfy5LFWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiNDUzNjRlNDlkYzNhMTViZWZmMjY5YzNhMzJiM2MwNTQx
YzhiNjYwHhcNMjQwMTAyMTIzMzQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNzUxNmZhY2E2N2RiMGM4ZWZhODRkYzA0N2E3ZjExY2M3NjNhNzQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2CvaKiICYNgj0vQh3SK+nLMvHs9S
wgv/gzDGVreZE+YF5/HWwj1ujWgq+Gbm4gAtilK/m0Wc+VKog9IreAw+TOODe4vD
+rN7yHyomrOvMP0Q+S9bfeDIplXCB+ImHDXOykoe5dXhKGeY+vL1n0VcXfTN65AK
ufJa3FQIRuI/JHkKDAR5xtvWzA34Fudizvyenvn07PxpV0HN6G+08LBoYE2QU8gQ
KO8H/FVyVh0ql+wYXVyW0wx3AdKG0Sv7j/757x3FBl+jPGKdrtmYryHYBq9jWRO8
tc+2HMZjkkFuRn4YVdoXtuerCGM3pNxpxjJBfE31oWRXGCUmXm1wZVusDQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFAdRb6ymfbDI76hNwEen8RzHY6dBMB8GA1UdIwQY
MBaAFKtFNk5J3DoVvv8mnDoys8BUHItmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTBVMlRrbmNPaFctX3lhY09qS3p3RlFjaTJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny81YWFmMjUtOTc0OC00NTkyLWE0OTct
ZjhiZDI1MDQ1NGViLzEvQjFGdnJLWjlzTWp2cUUzQVI2ZnhITWRqcDBFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny81YWFmMjUtOTc0OC00NTkyLWE0OTctZjhiZDI1MDQ1NGVi
LzEvcTBVMlRrbmNPaFctX3lhY09qS3p3RlFjaTJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBW+CsMA8E
AgACMAkDBwAgAQZ8BUgwDQYJKoZIhvcNAQELBQADggEBACHx8o78712aNXjqA9tC
qe4XPHKFIMEOE+drQlZx+qA0Dh4w/I7ZJr4Zb5oe29inX9O1LR9ZFOG/BGOx6RQC
2S9kES6k5CsOM9vI4rgx/8hKT2vR47wvN98Wout4AD/+q59dTshyZthUrzut1mBY
SwVBb3fEbDWLAZyMt12i6y6erX6XaufjIl2Y312mLs4/6sVfBoLbc/iSD8XQMezy
2u/iBG/sZOIyDLSeAGtjhTPRV3afbAiGOYxu/J6oOofiWN4PyMDDWhx3nhd1RjIj
WCc7lCrf7lY1HfvvA8wpot1cVAUp8PCn5/NnwvQZxc3sdFdDOceTRGdgqH3TZx8G
wsw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:53 2024 by rpki-client on console-ams.rpki-client.org