Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/L9BZHsmTJToN9ymwoNrS-ESV_jw.roa
File: L9BZHsmTJToN9ymwoNrS-ESV_jw.roa (raw, json)
Hash identifier: jDiFLWuJNwK9d6GpEIxh3zmorByYI4AZsD3wV4ARx9o=
Subject key identifier: 2F:D0:59:1E:C9:93:25:3A:0D:F7:29:B0:A0:DA:D2:F8:44:95:FE:3C
Certificate issuer: /CN=e316318247d211841f9620a9a1130010ddb486f2
Certificate serial: 018CC87141F7A31FDC90CF83DCB06EA2175E
Authority key identifier: E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/L9BZHsmTJToN9ymwoNrS-ESV_jw.roa
Signing time: Tue 02 Jan 2024 04:31:54 +0000
ROA not before: Tue 02 Jan 2024 04:31:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16276
IP address blocks: 91.232.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 07 Jan 2024 12:20:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:71:41:f7:a3:1f:dc:90:cf:83:dc:b0:6e:a2:17:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e316318247d211841f9620a9a1130010ddb486f2
Validity
Not Before: Jan 2 04:31:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2fd0591ec993253a0df729b0a0dad2f84495fe3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d6:e8:f5:4e:33:29:68:f0:8b:d2:d5:0d:c2:
fd:44:52:40:bf:d8:fc:09:9d:72:cd:c5:9b:b2:3c:
45:3b:e9:f4:6a:24:5c:86:3a:5e:08:05:4d:24:42:
16:c0:f3:78:8c:28:ce:85:af:00:7f:3e:33:a5:21:
5a:3f:6b:cd:40:fc:ef:a1:d8:19:d1:70:84:61:ae:
95:49:fb:f1:04:f6:20:e0:93:56:9a:00:25:cf:37:
64:86:76:d8:1e:73:07:48:22:ee:fb:e0:97:85:ef:
1e:88:0c:91:17:0e:7b:7b:26:be:7f:95:07:27:04:
3c:e9:1e:46:b3:a3:ca:a7:40:bb:6e:4c:50:91:f8:
06:b1:44:26:4f:dc:f2:99:33:d9:f6:45:84:69:3b:
79:61:32:f5:b4:f6:e6:97:08:ae:b5:3e:ee:2b:db:
94:7e:2c:df:7a:ff:49:a9:2c:92:67:25:d7:95:d8:
96:54:e6:25:01:d9:1a:1c:81:c8:ce:b4:a7:da:fa:
08:b1:cb:b5:57:49:3f:39:50:1f:03:a7:46:d0:11:
69:26:fb:df:07:fc:16:de:8d:18:3a:6b:3e:3d:a0:
f3:27:6c:6e:55:e0:06:07:2a:3f:3d:8f:b5:59:04:
a2:cd:14:d4:f2:ab:3c:c5:c4:fa:ad:4b:33:86:b1:
36:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:D0:59:1E:C9:93:25:3A:0D:F7:29:B0:A0:DA:D2:F8:44:95:FE:3C
X509v3 Authority Key Identifier:
keyid:E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/L9BZHsmTJToN9ymwoNrS-ESV_jw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/4xYxgkfSEYQfliCpoRMAEN20hvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.103.0/24
Signature Algorithm: sha256WithRSAEncryption
27:72:9e:eb:d6:2d:51:be:d3:ff:29:2a:59:15:88:a3:c2:f8:
4b:2e:98:cc:aa:4f:db:1e:4c:91:b0:a3:9b:49:1f:36:0d:92:
a5:6e:c2:b2:2e:fa:8d:33:b5:ee:9a:f6:f3:f2:94:3c:39:7f:
35:e9:3d:13:b7:ad:58:50:60:2e:41:1a:f0:0e:0c:42:91:86:
55:f0:b5:b1:5b:67:87:7c:4c:93:05:97:eb:c6:be:18:28:9d:
b7:00:14:68:d8:f3:fc:78:c8:a4:a0:00:41:c4:9c:41:4a:05:
6e:eb:c1:b0:77:9a:69:7e:35:31:cd:44:db:36:cc:90:a0:83:
bf:46:bc:55:62:e6:ca:5f:b6:43:90:87:93:21:47:30:14:1f:
5a:14:1d:e5:5e:e1:ff:b2:f5:f6:5e:a4:fb:b9:34:a6:70:de:
f5:70:79:e5:af:4a:cd:bf:38:9e:bf:af:17:23:71:12:c8:78:
04:8c:ef:c7:b0:20:89:c9:02:3a:b9:8f:a9:d8:fc:f4:b0:ca:
99:e1:f5:6b:3c:14:aa:19:72:8c:bc:10:2e:82:02:84:86:41:
a3:85:cb:92:44:e9:7c:85:61:dc:89:fc:f7:4f:2e:61:de:4e:
4e:43:a8:0b:b9:c6:3a:6a:f3:b7:02:6e:ba:e0:e4:81:a0:31:
11:f3:0f:62
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzIcUH3ox/ckM+D3LBuohdeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUzMTYzMTgyNDdkMjExODQxZjk2MjBhOWExMTMwMDEwZGRi
NDg2ZjIwHhcNMjQwMTAyMDQzMTU0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZmQwNTkxZWM5OTMyNTNhMGRmNzI5YjBhMGRhZDJmODQ0OTVmZTNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp9bo9U4zKWjwi9LVDcL9RFJAv9j8
CZ1yzcWbsjxFO+n0aiRchjpeCAVNJEIWwPN4jCjOha8Afz4zpSFaP2vNQPzvodgZ
0XCEYa6VSfvxBPYg4JNWmgAlzzdkhnbYHnMHSCLu++CXhe8eiAyRFw57eya+f5UH
JwQ86R5Gs6PKp0C7bkxQkfgGsUQmT9zymTPZ9kWEaTt5YTL1tPbmlwiutT7uK9uU
fizfev9JqSySZyXXldiWVOYlAdkaHIHIzrSn2voIscu1V0k/OVAfA6dG0BFpJvvf
B/wW3o0YOms+PaDzJ2xuVeAGByo/PY+1WQSizRTU8qs8xcT6rUszhrE2CQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC/QWR7JkyU6DfcpsKDa0vhElf48MB8GA1UdIwQY
MBaAFOMWMYJH0hGEH5YgqaETABDdtIbyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHhZeGdrZlNFWVFmbGlDcG9STUFFTjIwaHZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9lZTQyYmItMWU0OS00YzIxLWE0ZDYt
ZWMyODdlMWQzN2U1LzEvTDlCWkhzbVRKVG9OOXltd29OclMtRVNWX2p3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS9lZTQyYmItMWU0OS00YzIxLWE0ZDYtZWMyODdlMWQzN2U1
LzEvNHhZeGdrZlNFWVFmbGlDcG9STUFFTjIwaHZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+hnMA0G
CSqGSIb3DQEBCwUAA4IBAQAncp7r1i1RvtP/KSpZFYijwvhLLpjMqk/bHkyRsKOb
SR82DZKlbsKyLvqNM7Xumvbz8pQ8OX816T0Tt61YUGAuQRrwDgxCkYZV8LWxW2eH
fEyTBZfrxr4YKJ23ABRo2PP8eMikoABBxJxBSgVu68Gwd5ppfjUxzUTbNsyQoIO/
RrxVYubKX7ZDkIeTIUcwFB9aFB3lXuH/svX2XqT7uTSmcN71cHnlr0rNvziev68X
I3ESyHgEjO/HsCCJyQI6uY+p2Pz0sMqZ4fVrPBSqGXKMvBAuggKEhkGjhcuSROl8
hWHcifz3Ty5h3k5OQ6gLucY6avO3Am664OSBoDER8w9i
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:25 2024 by rpki-client on console-fra.rpki-client.org