Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/URHYG3kFIdjYVGdyDPku5I_I6tA.roa
File: URHYG3kFIdjYVGdyDPku5I_I6tA.roa (raw, json)
Hash identifier: 8450p1PpZY0SsbUUcv6H4+oXXRU2khE2ZDt64buK/Ss=
Subject key identifier: 51:11:D8:1B:79:05:21:D8:D8:54:67:72:0C:F9:2E:E4:8F:C8:EA:D0
Certificate issuer: /CN=e316318247d211841f9620a9a1130010ddb486f2
Certificate serial: 018C26990BEF38A978DC42289D2BBE925A32
Authority key identifier: E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/URHYG3kFIdjYVGdyDPku5I_I6tA.roa
Signing time: Fri 01 Dec 2023 18:16:53 +0000
ROA not before: Fri 01 Dec 2023 18:16:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212815
IP address blocks: 91.232.99.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:26:99:0b:ef:38:a9:78:dc:42:28:9d:2b:be:92:5a:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e316318247d211841f9620a9a1130010ddb486f2
Validity
Not Before: Dec 1 18:16:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5111d81b790521d8d85467720cf92ee48fc8ead0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:54:44:b1:a6:0b:fc:d7:28:79:9c:17:3f:44:
3b:46:ad:3a:e9:62:63:d4:75:1a:61:31:c3:c4:c4:
b1:e1:58:3a:de:3b:de:00:d0:29:5b:f5:d8:e8:d3:
40:1c:ec:ca:9e:50:bf:18:82:2c:72:61:25:4d:50:
b1:2b:a1:48:d1:e7:2f:54:56:97:1d:03:09:96:ae:
c4:38:37:ae:08:39:20:e5:97:26:34:6c:40:f7:c0:
ee:c5:39:e7:38:f7:10:d2:54:43:21:f1:a2:c2:68:
7c:d4:e1:2f:5b:49:d2:9b:6b:d7:2b:01:6c:0f:c1:
ef:01:ea:4e:cc:73:3a:01:26:ad:ae:ac:b1:63:40:
80:ea:24:96:9f:35:5c:24:fe:45:c6:47:e6:3d:52:
f7:ec:f6:3a:e9:8a:c3:db:96:b4:e1:0e:35:fa:a3:
7c:fa:51:8d:d8:9b:8e:22:75:a5:7a:32:5b:a7:4c:
d1:58:26:0e:45:0a:4e:38:9b:5c:eb:8c:1c:1d:20:
1d:4b:e1:5e:7b:37:30:46:9c:ec:4e:4f:27:51:ca:
c3:94:4b:ff:a8:ba:33:6c:85:09:24:e3:f7:cb:a6:
63:00:e2:4f:d9:f4:c2:d0:10:68:5b:b8:dd:b0:01:
b3:42:c1:fe:1c:d8:35:6a:54:54:b3:af:a1:00:b8:
cf:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:11:D8:1B:79:05:21:D8:D8:54:67:72:0C:F9:2E:E4:8F:C8:EA:D0
X509v3 Authority Key Identifier:
keyid:E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/URHYG3kFIdjYVGdyDPku5I_I6tA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/4xYxgkfSEYQfliCpoRMAEN20hvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.99.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:38:41:91:2a:ac:66:a4:23:40:10:71:e5:86:b7:b5:77:32:
13:96:61:b8:3d:99:b2:4b:33:c9:2c:c3:2f:7f:c6:e7:5a:45:
85:98:bd:02:1e:a2:f0:f6:0c:54:ac:e7:60:52:db:fe:75:57:
47:c4:7e:b3:d2:e2:b3:4d:cc:28:55:35:e2:41:6b:ec:8b:84:
f6:69:e0:e5:f0:64:a6:2a:98:8c:b6:39:a7:99:80:94:b3:cb:
a8:b9:39:fd:8f:5e:c0:7a:c4:23:76:00:b1:ae:f9:66:f4:23:
c6:05:2e:7b:38:74:ce:1f:0b:da:46:83:9c:09:ff:86:1b:0c:
98:30:71:2e:f7:c6:49:cb:c3:fb:13:87:1a:c1:7f:0f:de:af:
06:79:cb:95:29:02:3c:e3:8b:2f:d6:20:9b:21:b6:ca:62:f0:
89:1a:c4:4d:e5:15:c5:87:4c:cd:2c:cf:7e:d6:d1:cf:7a:ae:
6c:cb:b5:09:c0:d0:72:47:2f:e5:b6:d0:48:7b:f4:c1:29:5d:
fa:fb:00:31:57:3c:0c:1e:b7:a3:98:f0:07:6b:f4:68:74:ae:
eb:5c:b5:6f:ea:1c:b4:b4:8a:c5:b5:fc:f7:34:c8:c7:75:19:
78:ae:42:e9:40:69:da:42:1d:cd:b9:74:fe:8c:8b:e2:87:ee:
f8:dd:41:a5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYwmmQvvOKl43EIonSu+kloyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUzMTYzMTgyNDdkMjExODQxZjk2MjBhOWExMTMwMDEwZGRi
NDg2ZjIwHhcNMjMxMjAxMTgxNjUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MTExZDgxYjc5MDUyMWQ4ZDg1NDY3NzIwY2Y5MmVlNDhmYzhlYWQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm1REsaYL/NcoeZwXP0Q7Rq066WJj
1HUaYTHDxMSx4Vg63jveANApW/XY6NNAHOzKnlC/GIIscmElTVCxK6FI0ecvVFaX
HQMJlq7EODeuCDkg5ZcmNGxA98DuxTnnOPcQ0lRDIfGiwmh81OEvW0nSm2vXKwFs
D8HvAepOzHM6ASatrqyxY0CA6iSWnzVcJP5FxkfmPVL37PY66YrD25a04Q41+qN8
+lGN2JuOInWlejJbp0zRWCYORQpOOJtc64wcHSAdS+FeezcwRpzsTk8nUcrDlEv/
qLozbIUJJOP3y6ZjAOJP2fTC0BBoW7jdsAGzQsH+HNg1alRUs6+hALjPPQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFER2Bt5BSHY2FRncgz5LuSPyOrQMB8GA1UdIwQY
MBaAFOMWMYJH0hGEH5YgqaETABDdtIbyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHhZeGdrZlNFWVFmbGlDcG9STUFFTjIwaHZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9lZTQyYmItMWU0OS00YzIxLWE0ZDYt
ZWMyODdlMWQzN2U1LzEvVVJIWUcza0ZJZGpZVkdkeURQa3U1SV9JNnRBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS9lZTQyYmItMWU0OS00YzIxLWE0ZDYtZWMyODdlMWQzN2U1
LzEvNHhZeGdrZlNFWVFmbGlDcG9STUFFTjIwaHZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+hjMA0G
CSqGSIb3DQEBCwUAA4IBAQCKOEGRKqxmpCNAEHHlhre1dzITlmG4PZmySzPJLMMv
f8bnWkWFmL0CHqLw9gxUrOdgUtv+dVdHxH6z0uKzTcwoVTXiQWvsi4T2aeDl8GSm
KpiMtjmnmYCUs8uouTn9j17AesQjdgCxrvlm9CPGBS57OHTOHwvaRoOcCf+GGwyY
MHEu98ZJy8P7E4cawX8P3q8GecuVKQI844sv1iCbIbbKYvCJGsRN5RXFh0zNLM9+
1tHPeq5sy7UJwNByRy/lttBIe/TBKV36+wAxVzwMHrejmPAHa/RodK7rXLVv6hy0
tIrFtfz3NMjHdRl4rkLpQGnaQh3NuXT+jIvih+743UGl
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:21 2024 by rpki-client on console-ams.rpki-client.org