Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/f1db36-665d-4d80-a1b2-515ee1570259/1/v-XWWoTXvE5MYSFV9XzSJjwbLzI.roa
File: v-XWWoTXvE5MYSFV9XzSJjwbLzI.roa (raw, json)
Hash identifier: sdr4PIKMz809C4Va7wGDujzmwdTq0hD5a0juyp+2ri8=
Subject key identifier: BF:E5:D6:5A:84:D7:BC:4E:4C:61:21:55:F5:7C:D2:26:3C:1B:2F:32
Certificate issuer: /CN=1b54437c92c1e08b06e0776187c7884dd51c0e38
Certificate serial: 018BEF9F1287764C2213C0FD8D18516483E8
Authority key identifier: 1B:54:43:7C:92:C1:E0:8B:06:E0:77:61:87:C7:88:4D:D5:1C:0E:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G1RDfJLB4IsG4Hdhh8eITdUcDjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/f1db36-665d-4d80-a1b2-515ee1570259/1/v-XWWoTXvE5MYSFV9XzSJjwbLzI.roa
Signing time: Tue 21 Nov 2023 02:04:21 +0000
ROA not before: Tue 21 Nov 2023 02:04:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205291
IP address blocks: 91.235.206.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ef:9f:12:87:76:4c:22:13:c0:fd:8d:18:51:64:83:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b54437c92c1e08b06e0776187c7884dd51c0e38
Validity
Not Before: Nov 21 02:04:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bfe5d65a84d7bc4e4c612155f57cd2263c1b2f32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:c9:ea:45:64:be:f2:41:bc:d8:6d:60:95:c7:
c7:20:f8:c8:42:59:9a:c0:91:1c:9e:cb:10:de:fc:
2a:9b:a1:77:3b:1e:79:25:b7:e4:c3:fa:3e:f2:02:
29:5f:51:82:64:fe:f3:87:02:6d:e8:a0:ce:f4:f5:
76:74:49:cd:b9:49:41:21:d4:74:0a:63:eb:e6:ef:
79:2a:83:28:b5:0c:db:4c:ec:e0:da:ca:1c:18:a1:
c5:11:b0:09:55:bb:d5:83:87:88:17:07:00:11:da:
4f:93:cc:45:08:ac:77:47:7e:9d:54:cf:74:80:25:
9e:50:f3:38:05:cf:d7:f1:aa:f2:40:4d:45:1c:fe:
93:bd:65:e5:3e:a6:02:54:28:d2:cb:cd:51:fc:b3:
07:da:80:d6:97:7d:92:4c:76:d7:14:fb:3e:13:6e:
01:59:13:f0:7c:52:76:a4:6d:cb:88:02:8a:e1:45:
c9:61:bd:d6:5b:dc:23:e9:4b:04:73:ea:f7:5a:86:
a1:49:ca:61:e0:25:74:4a:77:44:8c:14:79:99:f7:
54:3e:5a:72:e2:ec:42:96:25:91:8a:0d:0f:d7:5f:
93:23:42:c7:a4:6e:6f:ff:53:46:e3:6e:69:eb:7e:
8a:c2:a0:9b:dc:20:f5:8a:7c:43:9b:94:cd:bd:48:
e8:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:E5:D6:5A:84:D7:BC:4E:4C:61:21:55:F5:7C:D2:26:3C:1B:2F:32
X509v3 Authority Key Identifier:
keyid:1B:54:43:7C:92:C1:E0:8B:06:E0:77:61:87:C7:88:4D:D5:1C:0E:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G1RDfJLB4IsG4Hdhh8eITdUcDjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/f1db36-665d-4d80-a1b2-515ee1570259/1/v-XWWoTXvE5MYSFV9XzSJjwbLzI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/f1db36-665d-4d80-a1b2-515ee1570259/1/G1RDfJLB4IsG4Hdhh8eITdUcDjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.206.0/24
Signature Algorithm: sha256WithRSAEncryption
20:59:e4:ea:e5:59:10:07:0d:ff:d7:80:26:7c:81:54:fd:49:
3b:37:de:86:58:5c:d1:3c:ee:8f:60:4d:70:03:27:cd:8f:b6:
a8:60:82:5c:90:cb:e6:ac:f7:88:a8:31:6c:cd:9d:62:33:13:
58:ab:d5:24:b3:da:e1:3b:48:7d:46:e6:f3:61:5c:04:cc:d1:
25:01:27:ef:ab:1d:f1:cc:9f:9d:1e:6d:65:60:41:06:57:27:
11:53:11:be:9d:5b:e3:93:3e:c6:c2:fd:4d:5b:d7:04:b0:0a:
52:02:c0:53:30:bf:9a:23:23:8a:d6:a8:07:58:6e:c6:fe:8a:
1e:3d:69:33:4f:18:f2:af:80:69:db:4a:a0:db:00:a9:e0:56:
97:76:9e:70:12:16:3e:06:d4:84:26:2e:99:7e:a6:60:04:cd:
a3:ba:07:64:36:14:2f:c9:be:fa:50:ad:03:b9:19:38:2c:6c:
f0:02:8c:1e:85:ab:6e:44:5d:bd:8a:0f:7b:92:f5:ad:f2:4e:
6c:cd:27:75:a9:d4:17:0f:88:2b:67:5f:12:c1:b5:df:6e:ad:
ee:cb:34:85:74:f0:f7:91:1d:99:f3:e9:e0:f7:9c:3b:e0:ad:
a3:05:de:65:84:98:ba:63:67:6a:a0:96:16:49:e4:88:f1:44:
54:22:1f:b6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYvvnxKHdkwiE8D9jRhRZIPoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiNTQ0MzdjOTJjMWUwOGIwNmUwNzc2MTg3Yzc4ODRkZDUx
YzBlMzgwHhcNMjMxMTIxMDIwNDIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZmU1ZDY1YTg0ZDdiYzRlNGM2MTIxNTVmNTdjZDIyNjNjMWIyZjMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA28nqRWS+8kG82G1glcfHIPjIQlma
wJEcnssQ3vwqm6F3Ox55Jbfkw/o+8gIpX1GCZP7zhwJt6KDO9PV2dEnNuUlBIdR0
CmPr5u95KoMotQzbTOzg2socGKHFEbAJVbvVg4eIFwcAEdpPk8xFCKx3R36dVM90
gCWeUPM4Bc/X8aryQE1FHP6TvWXlPqYCVCjSy81R/LMH2oDWl32STHbXFPs+E24B
WRPwfFJ2pG3LiAKK4UXJYb3WW9wj6UsEc+r3WoahScph4CV0SndEjBR5mfdUPlpy
4uxCliWRig0P11+TI0LHpG5v/1NG425p636KwqCb3CD1inxDm5TNvUjolwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFL/l1lqE17xOTGEhVfV80iY8Gy8yMB8GA1UdIwQY
MBaAFBtUQ3ySweCLBuB3YYfHiE3VHA44MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRzFSRGZKTEI0SXNHNEhkaGg4ZUlUZFVjRGpnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9mMWRiMzYtNjY1ZC00ZDgwLWExYjIt
NTE1ZWUxNTcwMjU5LzEvdi1YV1dvVFh2RTVNWVNGVjlYelNKandiTHpJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC9mMWRiMzYtNjY1ZC00ZDgwLWExYjItNTE1ZWUxNTcwMjU5
LzEvRzFSRGZKTEI0SXNHNEhkaGg4ZUlUZFVjRGpnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+vOMA0G
CSqGSIb3DQEBCwUAA4IBAQAgWeTq5VkQBw3/14AmfIFU/Uk7N96GWFzRPO6PYE1w
AyfNj7aoYIJckMvmrPeIqDFszZ1iMxNYq9Uks9rhO0h9RubzYVwEzNElASfvqx3x
zJ+dHm1lYEEGVycRUxG+nVvjkz7Gwv1NW9cEsApSAsBTML+aIyOK1qgHWG7G/ooe
PWkzTxjyr4Bp20qg2wCp4FaXdp5wEhY+BtSEJi6ZfqZgBM2jugdkNhQvyb76UK0D
uRk4LGzwAowehatuRF29ig97kvWt8k5szSd1qdQXD4grZ18SwbXfbq3uyzSFdPD3
kR2Z8+ng95w74K2jBd5lhJi6Y2dqoJYWSeSI8URUIh+2
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:53 2024 by rpki-client on console-ams.rpki-client.org