Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/1b4708-eef9-49de-b887-f32069ec4ee5/1/NvmsmBpOY4-wf5bKGkMzpEDE9Gk.roa
File: NvmsmBpOY4-wf5bKGkMzpEDE9Gk.roa (raw, json)
Hash identifier: iEyUsMo6KWJMTFRq2C0oAcyFPcxhEo5gMtrk4DzeF2k=
Subject key identifier: 36:F9:AC:98:1A:4E:63:8F:B0:7F:96:CA:1A:43:33:A4:40:C4:F4:69
Certificate issuer: /CN=57c1fe8083646749816ad3fa64098345fb61e9f5
Certificate serial: 01860C35B68745CB61FB8FD18705FEBA1405
Authority key identifier: 57:C1:FE:80:83:64:67:49:81:6A:D3:FA:64:09:83:45:FB:61:E9:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V8H-gINkZ0mBatP6ZAmDRfth6fU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/1b4708-eef9-49de-b887-f32069ec4ee5/1/NvmsmBpOY4-wf5bKGkMzpEDE9Gk.roa
Signing time: Wed 01 Feb 2023 09:01:32 +0000
ROA not before: Wed 01 Feb 2023 09:01:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43207
IP address blocks: 91.229.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:0c:35:b6:87:45:cb:61:fb:8f:d1:87:05:fe:ba:14:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57c1fe8083646749816ad3fa64098345fb61e9f5
Validity
Not Before: Feb 1 09:01:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=36f9ac981a4e638fb07f96ca1a4333a440c4f469
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:68:f7:42:cc:ba:33:e5:97:dc:56:dd:19:21:
1f:36:72:28:78:27:b7:62:b9:61:2e:90:14:00:d6:
39:d4:c8:c1:94:d9:c7:4b:7e:49:c4:22:1d:b2:41:
3a:86:62:ca:56:f6:71:ca:34:60:79:1a:db:48:61:
2a:cb:0e:5d:1e:09:1a:52:11:79:2a:ad:11:0c:57:
fd:f7:bd:b7:de:2a:65:ea:25:a1:9f:d3:8f:6f:48:
b4:1b:2e:d0:33:7c:a7:1c:05:f6:31:c3:ee:58:9e:
c4:14:b0:9b:fa:ab:d2:c9:e4:a5:a6:f5:45:51:5b:
60:3a:ec:50:08:11:83:f4:a4:52:cc:81:a2:6f:f4:
fe:ef:ff:f6:ea:31:c2:b7:31:17:95:54:32:63:b4:
bf:85:7b:2d:29:5f:6f:94:2d:74:ae:04:4c:94:a4:
6a:8e:e3:88:f1:75:2e:51:a5:2e:2e:9a:22:90:dc:
4b:84:87:48:4c:9c:36:5c:ed:f7:c7:51:cd:3c:93:
78:1e:44:d6:3b:2f:ad:4e:7b:63:b2:cc:93:b8:4a:
18:37:34:5c:84:5c:4d:76:df:0f:dd:93:e8:dd:f0:
8c:98:be:61:30:9d:c2:61:37:94:1d:63:f9:db:c5:
62:68:4e:6a:2c:58:a9:9c:a0:51:83:be:ae:90:08:
36:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:F9:AC:98:1A:4E:63:8F:B0:7F:96:CA:1A:43:33:A4:40:C4:F4:69
X509v3 Authority Key Identifier:
keyid:57:C1:FE:80:83:64:67:49:81:6A:D3:FA:64:09:83:45:FB:61:E9:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V8H-gINkZ0mBatP6ZAmDRfth6fU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/1b4708-eef9-49de-b887-f32069ec4ee5/1/NvmsmBpOY4-wf5bKGkMzpEDE9Gk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/1b4708-eef9-49de-b887-f32069ec4ee5/1/V8H-gINkZ0mBatP6ZAmDRfth6fU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.223.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:76:84:b6:59:6f:11:05:d4:3c:69:15:fd:e1:a0:3a:53:e8:
c9:ec:61:cb:b5:4a:e2:48:e4:c9:43:6d:de:1b:c9:83:ce:2b:
c6:99:60:df:11:17:70:54:b4:97:a7:c8:3e:8b:aa:34:44:9b:
45:ae:e5:d4:58:cf:3d:26:9b:48:5b:b4:d4:50:ed:56:a1:90:
f7:42:f3:1d:fc:ad:76:b1:54:56:ad:b7:b4:96:97:36:df:1f:
fb:24:86:41:ff:6c:44:50:7b:ba:9b:09:0c:74:2b:ce:c0:e5:
98:f5:3d:30:36:69:35:4d:64:99:5d:31:2b:fa:3a:f0:b5:3d:
1a:20:5a:b0:1f:90:01:59:17:af:0c:5f:2d:cf:f6:eb:9c:30:
1f:be:cf:5b:18:98:0d:f9:ae:a8:a1:86:ff:81:9e:9e:05:bc:
ce:24:bb:4e:10:0a:d4:75:ca:8c:15:19:10:24:7e:96:fd:72:
e8:86:8e:72:6e:45:a7:b0:05:ba:a1:c2:e4:c9:9b:a1:c6:51:
2c:3c:b6:93:69:86:f3:4e:9e:b3:b7:cb:db:c6:72:27:bd:fc:
63:19:53:9f:54:ae:d0:4a:ad:db:37:83:58:89:f6:ad:be:e7:
1b:4d:e6:7f:69:e7:7b:ec:68:26:2f:a4:c2:aa:21:04:b5:47:
5b:09:36:36
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYYMNbaHRcth+4/RhwX+uhQFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU3YzFmZTgwODM2NDY3NDk4MTZhZDNmYTY0MDk4MzQ1ZmI2
MWU5ZjUwHhcNMjMwMjAxMDkwMTMyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNmY5YWM5ODFhNGU2MzhmYjA3Zjk2Y2ExYTQzMzNhNDQwYzRmNDY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkWj3Qsy6M+WX3FbdGSEfNnIoeCe3
YrlhLpAUANY51MjBlNnHS35JxCIdskE6hmLKVvZxyjRgeRrbSGEqyw5dHgkaUhF5
Kq0RDFf997233ipl6iWhn9OPb0i0Gy7QM3ynHAX2McPuWJ7EFLCb+qvSyeSlpvVF
UVtgOuxQCBGD9KRSzIGib/T+7//26jHCtzEXlVQyY7S/hXstKV9vlC10rgRMlKRq
juOI8XUuUaUuLpoikNxLhIdITJw2XO33x1HNPJN4HkTWOy+tTntjssyTuEoYNzRc
hFxNdt8P3ZPo3fCMmL5hMJ3CYTeUHWP528ViaE5qLFipnKBRg76ukAg2JQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDb5rJgaTmOPsH+WyhpDM6RAxPRpMB8GA1UdIwQY
MBaAFFfB/oCDZGdJgWrT+mQJg0X7Yen1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVjhILWdJTmtaMG1CYXRQNlpBbURSZnRoNmZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi8xYjQ3MDgtZWVmOS00OWRlLWI4ODct
ZjMyMDY5ZWM0ZWU1LzEvTnZtc21CcE9ZNC13ZjViS0drTXpwRURFOUdrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi8xYjQ3MDgtZWVmOS00OWRlLWI4ODctZjMyMDY5ZWM0ZWU1
LzEvVjhILWdJTmtaMG1CYXRQNlpBbURSZnRoNmZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+XfMA0G
CSqGSIb3DQEBCwUAA4IBAQA6doS2WW8RBdQ8aRX94aA6U+jJ7GHLtUriSOTJQ23e
G8mDzivGmWDfERdwVLSXp8g+i6o0RJtFruXUWM89JptIW7TUUO1WoZD3QvMd/K12
sVRWrbe0lpc23x/7JIZB/2xEUHu6mwkMdCvOwOWY9T0wNmk1TWSZXTEr+jrwtT0a
IFqwH5ABWRevDF8tz/brnDAfvs9bGJgN+a6ooYb/gZ6eBbzOJLtOEArUdcqMFRkQ
JH6W/XLoho5ybkWnsAW6ocLkyZuhxlEsPLaTaYbzTp6zt8vbxnInvfxjGVOfVK7Q
Sq3bN4NYifatvucbTeZ/aed77GgmL6TCqiEEtUdbCTY2
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:56 2024 by rpki-client on console-ams.rpki-client.org