Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/feee89-1805-4bbe-a7dd-dacfbf367b1a/1/PQ0H5PrUIuFToDaDIkYbwgcbu7o.roa
File: PQ0H5PrUIuFToDaDIkYbwgcbu7o.roa (raw, json)
Hash identifier: T+pP5zJgTt/CAPaLdfSn+286OPx6tutZxz55V+BTRSs=
Subject key identifier: 3D:0D:07:E4:FA:D4:22:E1:53:A0:36:83:22:46:1B:C2:07:1B:BB:BA
Certificate issuer: /CN=7870561798e5c8a26707620df082ef3778d7163d
Certificate serial: 018572BA8D0F54B6703E95441DA3C4733047
Authority key identifier: 78:70:56:17:98:E5:C8:A2:67:07:62:0D:F0:82:EF:37:78:D7:16:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eHBWF5jlyKJnB2IN8ILvN3jXFj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/feee89-1805-4bbe-a7dd-dacfbf367b1a/1/PQ0H5PrUIuFToDaDIkYbwgcbu7o.roa
Signing time: Mon 02 Jan 2023 13:45:06 +0000
ROA not before: Mon 02 Jan 2023 13:45:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6696
IP address blocks: 91.220.102.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:8d:0f:54:b6:70:3e:95:44:1d:a3:c4:73:30:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7870561798e5c8a26707620df082ef3778d7163d
Validity
Not Before: Jan 2 13:45:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3d0d07e4fad422e153a0368322461bc2071bbbba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:45:08:ce:85:19:29:d0:fd:33:b6:1f:04:b7:
c4:1e:42:73:bd:4c:4b:eb:ec:26:e5:32:dd:b4:a2:
ab:05:5a:2b:f9:46:fc:1b:4c:39:6b:df:4e:ae:6c:
8a:73:45:c4:a8:8f:b4:c0:55:ca:0f:e2:25:27:39:
5e:91:89:94:60:d1:60:70:f4:ef:97:61:ce:18:d5:
77:d7:9c:11:f9:b6:ff:dd:88:72:4a:c7:4f:05:76:
8c:85:d7:e7:0e:07:62:08:2b:8d:b7:13:1a:ae:9e:
fe:dd:cb:43:0f:f7:b2:ee:b1:25:de:d9:35:53:67:
c0:a6:e9:32:fa:f8:e9:8c:07:0e:12:a9:9b:f9:a1:
59:1b:80:a6:1e:06:ff:b4:f7:ae:d4:32:c0:d7:9d:
44:0b:22:0c:bc:b6:86:eb:73:b4:26:5b:a5:06:58:
73:ad:17:02:05:7d:60:7b:15:9f:5d:81:7f:15:9b:
07:e5:ba:f8:53:f2:a5:67:55:9b:55:c8:bc:af:e6:
38:cc:43:af:22:72:ba:27:ad:48:e8:c4:80:6d:98:
23:99:50:65:c9:0a:8f:1b:d0:2b:fb:e4:83:04:5c:
53:88:f6:e5:28:7d:fe:93:df:43:0f:e3:74:71:b8:
8f:5a:5e:f4:2e:86:8f:f9:ed:08:60:2c:c5:a0:18:
d2:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:0D:07:E4:FA:D4:22:E1:53:A0:36:83:22:46:1B:C2:07:1B:BB:BA
X509v3 Authority Key Identifier:
keyid:78:70:56:17:98:E5:C8:A2:67:07:62:0D:F0:82:EF:37:78:D7:16:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eHBWF5jlyKJnB2IN8ILvN3jXFj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/feee89-1805-4bbe-a7dd-dacfbf367b1a/1/PQ0H5PrUIuFToDaDIkYbwgcbu7o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/feee89-1805-4bbe-a7dd-dacfbf367b1a/1/eHBWF5jlyKJnB2IN8ILvN3jXFj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.102.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:c5:b0:53:8e:65:fb:d3:c6:19:9b:56:f7:90:7e:95:00:57:
82:4c:f3:45:62:2e:0b:77:3f:0f:9d:87:be:b2:e5:f0:d0:12:
06:34:f5:02:60:c9:f2:0e:65:3b:2d:cd:4e:b6:69:45:e5:8f:
e9:77:80:da:63:e7:3c:ed:ff:98:43:6e:4e:88:e0:0c:2e:34:
01:ea:20:00:1d:69:8a:bb:c0:4f:1f:b1:a0:9f:91:00:c5:12:
12:bb:de:3d:d4:06:b4:f6:be:ba:68:b0:0c:f1:a9:9e:ba:bf:
5e:60:fd:46:4f:7d:54:40:e3:19:84:ae:4f:da:cc:df:d2:eb:
6b:44:41:5d:10:f0:22:5a:94:f5:54:58:7d:1d:80:49:18:72:
cc:0e:24:59:5f:e8:ff:f3:19:0f:10:1e:c6:70:de:41:c9:1d:
c9:8d:2f:7d:87:32:f2:0d:12:45:68:c5:e4:93:9f:01:8b:40:
f0:4b:c4:ec:c9:d4:49:44:96:c1:ea:b6:79:a0:16:f2:48:35:
b6:91:c3:ba:e1:3e:df:e3:15:60:9a:84:bd:27:30:c1:c3:75:
1c:b9:a9:01:b3:54:1f:c6:3c:36:4e:da:b4:05:ad:4c:b0:76:
11:29:fb:d5:cf:80:74:48:27:b8:3f:d1:81:8a:93:92:58:9f:
27:f7:7c:4d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyuo0PVLZwPpVEHaPEczBHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc4NzA1NjE3OThlNWM4YTI2NzA3NjIwZGYwODJlZjM3Nzhk
NzE2M2QwHhcNMjMwMTAyMTM0NTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZDBkMDdlNGZhZDQyMmUxNTNhMDM2ODMyMjQ2MWJjMjA3MWJiYmJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApkUIzoUZKdD9M7YfBLfEHkJzvUxL
6+wm5TLdtKKrBVor+Ub8G0w5a99OrmyKc0XEqI+0wFXKD+IlJzlekYmUYNFgcPTv
l2HOGNV315wR+bb/3YhySsdPBXaMhdfnDgdiCCuNtxMarp7+3ctDD/ey7rEl3tk1
U2fApuky+vjpjAcOEqmb+aFZG4CmHgb/tPeu1DLA151ECyIMvLaG63O0JlulBlhz
rRcCBX1gexWfXYF/FZsH5br4U/KlZ1WbVci8r+Y4zEOvInK6J61I6MSAbZgjmVBl
yQqPG9Ar++SDBFxTiPblKH3+k99DD+N0cbiPWl70LoaP+e0IYCzFoBjSXQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFD0NB+T61CLhU6A2gyJGG8IHG7u6MB8GA1UdIwQY
MBaAFHhwVheY5ciiZwdiDfCC7zd41xY9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZUhCV0Y1amx5S0puQjJJTjhJTHZOM2pYRmowLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC9mZWVlODktMTgwNS00YmJlLWE3ZGQt
ZGFjZmJmMzY3YjFhLzEvUFEwSDVQclVJdUZUb0RhRElrWWJ3Z2NidTdvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNC9mZWVlODktMTgwNS00YmJlLWE3ZGQtZGFjZmJmMzY3YjFh
LzEvZUhCV0Y1amx5S0puQjJJTjhJTHZOM2pYRmowLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9xmMA0G
CSqGSIb3DQEBCwUAA4IBAQA/xbBTjmX708YZm1b3kH6VAFeCTPNFYi4Ldz8PnYe+
suXw0BIGNPUCYMnyDmU7Lc1OtmlF5Y/pd4DaY+c87f+YQ25OiOAMLjQB6iAAHWmK
u8BPH7Ggn5EAxRISu9491Aa09r66aLAM8ameur9eYP1GT31UQOMZhK5P2szf0utr
REFdEPAiWpT1VFh9HYBJGHLMDiRZX+j/8xkPEB7GcN5ByR3JjS99hzLyDRJFaMXk
k58Bi0DwS8TsydRJRJbB6rZ5oBbySDW2kcO64T7f4xVgmoS9JzDBw3UcuakBs1Qf
xjw2Ttq0Ba1MsHYRKfvVz4B0SCe4P9GBipOSWJ8n93xN
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:02 2024 by rpki-client on console-fra.rpki-client.org