Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/e39EA_j3HbZHaGAvCcJsN7eAKMg.roa
File: e39EA_j3HbZHaGAvCcJsN7eAKMg.roa (raw, json)
Hash identifier: 9XfwRQUL44ytDjREFazrIO0YJ0kgfZ9MKPXS46TjC4E=
Subject key identifier: 7B:7F:44:03:F8:F7:1D:B6:47:68:60:2F:09:C2:6C:37:B7:80:28:C8
Certificate issuer: /CN=4d0ade54c27e6fcddace262c4fdf790f320fed9c
Certificate serial: 01856F8B80DF7E63D17EFFC01EA970B1E241
Authority key identifier: 4D:0A:DE:54:C2:7E:6F:CD:DA:CE:26:2C:4F:DF:79:0F:32:0F:ED:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TQreVMJ-b83aziYsT995DzIP7Zw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/e39EA_j3HbZHaGAvCcJsN7eAKMg.roa
Signing time: Sun 01 Jan 2023 22:54:51 +0000
ROA not before: Sun 01 Jan 2023 22:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61262
IP address blocks: 91.223.100.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:8b:80:df:7e:63:d1:7e:ff:c0:1e:a9:70:b1:e2:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d0ade54c27e6fcddace262c4fdf790f320fed9c
Validity
Not Before: Jan 1 22:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7b7f4403f8f71db64768602f09c26c37b78028c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d8:32:ac:52:f2:62:3e:25:b4:50:79:a4:2e:
1b:38:04:3c:cd:96:8c:d1:d7:8b:4a:94:48:c9:a1:
06:f8:d9:a9:af:1f:0d:6e:74:22:04:76:0d:80:12:
64:4b:6f:fe:3f:9d:96:a6:f1:f9:a4:83:61:3b:23:
ba:aa:89:9a:94:d9:46:90:81:a1:65:1b:19:b0:18:
b3:12:2a:cb:39:51:0a:22:ef:0d:2c:43:9a:87:49:
3e:00:84:df:ce:15:ea:91:63:56:97:9e:f8:91:eb:
9b:d4:6b:b8:42:33:a8:15:9b:27:e9:86:1a:05:02:
cb:79:74:e6:f7:6b:f6:91:50:6e:39:2b:95:fd:7f:
97:f5:00:0e:c5:b7:e5:24:31:44:3f:e9:bb:e9:93:
9f:65:b8:5c:4d:65:7f:f8:e2:db:a7:51:ec:2f:74:
68:f0:ba:5f:25:22:8f:1f:63:1c:1c:a7:0f:4e:6c:
09:92:f3:ae:4d:ca:fd:2a:3c:9c:a6:40:66:6f:59:
79:5c:43:bd:26:a8:e2:31:3d:40:e2:77:d0:5d:28:
3c:a7:70:d9:10:7e:19:f0:6a:8f:8f:37:7c:4f:50:
f5:42:d7:35:d0:f5:ba:85:ec:e9:6f:93:30:7f:5e:
15:39:fd:2f:f4:30:80:82:79:3c:ad:6c:05:a9:f7:
18:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:7F:44:03:F8:F7:1D:B6:47:68:60:2F:09:C2:6C:37:B7:80:28:C8
X509v3 Authority Key Identifier:
keyid:4D:0A:DE:54:C2:7E:6F:CD:DA:CE:26:2C:4F:DF:79:0F:32:0F:ED:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TQreVMJ-b83aziYsT995DzIP7Zw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/e39EA_j3HbZHaGAvCcJsN7eAKMg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/8efd8b-e516-4c49-92cb-89296ccb35f5/1/TQreVMJ-b83aziYsT995DzIP7Zw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.100.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:0c:6e:fb:5e:ac:9f:c7:e9:3b:75:89:7b:6f:a8:f9:da:3e:
a1:8e:c0:7c:be:b0:97:22:84:af:7b:f0:75:db:76:9b:79:08:
58:35:31:8a:9f:cd:41:db:69:de:5e:33:69:9d:3f:f8:8d:4c:
62:79:ee:d2:71:54:4f:cd:19:0b:8b:e2:ba:93:8f:af:e4:06:
f7:3e:e6:37:37:bc:fa:f4:bb:b3:66:90:74:6b:1a:17:39:60:
39:e9:5e:8e:f0:82:e5:93:ab:2f:02:84:0d:74:7b:49:80:92:
3d:cf:a9:23:74:88:38:78:67:99:02:0c:b1:dc:1f:58:c2:93:
6d:30:b6:ec:ee:7a:f4:be:19:f2:5f:1a:3d:19:b7:16:7f:77:
70:b9:6b:87:ba:fa:4d:17:a8:48:ee:a9:ee:de:95:a0:c8:10:
fe:21:bb:8a:9b:d0:0b:c9:de:38:de:ab:6d:68:7a:5e:06:3b:
b0:e6:7f:3c:ca:9e:69:cf:f3:8e:74:30:f1:3c:a0:15:bb:48:
00:03:82:3f:f2:fa:48:16:68:35:62:9c:fb:8a:27:67:0f:4b:
64:23:f8:55:19:c7:d7:50:30:a7:7a:9f:50:98:d2:d9:1a:04:
e6:5c:f3:c5:64:04:cf:18:82:2d:c3:09:37:27:11:a2:7c:ee:
80:c0:99:00
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvi4DffmPRfv/AHqlwseJBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkMGFkZTU0YzI3ZTZmY2RkYWNlMjYyYzRmZGY3OTBmMzIw
ZmVkOWMwHhcNMjMwMTAxMjI1NDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YjdmNDQwM2Y4ZjcxZGI2NDc2ODYwMmYwOWMyNmMzN2I3ODAyOGM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAltgyrFLyYj4ltFB5pC4bOAQ8zZaM
0deLSpRIyaEG+Nmprx8NbnQiBHYNgBJkS2/+P52WpvH5pINhOyO6qomalNlGkIGh
ZRsZsBizEirLOVEKIu8NLEOah0k+AITfzhXqkWNWl574keub1Gu4QjOoFZsn6YYa
BQLLeXTm92v2kVBuOSuV/X+X9QAOxbflJDFEP+m76ZOfZbhcTWV/+OLbp1HsL3Ro
8LpfJSKPH2McHKcPTmwJkvOuTcr9KjycpkBmb1l5XEO9JqjiMT1A4nfQXSg8p3DZ
EH4Z8GqPjzd8T1D1Qtc10PW6hezpb5Mwf14VOf0v9DCAgnk8rWwFqfcYvQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHt/RAP49x22R2hgLwnCbDe3gCjIMB8GA1UdIwQY
MBaAFE0K3lTCfm/N2s4mLE/feQ8yD+2cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVFFyZVZNSi1iODNhemlZc1Q5OTVEeklQN1p3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC84ZWZkOGItZTUxNi00YzQ5LTkyY2It
ODkyOTZjY2IzNWY1LzEvZTM5RUFfajNIYlpIYUdBdkNjSnNON2VBS01nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC84ZWZkOGItZTUxNi00YzQ5LTkyY2ItODkyOTZjY2IzNWY1
LzEvVFFyZVZNSi1iODNhemlZc1Q5OTVEeklQN1p3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW99kMA0G
CSqGSIb3DQEBCwUAA4IBAQArDG77Xqyfx+k7dYl7b6j52j6hjsB8vrCXIoSve/B1
23abeQhYNTGKn81B22neXjNpnT/4jUxiee7ScVRPzRkLi+K6k4+v5Ab3PuY3N7z6
9LuzZpB0axoXOWA56V6O8ILlk6svAoQNdHtJgJI9z6kjdIg4eGeZAgyx3B9YwpNt
MLbs7nr0vhnyXxo9GbcWf3dwuWuHuvpNF6hI7qnu3pWgyBD+IbuKm9ALyd443qtt
aHpeBjuw5n88yp5pz/OOdDDxPKAVu0gAA4I/8vpIFmg1Ypz7iidnD0tkI/hVGcfX
UDCnep9QmNLZGgTmXPPFZATPGIItwwk3JxGifO6AwJkA
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:59 2024 by rpki-client on console-ams.rpki-client.org