Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/2qA8WJ0hvX4e-Z4dMppub06JzNI.roa
File: 2qA8WJ0hvX4e-Z4dMppub06JzNI.roa (raw, json)
Hash identifier: rv4rpvzMbh46LDgSoxUB6ZSPp+pNfAdsMR0/XUwf47s=
Subject key identifier: DA:A0:3C:58:9D:21:BD:7E:1E:F9:9E:1D:32:9A:6E:6F:4E:89:CC:D2
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 0185718C15B65374850FC0B8BBA227EE62ED
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/2qA8WJ0hvX4e-Z4dMppub06JzNI.roa
Signing time: Mon 02 Jan 2023 08:14:43 +0000
ROA not before: Mon 02 Jan 2023 08:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.235.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 May 2023 01:27:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:8c:15:b6:53:74:85:0f:c0:b8:bb:a2:27:ee:62:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: Jan 2 08:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=daa03c589d21bd7e1ef99e1d329a6e6f4e89ccd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:9e:53:bc:0a:9a:cc:5d:1f:f5:0a:2b:64:82:
b7:df:81:ee:ce:6f:98:d4:fc:50:cc:02:b3:28:bd:
6b:09:f1:2e:7c:4b:dc:71:46:07:1a:a1:2d:9c:1b:
19:61:52:ac:d5:66:ad:3a:91:d6:5e:b1:77:af:30:
d7:8f:3c:02:e2:88:57:53:9a:8f:fd:ed:22:c1:21:
ed:03:71:09:e7:84:35:fb:b2:86:f5:d4:f7:48:38:
9f:82:55:8c:f5:50:53:bd:85:33:58:c7:a1:ae:e8:
d4:c3:00:e8:49:a0:c2:ba:21:84:a0:94:9a:b1:38:
32:0a:ca:95:ff:b9:3b:79:2a:94:f7:45:7f:93:18:
f7:aa:63:45:f9:af:7b:d0:c2:41:5c:6a:c5:87:a3:
53:02:90:00:82:c3:bf:62:1c:ed:9a:c4:52:ab:ae:
cf:be:92:7d:01:5f:c2:df:30:7f:ee:64:7d:71:f8:
37:7d:d6:6b:f4:16:55:46:72:b2:8e:9e:52:bd:df:
fc:9f:1c:9d:8f:8e:e4:72:de:c9:36:ee:df:52:ea:
cd:07:4b:7f:bd:c7:aa:77:d6:ef:a8:97:43:38:65:
87:03:39:29:a3:d7:c4:eb:22:2e:7d:13:48:8f:3d:
82:b5:c4:ba:46:96:7b:dd:5d:19:3b:d5:45:fa:b2:
eb:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:A0:3C:58:9D:21:BD:7E:1E:F9:9E:1D:32:9A:6E:6F:4E:89:CC:D2
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/2qA8WJ0hvX4e-Z4dMppub06JzNI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.2.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:28:f8:3c:4d:22:11:07:ba:19:99:c7:d3:47:5d:34:40:70:
77:67:52:7a:f5:85:f0:8a:8b:2d:b0:79:df:5c:65:24:0e:5d:
fe:3d:e4:12:cc:50:a4:07:16:ce:0d:b0:1a:4a:02:cc:d3:db:
55:4a:57:28:4e:31:93:79:e7:2c:a9:43:9e:7b:cf:98:65:23:
58:e8:98:bc:5e:54:50:ca:4c:94:e7:a2:e0:57:21:53:0d:3a:
5e:0d:39:a9:5a:5b:fe:a6:ef:cb:f3:b0:fc:21:64:fa:b6:f1:
86:24:66:e7:37:65:79:3a:f6:bf:4e:17:f6:f0:7a:c0:61:71:
d7:df:c1:dd:87:e6:dc:57:77:fe:d5:6b:f6:e9:77:68:52:10:
c8:b1:6d:94:ab:31:4e:d2:8f:f2:2f:30:30:b0:1f:19:cd:a1:
65:17:64:80:34:b1:c6:ee:a4:f6:00:75:f3:86:a0:b5:a4:92:
e4:ad:41:1b:86:78:8c:99:54:ab:5b:a0:7b:77:92:60:0f:46:
84:f4:d7:c9:53:2f:17:52:83:0e:39:fb:f9:ce:26:bd:db:73:
42:88:32:67:58:9b:30:b5:d2:91:0f:f8:c3:48:94:ad:5f:b5:
c1:75:06:fa:30:64:34:c0:46:80:98:86:f9:ca:26:0f:65:47:
13:1b:86:4d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxjBW2U3SFD8C4u6In7mLtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjZDk4YzJjNTRiMGNiZWExMzRlMjdhOTgxY2ZkZGU3MzIz
NmUwNTUwHhcNMjMwMTAyMDgxNDQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYWEwM2M1ODlkMjFiZDdlMWVmOTllMWQzMjlhNmU2ZjRlODljY2QyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAop5TvAqazF0f9QorZIK334Huzm+Y
1PxQzAKzKL1rCfEufEvccUYHGqEtnBsZYVKs1WatOpHWXrF3rzDXjzwC4ohXU5qP
/e0iwSHtA3EJ54Q1+7KG9dT3SDifglWM9VBTvYUzWMehrujUwwDoSaDCuiGEoJSa
sTgyCsqV/7k7eSqU90V/kxj3qmNF+a970MJBXGrFh6NTApAAgsO/YhztmsRSq67P
vpJ9AV/C3zB/7mR9cfg3fdZr9BZVRnKyjp5Svd/8nxydj47kct7JNu7fUurNB0t/
vceqd9bvqJdDOGWHAzkpo9fE6yIufRNIjz2CtcS6RpZ73V0ZO9VF+rLrVQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNqgPFidIb1+HvmeHTKabm9OiczSMB8GA1UdIwQY
MBaAFGzZjCxUsMvqE04nqYHP3ecyNuBVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYk5tTUxGU3d5LW9UVGllcGdjX2Q1ekkyNEZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS8wMTYzOGMtNmNiOS00NTg5LTkwOWIt
ZDM3ZGY2MzRhOTI5LzEvMnFBOFdKMGh2WDRlLVo0ZE1wcHViMDZKek5JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS8wMTYzOGMtNmNiOS00NTg5LTkwOWItZDM3ZGY2MzRhOTI5
LzEvYk5tTUxGU3d5LW9UVGllcGdjX2Q1ekkyNEZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+sCMA0G
CSqGSIb3DQEBCwUAA4IBAQCzKPg8TSIRB7oZmcfTR100QHB3Z1J69YXwiostsHnf
XGUkDl3+PeQSzFCkBxbODbAaSgLM09tVSlcoTjGTeecsqUOee8+YZSNY6Ji8XlRQ
ykyU56LgVyFTDTpeDTmpWlv+pu/L87D8IWT6tvGGJGbnN2V5Ova/Thf28HrAYXHX
38Hdh+bcV3f+1Wv26XdoUhDIsW2UqzFO0o/yLzAwsB8ZzaFlF2SANLHG7qT2AHXz
hqC1pJLkrUEbhniMmVSrW6B7d5JgD0aE9NfJUy8XUoMOOfv5zia923NCiDJnWJsw
tdKRD/jDSJStX7XBdQb6MGQ0wEaAmIb5yiYPZUcTG4ZN
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:45 2024 by rpki-client on console-ams.rpki-client.org