Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/b28f4c-a492-4ab1-95cc-b3f567805a7c/1/oIJGSIsr4Oua3dhXah0K10QHrgM.roa
File: oIJGSIsr4Oua3dhXah0K10QHrgM.roa (raw, json)
Hash identifier: lGRGWf6OEOdgUXkrGvF/YxqIcJHYK3Yr61xqYJINy0s=
Subject key identifier: A0:82:46:48:8B:2B:E0:EB:9A:DD:D8:57:6A:1D:0A:D7:44:07:AE:03
Certificate issuer: /CN=59b594b107abfe32a46c4d1dbe07bbb4e6bb163a
Certificate serial: 01856F0B3807EBA406FA870C67462EDD4F13
Authority key identifier: 59:B5:94:B1:07:AB:FE:32:A4:6C:4D:1D:BE:07:BB:B4:E6:BB:16:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WbWUsQer_jKkbE0dvge7tOa7Fjo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/b28f4c-a492-4ab1-95cc-b3f567805a7c/1/oIJGSIsr4Oua3dhXah0K10QHrgM.roa
Signing time: Sun 01 Jan 2023 20:34:44 +0000
ROA not before: Sun 01 Jan 2023 20:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50811
IP address blocks: 91.230.41.0/24 maxlen: 24
46.18.104.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:0b:38:07:eb:a4:06:fa:87:0c:67:46:2e:dd:4f:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59b594b107abfe32a46c4d1dbe07bbb4e6bb163a
Validity
Not Before: Jan 1 20:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a08246488b2be0eb9addd8576a1d0ad74407ae03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:3d:00:a2:99:4e:c1:eb:eb:52:3c:ba:28:d2:
4d:42:ac:af:f2:09:a8:35:62:c8:62:29:83:85:3b:
9e:74:90:7c:99:76:a3:c3:88:5a:e5:31:b2:c4:0a:
6f:d8:28:95:10:e4:f0:b7:2f:e0:56:62:43:5d:cc:
74:d6:96:56:be:69:ea:9b:a7:c2:28:64:1f:a9:b9:
87:e4:a3:5d:9c:c4:f8:ba:ff:93:27:54:ca:3e:87:
13:3d:f2:45:52:8f:bd:34:24:07:a5:b3:f9:14:7f:
d5:d0:bc:38:ed:30:dc:13:cc:82:a6:fb:50:a6:cf:
a8:6f:d5:53:53:fe:58:f4:e6:95:df:c0:9b:1b:53:
4c:16:89:2e:a2:76:7f:3a:a9:c0:c2:1e:51:a2:26:
bc:b6:78:e2:2f:43:af:92:46:a4:a4:fd:bf:d8:f5:
59:a0:33:51:f9:3e:85:d3:97:77:2e:03:c7:78:c1:
68:29:d2:7d:d5:59:e9:ce:fb:18:06:d2:63:9f:65:
19:78:cf:eb:22:1f:97:6a:60:fe:3f:aa:c3:94:8c:
ee:1d:69:f5:a0:f0:25:10:8b:16:17:44:25:69:d0:
f4:b1:a0:3e:b6:19:c4:99:9e:9e:bb:e5:de:3d:45:
9e:de:56:2f:45:a9:99:30:ba:f7:1a:60:95:97:41:
c4:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:82:46:48:8B:2B:E0:EB:9A:DD:D8:57:6A:1D:0A:D7:44:07:AE:03
X509v3 Authority Key Identifier:
keyid:59:B5:94:B1:07:AB:FE:32:A4:6C:4D:1D:BE:07:BB:B4:E6:BB:16:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WbWUsQer_jKkbE0dvge7tOa7Fjo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b28f4c-a492-4ab1-95cc-b3f567805a7c/1/oIJGSIsr4Oua3dhXah0K10QHrgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b28f4c-a492-4ab1-95cc-b3f567805a7c/1/WbWUsQer_jKkbE0dvge7tOa7Fjo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.18.104.0/24
91.230.41.0/24
Signature Algorithm: sha256WithRSAEncryption
84:73:c3:54:61:9b:e7:47:7c:de:6c:e5:f5:1d:c3:7e:8c:e6:
43:1e:91:ed:9e:22:fc:e1:26:54:35:80:f4:1d:a7:cb:5c:b4:
43:a7:7e:da:6b:c3:1c:bc:67:11:98:a0:3d:a6:ff:44:18:67:
c0:14:fd:eb:07:8f:b1:60:4c:c7:04:51:69:17:4a:7e:f2:bd:
4d:f8:1d:7e:63:13:31:f6:5d:21:6b:94:7d:de:4a:8d:b0:53:
a5:8d:7b:5c:79:bf:23:c3:1a:12:39:35:1f:6f:15:ca:39:80:
f0:b2:6f:0d:6e:14:4b:c1:4f:88:9d:7b:9e:13:5e:09:f9:9f:
8c:d0:17:cd:ba:30:3c:5d:2a:5d:d4:1f:18:49:d5:ca:0a:17:
87:7e:36:e6:81:d3:37:73:02:ad:23:5c:04:71:46:ca:59:2d:
fe:79:67:6b:59:8f:df:db:6b:b6:f4:33:08:2a:e3:f0:68:d9:
48:f7:18:db:3f:ef:3d:e7:5a:df:fc:a4:61:eb:ea:71:95:45:
5f:02:6d:fd:d5:13:76:da:49:1d:74:85:a0:95:a1:fb:fc:34:
60:78:09:57:0f:da:74:2b:49:2f:d2:55:2d:40:90:ad:4f:87:
c9:7c:bb:56:40:b8:2a:ed:19:7c:8d:20:a1:11:af:87:bc:3c:
7d:28:75:d2
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVvCzgH66QG+ocMZ0Yu3U8TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU5YjU5NGIxMDdhYmZlMzJhNDZjNGQxZGJlMDdiYmI0ZTZi
YjE2M2EwHhcNMjMwMTAxMjAzNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMDgyNDY0ODhiMmJlMGViOWFkZGQ4NTc2YTFkMGFkNzQ0MDdhZTAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+D0AoplOwevrUjy6KNJNQqyv8gmo
NWLIYimDhTuedJB8mXajw4ha5TGyxApv2CiVEOTwty/gVmJDXcx01pZWvmnqm6fC
KGQfqbmH5KNdnMT4uv+TJ1TKPocTPfJFUo+9NCQHpbP5FH/V0Lw47TDcE8yCpvtQ
ps+ob9VTU/5Y9OaV38CbG1NMFokuonZ/OqnAwh5Roia8tnjiL0OvkkakpP2/2PVZ
oDNR+T6F05d3LgPHeMFoKdJ91VnpzvsYBtJjn2UZeM/rIh+XamD+P6rDlIzuHWn1
oPAlEIsWF0QladD0saA+thnEmZ6eu+XePUWe3lYvRamZMLr3GmCVl0HE4wIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFKCCRkiLK+Drmt3YV2odCtdEB64DMB8GA1UdIwQY
MBaAFFm1lLEHq/4ypGxNHb4Hu7TmuxY6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV2JXVXNRZXJfaktrYkUwZHZnZTd0T2E3RmpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC9iMjhmNGMtYTQ5Mi00YWIxLTk1Y2Mt
YjNmNTY3ODA1YTdjLzEvb0lKR1NJc3I0T3VhM2RoWGFoMEsxMFFIcmdNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC9iMjhmNGMtYTQ5Mi00YWIxLTk1Y2MtYjNmNTY3ODA1YTdj
LzEvV2JXVXNRZXJfaktrYkUwZHZnZTd0T2E3RmpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALhJoAwQA
W+YpMA0GCSqGSIb3DQEBCwUAA4IBAQCEc8NUYZvnR3zebOX1HcN+jOZDHpHtniL8
4SZUNYD0HafLXLRDp37aa8McvGcRmKA9pv9EGGfAFP3rB4+xYEzHBFFpF0p+8r1N
+B1+YxMx9l0ha5R93kqNsFOljXtceb8jwxoSOTUfbxXKOYDwsm8NbhRLwU+InXue
E14J+Z+M0BfNujA8XSpd1B8YSdXKCheHfjbmgdM3cwKtI1wEcUbKWS3+eWdrWY/f
22u29DMIKuPwaNlI9xjbP+8951rf/KRh6+pxlUVfAm391RN22kkddIWglaH7/DRg
eAlXD9p0K0kv0lUtQJCtT4fJfLtWQLgq7Rl8jSChEa+HvDx9KHXS
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:31 2024 by rpki-client on console-ams.rpki-client.org