Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/ac598f-5f52-4330-b013-57069e0803b5/1/iSrbPox7MZAKCmt6qR9PjT-wveU.roa
File: iSrbPox7MZAKCmt6qR9PjT-wveU.roa (raw, json)
Hash identifier: 0kiVnOJVLRxhEuVutWUPPxQTK1CH9jVh4JsIDNURzkA=
Subject key identifier: 89:2A:DB:3E:8C:7B:31:90:0A:0A:6B:7A:A9:1F:4F:8D:3F:B0:BD:E5
Certificate issuer: /CN=e37a20a7f28a824f67315a566e59244aaa8c7d4a
Certificate serial: 0185714C42FB398F4751C220989B5AF0F2E4
Authority key identifier: E3:7A:20:A7:F2:8A:82:4F:67:31:5A:56:6E:59:24:4A:AA:8C:7D:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/43ogp_KKgk9nMVpWblkkSqqMfUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/ac598f-5f52-4330-b013-57069e0803b5/1/iSrbPox7MZAKCmt6qR9PjT-wveU.roa
Signing time: Mon 02 Jan 2023 07:05:01 +0000
ROA not before: Mon 02 Jan 2023 07:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56399
IP address blocks: 91.225.164.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:4c:42:fb:39:8f:47:51:c2:20:98:9b:5a:f0:f2:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e37a20a7f28a824f67315a566e59244aaa8c7d4a
Validity
Not Before: Jan 2 07:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=892adb3e8c7b31900a0a6b7aa91f4f8d3fb0bde5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:91:0c:d8:cd:cb:34:8a:31:a0:44:24:f7:fb:
14:be:2a:15:15:c0:47:03:79:07:45:b6:6e:27:12:
a4:0c:5b:fd:3f:4f:2b:83:36:87:4f:72:61:af:19:
64:54:b7:78:2c:e2:0a:d3:f8:d0:86:ce:4c:9a:cd:
e2:c8:03:f7:45:44:49:73:a3:ef:db:02:d3:72:a0:
0a:7b:15:d0:0f:4e:9d:3e:bf:1d:8f:3a:0d:2f:a6:
a8:b8:b0:26:3a:97:f3:5e:36:94:2c:3b:43:a7:36:
7d:aa:b6:6f:ee:a2:c3:25:bf:1d:4e:8b:39:8d:80:
f2:4a:bd:83:44:bc:2e:80:21:c7:2b:57:82:07:1e:
1e:20:fe:18:62:db:24:a0:b5:82:d5:1d:78:3b:83:
59:a9:7e:0c:6b:d2:3e:97:b8:7c:e8:ab:02:54:93:
3e:40:89:cf:c0:98:53:50:c1:77:7e:f2:d2:e8:52:
7e:83:4b:fc:12:51:0a:e2:fd:d7:ac:b0:92:79:e8:
81:2f:43:d8:39:1d:69:7b:e7:30:46:94:2c:33:bf:
91:4e:7a:50:43:28:ac:a8:26:49:ba:2d:8d:45:5e:
f0:3c:e5:0a:44:8e:a2:06:a0:09:9d:32:1c:b4:36:
3a:6b:15:7b:67:3b:66:ff:18:7e:63:8e:e6:cb:96:
5b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:2A:DB:3E:8C:7B:31:90:0A:0A:6B:7A:A9:1F:4F:8D:3F:B0:BD:E5
X509v3 Authority Key Identifier:
keyid:E3:7A:20:A7:F2:8A:82:4F:67:31:5A:56:6E:59:24:4A:AA:8C:7D:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/43ogp_KKgk9nMVpWblkkSqqMfUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/ac598f-5f52-4330-b013-57069e0803b5/1/iSrbPox7MZAKCmt6qR9PjT-wveU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/ac598f-5f52-4330-b013-57069e0803b5/1/43ogp_KKgk9nMVpWblkkSqqMfUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.225.164.0/22
Signature Algorithm: sha256WithRSAEncryption
0e:39:a5:be:5b:24:6c:95:5d:c6:5c:dc:94:e1:33:e6:05:ab:
c3:7c:2e:0e:7f:81:04:a8:1d:84:6f:37:4d:c7:f8:9e:ab:8b:
be:d5:ba:0e:53:0f:4b:8b:85:64:06:af:d8:de:92:86:d7:75:
cb:64:11:3b:f2:8c:f8:0c:0e:03:37:38:85:c0:b2:b8:85:d5:
1f:15:ba:02:8e:85:c8:90:e5:c1:6c:cd:b1:f5:06:39:28:04:
e7:90:67:bb:4d:bb:98:fd:01:6a:e1:0a:af:8b:61:e9:71:24:
2a:ce:23:85:e5:e6:59:f8:e5:bd:ab:1d:40:62:fc:e0:2e:7a:
f6:db:2e:d5:e4:2f:f9:21:71:06:c9:87:77:bf:a0:44:8e:42:
e9:cb:9f:ab:54:7c:62:d7:9b:01:94:f7:3a:51:bb:90:7d:97:
18:72:ce:8b:0a:41:21:c0:8b:cd:e2:bd:19:25:ec:fe:de:d7:
cf:38:80:72:bf:18:42:df:80:11:b2:ff:69:ea:db:06:a9:a2:
93:65:cc:3e:a3:b9:54:0c:c8:f7:21:27:85:6f:5d:61:b0:f5:
28:70:9d:69:7a:7c:6b:e2:04:aa:39:a4:65:a4:27:c3:11:c3:
60:a1:41:73:09:45:f2:cc:55:50:98:64:24:1e:0b:64:ce:67:
1e:ba:21:30
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxTEL7OY9HUcIgmJta8PLkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUzN2EyMGE3ZjI4YTgyNGY2NzMxNWE1NjZlNTkyNDRhYWE4
YzdkNGEwHhcNMjMwMTAyMDcwNTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OTJhZGIzZThjN2IzMTkwMGEwYTZiN2FhOTFmNGY4ZDNmYjBiZGU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn5EM2M3LNIoxoEQk9/sUvioVFcBH
A3kHRbZuJxKkDFv9P08rgzaHT3JhrxlkVLd4LOIK0/jQhs5Mms3iyAP3RURJc6Pv
2wLTcqAKexXQD06dPr8djzoNL6aouLAmOpfzXjaULDtDpzZ9qrZv7qLDJb8dTos5
jYDySr2DRLwugCHHK1eCBx4eIP4YYtskoLWC1R14O4NZqX4Ma9I+l7h86KsCVJM+
QInPwJhTUMF3fvLS6FJ+g0v8ElEK4v3XrLCSeeiBL0PYOR1pe+cwRpQsM7+RTnpQ
QyisqCZJui2NRV7wPOUKRI6iBqAJnTIctDY6axV7Zztm/xh+Y47my5ZbGQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIkq2z6MezGQCgpreqkfT40/sL3lMB8GA1UdIwQY
MBaAFON6IKfyioJPZzFaVm5ZJEqqjH1KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNDNvZ3BfS0tnazluTVZwV2Jsa2tTcXFNZlVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC9hYzU5OGYtNWY1Mi00MzMwLWIwMTMt
NTcwNjllMDgwM2I1LzEvaVNyYlBveDdNWkFLQ210NnFSOVBqVC13dmVVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNC9hYzU5OGYtNWY1Mi00MzMwLWIwMTMtNTcwNjllMDgwM2I1
LzEvNDNvZ3BfS0tnazluTVZwV2Jsa2tTcXFNZlVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCW+GkMA0G
CSqGSIb3DQEBCwUAA4IBAQAOOaW+WyRslV3GXNyU4TPmBavDfC4Of4EEqB2EbzdN
x/ieq4u+1boOUw9Li4VkBq/Y3pKG13XLZBE78oz4DA4DNziFwLK4hdUfFboCjoXI
kOXBbM2x9QY5KATnkGe7TbuY/QFq4Qqvi2HpcSQqziOF5eZZ+OW9qx1AYvzgLnr2
2y7V5C/5IXEGyYd3v6BEjkLpy5+rVHxi15sBlPc6UbuQfZcYcs6LCkEhwIvN4r0Z
Jez+3tfPOIByvxhC34ARsv9p6tsGqaKTZcw+o7lUDMj3ISeFb11hsPUocJ1penxr
4gSqOaRlpCfDEcNgoUFzCUXyzFVQmGQkHgtkzmceuiEw
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:40 2024 by rpki-client on console-ams.rpki-client.org