Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/4af64a-57f8-4643-87ba-d87b7026a3ff/1/9a8FSeb80IvbGvSej_zD1dWb37s.roa
File: 9a8FSeb80IvbGvSej_zD1dWb37s.roa (raw, json)
Hash identifier: NW3paglp6hhhwWSkeC5tDDlf9dUV1P0Y8/j2r98/1Ew=
Subject key identifier: F5:AF:05:49:E6:FC:D0:8B:DB:1A:F4:9E:8F:FC:C3:D5:D5:9B:DF:BB
Certificate issuer: /CN=8dff1b0ce9f486a67e63d3f0d0e688a24f700c7c
Certificate serial: 0188D21FDF16A189DB9E7D2E5C7F66B272DE
Authority key identifier: 8D:FF:1B:0C:E9:F4:86:A6:7E:63:D3:F0:D0:E6:88:A2:4F:70:0C:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jf8bDOn0hqZ-Y9Pw0OaIok9wDHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/4af64a-57f8-4643-87ba-d87b7026a3ff/1/9a8FSeb80IvbGvSej_zD1dWb37s.roa
Signing time: Mon 19 Jun 2023 05:28:04 +0000
ROA not before: Mon 19 Jun 2023 05:28:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19905
IP address blocks: 91.209.254.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Jun 2023 14:24:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d2:1f:df:16:a1:89:db:9e:7d:2e:5c:7f:66:b2:72:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8dff1b0ce9f486a67e63d3f0d0e688a24f700c7c
Validity
Not Before: Jun 19 05:28:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f5af0549e6fcd08bdb1af49e8ffcc3d5d59bdfbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:83:b2:24:6b:50:ff:5f:86:dc:02:11:99:e5:
ee:7e:f1:85:ab:53:8e:82:49:6a:9c:c2:09:83:a8:
1d:fd:bc:c1:1a:fc:5a:79:1c:97:db:0c:93:e3:71:
a8:07:c8:93:46:bf:71:79:fa:7c:01:8d:89:5b:e3:
1d:a2:d1:aa:9f:83:67:bd:9a:6f:ac:98:86:31:76:
91:7c:75:88:7d:b3:e4:ec:8a:75:0b:79:f1:07:40:
70:42:ec:53:76:6f:24:01:04:80:5f:27:91:9a:a7:
ae:43:01:45:0a:9f:e3:a5:5c:97:c5:c1:ea:18:55:
59:47:56:74:10:27:57:c4:3f:79:c9:dd:c1:81:ca:
9c:fd:e6:de:68:c8:b4:ec:42:a3:1d:6a:b8:f0:dc:
31:5d:50:94:27:34:51:cd:67:a7:27:a9:1c:85:13:
15:03:0d:7f:cb:96:62:fe:56:b0:fb:b1:48:4e:d5:
6d:4e:e8:57:eb:d8:27:b2:2a:ee:34:0e:4b:2f:7f:
2b:e8:a9:39:2d:be:54:c0:a3:be:b4:e0:fb:23:d2:
55:cd:97:c1:08:e7:75:1c:83:be:7e:21:8a:7d:cf:
7a:d4:a0:45:ae:e2:a4:36:29:96:d0:00:51:12:d0:
26:1e:15:65:cc:1a:b8:a2:97:97:12:5d:c6:fa:e9:
ba:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:AF:05:49:E6:FC:D0:8B:DB:1A:F4:9E:8F:FC:C3:D5:D5:9B:DF:BB
X509v3 Authority Key Identifier:
keyid:8D:FF:1B:0C:E9:F4:86:A6:7E:63:D3:F0:D0:E6:88:A2:4F:70:0C:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jf8bDOn0hqZ-Y9Pw0OaIok9wDHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/4af64a-57f8-4643-87ba-d87b7026a3ff/1/9a8FSeb80IvbGvSej_zD1dWb37s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/4af64a-57f8-4643-87ba-d87b7026a3ff/1/jf8bDOn0hqZ-Y9Pw0OaIok9wDHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.254.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:22:86:bd:77:2c:5e:85:df:f1:d3:7f:e6:30:e4:0c:05:27:
a4:04:9d:aa:25:69:5a:17:6f:9f:7a:99:01:35:b0:e9:d0:4c:
df:9d:fe:f4:14:c7:d0:5d:80:04:dc:d1:be:76:23:14:92:9e:
3f:07:9a:93:58:ea:82:c6:1d:fa:d3:53:c8:75:32:7b:d1:fa:
bb:cf:07:14:d7:b8:68:9e:b6:c2:0f:30:20:c1:9c:d2:f8:09:
f3:e1:2b:de:ba:14:c2:a3:61:96:e1:f6:ae:09:d1:72:74:43:
c8:83:9d:27:48:d3:e3:cc:0f:c0:fb:c0:ce:59:64:1a:35:6c:
2c:c0:f5:4b:e2:97:16:f4:05:09:76:86:0f:12:a7:5f:78:25:
84:dd:cb:4b:54:15:32:4f:39:2b:fb:c6:c2:1b:73:e2:01:74:
31:6b:fa:c5:1f:f2:12:68:c6:15:4d:d6:56:df:a1:73:9d:2d:
5d:b9:63:69:d7:b5:63:8c:b9:b0:e7:33:58:da:6f:e0:40:90:
1d:e3:6d:47:15:29:ed:5a:0a:d6:b4:af:c1:7a:29:fb:7e:f2:
b1:ed:39:dc:af:f9:b3:f2:ba:ca:fc:b9:56:5f:d8:48:60:ba:
cd:0a:74:6d:b8:8f:d9:3b:1e:e8:9f:56:8b:85:25:4c:37:f3:
38:2b:4b:78
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYjSH98WoYnbnn0uXH9msnLeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkZmYxYjBjZTlmNDg2YTY3ZTYzZDNmMGQwZTY4OGEyNGY3
MDBjN2MwHhcNMjMwNjE5MDUyODA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNWFmMDU0OWU2ZmNkMDhiZGIxYWY0OWU4ZmZjYzNkNWQ1OWJkZmJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjoOyJGtQ/1+G3AIRmeXufvGFq1OO
gklqnMIJg6gd/bzBGvxaeRyX2wyT43GoB8iTRr9xefp8AY2JW+MdotGqn4NnvZpv
rJiGMXaRfHWIfbPk7Ip1C3nxB0BwQuxTdm8kAQSAXyeRmqeuQwFFCp/jpVyXxcHq
GFVZR1Z0ECdXxD95yd3Bgcqc/ebeaMi07EKjHWq48NwxXVCUJzRRzWenJ6kchRMV
Aw1/y5Zi/law+7FITtVtTuhX69gnsiruNA5LL38r6Kk5Lb5UwKO+tOD7I9JVzZfB
COd1HIO+fiGKfc961KBFruKkNimW0ABREtAmHhVlzBq4opeXEl3G+um6CwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPWvBUnm/NCL2xr0no/8w9XVm9+7MB8GA1UdIwQY
MBaAFI3/Gwzp9IamfmPT8NDmiKJPcAx8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvamY4YkRPbjBocVotWTlQdzBPYUlvazl3REh3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi80YWY2NGEtNTdmOC00NjQzLTg3YmEt
ZDg3YjcwMjZhM2ZmLzEvOWE4RlNlYjgwSXZiR3ZTZWpfekQxZFdiMzdzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi80YWY2NGEtNTdmOC00NjQzLTg3YmEtZDg3YjcwMjZhM2Zm
LzEvamY4YkRPbjBocVotWTlQdzBPYUlvazl3REh3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9H+MA0G
CSqGSIb3DQEBCwUAA4IBAQBeIoa9dyxehd/x03/mMOQMBSekBJ2qJWlaF2+fepkB
NbDp0Ezfnf70FMfQXYAE3NG+diMUkp4/B5qTWOqCxh3601PIdTJ70fq7zwcU17ho
nrbCDzAgwZzS+Anz4SveuhTCo2GW4fauCdFydEPIg50nSNPjzA/A+8DOWWQaNWws
wPVL4pcW9AUJdoYPEqdfeCWE3ctLVBUyTzkr+8bCG3PiAXQxa/rFH/ISaMYVTdZW
36FznS1duWNp17VjjLmw5zNY2m/gQJAd421HFSntWgrWtK/Bein7fvKx7Tncr/mz
8rrK/LlWX9hIYLrNCnRtuI/ZOx7on1aLhSVMN/M4K0t4
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:56 2024 by rpki-client on console-ams.rpki-client.org