Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/8b9bd9-3f62-4e30-8085-1ec721fa2a30/1/oROWD2SV075HxpJDQW6Co7IcH48.roa
File: oROWD2SV075HxpJDQW6Co7IcH48.roa (raw, json)
Hash identifier: 2xPtKCEQnKIdtYgmax8pVL1WnMyD7G0CAYzKR5gCS0k=
Subject key identifier: A1:13:96:0F:64:95:D3:BE:47:C6:92:43:41:6E:82:A3:B2:1C:1F:8F
Certificate issuer: /CN=bc56db796def0dbdb4c78f2445abecc1570a6fd9
Certificate serial: 018571C2FB927B9BDC90647ED3840D4BC6E7
Authority key identifier: BC:56:DB:79:6D:EF:0D:BD:B4:C7:8F:24:45:AB:EC:C1:57:0A:6F:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vFbbeW3vDb20x48kRavswVcKb9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/8b9bd9-3f62-4e30-8085-1ec721fa2a30/1/oROWD2SV075HxpJDQW6Co7IcH48.roa
Signing time: Mon 02 Jan 2023 09:14:41 +0000
ROA not before: Mon 02 Jan 2023 09:14:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2854
IP address blocks: 91.199.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:c2:fb:92:7b:9b:dc:90:64:7e:d3:84:0d:4b:c6:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc56db796def0dbdb4c78f2445abecc1570a6fd9
Validity
Not Before: Jan 2 09:14:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a113960f6495d3be47c69243416e82a3b21c1f8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:53:b9:52:c5:fe:3d:21:93:b5:da:0a:e8:94:
a2:d5:61:ae:c1:b1:f5:64:24:45:c2:f4:83:0a:2a:
a5:76:25:34:8f:b8:3a:c1:23:07:fb:ef:b2:56:82:
5c:68:60:cb:d5:3b:94:6f:10:21:0a:08:86:b9:8f:
8b:78:15:ae:c6:4d:ff:89:e3:a7:2b:a9:4d:a8:43:
aa:d9:1a:cd:6b:6e:0a:3a:ee:34:26:1d:59:51:ae:
9e:7d:a3:e4:e7:17:76:88:ae:78:72:5c:c6:c8:f2:
99:f2:db:c9:30:70:d6:a7:28:96:58:52:62:aa:bc:
69:88:e3:60:e7:c4:4f:e2:57:03:08:30:1b:62:d0:
b1:fe:c6:53:1c:7f:3f:a6:66:a0:27:71:d6:9c:29:
b6:ef:5f:16:64:88:eb:be:6d:c5:14:2c:31:a1:3e:
ac:6e:96:6c:ae:81:a3:18:8a:33:db:66:f8:22:4e:
0d:08:2a:e7:b1:da:a5:a3:9f:94:dc:13:61:1f:e1:
4f:82:0c:1a:2b:6f:c6:de:95:98:a2:be:fa:3a:62:
86:39:7d:74:f2:b6:aa:a4:37:33:38:0b:fc:ba:89:
02:74:99:2f:da:88:ba:a7:90:ef:ef:2f:18:73:2e:
cd:54:08:4a:86:53:d3:95:1f:d7:de:fc:72:1d:29:
db:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:13:96:0F:64:95:D3:BE:47:C6:92:43:41:6E:82:A3:B2:1C:1F:8F
X509v3 Authority Key Identifier:
keyid:BC:56:DB:79:6D:EF:0D:BD:B4:C7:8F:24:45:AB:EC:C1:57:0A:6F:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vFbbeW3vDb20x48kRavswVcKb9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/8b9bd9-3f62-4e30-8085-1ec721fa2a30/1/oROWD2SV075HxpJDQW6Co7IcH48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/8b9bd9-3f62-4e30-8085-1ec721fa2a30/1/vFbbeW3vDb20x48kRavswVcKb9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.16.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:f3:af:31:f1:6b:fe:70:47:b0:a1:28:01:c2:34:5c:a8:cf:
90:0d:46:aa:51:8a:64:a4:d4:26:0e:25:8f:54:52:ad:67:4a:
d0:8a:19:a6:b7:5a:71:2e:95:52:2a:79:81:be:1f:ac:fe:7e:
5b:16:f0:f3:0f:a6:47:e1:90:93:e1:3d:ac:b5:91:4a:a7:44:
f5:f6:28:56:d2:26:51:0f:01:e1:fc:70:cf:97:4f:e0:76:cb:
35:8e:b1:0b:86:b5:cc:db:96:1b:52:1e:38:fd:27:f3:75:9e:
a1:58:f7:31:aa:3a:11:28:8d:af:04:e1:b0:b9:7f:17:0d:8c:
74:fa:cc:ad:35:d1:ba:04:6e:38:63:77:33:9b:9d:0d:aa:44:
09:ab:d3:a0:1e:5a:53:25:2d:fb:5e:9a:a8:09:3b:ca:e7:2c:
1d:a4:50:b9:f9:05:7c:ee:9f:a0:db:22:57:59:44:d8:e6:a8:
bb:10:1f:c0:d1:b2:61:19:67:db:e2:2d:2a:4f:32:b2:cd:e4:
09:21:80:1b:ca:85:24:99:a7:7c:86:ec:f3:68:3a:57:63:b6:
54:63:72:95:2b:d4:ce:83:b5:54:99:15:3b:7a:ea:16:cf:7d:
5c:07:3b:18:4c:bf:5d:fa:e4:b0:ab:11:23:71:8a:a0:dd:f9:
16:3b:cf:ff
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxwvuSe5vckGR+04QNS8bnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJjNTZkYjc5NmRlZjBkYmRiNGM3OGYyNDQ1YWJlY2MxNTcw
YTZmZDkwHhcNMjMwMTAyMDkxNDQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMTEzOTYwZjY0OTVkM2JlNDdjNjkyNDM0MTZlODJhM2IyMWMxZjhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5VO5UsX+PSGTtdoK6JSi1WGuwbH1
ZCRFwvSDCiqldiU0j7g6wSMH+++yVoJcaGDL1TuUbxAhCgiGuY+LeBWuxk3/ieOn
K6lNqEOq2RrNa24KOu40Jh1ZUa6efaPk5xd2iK54clzGyPKZ8tvJMHDWpyiWWFJi
qrxpiONg58RP4lcDCDAbYtCx/sZTHH8/pmagJ3HWnCm2718WZIjrvm3FFCwxoT6s
bpZsroGjGIoz22b4Ik4NCCrnsdqlo5+U3BNhH+FPggwaK2/G3pWYor76OmKGOX10
8raqpDczOAv8uokCdJkv2oi6p5Dv7y8Ycy7NVAhKhlPTlR/X3vxyHSnbtQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKETlg9kldO+R8aSQ0FugqOyHB+PMB8GA1UdIwQY
MBaAFLxW23lt7w29tMePJEWr7MFXCm/ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdkZiYmVXM3ZEYjIweDQ4a1JhdnN3VmNLYjlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC84YjliZDktM2Y2Mi00ZTMwLTgwODUt
MWVjNzIxZmEyYTMwLzEvb1JPV0QyU1YwNzVIeHBKRFFXNkNvN0ljSDQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC84YjliZDktM2Y2Mi00ZTMwLTgwODUtMWVjNzIxZmEyYTMw
LzEvdkZiYmVXM3ZEYjIweDQ4a1JhdnN3VmNLYjlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8cQMA0G
CSqGSIb3DQEBCwUAA4IBAQB9868x8Wv+cEewoSgBwjRcqM+QDUaqUYpkpNQmDiWP
VFKtZ0rQihmmt1pxLpVSKnmBvh+s/n5bFvDzD6ZH4ZCT4T2stZFKp0T19ihW0iZR
DwHh/HDPl0/gdss1jrELhrXM25YbUh44/SfzdZ6hWPcxqjoRKI2vBOGwuX8XDYx0
+sytNdG6BG44Y3czm50NqkQJq9OgHlpTJS37XpqoCTvK5ywdpFC5+QV87p+g2yJX
WUTY5qi7EB/A0bJhGWfb4i0qTzKyzeQJIYAbyoUkmad8huzzaDpXY7ZUY3KVK9TO
g7VUmRU7euoWz31cBzsYTL9d+uSwqxEjcYqg3fkWO8//
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:23 2024 by rpki-client on console-ams.rpki-client.org