Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/7bc5f0-e21b-423e-be1c-2d460e0726fa/1/rpkvukyINO3leyZkSoO9UhMlTaM.roa
File: rpkvukyINO3leyZkSoO9UhMlTaM.roa (raw, json)
Hash identifier: d8LzRTFABwF3A/prK6AuWEW26jEEUZ1ynkiOmuChMJk=
Subject key identifier: AE:99:2F:BA:4C:88:34:ED:E5:7B:26:64:4A:83:BD:52:13:25:4D:A3
Certificate issuer: /CN=f8d40a2a1389f54c23e7871b5ae87f653f659008
Certificate serial: 01856FD505D0CDA6E96185F3C7B9665A0A14
Authority key identifier: F8:D4:0A:2A:13:89:F5:4C:23:E7:87:1B:5A:E8:7F:65:3F:65:90:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-NQKKhOJ9Uwj54cbWuh_ZT9lkAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/7bc5f0-e21b-423e-be1c-2d460e0726fa/1/rpkvukyINO3leyZkSoO9UhMlTaM.roa
Signing time: Mon 02 Jan 2023 00:15:09 +0000
ROA not before: Mon 02 Jan 2023 00:15:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49788
IP address blocks: 91.232.32.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:05:d0:cd:a6:e9:61:85:f3:c7:b9:66:5a:0a:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8d40a2a1389f54c23e7871b5ae87f653f659008
Validity
Not Before: Jan 2 00:15:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ae992fba4c8834ede57b26644a83bd5213254da3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:ca:b7:b4:75:88:30:81:a0:99:40:88:51:59:
af:49:8a:06:55:95:56:a7:6b:43:c2:1a:cd:1a:68:
99:82:77:6a:f2:45:55:53:58:60:4a:4c:65:bc:8c:
8f:3e:c2:5d:5a:3b:1b:e1:71:4d:08:e8:84:c7:70:
28:e8:68:ba:7c:09:21:92:4f:36:5b:e8:4d:8e:b3:
82:8d:75:61:6c:89:74:0b:b8:ba:09:1e:f2:af:e1:
0b:ed:c7:45:be:ad:f1:ee:d7:01:3a:76:e7:1e:8b:
a9:bb:ec:99:a2:d3:f4:b0:4a:5a:b1:03:a1:55:2b:
7a:0e:cf:7b:db:59:02:a6:41:1c:b5:46:4f:ac:35:
a9:80:f6:61:c1:3e:0d:38:9a:6c:dd:f5:7d:4a:4a:
db:68:79:f9:25:e8:c7:72:24:c6:85:01:3b:40:5f:
2a:66:5e:f7:03:40:1f:30:07:9e:0a:70:26:06:f4:
a2:f1:3b:f4:c8:6a:12:f9:fd:d0:8f:18:21:32:09:
a6:70:40:9a:d3:10:be:68:ef:cc:a2:09:f5:57:30:
71:36:0f:b6:09:89:7c:27:61:3c:ec:ce:0f:3f:df:
ef:88:35:f3:ca:20:83:7a:dc:91:75:0d:a4:14:63:
46:e0:67:be:84:ca:df:15:c5:d6:3d:dc:1a:be:16:
f8:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:99:2F:BA:4C:88:34:ED:E5:7B:26:64:4A:83:BD:52:13:25:4D:A3
X509v3 Authority Key Identifier:
keyid:F8:D4:0A:2A:13:89:F5:4C:23:E7:87:1B:5A:E8:7F:65:3F:65:90:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-NQKKhOJ9Uwj54cbWuh_ZT9lkAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/7bc5f0-e21b-423e-be1c-2d460e0726fa/1/rpkvukyINO3leyZkSoO9UhMlTaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/7bc5f0-e21b-423e-be1c-2d460e0726fa/1/1-NQKKhOJ9Uwj54cbWuh_ZT9lkAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.32.0/23
Signature Algorithm: sha256WithRSAEncryption
46:7f:80:94:52:d3:5d:2e:21:26:05:be:ad:fc:42:de:9a:9d:
c6:fb:f4:88:b8:e8:54:08:78:77:99:76:42:dc:84:23:9f:84:
7e:6b:a6:65:17:10:fb:d1:1f:b4:68:11:ff:99:a8:a5:bf:3d:
3b:33:35:93:7c:22:8b:77:12:b2:70:a3:90:20:b5:7f:6d:8e:
93:2f:72:51:6f:84:c6:50:de:9f:87:7c:38:a0:8e:52:21:0b:
98:3e:0d:75:e7:ab:8d:e7:a1:d5:89:5c:18:df:08:65:fe:7f:
b2:12:fd:45:45:84:57:09:23:cc:71:5d:c8:a0:18:61:86:67:
7e:48:b2:fe:d7:10:30:f9:7d:e5:5b:9f:1a:3e:e0:c5:bb:1e:
0c:14:cf:92:09:1b:e3:b4:38:38:e0:4b:30:6e:de:1b:ec:42:
ca:02:3a:a2:c0:5d:65:96:62:3c:4d:28:10:4e:fb:55:e3:81:
34:b6:b5:e2:4f:d7:37:75:7a:35:af:e3:3f:fa:de:b8:83:59:
28:71:9b:6b:30:e5:80:31:09:4b:1d:14:7f:af:d9:23:d9:af:
68:ed:88:3f:66:25:05:9a:13:4b:f4:c1:2f:41:d6:e1:50:2a:
ca:e8:a6:0f:ae:e2:29:10:13:57:50:27:d0:a8:4d:32:81:59:
83:09:f0:d6
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYVv1QXQzabpYYXzx7lmWgoUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY4ZDQwYTJhMTM4OWY1NGMyM2U3ODcxYjVhZTg3ZjY1M2Y2
NTkwMDgwHhcNMjMwMTAyMDAxNTA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZTk5MmZiYTRjODgzNGVkZTU3YjI2NjQ0YTgzYmQ1MjEzMjU0ZGEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjMq3tHWIMIGgmUCIUVmvSYoGVZVW
p2tDwhrNGmiZgndq8kVVU1hgSkxlvIyPPsJdWjsb4XFNCOiEx3Ao6Gi6fAkhkk82
W+hNjrOCjXVhbIl0C7i6CR7yr+EL7cdFvq3x7tcBOnbnHoupu+yZotP0sEpasQOh
VSt6Ds9721kCpkEctUZPrDWpgPZhwT4NOJps3fV9SkrbaHn5JejHciTGhQE7QF8q
Zl73A0AfMAeeCnAmBvSi8Tv0yGoS+f3QjxghMgmmcECa0xC+aO/Mogn1VzBxNg+2
CYl8J2E87M4PP9/viDXzyiCDetyRdQ2kFGNG4Ge+hMrfFcXWPdwavhb4+wIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFK6ZL7pMiDTt5XsmZEqDvVITJU2jMB8GA1UdIwQY
MBaAFPjUCioTifVMI+eHG1rof2U/ZZAIMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1OUUtLaE9KOVV3ajU0Y2JXdWhfWlQ5bGtBZy5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDQvN2JjNWYwLWUyMWItNDIzZS1iZTFj
LTJkNDYwZTA3MjZmYS8xL3Jwa3Z1a3lJTk8zbGV5WmtTb085VWhNbFRhTS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvMDQvN2JjNWYwLWUyMWItNDIzZS1iZTFjLTJkNDYwZTA3MjZm
YS8xLzEtTlFLS2hPSjlVd2o1NGNiV3VoX1pUOWxrQWcuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFb6CAw
DQYJKoZIhvcNAQELBQADggEBAEZ/gJRS010uISYFvq38Qt6ancb79Ii46FQIeHeZ
dkLchCOfhH5rpmUXEPvRH7RoEf+ZqKW/PTszNZN8Iot3ErJwo5AgtX9tjpMvclFv
hMZQ3p+HfDigjlIhC5g+DXXnq43nodWJXBjfCGX+f7IS/UVFhFcJI8xxXcigGGGG
Z35Isv7XEDD5feVbnxo+4MW7HgwUz5IJG+O0ODjgSzBu3hvsQsoCOqLAXWWWYjxN
KBBO+1XjgTS2teJP1zd1ejWv4z/63riDWShxm2sw5YAxCUsdFH+v2SPZr2jtiD9m
JQWaE0v0wS9B1uFQKsropg+u4ikQE1dQJ9CoTTKBWYMJ8NY=
-----END CERTIFICATE-----
Generated at Mon Jan 1 11:15:26 2024 by rpki-client on console-ams.rpki-client.org