Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/72435b-7e7e-447b-ac24-982c429d4156/1/tvE2_p0coZZoemwdOfwZMPdJQ5U.roa
File: tvE2_p0coZZoemwdOfwZMPdJQ5U.roa (raw, json)
Hash identifier: HoMmWwIzRQB5P/+vxHDY+JV8lzAEr/UPChPWjtCasEg=
Subject key identifier: B6:F1:36:FE:9D:1C:A1:96:68:7A:6C:1D:39:FC:19:30:F7:49:43:95
Certificate issuer: /CN=04d9bc828a566b06af4d765dfb5da5bc1d76c725
Certificate serial: 01856BDC9DC5429917775349A66DD3034B01
Authority key identifier: 04:D9:BC:82:8A:56:6B:06:AF:4D:76:5D:FB:5D:A5:BC:1D:76:C7:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BNm8gopWawavTXZd-12lvB12xyU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/72435b-7e7e-447b-ac24-982c429d4156/1/tvE2_p0coZZoemwdOfwZMPdJQ5U.roa
Signing time: Sun 01 Jan 2023 05:44:58 +0000
ROA not before: Sun 01 Jan 2023 05:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31742
IP address blocks: 91.241.78.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:dc:9d:c5:42:99:17:77:53:49:a6:6d:d3:03:4b:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04d9bc828a566b06af4d765dfb5da5bc1d76c725
Validity
Not Before: Jan 1 05:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b6f136fe9d1ca196687a6c1d39fc1930f7494395
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:3d:4b:94:2b:80:30:81:a7:9b:c3:9b:ef:50:
f2:f0:06:c7:5e:ac:4c:f2:c7:34:fd:1e:52:ee:cf:
f3:a4:dc:1d:e7:fe:3a:c3:9c:4a:18:3f:c2:e2:8b:
48:47:6f:c9:05:58:bd:1e:d2:8f:fa:65:98:2f:f2:
6a:36:d3:cb:44:4e:93:47:18:2c:d1:91:41:7e:73:
47:61:f3:8b:7c:32:a1:84:f0:b8:dd:c4:c3:61:4a:
54:25:68:f9:e0:ac:79:07:7e:b7:18:56:47:ce:58:
49:bc:c7:90:ce:f3:71:3a:1c:49:ce:68:2a:eb:88:
17:39:09:fd:30:d8:c2:14:83:d1:02:ec:38:c2:72:
b5:f2:5f:9a:9e:b2:c1:42:bc:83:7e:c3:83:34:a6:
a1:3e:c0:6d:6b:f7:74:4f:4b:55:29:fb:68:2c:60:
f8:6d:41:fc:66:55:b4:92:47:39:ef:f1:56:c3:f2:
8b:92:45:17:88:76:d2:0c:28:8d:d6:87:85:d1:92:
f2:e7:57:ee:3e:12:a8:5a:37:1b:90:e5:fb:3c:77:
6b:f7:90:2c:dd:42:18:60:fb:31:90:ee:cb:7b:73:
f8:55:b3:b0:ab:70:3a:ce:51:dd:4b:2f:b6:12:e0:
85:70:81:34:f8:0e:73:f2:e5:81:23:77:c4:6d:75:
41:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:F1:36:FE:9D:1C:A1:96:68:7A:6C:1D:39:FC:19:30:F7:49:43:95
X509v3 Authority Key Identifier:
keyid:04:D9:BC:82:8A:56:6B:06:AF:4D:76:5D:FB:5D:A5:BC:1D:76:C7:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BNm8gopWawavTXZd-12lvB12xyU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/72435b-7e7e-447b-ac24-982c429d4156/1/tvE2_p0coZZoemwdOfwZMPdJQ5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/72435b-7e7e-447b-ac24-982c429d4156/1/BNm8gopWawavTXZd-12lvB12xyU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.241.78.0/24
Signature Algorithm: sha256WithRSAEncryption
51:48:6b:9b:18:6b:c3:49:74:85:54:77:b8:c5:81:70:15:86:
ae:0c:33:28:4e:bd:80:31:06:09:7a:cc:a4:56:51:70:cd:f4:
da:06:d1:3b:d1:52:bd:71:49:82:bc:ce:8f:7c:a5:ab:a9:0b:
d7:3b:5f:9f:6f:12:5c:d2:6d:1e:95:9e:66:41:2f:98:9d:ab:
6b:a3:0a:d0:a1:6e:05:d0:46:58:f9:28:ab:40:71:f1:31:8c:
fc:4b:61:fa:27:2f:da:8c:bb:a4:65:5b:cd:ef:09:e4:5e:8c:
81:5f:0a:77:39:9e:fc:c9:ad:9a:4f:7f:3c:04:df:22:7f:61:
c9:cf:62:ba:75:9c:29:75:b3:f8:84:a5:8c:bb:da:7c:79:e4:
25:4e:19:a1:9a:26:d3:2e:8d:33:74:8a:25:f7:02:c3:13:50:
e4:7d:f8:19:6a:59:77:9f:84:cb:96:0a:e3:45:7d:6f:55:b1:
d8:5a:00:02:d0:d1:b9:51:ef:d9:d9:bb:9c:6a:7a:7f:7a:a9:
b5:4b:d4:f4:be:82:db:c6:55:1b:5e:5f:a8:2a:fd:92:78:05:
df:d9:24:b3:88:94:46:35:7d:ec:5c:9d:73:10:69:76:15:a7:
eb:09:23:02:be:1c:0b:d3:12:5b:af:90:6a:ed:29:ba:26:71:
77:f4:72:62
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVr3J3FQpkXd1NJpm3TA0sBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA0ZDliYzgyOGE1NjZiMDZhZjRkNzY1ZGZiNWRhNWJjMWQ3
NmM3MjUwHhcNMjMwMTAxMDU0NDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNmYxMzZmZTlkMWNhMTk2Njg3YTZjMWQzOWZjMTkzMGY3NDk0Mzk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlz1LlCuAMIGnm8Ob71Dy8AbHXqxM
8sc0/R5S7s/zpNwd5/46w5xKGD/C4otIR2/JBVi9HtKP+mWYL/JqNtPLRE6TRxgs
0ZFBfnNHYfOLfDKhhPC43cTDYUpUJWj54Kx5B363GFZHzlhJvMeQzvNxOhxJzmgq
64gXOQn9MNjCFIPRAuw4wnK18l+anrLBQryDfsODNKahPsBta/d0T0tVKftoLGD4
bUH8ZlW0kkc57/FWw/KLkkUXiHbSDCiN1oeF0ZLy51fuPhKoWjcbkOX7PHdr95As
3UIYYPsxkO7Le3P4VbOwq3A6zlHdSy+2EuCFcIE0+A5z8uWBI3fEbXVBqQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLbxNv6dHKGWaHpsHTn8GTD3SUOVMB8GA1UdIwQY
MBaAFATZvIKKVmsGr012XftdpbwddsclMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQk5tOGdvcFdhd2F2VFhaZC0xMmx2QjEyeHlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi83MjQzNWItN2U3ZS00NDdiLWFjMjQt
OTgyYzQyOWQ0MTU2LzEvdHZFMl9wMGNvWlpvZW13ZE9md1pNUGRKUTVVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi83MjQzNWItN2U3ZS00NDdiLWFjMjQtOTgyYzQyOWQ0MTU2
LzEvQk5tOGdvcFdhd2F2VFhaZC0xMmx2QjEyeHlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW/FOMA0G
CSqGSIb3DQEBCwUAA4IBAQBRSGubGGvDSXSFVHe4xYFwFYauDDMoTr2AMQYJesyk
VlFwzfTaBtE70VK9cUmCvM6PfKWrqQvXO1+fbxJc0m0elZ5mQS+YnatrowrQoW4F
0EZY+SirQHHxMYz8S2H6Jy/ajLukZVvN7wnkXoyBXwp3OZ78ya2aT388BN8if2HJ
z2K6dZwpdbP4hKWMu9p8eeQlThmhmibTLo0zdIol9wLDE1DkffgZall3n4TLlgrj
RX1vVbHYWgAC0NG5Ue/Z2bucanp/eqm1S9T0voLbxlUbXl+oKv2SeAXf2SSziJRG
NX3sXJ1zEGl2FafrCSMCvhwL0xJbr5Bq7Sm6JnF39HJi
-----END CERTIFICATE-----
Generated at Mon Jan 1 17:13:40 2024 by rpki-client on console-ams.rpki-client.org