Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/bRhI6yYaIE_Ic5esPY4KGavSeHg.roa
File: bRhI6yYaIE_Ic5esPY4KGavSeHg.roa (raw, json)
Hash identifier: BWjhm/eZkS8rsErQK+5wxNHbdVa93DlF1rW4X/XsYOE=
Subject key identifier: 6D:18:48:EB:26:1A:20:4F:C8:73:97:AC:3D:8E:0A:19:AB:D2:78:78
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 01856FF96E637DE797D3F9527871D4427AA4
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/bRhI6yYaIE_Ic5esPY4KGavSeHg.roa
Signing time: Mon 02 Jan 2023 00:54:55 +0000
ROA not before: Mon 02 Jan 2023 00:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41610
IP address blocks: 212.91.162.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:6e:63:7d:e7:97:d3:f9:52:78:71:d4:42:7a:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Jan 2 00:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6d1848eb261a204fc87397ac3d8e0a19abd27878
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c2:8c:47:95:8b:d7:5e:04:0d:18:e7:4f:7b:
03:90:e7:ef:19:61:df:33:61:20:4e:76:5a:aa:75:
58:41:33:47:77:b6:a5:4c:1f:53:ac:85:69:f0:08:
1e:d8:a0:d4:17:3c:18:7d:63:ac:02:0f:40:fa:ed:
42:3a:f3:14:98:db:73:13:56:8e:b0:fe:02:3b:04:
70:cb:12:cf:94:14:21:ab:1a:f6:3f:c5:b0:e2:7f:
05:ba:be:d0:ad:5d:9a:0f:74:a5:1b:6c:de:61:25:
5a:e9:be:88:a7:26:c5:e3:d1:45:e7:e1:fd:51:57:
f7:d5:7a:17:d1:6c:86:d6:b4:36:ec:ef:22:33:1f:
9a:1b:55:62:fd:0e:fd:95:0f:ab:5b:3d:51:90:01:
c0:f5:8b:39:c2:21:fe:63:d2:d6:33:0e:4d:0a:ce:
8e:e9:99:ed:8f:98:d6:41:a6:35:f2:e0:73:0a:bf:
22:32:0d:82:59:39:84:3c:6a:d3:0d:59:13:f4:70:
5d:b7:71:86:55:79:6a:5b:da:f1:7d:a9:6c:af:77:
f8:d3:1b:99:08:f9:c5:fb:d5:3d:42:27:df:e6:4e:
68:60:46:38:c4:c4:b2:3e:35:b6:23:2d:f1:da:93:
db:22:6f:04:08:41:60:4e:45:57:64:2b:a6:60:62:
0f:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:18:48:EB:26:1A:20:4F:C8:73:97:AC:3D:8E:0A:19:AB:D2:78:78
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/bRhI6yYaIE_Ic5esPY4KGavSeHg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.91.162.0/24
Signature Algorithm: sha256WithRSAEncryption
80:2f:e4:d0:75:54:25:87:e0:b9:e2:ad:c1:44:f7:8e:54:4b:
c2:d5:f5:60:61:a5:31:09:51:a6:f9:bf:e4:29:49:e3:e3:9d:
70:83:45:5c:42:7a:08:cf:ff:eb:aa:fb:98:71:2e:4a:7d:d8:
52:3c:5c:13:92:3b:af:e9:2b:78:20:6f:1e:d8:14:48:e9:0a:
c4:63:23:02:f8:18:0b:39:14:02:b3:a1:8f:f1:bf:14:31:43:
94:74:9c:6f:b4:25:b0:06:23:21:08:53:3a:18:0a:08:1f:a1:
16:36:ad:12:8e:e8:8b:73:78:09:97:e6:a6:6c:6f:0c:c6:d3:
cb:0e:b6:e9:4e:20:97:39:85:01:42:ec:14:3d:92:1f:e4:f0:
5d:bd:65:6f:f0:43:0b:5c:75:1f:df:77:dc:39:b5:bc:ce:69:
0c:d1:e9:63:27:a3:e9:07:19:d9:85:db:a5:78:88:6e:1e:7c:
1b:8c:fd:24:cc:01:85:82:99:f3:54:f5:70:dc:0d:db:65:23:
ff:65:d4:38:1c:00:ad:1d:13:21:02:8b:02:34:e6:99:51:de:
6e:66:81:6e:0c:f3:e5:d9:fe:c6:91:4e:10:f5:7d:c8:6f:c8:
eb:d9:83:dd:b7:82:a8:82:b4:c6:45:75:7d:19:5d:81:21:77:
fe:11:78:a0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVv+W5jfeeX0/lSeHHUQnqkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1NDhjZWRmMTcwMjllZDk4YTEwODExM2M2YzEwOWVjYWNj
ZDgyZWMwHhcNMjMwMTAyMDA1NDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZDE4NDhlYjI2MWEyMDRmYzg3Mzk3YWMzZDhlMGExOWFiZDI3ODc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAncKMR5WL114EDRjnT3sDkOfvGWHf
M2EgTnZaqnVYQTNHd7alTB9TrIVp8Age2KDUFzwYfWOsAg9A+u1COvMUmNtzE1aO
sP4COwRwyxLPlBQhqxr2P8Ww4n8Fur7QrV2aD3SlG2zeYSVa6b6IpybF49FF5+H9
UVf31XoX0WyG1rQ27O8iMx+aG1Vi/Q79lQ+rWz1RkAHA9Ys5wiH+Y9LWMw5NCs6O
6Zntj5jWQaY18uBzCr8iMg2CWTmEPGrTDVkT9HBdt3GGVXlqW9rxfalsr3f40xuZ
CPnF+9U9Qiff5k5oYEY4xMSyPjW2Iy3x2pPbIm8ECEFgTkVXZCumYGIPJQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG0YSOsmGiBPyHOXrD2OChmr0nh4MB8GA1UdIwQY
MBaAFAVIzt8XAp7ZihCBE8bBCeyszYLsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAt
N2ZiYmFlNmY5NDM3LzEvYlJoSTZ5WWFJRV9JYzVlc1BZNEtHYXZTZUhnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS81NDFjMDUtOGQ3ZC00MmI4LWFiMDAtN2ZiYmFlNmY5NDM3
LzEvQlVqTzN4Y0NudG1LRUlFVHhzRUo3S3pOZ3V3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1FuiMA0G
CSqGSIb3DQEBCwUAA4IBAQCAL+TQdVQlh+C54q3BRPeOVEvC1fVgYaUxCVGm+b/k
KUnj451wg0VcQnoIz//rqvuYcS5KfdhSPFwTkjuv6St4IG8e2BRI6QrEYyMC+BgL
ORQCs6GP8b8UMUOUdJxvtCWwBiMhCFM6GAoIH6EWNq0SjuiLc3gJl+ambG8MxtPL
DrbpTiCXOYUBQuwUPZIf5PBdvWVv8EMLXHUf33fcObW8zmkM0eljJ6PpBxnZhdul
eIhuHnwbjP0kzAGFgpnzVPVw3A3bZSP/ZdQ4HACtHRMhAosCNOaZUd5uZoFuDPPl
2f7GkU4Q9X3Ib8jr2YPdt4KogrTGRXV9GV2BIXf+EXig
-----END CERTIFICATE-----
Generated at Mon Jan 1 21:18:44 2024 by rpki-client on console-ams.rpki-client.org