Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/638f28-00d5-463b-b16c-f845bfc42f6d/1/Tvb7QH6f7alwa70BJrVTquMFxd4.roa
File: Tvb7QH6f7alwa70BJrVTquMFxd4.roa (raw, json)
Hash identifier: 7V9jmaRpMlvmTO0BjpbMIjRPjaDNJjpnqCwrAVof3w0=
Subject key identifier: 4E:F6:FB:40:7E:9F:ED:A9:70:6B:BD:01:26:B5:53:AA:E3:05:C5:DE
Certificate issuer: /CN=b0242b7e43053c913d62bf5dbb1682ffe6b8dfe2
Certificate serial: 01856E78D6A421F2C7CBF9C8B9C757E59C27
Authority key identifier: B0:24:2B:7E:43:05:3C:91:3D:62:BF:5D:BB:16:82:FF:E6:B8:DF:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sCQrfkMFPJE9Yr9duxaC_-a43-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/638f28-00d5-463b-b16c-f845bfc42f6d/1/Tvb7QH6f7alwa70BJrVTquMFxd4.roa
Signing time: Sun 01 Jan 2023 17:54:51 +0000
ROA not before: Sun 01 Jan 2023 17:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24971
IP address blocks: 91.214.192.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:78:d6:a4:21:f2:c7:cb:f9:c8:b9:c7:57:e5:9c:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0242b7e43053c913d62bf5dbb1682ffe6b8dfe2
Validity
Not Before: Jan 1 17:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ef6fb407e9feda9706bbd0126b553aae305c5de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f7:bd:b1:49:7c:19:5e:42:de:1a:8f:aa:a3:
ec:6f:40:eb:d3:f8:a6:a9:ba:4a:74:9c:d7:1d:44:
e6:3a:69:84:cd:41:bb:9a:8f:b7:58:2e:2d:47:23:
6a:3c:fe:24:ae:76:2e:c9:59:9e:6e:4e:9c:53:bc:
6a:dd:8a:69:bf:10:11:07:54:41:c6:3f:19:2d:6d:
91:e3:1d:58:24:4f:f6:37:df:ac:04:5f:30:cd:c6:
2a:0e:e1:85:20:ca:90:74:76:f5:c6:16:45:79:c5:
45:af:61:d8:96:74:e9:8d:f0:8a:cc:c7:8c:32:d5:
8e:86:33:bf:ed:ea:37:48:9d:6d:32:b9:19:7d:3c:
61:8e:e7:5d:bb:06:7a:7c:0b:6c:b1:6d:89:d8:3f:
f1:ca:bd:df:bd:c5:cb:a6:ec:f4:cd:69:61:0d:ba:
b2:94:a8:a6:64:8e:fe:1f:c6:86:06:ab:d7:e6:b9:
f8:7f:ce:7e:3a:dc:b9:ff:15:2b:72:f8:89:8a:d1:
b5:7b:70:34:b3:86:76:a1:34:c4:a1:df:f5:5d:57:
19:be:ad:6e:68:68:7e:2d:1a:68:66:5c:da:8f:97:
01:0d:9c:eb:89:6d:a7:71:11:61:4e:94:00:4f:ef:
fc:b1:86:6b:51:e0:4d:76:f1:3d:d0:c8:f4:1a:d1:
bb:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:F6:FB:40:7E:9F:ED:A9:70:6B:BD:01:26:B5:53:AA:E3:05:C5:DE
X509v3 Authority Key Identifier:
keyid:B0:24:2B:7E:43:05:3C:91:3D:62:BF:5D:BB:16:82:FF:E6:B8:DF:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sCQrfkMFPJE9Yr9duxaC_-a43-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/638f28-00d5-463b-b16c-f845bfc42f6d/1/Tvb7QH6f7alwa70BJrVTquMFxd4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/638f28-00d5-463b-b16c-f845bfc42f6d/1/sCQrfkMFPJE9Yr9duxaC_-a43-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.214.192.0/22
Signature Algorithm: sha256WithRSAEncryption
62:2e:cb:2c:8d:a3:d5:14:1d:9f:51:b4:9e:47:1a:6c:e1:0d:
43:e4:a2:bd:c6:91:4f:7b:e0:a4:b8:7d:00:b2:da:ab:49:a4:
9a:94:64:dc:83:c9:37:9e:2f:d3:0a:fb:38:22:90:76:cb:43:
91:fc:13:4e:2a:20:9c:7e:a3:7f:f8:22:5e:03:3f:4f:52:15:
02:0a:84:44:3c:4f:94:5b:fd:83:ee:00:a9:3e:a0:1a:a9:80:
13:ac:7c:23:16:38:bf:03:27:73:bc:16:75:3f:47:58:5c:9f:
f1:9b:0f:7a:40:47:fc:9e:ac:f6:cc:6d:93:04:23:34:e8:77:
f7:a3:37:ac:47:80:03:60:35:e9:96:3d:ba:60:b0:b0:bf:d6:
25:07:af:56:ca:77:28:0e:99:e0:f4:33:99:11:e4:f1:fc:fd:
ac:78:eb:fe:6a:a0:71:30:2e:7e:a2:bf:37:32:b6:c7:9a:7e:
71:38:a8:a2:39:1b:74:0e:17:25:17:ff:76:6f:c7:6d:c2:e6:
8a:1b:a8:ae:7f:23:72:51:ea:98:6e:56:24:03:8b:c0:d6:2b:
2e:c9:cc:06:52:26:bf:7a:94:4f:80:20:93:78:ef:9d:e4:56:
56:f0:7f:d9:38:c0:b4:90:22:30:be:a1:64:70:67:f8:16:32:
ee:05:9a:4c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVueNakIfLHy/nIucdX5ZwnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwMjQyYjdlNDMwNTNjOTEzZDYyYmY1ZGJiMTY4MmZmZTZi
OGRmZTIwHhcNMjMwMTAxMTc1NDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZWY2ZmI0MDdlOWZlZGE5NzA2YmJkMDEyNmI1NTNhYWUzMDVjNWRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsPe9sUl8GV5C3hqPqqPsb0Dr0/im
qbpKdJzXHUTmOmmEzUG7mo+3WC4tRyNqPP4krnYuyVmebk6cU7xq3YppvxARB1RB
xj8ZLW2R4x1YJE/2N9+sBF8wzcYqDuGFIMqQdHb1xhZFecVFr2HYlnTpjfCKzMeM
MtWOhjO/7eo3SJ1tMrkZfTxhjudduwZ6fAtssW2J2D/xyr3fvcXLpuz0zWlhDbqy
lKimZI7+H8aGBqvX5rn4f85+Oty5/xUrcviJitG1e3A0s4Z2oTTEod/1XVcZvq1u
aGh+LRpoZlzaj5cBDZzriW2ncRFhTpQAT+/8sYZrUeBNdvE90Mj0GtG7QQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE72+0B+n+2pcGu9ASa1U6rjBcXeMB8GA1UdIwQY
MBaAFLAkK35DBTyRPWK/XbsWgv/muN/iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc0NRcmZrTUZQSkU5WXI5ZHV4YUNfLWE0My1JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS82MzhmMjgtMDBkNS00NjNiLWIxNmMt
Zjg0NWJmYzQyZjZkLzEvVHZiN1FINmY3YWx3YTcwQkpyVlRxdU1GeGQ0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS82MzhmMjgtMDBkNS00NjNiLWIxNmMtZjg0NWJmYzQyZjZk
LzEvc0NRcmZrTUZQSkU5WXI5ZHV4YUNfLWE0My1JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCW9bAMA0G
CSqGSIb3DQEBCwUAA4IBAQBiLsssjaPVFB2fUbSeRxps4Q1D5KK9xpFPe+CkuH0A
stqrSaSalGTcg8k3ni/TCvs4IpB2y0OR/BNOKiCcfqN/+CJeAz9PUhUCCoREPE+U
W/2D7gCpPqAaqYATrHwjFji/AydzvBZ1P0dYXJ/xmw96QEf8nqz2zG2TBCM06Hf3
ozesR4ADYDXplj26YLCwv9YlB69WyncoDpng9DOZEeTx/P2seOv+aqBxMC5+or83
MrbHmn5xOKiiORt0DhclF/92b8dtwuaKG6iufyNyUeqYblYkA4vA1isuycwGUia/
epRPgCCTeO+d5FZW8H/ZOMC0kCIwvqFkcGf4FjLuBZpM
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:53 2024 by rpki-client on console-fra.rpki-client.org