Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/_o4ytMCyxvz2_kBRKhp-nXdjyOU.roa
File: _o4ytMCyxvz2_kBRKhp-nXdjyOU.roa (raw, json)
Hash identifier: OZ8URl4lhsCgiwIhb5sJxWmB8/MeeBhLF1VSJf8so6E=
Subject key identifier: FE:8E:32:B4:C0:B2:C6:FC:F6:FE:40:51:2A:1A:7E:9D:77:63:C8:E5
Certificate issuer: /CN=8a6024b2c27a67dff5b654efa06bf7bfc1222625
Certificate serial: 018570C2B249005AADBD5D7F29FD64F57051
Authority key identifier: 8A:60:24:B2:C2:7A:67:DF:F5:B6:54:EF:A0:6B:F7:BF:C1:22:26:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/imAkssJ6Z9_1tlTvoGv3v8EiJiU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/_o4ytMCyxvz2_kBRKhp-nXdjyOU.roa
Signing time: Mon 02 Jan 2023 04:34:45 +0000
ROA not before: Mon 02 Jan 2023 04:34:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 10010
IP address blocks: 91.200.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:c2:b2:49:00:5a:ad:bd:5d:7f:29:fd:64:f5:70:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a6024b2c27a67dff5b654efa06bf7bfc1222625
Validity
Not Before: Jan 2 04:34:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe8e32b4c0b2c6fcf6fe40512a1a7e9d7763c8e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:c4:e3:02:3f:c8:68:de:9e:5d:7a:60:e7:17:
cf:8b:72:41:02:c5:59:89:a8:aa:1a:56:27:c4:53:
5d:25:44:95:b0:cc:cb:08:33:14:38:2d:5a:7e:d6:
9f:3f:27:b1:4c:fd:8d:3e:41:28:0a:f7:45:ef:d9:
34:c5:b0:0b:e4:59:c4:b7:f5:a4:37:3a:55:74:a5:
16:01:7a:7a:03:7f:e4:39:c5:d5:d3:d5:ce:22:20:
13:49:cf:1d:1c:7f:ac:42:1c:54:c6:f1:a2:c7:9d:
a3:a7:13:b2:16:30:d8:50:f4:e8:ef:5f:09:36:55:
6b:a5:96:06:10:8a:e1:4a:bc:81:94:1d:ce:04:ef:
05:b7:ef:20:10:39:eb:b9:c1:63:c9:01:f2:0d:c9:
3d:9f:f3:ce:12:fb:c6:f6:cf:d6:a9:ac:44:de:9a:
fc:f8:27:e2:82:6b:15:f9:2b:1d:4a:8f:75:0c:16:
6c:b0:2b:ef:db:ed:fb:e1:e5:09:45:17:47:a1:8c:
9b:4e:94:e2:16:c0:a8:e7:4b:49:66:59:78:7d:8a:
39:cd:c6:9e:8d:12:65:82:81:a5:62:b5:6e:f2:6e:
3b:f1:3f:e7:1c:fb:0e:db:14:1a:6c:b9:5e:00:be:
00:ce:10:48:2a:e4:0d:a0:de:8f:58:f3:fc:60:fb:
60:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:8E:32:B4:C0:B2:C6:FC:F6:FE:40:51:2A:1A:7E:9D:77:63:C8:E5
X509v3 Authority Key Identifier:
keyid:8A:60:24:B2:C2:7A:67:DF:F5:B6:54:EF:A0:6B:F7:BF:C1:22:26:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/imAkssJ6Z9_1tlTvoGv3v8EiJiU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/_o4ytMCyxvz2_kBRKhp-nXdjyOU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/imAkssJ6Z9_1tlTvoGv3v8EiJiU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.58.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:28:a0:65:d0:ca:02:89:bf:56:51:da:a3:74:97:41:1a:eb:
b6:65:a1:81:c5:00:06:dc:42:d7:53:26:f6:2e:81:76:81:50:
a2:d7:23:fa:31:a3:8d:c5:8a:0d:a2:11:ca:fa:4e:0b:49:5c:
ca:14:36:0e:c0:97:35:a7:32:fc:79:3a:60:62:31:f5:22:c2:
b1:11:f9:0d:e7:08:eb:23:5f:23:c5:45:0d:c0:bd:8d:7a:03:
92:22:4c:4d:ee:b8:97:ec:96:dc:c9:ea:8b:52:1c:bc:d5:62:
67:9b:02:4f:c3:57:1f:cc:af:b1:2d:46:28:b8:fb:c1:16:3d:
d0:02:9f:e4:ab:9e:f6:f4:8b:ee:53:ff:27:44:37:13:2c:0a:
6c:33:27:d3:b0:31:50:5a:7d:99:b7:e4:18:11:81:a0:05:08:
1a:10:a8:a6:d4:dc:11:24:32:68:56:a0:e8:73:a8:44:a0:97:
6c:3c:28:ef:e5:0d:5e:42:d7:e6:7a:99:44:f1:14:6d:62:2b:
69:fd:c2:22:26:5e:4c:a7:72:70:ed:8f:34:0e:1b:21:fa:1a:
fb:92:b7:fb:61:eb:7b:50:19:86:40:83:df:7d:7d:98:9e:83:
c2:0d:f1:86:f7:f4:c6:84:85:7c:42:46:5c:3f:a4:71:de:24:
57:b6:ec:8a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwwrJJAFqtvV1/Kf1k9XBRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhNjAyNGIyYzI3YTY3ZGZmNWI2NTRlZmEwNmJmN2JmYzEy
MjI2MjUwHhcNMjMwMTAyMDQzNDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZThlMzJiNGMwYjJjNmZjZjZmZTQwNTEyYTFhN2U5ZDc3NjNjOGU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl8TjAj/IaN6eXXpg5xfPi3JBAsVZ
iaiqGlYnxFNdJUSVsMzLCDMUOC1aftafPyexTP2NPkEoCvdF79k0xbAL5FnEt/Wk
NzpVdKUWAXp6A3/kOcXV09XOIiATSc8dHH+sQhxUxvGix52jpxOyFjDYUPTo718J
NlVrpZYGEIrhSryBlB3OBO8Ft+8gEDnrucFjyQHyDck9n/POEvvG9s/WqaxE3pr8
+CfigmsV+SsdSo91DBZssCvv2+374eUJRRdHoYybTpTiFsCo50tJZll4fYo5zcae
jRJlgoGlYrVu8m478T/nHPsO2xQabLleAL4AzhBIKuQNoN6PWPP8YPtgJQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP6OMrTAssb89v5AUSoafp13Y8jlMB8GA1UdIwQY
MBaAFIpgJLLCemff9bZU76Br97/BIiYlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaW1Ba3NzSjZaOV8xdGxUdm9HdjN2OEVpSmlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC8zM2VjY2YtMGFlMy00YzdlLWE0NDEt
MDhlOGYwY2JiODQwLzEvX280eXRNQ3l4dnoyX2tCUktocC1uWGRqeU9VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC8zM2VjY2YtMGFlMy00YzdlLWE0NDEtMDhlOGYwY2JiODQw
LzEvaW1Ba3NzSjZaOV8xdGxUdm9HdjN2OEVpSmlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8g6MA0G
CSqGSIb3DQEBCwUAA4IBAQDMKKBl0MoCib9WUdqjdJdBGuu2ZaGBxQAG3ELXUyb2
LoF2gVCi1yP6MaONxYoNohHK+k4LSVzKFDYOwJc1pzL8eTpgYjH1IsKxEfkN5wjr
I18jxUUNwL2NegOSIkxN7riX7JbcyeqLUhy81WJnmwJPw1cfzK+xLUYouPvBFj3Q
Ap/kq5729IvuU/8nRDcTLApsMyfTsDFQWn2Zt+QYEYGgBQgaEKim1NwRJDJoVqDo
c6hEoJdsPCjv5Q1eQtfmeplE8RRtYitp/cIiJl5Mp3Jw7Y80Dhsh+hr7krf7Yet7
UBmGQIPffX2YnoPCDfGG9/TGhIV8QkZcP6Rx3iRXtuyK
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:51 2024 by rpki-client on console-ams.rpki-client.org