Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/edGnimv49zvGiWIXWTAHoAA-in4.roa
File: edGnimv49zvGiWIXWTAHoAA-in4.roa (raw, json)
Hash identifier: 2SoDUhzO6/iXhAHcUr3n+M4Hc+LEDvelK31u4/YGcsQ=
Subject key identifier: 79:D1:A7:8A:6B:F8:F7:3B:C6:89:62:17:59:30:07:A0:00:3E:8A:7E
Certificate issuer: /CN=36900183cf08a6e5bc807846294a46062e190e3b
Certificate serial: 018CD2FC21655D6FFC52721EFB4AB3370015
Authority key identifier: 36:90:01:83:CF:08:A6:E5:BC:80:78:46:29:4A:46:06:2E:19:0E:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpABg88IpuW8gHhGKUpGBi4ZDjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/edGnimv49zvGiWIXWTAHoAA-in4.roa
Signing time: Thu 04 Jan 2024 05:39:48 +0000
ROA not before: Thu 04 Jan 2024 05:39:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 80.91.218.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 05 Jan 2024 19:47:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d2:fc:21:65:5d:6f:fc:52:72:1e:fb:4a:b3:37:00:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36900183cf08a6e5bc807846294a46062e190e3b
Validity
Not Before: Jan 4 05:39:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=79d1a78a6bf8f73bc6896217593007a0003e8a7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ae:c7:46:4a:f6:9d:43:2f:3c:f6:83:56:f3:
b1:ce:89:97:4f:a6:3a:a2:af:c7:34:c4:3b:c5:72:
50:f2:51:60:79:2c:21:7d:be:37:e0:10:39:38:a0:
dd:f2:77:ff:87:8e:c4:9e:b4:ad:16:2c:10:3b:50:
cb:c1:17:cf:5f:dc:53:aa:a8:a7:23:ec:5a:53:48:
0e:a4:2e:bd:9f:90:6e:0a:ff:1f:70:fe:12:64:a4:
db:0d:1e:73:79:19:c8:2a:95:df:4f:c4:80:39:0c:
28:fb:86:d3:61:fa:64:29:2c:a9:e7:eb:5c:cd:5c:
50:9a:03:3c:54:cb:ae:1c:1e:ac:25:02:1d:57:f2:
6a:05:21:fb:90:e8:3a:fc:54:d0:80:62:55:dc:83:
8a:ba:8d:b8:f8:4f:80:42:71:d6:40:14:ea:d1:76:
5f:3f:5c:4d:28:ff:e6:31:13:e3:f3:03:b7:80:1a:
7c:f7:de:f8:fe:b5:6d:48:89:78:7d:94:b3:ed:4e:
a3:0c:2b:99:4b:70:9d:2f:ba:55:43:cd:64:88:0d:
10:8b:e8:00:6c:ac:17:b9:1e:66:f1:75:67:7a:10:
34:ae:36:93:90:e1:34:58:d5:78:41:cf:82:f5:17:
b9:e5:bb:8d:42:21:ee:7e:dd:05:92:a3:a3:78:c4:
66:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:D1:A7:8A:6B:F8:F7:3B:C6:89:62:17:59:30:07:A0:00:3E:8A:7E
X509v3 Authority Key Identifier:
keyid:36:90:01:83:CF:08:A6:E5:BC:80:78:46:29:4A:46:06:2E:19:0E:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpABg88IpuW8gHhGKUpGBi4ZDjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/edGnimv49zvGiWIXWTAHoAA-in4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/NpABg88IpuW8gHhGKUpGBi4ZDjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.91.218.0/24
Signature Algorithm: sha256WithRSAEncryption
66:ab:c0:70:70:aa:98:35:c7:ac:7a:c3:5e:ba:b5:74:cf:af:
12:b0:64:d3:a5:62:15:cd:31:95:f5:48:ed:27:c4:0e:8a:01:
fe:63:4f:4f:bc:bf:ba:cb:0b:b4:e4:2c:a1:92:84:e0:af:d6:
de:3d:4e:25:b4:c2:b3:f9:01:f1:96:83:f7:c1:1e:55:46:1f:
f4:15:1a:7f:8d:1f:ab:58:e8:f6:0e:58:d0:e1:a8:d9:b4:7b:
e3:e8:41:0f:2b:4f:d7:8b:96:a4:f2:fd:33:4d:3d:6d:16:1b:
cc:37:7e:25:ec:77:1f:22:1a:fe:2c:19:fe:c9:87:09:51:be:
6c:cd:42:80:79:62:8d:ed:f6:1d:2b:56:9c:f7:b3:78:5c:97:
87:08:a6:36:09:e7:fb:df:8e:ac:3d:a6:07:a0:1d:55:15:e0:
58:ab:8d:42:ca:45:cc:de:5e:2c:9c:fd:81:df:5d:92:b8:40:
7d:aa:6f:54:f1:26:f9:53:bc:ea:8a:c7:93:a3:53:90:4c:86:
76:36:4c:1b:91:a1:d6:a0:c1:f3:02:2d:c5:fd:ab:ac:b6:e6:
b8:39:3e:bb:3a:ee:fe:07:e0:0f:d4:1f:d1:be:57:1c:3e:a3:
c7:59:05:b5:b6:e8:64:11:6c:65:32:c8:90:9d:f2:65:a8:e9:
4c:f9:8d:86
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzS/CFlXW/8UnIe+0qzNwAVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2OTAwMTgzY2YwOGE2ZTViYzgwNzg0NjI5NGE0NjA2MmUx
OTBlM2IwHhcNMjQwMTA0MDUzOTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3OWQxYTc4YTZiZjhmNzNiYzY4OTYyMTc1OTMwMDdhMDAwM2U4YTdlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsa7HRkr2nUMvPPaDVvOxzomXT6Y6
oq/HNMQ7xXJQ8lFgeSwhfb434BA5OKDd8nf/h47EnrStFiwQO1DLwRfPX9xTqqin
I+xaU0gOpC69n5BuCv8fcP4SZKTbDR5zeRnIKpXfT8SAOQwo+4bTYfpkKSyp5+tc
zVxQmgM8VMuuHB6sJQIdV/JqBSH7kOg6/FTQgGJV3IOKuo24+E+AQnHWQBTq0XZf
P1xNKP/mMRPj8wO3gBp89974/rVtSIl4fZSz7U6jDCuZS3CdL7pVQ81kiA0Qi+gA
bKwXuR5m8XVnehA0rjaTkOE0WNV4Qc+C9Re55buNQiHuft0FkqOjeMRmrwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHnRp4pr+Pc7xoliF1kwB6AAPop+MB8GA1UdIwQY
MBaAFDaQAYPPCKblvIB4RilKRgYuGQ47MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnBBQmc4OElwdVc4Z0hoR0tVcEdCaTRaRGpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC81YTMyYmMtMDgzNi00N2VjLWI1YjMt
MmY1YjZhODNmYWYzLzEvZWRHbmltdjQ5enZHaVdJWFdUQUhvQUEtaW40LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC81YTMyYmMtMDgzNi00N2VjLWI1YjMtMmY1YjZhODNmYWYz
LzEvTnBBQmc4OElwdVc4Z0hoR0tVcEdCaTRaRGpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUFvaMA0G
CSqGSIb3DQEBCwUAA4IBAQBmq8BwcKqYNcesesNeurV0z68SsGTTpWIVzTGV9Ujt
J8QOigH+Y09PvL+6ywu05CyhkoTgr9bePU4ltMKz+QHxloP3wR5VRh/0FRp/jR+r
WOj2DljQ4ajZtHvj6EEPK0/Xi5ak8v0zTT1tFhvMN34l7HcfIhr+LBn+yYcJUb5s
zUKAeWKN7fYdK1ac97N4XJeHCKY2Cef7346sPaYHoB1VFeBYq41CykXM3l4snP2B
312SuEB9qm9U8Sb5U7zqiseTo1OQTIZ2NkwbkaHWoMHzAi3F/austua4OT67Ou7+
B+AP1B/RvlccPqPHWQW1tuhkEWxlMsiQnfJlqOlM+Y2G
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:52 2024 by rpki-client on console-ams.rpki-client.org