Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/1UeIFxK-VO3dcqHkw1c2mkR700E.roa
File: 1UeIFxK-VO3dcqHkw1c2mkR700E.roa (raw, json)
Hash identifier: 0+kdTWiz04M/QJMvfcYmPaUyNLmpbwQn/pf9jTh11uY=
Subject key identifier: D5:47:88:17:12:BE:54:ED:DD:72:A1:E4:C3:57:36:9A:44:7B:D3:41
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 018CC500C2EB6BAD1027501141B2A5167D90
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/1UeIFxK-VO3dcqHkw1c2mkR700E.roa
Signing time: Mon 01 Jan 2024 12:30:10 +0000
ROA not before: Mon 01 Jan 2024 12:30:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212685
IP address blocks: 77.90.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Jan 2024 05:12:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:c2:eb:6b:ad:10:27:50:11:41:b2:a5:16:7d:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 1 12:30:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d547881712be54eddd72a1e4c357369a447bd341
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:50:bb:2f:7c:07:7d:2c:e3:57:d4:38:21:7b:
b8:ae:2c:21:87:80:1a:ae:24:44:86:62:b9:d0:da:
be:c7:e4:15:85:f3:bf:0c:9c:a5:be:35:bf:3d:92:
c0:f5:62:dd:74:c1:07:dd:79:ec:0d:bc:e8:09:69:
26:ac:7c:ce:b5:83:98:0c:75:af:cb:fb:e6:41:e2:
09:66:d1:55:1c:58:30:1b:5c:36:19:7d:8b:5d:cf:
7f:c2:de:65:56:87:28:76:ae:16:ec:91:b0:2c:6b:
a9:f4:f8:ba:1d:99:25:32:da:e3:05:47:a2:5b:b6:
6c:92:fe:b4:95:1e:25:89:5e:d6:dd:4c:65:4e:67:
96:6b:79:cb:86:30:24:e8:dc:bc:7c:52:23:28:d2:
af:d4:f2:50:ad:a7:ae:d8:47:44:9b:09:45:fd:9b:
c2:c3:96:c9:a7:69:5d:50:9f:f9:9d:2b:d5:d1:5f:
4c:40:7f:72:96:ab:a8:5d:c4:f3:cf:4e:81:cd:5f:
be:5b:ef:35:a9:81:c0:1b:31:21:bf:05:84:12:db:
c5:ea:8c:8e:04:1c:e3:5f:b5:cc:8f:d8:27:67:bb:
49:3c:30:bc:e0:eb:35:8e:4e:44:9e:a7:2d:8a:bd:
71:c6:3d:41:f8:ab:50:62:6b:52:93:7e:a9:a5:dc:
82:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:47:88:17:12:BE:54:ED:DD:72:A1:E4:C3:57:36:9A:44:7B:D3:41
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/1UeIFxK-VO3dcqHkw1c2mkR700E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.9.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:1d:3a:be:07:7d:e5:b2:ca:bf:12:52:c5:7a:36:4a:c0:49:
50:c8:7e:8a:fc:b8:df:fb:c6:36:4a:a5:3c:04:dc:05:6c:1d:
af:94:34:56:44:d3:0c:2d:64:d7:dc:51:0a:23:26:6f:d3:f7:
e2:06:c1:38:7b:e3:6b:eb:8c:cc:ea:d0:70:d7:d1:6d:89:8e:
86:5a:d5:01:df:5b:2e:af:54:06:ac:74:d2:bf:84:5e:9c:4e:
65:fb:8b:a4:f8:0d:ec:0b:f2:b7:ff:78:b6:31:ba:14:61:5e:
15:e8:0d:e8:38:46:69:e6:64:4c:7a:c4:c3:d3:63:48:8a:c7:
71:a8:f6:49:c9:f9:c6:2c:08:7e:a4:21:64:34:d6:60:2f:8e:
9d:aa:48:db:e6:87:9b:a5:97:d0:64:40:21:f2:55:88:d0:5b:
a3:79:c9:a3:80:53:33:10:d7:13:bc:5e:13:cf:c4:7b:86:ef:
0c:20:e3:63:71:f3:48:41:fc:f8:29:97:79:cc:fe:00:49:71:
03:73:27:63:b2:df:07:35:80:92:21:aa:9a:f9:3c:e3:d6:2c:
85:af:28:f7:73:8e:5f:e5:4f:c6:da:70:46:a2:4b:69:eb:f2:
97:8d:73:21:32:3c:08:6a:9c:0b:35:c2:f5:c6:bb:0e:5f:11:
0e:82:03:2d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzFAMLra60QJ1ARQbKlFn2QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjQwMTAxMTIzMDEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNTQ3ODgxNzEyYmU1NGVkZGQ3MmExZTRjMzU3MzY5YTQ0N2JkMzQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkVC7L3wHfSzjV9Q4IXu4riwhh4Aa
riREhmK50Nq+x+QVhfO/DJylvjW/PZLA9WLddMEH3XnsDbzoCWkmrHzOtYOYDHWv
y/vmQeIJZtFVHFgwG1w2GX2LXc9/wt5lVocodq4W7JGwLGup9Pi6HZklMtrjBUei
W7Zskv60lR4liV7W3UxlTmeWa3nLhjAk6Ny8fFIjKNKv1PJQraeu2EdEmwlF/ZvC
w5bJp2ldUJ/5nSvV0V9MQH9ylquoXcTzz06BzV++W+81qYHAGzEhvwWEEtvF6oyO
BBzjX7XMj9gnZ7tJPDC84Os1jk5Enqctir1xxj1B+KtQYmtSk36ppdyCnwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNVHiBcSvlTt3XKh5MNXNppEe9NBMB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvMVVlSUZ4Sy1WTzNkY3FIa3cxYzJta1I3MDBFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATVoJMA0G
CSqGSIb3DQEBCwUAA4IBAQCuHTq+B33lssq/ElLFejZKwElQyH6K/Ljf+8Y2SqU8
BNwFbB2vlDRWRNMMLWTX3FEKIyZv0/fiBsE4e+Nr64zM6tBw19FtiY6GWtUB31su
r1QGrHTSv4RenE5l+4uk+A3sC/K3/3i2MboUYV4V6A3oOEZp5mRMesTD02NIisdx
qPZJyfnGLAh+pCFkNNZgL46dqkjb5oebpZfQZEAh8lWI0FujecmjgFMzENcTvF4T
z8R7hu8MIONjcfNIQfz4KZd5zP4ASXEDcydjst8HNYCSIaqa+Tzj1iyFryj3c45f
5U/G2nBGoktp6/KXjXMhMjwIapwLNcL1xrsOXxEOggMt
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:30 2024 by rpki-client on console-fra.rpki-client.org