Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/2a07cb-f6c0-49ba-a7d1-1b01453347da/1/5uSyEzGRuTWWp0STClo-7YSn0DQ.roa
File: 5uSyEzGRuTWWp0STClo-7YSn0DQ.roa (raw, json)
Hash identifier: jdHjrHSuNJ7Psz+p9+90cAJEpM82OXihcgp/Vj9nynM=
Subject key identifier: E6:E4:B2:13:31:91:B9:35:96:A7:44:93:0A:5A:3E:ED:84:A7:D0:34
Certificate issuer: /CN=6703f258d47becc2cb4b4fc572b229b2e64b6b92
Certificate serial: 018571D7D403DA4B44C601E88F85136DB3D0
Authority key identifier: 67:03:F2:58:D4:7B:EC:C2:CB:4B:4F:C5:72:B2:29:B2:E6:4B:6B:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZwPyWNR77MLLS0_FcrIpsuZLa5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/2a07cb-f6c0-49ba-a7d1-1b01453347da/1/5uSyEzGRuTWWp0STClo-7YSn0DQ.roa
Signing time: Mon 02 Jan 2023 09:37:27 +0000
ROA not before: Mon 02 Jan 2023 09:37:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20860
IP address blocks: 91.245.218.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:d4:03:da:4b:44:c6:01:e8:8f:85:13:6d:b3:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6703f258d47becc2cb4b4fc572b229b2e64b6b92
Validity
Not Before: Jan 2 09:37:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e6e4b2133191b93596a744930a5a3eed84a7d034
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:87:80:5c:62:30:8f:ad:e9:23:45:ba:2a:7a:
85:7d:83:9e:f8:09:dc:f8:c8:0f:5b:ea:54:13:5a:
ea:42:07:e3:e0:5d:d5:1e:0e:de:96:f4:23:81:1f:
89:80:2f:59:79:1e:7d:a5:fe:1c:05:7b:31:0b:61:
da:15:74:30:26:ab:a1:b9:22:b7:b7:fa:76:09:21:
8f:97:22:41:f3:70:5e:78:bf:0f:e7:56:f2:03:b7:
71:86:1a:8c:21:83:23:24:42:2a:9b:2e:31:86:7a:
ae:9a:a3:5e:ff:f9:78:b3:ef:b6:11:be:0d:fa:d5:
ef:d5:43:0f:89:d5:ae:01:a7:e4:56:5c:e3:21:a0:
46:bf:ae:22:49:a5:1f:32:9a:be:30:0e:1f:f3:01:
76:bb:31:bd:bb:2f:9d:cf:6f:b1:ca:66:ce:0f:41:
f4:c0:d5:13:bc:4f:d0:d6:b4:ab:cf:75:b9:67:fa:
e1:f1:84:8c:e8:22:28:1b:18:2f:94:35:51:a6:ba:
00:85:a7:9c:01:c2:a1:b4:b1:b6:b3:53:b8:b7:bb:
02:ba:ab:f9:a2:61:45:67:e2:8e:1c:08:36:f0:f9:
48:8e:51:38:3d:7d:51:d3:89:a2:d9:e7:5f:d9:fc:
2d:18:9e:0c:68:43:ae:8a:14:c1:75:9d:5e:1d:6a:
8f:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:E4:B2:13:31:91:B9:35:96:A7:44:93:0A:5A:3E:ED:84:A7:D0:34
X509v3 Authority Key Identifier:
keyid:67:03:F2:58:D4:7B:EC:C2:CB:4B:4F:C5:72:B2:29:B2:E6:4B:6B:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZwPyWNR77MLLS0_FcrIpsuZLa5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/2a07cb-f6c0-49ba-a7d1-1b01453347da/1/5uSyEzGRuTWWp0STClo-7YSn0DQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/2a07cb-f6c0-49ba-a7d1-1b01453347da/1/ZwPyWNR77MLLS0_FcrIpsuZLa5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.245.218.0/24
Signature Algorithm: sha256WithRSAEncryption
22:87:87:6c:56:2b:a9:be:89:a4:5d:8b:ee:e8:ae:8b:f0:40:
ea:42:05:39:fe:5d:f4:00:0c:dd:6d:03:3f:ab:f9:76:06:59:
fe:d5:8e:4f:13:41:2c:8e:e0:cb:b9:79:fb:cf:bb:a1:8a:30:
e3:51:e9:4c:49:fe:c8:7a:1a:dc:e7:b7:65:c9:46:d7:d0:59:
f3:58:00:3f:55:61:32:7b:6d:c7:97:71:9d:27:4a:6e:9e:22:
04:f4:74:03:44:cf:39:04:c5:75:d9:c0:d8:53:3d:93:ee:09:
77:ee:79:b2:46:2f:23:a4:0d:04:60:cd:bd:f2:42:e5:fc:9d:
fd:7e:77:96:83:b5:3e:94:6d:af:22:80:c5:de:12:0e:0d:74:
5b:a5:ab:0c:23:bc:14:f0:5b:13:54:54:af:57:33:37:3b:ac:
15:2b:ca:fa:87:0d:df:31:66:b4:6e:c7:cd:35:b9:61:a3:c0:
ae:d1:a8:8b:03:4d:e2:74:65:23:fd:f5:ba:3f:a6:bd:ac:07:
41:2a:38:0f:11:30:b0:88:61:74:5b:f1:80:71:63:5b:eb:7d:
45:b2:89:9a:25:21:67:45:e7:ec:8e:4a:d7:24:b8:67:e3:f4:
aa:15:ef:18:e1:6f:5d:a6:8b:45:5f:08:0a:01:63:62:f6:95:
46:e6:f0:24
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVx19QD2ktExgHoj4UTbbPQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY3MDNmMjU4ZDQ3YmVjYzJjYjRiNGZjNTcyYjIyOWIyZTY0
YjZiOTIwHhcNMjMwMTAyMDkzNzI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNmU0YjIxMzMxOTFiOTM1OTZhNzQ0OTMwYTVhM2VlZDg0YTdkMDM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjoeAXGIwj63pI0W6KnqFfYOe+Anc
+MgPW+pUE1rqQgfj4F3VHg7elvQjgR+JgC9ZeR59pf4cBXsxC2HaFXQwJquhuSK3
t/p2CSGPlyJB83BeeL8P51byA7dxhhqMIYMjJEIqmy4xhnqumqNe//l4s++2Eb4N
+tXv1UMPidWuAafkVlzjIaBGv64iSaUfMpq+MA4f8wF2uzG9uy+dz2+xymbOD0H0
wNUTvE/Q1rSrz3W5Z/rh8YSM6CIoGxgvlDVRproAhaecAcKhtLG2s1O4t7sCuqv5
omFFZ+KOHAg28PlIjlE4PX1R04mi2edf2fwtGJ4MaEOuihTBdZ1eHWqPUwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFObkshMxkbk1lqdEkwpaPu2Ep9A0MB8GA1UdIwQY
MBaAFGcD8ljUe+zCy0tPxXKyKbLmS2uSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWndQeVdOUjc3TUxMUzBfRmNySXBzdVpMYTVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi8yYTA3Y2ItZjZjMC00OWJhLWE3ZDEt
MWIwMTQ1MzM0N2RhLzEvNXVTeUV6R1J1VFdXcDBTVENsby03WVNuMERRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi8yYTA3Y2ItZjZjMC00OWJhLWE3ZDEtMWIwMTQ1MzM0N2Rh
LzEvWndQeVdOUjc3TUxMUzBfRmNySXBzdVpMYTVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW/XaMA0G
CSqGSIb3DQEBCwUAA4IBAQAih4dsViupvomkXYvu6K6L8EDqQgU5/l30AAzdbQM/
q/l2Bln+1Y5PE0EsjuDLuXn7z7uhijDjUelMSf7Iehrc57dlyUbX0FnzWAA/VWEy
e23Hl3GdJ0puniIE9HQDRM85BMV12cDYUz2T7gl37nmyRi8jpA0EYM298kLl/J39
fneWg7U+lG2vIoDF3hIODXRbpasMI7wU8FsTVFSvVzM3O6wVK8r6hw3fMWa0bsfN
Nblho8Cu0aiLA03idGUj/fW6P6a9rAdBKjgPETCwiGF0W/GAcWNb631FsomaJSFn
RefsjkrXJLhn4/SqFe8Y4W9dpotFXwgKAWNi9pVG5vAk
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:12 2024 by rpki-client on console-ams.rpki-client.org