Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/IaZggpLSXpnerXKYwQ6WN7v9ZJ0.roa
File: IaZggpLSXpnerXKYwQ6WN7v9ZJ0.roa (raw, json)
Hash identifier: 7W7EGnkcDays7ub2hsoedQIfLgwZY9kI1kX7N0VchZ8=
Subject key identifier: 21:A6:60:82:92:D2:5E:99:DE:AD:72:98:C1:0E:96:37:BB:FD:64:9D
Certificate issuer: /CN=b6ed9b5cb4b64866c383dee4576bff3ff875242d
Certificate serial: 01856F5DECB81FB2F8FD0F13E89395BC1D9B
Authority key identifier: B6:ED:9B:5C:B4:B6:48:66:C3:83:DE:E4:57:6B:FF:3F:F8:75:24:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tu2bXLS2SGbDg97kV2v_P_h1JC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/IaZggpLSXpnerXKYwQ6WN7v9ZJ0.roa
Signing time: Sun 01 Jan 2023 22:05:04 +0000
ROA not before: Sun 01 Jan 2023 22:05:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41694
IP address blocks: 91.220.172.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:ec:b8:1f:b2:f8:fd:0f:13:e8:93:95:bc:1d:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6ed9b5cb4b64866c383dee4576bff3ff875242d
Validity
Not Before: Jan 1 22:05:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=21a6608292d25e99dead7298c10e9637bbfd649d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:02:64:fe:4d:9c:6d:d1:f3:a3:2a:0b:55:b1:
49:be:86:36:98:95:bc:3d:60:0f:38:de:36:43:cf:
f1:bd:ed:a8:72:43:64:8e:00:11:8d:8b:53:50:24:
0e:1b:a8:9d:0d:b9:58:78:4b:bd:9b:6a:a4:16:92:
81:8c:7f:fe:9a:a3:ab:1f:96:e9:05:65:28:99:a9:
84:72:44:2b:c0:6e:33:36:6d:a6:37:f2:4b:2b:d6:
49:a4:df:36:dc:b3:0b:fa:aa:89:9c:b9:b9:79:b2:
53:cd:86:7a:61:69:43:6c:76:dc:b6:88:64:0f:f0:
86:f9:92:a1:b0:b1:bc:15:e8:68:4a:41:27:ed:99:
17:3e:11:0b:08:75:27:61:ca:9b:f7:f0:62:69:8e:
2d:49:2a:99:54:1a:7f:35:e2:b6:48:0e:5a:b3:0e:
ef:4c:dd:04:74:c5:a6:d3:94:ab:e0:71:a2:f9:03:
25:2d:10:4f:dd:4a:fb:91:f8:80:5e:00:4c:e3:4b:
c2:6a:98:8b:e7:ef:99:0d:3e:d7:50:8e:e4:de:bb:
5f:d6:32:88:9d:80:8a:a6:e0:a6:05:c4:37:55:09:
f3:0e:26:35:c0:94:66:a4:f2:03:d9:33:02:6e:d0:
79:fd:79:24:05:d8:42:e4:82:5c:4c:1a:4b:6f:16:
4f:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:A6:60:82:92:D2:5E:99:DE:AD:72:98:C1:0E:96:37:BB:FD:64:9D
X509v3 Authority Key Identifier:
keyid:B6:ED:9B:5C:B4:B6:48:66:C3:83:DE:E4:57:6B:FF:3F:F8:75:24:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tu2bXLS2SGbDg97kV2v_P_h1JC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/IaZggpLSXpnerXKYwQ6WN7v9ZJ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/171cea-3d78-4513-ad49-5a905af507c3/1/tu2bXLS2SGbDg97kV2v_P_h1JC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.172.0/24
Signature Algorithm: sha256WithRSAEncryption
64:ac:de:55:8b:e7:74:4a:27:27:62:65:38:b4:ce:6f:b9:c8:
8b:04:88:9a:a2:cb:9f:05:28:c6:ba:ff:26:ae:7b:98:d2:70:
aa:cb:a4:a0:ba:14:bc:15:3f:06:54:c8:7f:df:2f:77:b7:fa:
bd:c8:61:24:b9:8e:fa:8b:96:1d:28:42:7b:5f:d6:5b:b6:04:
7c:f6:67:43:1c:f1:92:05:12:31:0c:7a:b0:15:3e:fb:af:fe:
46:18:ca:56:92:7e:c5:ef:d9:68:be:fa:1b:e4:06:2a:87:1c:
77:49:4e:83:28:38:c6:9e:65:34:2c:d8:51:85:48:85:6b:e5:
f8:b7:a9:f9:b3:76:27:06:10:44:ed:57:26:1b:0d:0e:4d:6a:
70:5e:81:b0:1b:b0:18:4c:9e:98:1c:0a:b1:41:98:f6:1a:ea:
d6:39:39:58:63:a9:35:96:4f:3b:4b:0d:bf:f0:e7:fb:9c:b2:
94:c8:83:20:22:38:c8:b4:74:5b:7e:a6:52:fa:ad:09:3b:26:
a3:2e:54:52:a1:8d:93:f9:c1:fb:ad:2c:29:e3:c7:d4:7a:e0:
80:a6:c6:2e:83:5b:dc:d0:5f:5c:d2:22:e1:5d:7b:dc:e3:4b:
3c:e0:74:78:52:94:52:6b:ba:fc:b7:f9:9e:34:78:30:93:a6:
15:e2:2f:fb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvXey4H7L4/Q8T6JOVvB2bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2ZWQ5YjVjYjRiNjQ4NjZjMzgzZGVlNDU3NmJmZjNmZjg3
NTI0MmQwHhcNMjMwMTAxMjIwNTA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMWE2NjA4MjkyZDI1ZTk5ZGVhZDcyOThjMTBlOTYzN2JiZmQ2NDlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAigJk/k2cbdHzoyoLVbFJvoY2mJW8
PWAPON42Q8/xve2ockNkjgARjYtTUCQOG6idDblYeEu9m2qkFpKBjH/+mqOrH5bp
BWUomamEckQrwG4zNm2mN/JLK9ZJpN823LML+qqJnLm5ebJTzYZ6YWlDbHbctohk
D/CG+ZKhsLG8FehoSkEn7ZkXPhELCHUnYcqb9/BiaY4tSSqZVBp/NeK2SA5asw7v
TN0EdMWm05Sr4HGi+QMlLRBP3Ur7kfiAXgBM40vCapiL5++ZDT7XUI7k3rtf1jKI
nYCKpuCmBcQ3VQnzDiY1wJRmpPID2TMCbtB5/XkkBdhC5IJcTBpLbxZPGQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCGmYIKS0l6Z3q1ymMEOlje7/WSdMB8GA1UdIwQY
MBaAFLbtm1y0tkhmw4Pe5Fdr/z/4dSQtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdHUyYlhMUzJTR2JEZzk3a1Yydl9QX2gxSkMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8xNzFjZWEtM2Q3OC00NTEzLWFkNDkt
NWE5MDVhZjUwN2MzLzEvSWFaZ2dwTFNYcG5lclhLWXdRNldON3Y5WkowLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC8xNzFjZWEtM2Q3OC00NTEzLWFkNDktNWE5MDVhZjUwN2Mz
LzEvdHUyYlhMUzJTR2JEZzk3a1Yydl9QX2gxSkMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9ysMA0G
CSqGSIb3DQEBCwUAA4IBAQBkrN5Vi+d0SicnYmU4tM5vuciLBIiaosufBSjGuv8m
rnuY0nCqy6SguhS8FT8GVMh/3y93t/q9yGEkuY76i5YdKEJ7X9ZbtgR89mdDHPGS
BRIxDHqwFT77r/5GGMpWkn7F79lovvob5AYqhxx3SU6DKDjGnmU0LNhRhUiFa+X4
t6n5s3YnBhBE7VcmGw0OTWpwXoGwG7AYTJ6YHAqxQZj2GurWOTlYY6k1lk87Sw2/
8Of7nLKUyIMgIjjItHRbfqZS+q0JOyajLlRSoY2T+cH7rSwp48fUeuCApsYug1vc
0F9c0iLhXXvc40s84HR4UpRSa7r8t/meNHgwk6YV4i/7
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:11 2024 by rpki-client on console-fra.rpki-client.org