Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/WKjgzFmIb4NjjYS0w8F_239oAt8.roa
File: WKjgzFmIb4NjjYS0w8F_239oAt8.roa (raw, json)
Hash identifier: 3FJRl/1EKTAzjpWSGQQXnBZ2hZDuO1iWYIK/Qz88H/s=
Subject key identifier: 58:A8:E0:CC:59:88:6F:83:63:8D:84:B4:C3:C1:7F:DB:7F:68:02:DF
Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Certificate serial: 018800B395ED20D4163E4BF48075AEBC7C4F
Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/WKjgzFmIb4NjjYS0w8F_239oAt8.roa
Signing time: Tue 09 May 2023 13:29:09 +0000
ROA not before: Tue 09 May 2023 13:29:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 91.221.233.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Jun 2023 12:57:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:00:b3:95:ed:20:d4:16:3e:4b:f4:80:75:ae:bc:7c:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Validity
Not Before: May 9 13:29:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=58a8e0cc59886f83638d84b4c3c17fdb7f6802df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ff:74:58:72:1c:44:44:ba:d4:90:15:20:3b:
76:20:1f:fa:63:66:53:41:40:6d:d7:06:70:31:c1:
f5:0e:04:f5:83:4c:d2:4d:c6:86:50:9e:6e:9b:e8:
4a:ef:25:bc:dc:0d:bc:53:27:6b:70:ae:47:b4:1f:
ce:6b:8c:cb:d5:ff:b1:3c:5a:74:99:01:0f:a2:8a:
0e:6b:16:d4:0f:37:f9:80:83:43:40:8a:94:72:a8:
ab:1b:e0:de:9d:02:67:fb:be:d2:13:ff:90:f2:ca:
95:d9:f1:a2:cf:7a:a8:ff:63:8c:de:6a:ad:87:c0:
19:1c:f7:ce:c5:b9:3d:0e:77:10:cc:29:ea:90:6e:
f3:70:6c:8c:c9:fb:45:f5:13:c8:f7:45:ac:bd:09:
2a:0a:fb:cd:2a:f1:6a:f8:16:c3:4b:0a:92:b6:22:
a1:20:bc:b7:1a:84:5a:e1:cb:55:fd:56:dc:9e:d9:
91:bd:a0:1b:3c:dd:17:75:21:ab:45:c7:a1:13:30:
f4:b5:ad:eb:db:cd:5e:bb:b7:e4:eb:dd:2d:76:53:
20:ff:bf:a8:84:20:ad:c0:8b:66:11:ca:2b:13:57:
8a:cf:e1:e2:cb:0e:a2:23:fd:94:78:87:55:69:3a:
bf:47:7f:f8:52:77:36:eb:a7:a1:6d:1d:39:98:41:
55:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:A8:E0:CC:59:88:6F:83:63:8D:84:B4:C3:C1:7F:DB:7F:68:02:DF
X509v3 Authority Key Identifier:
keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/WKjgzFmIb4NjjYS0w8F_239oAt8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.221.233.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:2f:6d:b6:3b:6a:62:e1:b3:0b:f3:0e:75:38:a9:f5:85:07:
6f:6f:91:ce:dc:5e:b0:df:77:a7:5c:f6:33:c8:7e:cc:e8:a3:
4c:fd:b4:f0:49:39:f8:52:9d:33:95:c6:b4:6d:17:68:6e:e5:
68:84:7d:fa:73:a3:70:8b:f0:0f:d1:9f:69:9c:69:4d:be:f0:
9d:af:81:bf:aa:c1:14:0f:6f:d5:b2:12:37:b4:9f:58:67:08:
c9:98:1d:7d:c5:f9:7b:ed:c9:ad:bf:ca:6f:17:83:56:4e:33:
cd:ac:5a:08:0c:b2:ef:74:b4:e6:57:b5:36:ac:6e:a0:40:1c:
5c:e5:d1:43:2e:49:44:50:58:6c:49:1b:ea:0e:91:cd:99:94:
24:f4:a0:f2:f0:67:40:7f:14:b5:9a:56:be:03:04:10:0b:e1:
ec:ac:a9:89:fd:5e:fc:3f:ec:d9:7c:31:eb:d4:00:60:b9:ac:
59:87:f7:08:37:f1:74:3c:e4:d7:b3:2a:1b:37:5a:53:79:b1:
ec:f9:b0:aa:b2:0a:9a:1b:f3:2c:6f:67:ef:00:d4:69:b6:d6:
69:c0:bb:09:9e:1b:1d:df:c7:8e:70:44:3d:f7:b3:74:c0:63:
4b:65:be:c7:02:bc:7c:b8:73:a7:8f:64:f6:80:3c:d0:ae:f0:
e1:cf:a6:ec
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYgAs5XtINQWPkv0gHWuvHxPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzNjNiYjY1ODk1ZjNhNTRhNGIzMjRhMTBjNzlhYzk4ZWZl
MmExY2EwHhcNMjMwNTA5MTMyOTA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OGE4ZTBjYzU5ODg2ZjgzNjM4ZDg0YjRjM2MxN2ZkYjdmNjgwMmRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5P90WHIcRES61JAVIDt2IB/6Y2ZT
QUBt1wZwMcH1DgT1g0zSTcaGUJ5um+hK7yW83A28UydrcK5HtB/Oa4zL1f+xPFp0
mQEPoooOaxbUDzf5gINDQIqUcqirG+DenQJn+77SE/+Q8sqV2fGiz3qo/2OM3mqt
h8AZHPfOxbk9DncQzCnqkG7zcGyMyftF9RPI90WsvQkqCvvNKvFq+BbDSwqStiKh
ILy3GoRa4ctV/VbcntmRvaAbPN0XdSGrRcehEzD0ta3r281eu7fk690tdlMg/7+o
hCCtwItmEcorE1eKz+Hiyw6iI/2UeIdVaTq/R3/4Unc266ehbR05mEFVOwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFio4MxZiG+DY42EtMPBf9t/aALfMB8GA1UdIwQY
MBaAFGNju2WJXzpUpLMkoQx5rJjv4qHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMt
YTZjYTQ1NGRiMmQ3LzEvV0tqZ3pGbUliNE5qallTMHc4Rl8yMzlvQXQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMtYTZjYTQ1NGRiMmQ3
LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW93pMA0G
CSqGSIb3DQEBCwUAA4IBAQAeL222O2pi4bML8w51OKn1hQdvb5HO3F6w33enXPYz
yH7M6KNM/bTwSTn4Up0zlca0bRdobuVohH36c6Nwi/AP0Z9pnGlNvvCdr4G/qsEU
D2/VshI3tJ9YZwjJmB19xfl77cmtv8pvF4NWTjPNrFoIDLLvdLTmV7U2rG6gQBxc
5dFDLklEUFhsSRvqDpHNmZQk9KDy8GdAfxS1mla+AwQQC+HsrKmJ/V78P+zZfDHr
1ABguaxZh/cIN/F0POTXsyobN1pTebHs+bCqsgqaG/Msb2fvANRpttZpwLsJnhsd
38eOcEQ997N0wGNLZb7HArx8uHOnj2T2gDzQrvDhz6bs
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:45 2024 by rpki-client on console-fra.rpki-client.org