Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/346966-069a-40b0-b143-41eaa1fde11b/1/uX6jeCumfRMlkc73nkPB9tdgfzg.roa
File: uX6jeCumfRMlkc73nkPB9tdgfzg.roa (raw, json)
Hash identifier: 0987sdQM8qhMQeoQ+hS3fXhccpqxndxvSfrVEh66OuU=
Subject key identifier: B9:7E:A3:78:2B:A6:7D:13:25:91:CE:F7:9E:43:C1:F6:D7:60:7F:38
Certificate issuer: /CN=6689c3995e2461d5a52fd4f1000782f99a4d4822
Certificate serial: 018570DE52C45192A877485DEA3F10DF6149
Authority key identifier: 66:89:C3:99:5E:24:61:D5:A5:2F:D4:F1:00:07:82:F9:9A:4D:48:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZonDmV4kYdWlL9TxAAeC-ZpNSCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/346966-069a-40b0-b143-41eaa1fde11b/1/uX6jeCumfRMlkc73nkPB9tdgfzg.roa
Signing time: Mon 02 Jan 2023 05:04:56 +0000
ROA not before: Mon 02 Jan 2023 05:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200410
IP address blocks: 91.187.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 Jun 2023 06:53:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:de:52:c4:51:92:a8:77:48:5d:ea:3f:10:df:61:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6689c3995e2461d5a52fd4f1000782f99a4d4822
Validity
Not Before: Jan 2 05:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b97ea3782ba67d132591cef79e43c1f6d7607f38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:14:c0:d4:a4:76:75:07:2d:83:40:40:68:d5:
e7:55:16:40:74:c1:f8:bc:7b:4a:54:aa:83:d0:8b:
08:0a:41:ad:7e:aa:f0:54:09:b5:2f:67:da:dd:56:
9d:bd:1a:f6:06:33:7e:e7:83:8a:17:2d:35:74:b5:
7b:a7:3a:5e:b5:dd:9c:b2:b2:82:40:e4:0a:b5:14:
07:1c:0c:ae:e6:13:70:86:ba:d0:84:45:e9:91:48:
62:81:5b:ca:46:55:05:69:27:90:f4:cf:4e:10:74:
ba:bf:24:c1:11:2b:2a:5a:a2:1c:2d:fa:fb:9f:62:
bf:7a:86:df:b7:2a:98:84:67:ab:78:30:86:1c:1e:
c5:43:9f:a6:a6:16:b4:85:c1:54:a3:53:9f:f2:c3:
bb:c7:ad:4f:2a:00:d4:08:a2:9e:58:3a:53:c2:72:
df:2f:93:12:72:bc:db:51:70:da:1a:67:45:97:fd:
8e:ec:eb:a9:ee:d5:90:bc:48:81:17:0a:ec:88:76:
4c:8d:6d:b0:c2:9f:73:b8:7a:31:85:11:ee:e3:59:
aa:2d:be:b4:fd:9d:6c:bc:c9:d5:80:5e:8b:78:cc:
47:ba:6e:43:39:78:f7:4d:89:42:53:bf:da:f3:05:
c7:87:f2:48:ea:a0:36:4a:4c:d5:7c:92:a3:3f:a9:
55:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:7E:A3:78:2B:A6:7D:13:25:91:CE:F7:9E:43:C1:F6:D7:60:7F:38
X509v3 Authority Key Identifier:
keyid:66:89:C3:99:5E:24:61:D5:A5:2F:D4:F1:00:07:82:F9:9A:4D:48:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZonDmV4kYdWlL9TxAAeC-ZpNSCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/346966-069a-40b0-b143-41eaa1fde11b/1/uX6jeCumfRMlkc73nkPB9tdgfzg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/346966-069a-40b0-b143-41eaa1fde11b/1/ZonDmV4kYdWlL9TxAAeC-ZpNSCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.187.224.0/24
Signature Algorithm: sha256WithRSAEncryption
31:04:93:99:9a:f2:92:84:9f:c8:1a:22:5f:83:84:d3:3d:96:
33:40:30:55:55:9c:23:46:66:4a:d4:51:3c:b5:43:14:8a:c5:
20:0a:02:76:9b:aa:db:3d:54:b6:4e:71:bd:4c:9f:ca:a7:c2:
01:62:84:fc:7a:f3:fe:f8:78:0f:e3:43:ef:59:dd:6e:c2:b0:
f9:12:2a:48:1d:69:c4:42:ef:10:37:98:08:37:f4:37:45:42:
85:b0:c3:b4:78:e1:61:98:7d:10:a2:f4:e2:6d:8d:22:b1:6a:
93:b9:a1:33:e2:7d:39:08:11:f6:ab:db:b4:b8:0b:eb:b7:64:
8a:47:71:e4:74:6c:8f:b5:35:18:30:ee:3a:07:d8:fa:de:6a:
3d:21:05:69:da:46:37:08:62:d5:65:40:66:21:a2:c5:55:9b:
51:fb:53:05:81:86:32:5b:2f:56:34:55:51:8d:8e:18:4b:c1:
c8:8f:cd:16:37:fb:e7:ae:59:81:37:bb:31:e2:80:21:ed:0f:
ae:d8:e2:cf:12:37:18:0b:ca:4a:fc:b2:70:f3:bc:1b:1e:a3:
56:72:6c:56:72:b5:3c:94:d6:a1:b5:e4:c8:ef:d9:a0:83:71:
b3:77:f3:c9:45:b5:0e:f6:f5:d8:5c:d9:3b:75:a0:1a:9e:80:
e9:57:8d:4b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVw3lLEUZKod0hd6j8Q32FJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2ODljMzk5NWUyNDYxZDVhNTJmZDRmMTAwMDc4MmY5OWE0
ZDQ4MjIwHhcNMjMwMTAyMDUwNDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiOTdlYTM3ODJiYTY3ZDEzMjU5MWNlZjc5ZTQzYzFmNmQ3NjA3ZjM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhRTA1KR2dQctg0BAaNXnVRZAdMH4
vHtKVKqD0IsICkGtfqrwVAm1L2fa3VadvRr2BjN+54OKFy01dLV7pzpetd2csrKC
QOQKtRQHHAyu5hNwhrrQhEXpkUhigVvKRlUFaSeQ9M9OEHS6vyTBESsqWqIcLfr7
n2K/eobftyqYhGereDCGHB7FQ5+mpha0hcFUo1Of8sO7x61PKgDUCKKeWDpTwnLf
L5MScrzbUXDaGmdFl/2O7Oup7tWQvEiBFwrsiHZMjW2wwp9zuHoxhRHu41mqLb60
/Z1svMnVgF6LeMxHum5DOXj3TYlCU7/a8wXHh/JI6qA2SkzVfJKjP6lVcwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLl+o3grpn0TJZHO955DwfbXYH84MB8GA1UdIwQY
MBaAFGaJw5leJGHVpS/U8QAHgvmaTUgiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWm9uRG1WNGtZZFdsTDlUeEFBZUMtWnBOU0NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8zNDY5NjYtMDY5YS00MGIwLWIxNDMt
NDFlYWExZmRlMTFiLzEvdVg2amVDdW1mUk1sa2M3M25rUEI5dGRnZnpnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS8zNDY5NjYtMDY5YS00MGIwLWIxNDMtNDFlYWExZmRlMTFi
LzEvWm9uRG1WNGtZZFdsTDlUeEFBZUMtWnBOU0NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW7vgMA0G
CSqGSIb3DQEBCwUAA4IBAQAxBJOZmvKShJ/IGiJfg4TTPZYzQDBVVZwjRmZK1FE8
tUMUisUgCgJ2m6rbPVS2TnG9TJ/Kp8IBYoT8evP++HgP40PvWd1uwrD5EipIHWnE
Qu8QN5gIN/Q3RUKFsMO0eOFhmH0QovTibY0isWqTuaEz4n05CBH2q9u0uAvrt2SK
R3HkdGyPtTUYMO46B9j63mo9IQVp2kY3CGLVZUBmIaLFVZtR+1MFgYYyWy9WNFVR
jY4YS8HIj80WN/vnrlmBN7sx4oAh7Q+u2OLPEjcYC8pK/LJw87wbHqNWcmxWcrU8
lNahteTI79mgg3Gzd/PJRbUO9vXYXNk7daAanoDpV41L
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:58 2024 by rpki-client on console-ams.rpki-client.org