Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/GDdSRDyUHD5OcCSlaxT8ThP3zjQ.roa
File: GDdSRDyUHD5OcCSlaxT8ThP3zjQ.roa (raw, json)
Hash identifier: BKDBiBrpKF9K4C2CP6Lc3YgqtYfvrrFn6uferkQ5E1E=
Subject key identifier: 18:37:52:44:3C:94:1C:3E:4E:70:24:A5:6B:14:FC:4E:13:F7:CE:34
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 0188233CDAB625D4309C8001DB4173529CB6
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/GDdSRDyUHD5OcCSlaxT8ThP3zjQ.roa
Signing time: Tue 16 May 2023 06:26:10 +0000
ROA not before: Tue 16 May 2023 06:26:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57844
IP address blocks: 91.200.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 15 Jul 2023 11:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:23:3c:da:b6:25:d4:30:9c:80:01:db:41:73:52:9c:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: May 16 06:26:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=183752443c941c3e4e7024a56b14fc4e13f7ce34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:64:b6:ed:1f:6b:82:51:cb:c4:8f:9c:6d:60:
c6:99:f4:52:3a:54:7b:e6:4c:b1:a5:66:26:ce:08:
2e:e5:ad:e7:0d:df:91:8a:4c:9d:cb:5c:b7:4a:4d:
e8:c5:1f:af:c4:1f:1d:72:2f:3e:68:32:a2:a6:e9:
d9:a8:2d:9f:fc:a8:04:18:82:0a:7a:80:a3:b4:5b:
42:da:74:31:1d:6d:d8:2b:eb:7c:1d:cc:d6:f8:19:
96:6f:44:8b:6b:80:5e:e2:e0:4d:b6:82:18:03:5e:
0a:58:c0:d0:55:da:ba:b5:fd:d2:54:fb:a7:c1:50:
d0:08:af:b6:57:4f:ae:97:e1:c2:98:eb:48:30:c0:
e9:e0:a6:0c:e4:70:96:c7:01:db:88:98:c4:52:e9:
6e:d3:c6:2c:d3:b9:d1:ef:45:ab:c1:ed:02:0a:75:
03:6c:4b:8f:0c:30:e5:67:d2:e1:fc:c1:82:7e:84:
bb:8d:5d:35:ab:f9:35:da:e0:72:33:9c:2c:df:7a:
16:8f:7b:5e:03:cf:81:17:32:81:89:55:d3:7a:41:
c3:bf:20:bc:a8:10:1c:aa:9a:a6:b8:c3:52:e5:c7:
df:ba:cc:75:3f:99:a7:74:4f:cb:1d:81:91:9e:ec:
b3:08:e6:95:e3:65:b6:4e:d8:26:58:01:03:69:d2:
70:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:37:52:44:3C:94:1C:3E:4E:70:24:A5:6B:14:FC:4E:13:F7:CE:34
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/GDdSRDyUHD5OcCSlaxT8ThP3zjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.221.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:13:e7:ef:c4:0f:27:6c:13:df:27:e3:b8:82:ad:d9:93:9c:
c9:ff:c6:7e:d3:c8:08:f3:94:e7:54:a2:8f:11:e8:e3:67:9d:
b1:15:f3:5a:74:18:bd:fc:6a:a6:f9:62:56:68:f3:42:1c:82:
21:51:47:0d:a9:a4:fb:32:03:72:ea:99:de:fc:d1:01:d0:2d:
9f:bb:f1:37:b3:06:96:5a:51:4c:95:5b:1f:57:cd:33:f2:4b:
8f:00:4b:a6:98:62:10:71:1c:49:b7:14:a1:fa:02:24:80:f0:
2e:7b:12:d1:14:83:cd:6a:f2:bc:4c:d5:6c:fe:30:a4:0f:e6:
f6:ba:58:0c:ac:dd:e1:c9:b2:3d:76:80:a7:c6:fe:a2:2f:1e:
ca:5c:2a:21:1c:19:1c:76:fb:39:69:66:b5:ca:cf:3f:50:22:
62:7a:a0:58:41:30:d2:28:21:7e:47:db:48:de:1a:16:97:d0:
29:ad:99:44:16:df:fa:b7:cd:32:49:38:67:cb:45:60:3d:40:
11:47:6e:7a:6a:be:2d:b2:c5:53:93:ce:95:3e:d0:40:d1:f9:
df:f5:62:2e:2c:55:8c:d8:bb:3a:85:18:39:24:45:76:26:eb:
69:fe:8f:94:91:f4:24:e0:6b:7d:10:01:8f:72:55:65:d3:5b:
5e:2b:1c:54
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYgjPNq2JdQwnIAB20FzUpy2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzM2UzZjVlZjgyNTU1NmIwMTRhMDg1ZDMyNTY1YmIwY2Jj
NWFjOGQwHhcNMjMwNTE2MDYyNjEwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxODM3NTI0NDNjOTQxYzNlNGU3MDI0YTU2YjE0ZmM0ZTEzZjdjZTM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgmS27R9rglHLxI+cbWDGmfRSOlR7
5kyxpWYmzggu5a3nDd+Rikydy1y3Sk3oxR+vxB8dci8+aDKipunZqC2f/KgEGIIK
eoCjtFtC2nQxHW3YK+t8HczW+BmWb0SLa4Be4uBNtoIYA14KWMDQVdq6tf3SVPun
wVDQCK+2V0+ul+HCmOtIMMDp4KYM5HCWxwHbiJjEUulu08Ys07nR70Wrwe0CCnUD
bEuPDDDlZ9Lh/MGCfoS7jV01q/k12uByM5ws33oWj3teA8+BFzKBiVXTekHDvyC8
qBAcqpqmuMNS5cffusx1P5mndE/LHYGRnuyzCOaV42W2TtgmWAEDadJw+wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBg3UkQ8lBw+TnAkpWsU/E4T9840MB8GA1UdIwQY
MBaAFIM+P174JVVrAUoIXTJWW7DLxayNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAt
MzE4YTI2ZDRhOGM5LzEvR0RkU1JEeVVIRDVPY0NTbGF4VDhUaFAzempRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAtMzE4YTI2ZDRhOGM5
LzEvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8jdMA0G
CSqGSIb3DQEBCwUAA4IBAQCaE+fvxA8nbBPfJ+O4gq3Zk5zJ/8Z+08gI85TnVKKP
EejjZ52xFfNadBi9/Gqm+WJWaPNCHIIhUUcNqaT7MgNy6pne/NEB0C2fu/E3swaW
WlFMlVsfV80z8kuPAEummGIQcRxJtxSh+gIkgPAuexLRFIPNavK8TNVs/jCkD+b2
ulgMrN3hybI9doCnxv6iLx7KXCohHBkcdvs5aWa1ys8/UCJieqBYQTDSKCF+R9tI
3hoWl9AprZlEFt/6t80ySThny0VgPUARR256ar4tssVTk86VPtBA0fnf9WIuLFWM
2Ls6hRg5JEV2Jutp/o+UkfQk4Gt9EAGPclVl01teKxxU
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:36 2024 by rpki-client on console-fra.rpki-client.org