Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/RQk409K95XN53CPfsMKgUzBE774.roa
File: RQk409K95XN53CPfsMKgUzBE774.roa (raw, json)
Hash identifier: gBO0gBq1givwuwMhTn7B69r3FRrjFcb9Xq6mAescrok=
Subject key identifier: 45:09:38:D3:D2:BD:E5:73:79:DC:23:DF:B0:C2:A0:53:30:44:EF:BE
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 0189905E9F528466DAAAF1112EBEF39E8B25
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/RQk409K95XN53CPfsMKgUzBE774.roa
Signing time: Wed 26 Jul 2023 04:04:27 +0000
ROA not before: Wed 26 Jul 2023 04:04:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 91.226.56.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:90:5e:9f:52:84:66:da:aa:f1:11:2e:be:f3:9e:8b:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Jul 26 04:04:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=450938d3d2bde57379dc23dfb0c2a0533044efbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:6c:c2:06:92:2b:98:48:9f:fa:02:fc:de:69:
1d:ed:9a:6e:5c:ef:29:ef:53:b6:89:bf:78:4d:ec:
06:24:1c:c8:7c:40:28:2c:38:4f:df:ec:24:de:37:
25:be:28:31:e9:fc:39:07:a6:8d:96:3b:90:77:21:
f4:fe:f4:08:4d:0d:6f:f6:6c:1e:0f:1c:bd:11:44:
60:74:43:ab:10:5f:62:78:13:eb:26:9b:9e:fe:5c:
72:bd:be:92:5b:b2:1a:4b:43:d4:58:9b:90:88:08:
22:ba:f2:6d:ae:ba:e0:c9:ba:bb:d5:12:2f:1e:a5:
b0:4e:51:de:fc:ca:61:9d:11:74:d6:21:dc:67:0b:
82:7e:49:80:d0:fd:ef:29:9a:a4:26:b5:ad:bd:1a:
49:93:5f:ae:09:7a:6d:bd:9c:a4:d0:97:4b:ec:51:
a5:75:ef:95:50:75:ef:f4:50:55:74:9c:22:c3:3b:
cc:e3:e5:94:fd:6a:9e:39:f8:72:54:4a:ae:b6:fe:
ff:f2:26:af:1e:f5:68:6f:94:c5:e0:f3:05:b7:85:
ef:aa:f3:c2:60:83:51:82:b8:67:10:29:44:07:76:
11:61:f9:e9:d1:69:b6:b6:cf:ce:e8:e6:49:bb:fc:
cf:22:e4:d5:0e:9c:a4:39:db:03:f9:3b:2a:4f:21:
aa:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:09:38:D3:D2:BD:E5:73:79:DC:23:DF:B0:C2:A0:53:30:44:EF:BE
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/RQk409K95XN53CPfsMKgUzBE774.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.226.56.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:27:f2:40:e0:f4:c4:1f:ad:b7:7f:a7:16:f5:67:46:62:bf:
52:f6:f8:c0:de:23:ba:4d:f8:4a:34:59:dc:dc:c4:df:45:2b:
80:53:a5:3a:75:79:73:5d:84:ac:af:8a:22:23:a3:d3:a5:72:
7b:52:b0:fe:f5:13:be:86:bf:59:92:19:57:38:b6:4e:f8:da:
8c:76:b6:8b:e6:c5:4c:fb:26:8a:d9:f9:4f:5e:4b:93:5e:f4:
cd:d2:7c:08:d3:29:68:1d:6c:49:2f:89:0e:4b:da:c0:6a:cc:
16:b1:53:a7:9c:2e:33:fc:6c:f3:51:60:5a:79:ae:7e:2f:2c:
2f:18:7c:a6:e9:4a:bd:05:31:93:bc:dc:6a:5a:a7:09:b5:d8:
4e:8d:b1:4e:b0:b9:31:fa:54:8d:c0:0f:26:cc:5d:fb:8f:79:
58:8d:84:e4:8d:be:47:5e:92:98:26:78:36:69:11:8a:c3:40:
4f:f0:b7:f7:d0:7b:d3:fd:b2:94:a8:05:86:ca:0c:f7:f5:a5:
bf:06:0e:cf:b9:66:16:39:57:fe:39:33:ec:c2:8e:63:4d:f8:
a1:aa:c8:83:a8:6d:89:0e:47:85:44:f8:fa:0b:0d:75:86:18:
29:b0:0c:13:bd:d9:68:66:7b:fc:7f:88:b4:b8:d3:68:3f:99:
fd:24:b2:97
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYmQXp9ShGbaqvERLr7znoslMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzM2UzZjVlZjgyNTU1NmIwMTRhMDg1ZDMyNTY1YmIwY2Jj
NWFjOGQwHhcNMjMwNzI2MDQwNDI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NTA5MzhkM2QyYmRlNTczNzlkYzIzZGZiMGMyYTA1MzMwNDRlZmJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArmzCBpIrmEif+gL83mkd7ZpuXO8p
71O2ib94TewGJBzIfEAoLDhP3+wk3jclvigx6fw5B6aNljuQdyH0/vQITQ1v9mwe
Dxy9EURgdEOrEF9ieBPrJpue/lxyvb6SW7IaS0PUWJuQiAgiuvJtrrrgybq71RIv
HqWwTlHe/MphnRF01iHcZwuCfkmA0P3vKZqkJrWtvRpJk1+uCXptvZyk0JdL7FGl
de+VUHXv9FBVdJwiwzvM4+WU/WqeOfhyVEqutv7/8iavHvVob5TF4PMFt4XvqvPC
YINRgrhnEClEB3YRYfnp0Wm2ts/O6OZJu/zPIuTVDpykOdsD+TsqTyGq4QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEUJONPSveVzedwj37DCoFMwRO++MB8GA1UdIwQY
MBaAFIM+P174JVVrAUoIXTJWW7DLxayNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAt
MzE4YTI2ZDRhOGM5LzEvUlFrNDA5Szk1WE41M0NQZnNNS2dVekJFNzc0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy9kMjY2MTgtYjM0MC00ZjUwLWIzMzAtMzE4YTI2ZDRhOGM5
LzEvZ3o0X1h2Z2xWV3NCU2doZE1sWmJzTXZGckkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+I4MA0G
CSqGSIb3DQEBCwUAA4IBAQCbJ/JA4PTEH623f6cW9WdGYr9S9vjA3iO6TfhKNFnc
3MTfRSuAU6U6dXlzXYSsr4oiI6PTpXJ7UrD+9RO+hr9ZkhlXOLZO+NqMdraL5sVM
+yaK2flPXkuTXvTN0nwI0yloHWxJL4kOS9rAaswWsVOnnC4z/GzzUWBaea5+Lywv
GHym6Uq9BTGTvNxqWqcJtdhOjbFOsLkx+lSNwA8mzF37j3lYjYTkjb5HXpKYJng2
aRGKw0BP8Lf30HvT/bKUqAWGygz39aW/Bg7PuWYWOVf+OTPswo5jTfihqsiDqG2J
DkeFRPj6Cw11hhgpsAwTvdloZnv8f4i0uNNoP5n9JLKX
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:06 2024 by rpki-client on console-ams.rpki-client.org