Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/bcc899-7a55-4c5c-a9ed-e5e02ef15126/1/StGP7au5Cuq1MSnL9LRKXe-fOFE.roa
File: StGP7au5Cuq1MSnL9LRKXe-fOFE.roa (raw, json)
Hash identifier: F0jOweDQ6HUGzBQD9NjnlTxq/W4TFBjd4GwBZ3nimgM=
Subject key identifier: 4A:D1:8F:ED:AB:B9:0A:EA:B5:31:29:CB:F4:B4:4A:5D:EF:9F:38:51
Certificate issuer: /CN=54fb44eecad8d07f84ed34e0a22b671e70f16ae0
Certificate serial: 01856D8AB22FB2CBCB65E87281B9B4A117F3
Authority key identifier: 54:FB:44:EE:CA:D8:D0:7F:84:ED:34:E0:A2:2B:67:1E:70:F1:6A:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VPtE7srY0H-E7TTgoitnHnDxauA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/bcc899-7a55-4c5c-a9ed-e5e02ef15126/1/StGP7au5Cuq1MSnL9LRKXe-fOFE.roa
Signing time: Sun 01 Jan 2023 13:34:44 +0000
ROA not before: Sun 01 Jan 2023 13:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8530
IP address blocks: 185.159.91.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8a:b2:2f:b2:cb:cb:65:e8:72:81:b9:b4:a1:17:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54fb44eecad8d07f84ed34e0a22b671e70f16ae0
Validity
Not Before: Jan 1 13:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ad18fedabb90aeab53129cbf4b44a5def9f3851
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:6d:5d:e5:f8:01:f4:f5:d1:78:59:60:51:fb:
1a:32:af:ea:7d:1b:26:fe:67:a0:cd:cc:0b:59:d4:
b1:e9:86:22:ba:01:57:8a:58:31:bb:71:57:b8:db:
f1:44:90:d2:ec:8b:f7:72:74:62:6f:e8:d1:46:6d:
c2:ce:36:75:a4:43:b4:15:37:47:cf:91:48:4e:81:
98:9c:9e:f1:75:11:e8:0e:f2:50:43:fc:5a:60:e2:
25:3a:78:87:31:91:03:38:5c:93:ce:5d:9d:e0:83:
55:a6:cb:2b:13:56:72:66:18:77:5b:c2:68:71:9c:
e3:03:ce:e2:cf:64:2f:ae:43:d1:3f:b5:05:04:f3:
60:8a:5f:eb:47:7f:dd:5b:43:90:86:57:2c:56:3f:
02:77:97:fe:88:de:75:0f:4f:31:c6:a0:bc:e7:45:
57:a7:1d:60:c1:e6:bc:77:21:5e:f0:62:74:c9:79:
d5:59:43:a9:b7:73:81:40:47:f6:8c:2f:22:68:c8:
38:2e:d3:9f:ec:da:c3:82:7c:f9:71:37:4f:1e:b9:
3b:88:27:c3:32:14:5e:80:05:7b:48:e1:0a:2d:1c:
83:9c:23:5f:a9:5b:7f:57:6e:2b:79:09:d5:eb:a4:
1d:01:eb:bc:91:e2:e4:d1:21:7e:45:f7:d3:04:4b:
33:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:D1:8F:ED:AB:B9:0A:EA:B5:31:29:CB:F4:B4:4A:5D:EF:9F:38:51
X509v3 Authority Key Identifier:
keyid:54:FB:44:EE:CA:D8:D0:7F:84:ED:34:E0:A2:2B:67:1E:70:F1:6A:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VPtE7srY0H-E7TTgoitnHnDxauA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/bcc899-7a55-4c5c-a9ed-e5e02ef15126/1/StGP7au5Cuq1MSnL9LRKXe-fOFE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/bcc899-7a55-4c5c-a9ed-e5e02ef15126/1/VPtE7srY0H-E7TTgoitnHnDxauA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.159.91.0/24
Signature Algorithm: sha256WithRSAEncryption
48:5c:78:7c:81:ad:f8:3e:b6:97:74:60:50:db:05:8d:83:5e:
2d:4b:43:e5:cc:95:63:7f:b1:66:60:98:bc:6f:35:db:72:a7:
2f:23:7a:8a:e0:6b:7f:3e:84:32:45:7d:11:29:56:96:37:5c:
dd:0a:d6:56:ab:2d:b9:ac:58:06:ab:6a:04:18:f4:3d:e3:0b:
c8:29:c7:50:06:4d:29:26:50:b1:89:28:32:57:c8:e1:5a:b0:
c3:df:1e:ff:06:ee:89:83:ec:a9:06:e1:c7:4b:c4:8a:05:84:
ba:cc:21:ad:1c:3a:eb:83:8c:8b:9d:27:0d:cb:41:4c:49:76:
94:4b:6c:00:a5:fc:17:23:ad:a6:82:d2:b3:41:53:4d:1a:8e:
26:8f:ab:eb:66:45:0d:6c:1e:5e:f5:3c:0c:fa:9a:89:38:5f:
df:9c:a7:97:64:db:49:db:da:94:dc:7d:a1:54:a0:f7:f7:be:
d1:f3:9a:73:cd:46:47:a7:c1:73:3b:05:72:0c:cb:48:09:e6:
c1:36:7c:3d:69:98:bf:dc:22:a8:8c:b4:af:68:58:5a:70:57:
da:2f:19:71:75:06:cd:60:b9:ea:dd:3e:16:82:cd:0d:0c:4d:
24:d3:d1:3e:89:df:54:e4:f5:38:e6:b3:fe:cd:a8:5e:ae:7f:
84:0b:14:46
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtirIvssvLZehygbm0oRfzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0ZmI0NGVlY2FkOGQwN2Y4NGVkMzRlMGEyMmI2NzFlNzBm
MTZhZTAwHhcNMjMwMTAxMTMzNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YWQxOGZlZGFiYjkwYWVhYjUzMTI5Y2JmNGI0NGE1ZGVmOWYzODUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAim1d5fgB9PXReFlgUfsaMq/qfRsm
/megzcwLWdSx6YYiugFXilgxu3FXuNvxRJDS7Iv3cnRib+jRRm3CzjZ1pEO0FTdH
z5FIToGYnJ7xdRHoDvJQQ/xaYOIlOniHMZEDOFyTzl2d4INVpssrE1ZyZhh3W8Jo
cZzjA87iz2QvrkPRP7UFBPNgil/rR3/dW0OQhlcsVj8Cd5f+iN51D08xxqC850VX
px1gwea8dyFe8GJ0yXnVWUOpt3OBQEf2jC8iaMg4LtOf7NrDgnz5cTdPHrk7iCfD
MhRegAV7SOEKLRyDnCNfqVt/V24reQnV66QdAeu8keLk0SF+RffTBEszpwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFErRj+2ruQrqtTEpy/S0Sl3vnzhRMB8GA1UdIwQY
MBaAFFT7RO7K2NB/hO004KIrZx5w8WrgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVlB0RTdzclkwSC1FN1RUZ29pdG5IbkR4YXVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9iY2M4OTktN2E1NS00YzVjLWE5ZWQt
ZTVlMDJlZjE1MTI2LzEvU3RHUDdhdTVDdXExTVNuTDlMUktYZS1mT0ZFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC9iY2M4OTktN2E1NS00YzVjLWE5ZWQtZTVlMDJlZjE1MTI2
LzEvVlB0RTdzclkwSC1FN1RUZ29pdG5IbkR4YXVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuZ9bMA0G
CSqGSIb3DQEBCwUAA4IBAQBIXHh8ga34PraXdGBQ2wWNg14tS0PlzJVjf7FmYJi8
bzXbcqcvI3qK4Gt/PoQyRX0RKVaWN1zdCtZWqy25rFgGq2oEGPQ94wvIKcdQBk0p
JlCxiSgyV8jhWrDD3x7/Bu6Jg+ypBuHHS8SKBYS6zCGtHDrrg4yLnScNy0FMSXaU
S2wApfwXI62mgtKzQVNNGo4mj6vrZkUNbB5e9TwM+pqJOF/fnKeXZNtJ29qU3H2h
VKD3977R85pzzUZHp8FzOwVyDMtICebBNnw9aZi/3CKojLSvaFhacFfaLxlxdQbN
YLnq3T4Wgs0NDE0k09E+id9U5PU45rP+zahern+ECxRG
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:16 2024 by rpki-client on console-ams.rpki-client.org