Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/VdmYJJUNqrDVLvFZ7LTAU1BxbRg.roa
File: VdmYJJUNqrDVLvFZ7LTAU1BxbRg.roa (raw, json)
Hash identifier: dxhnJ7wbJtjSrswWvsFdh8/y+GE55KTrFtBTGG6jG/0=
Subject key identifier: 55:D9:98:24:95:0D:AA:B0:D5:2E:F1:59:EC:B4:C0:53:50:71:6D:18
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 01918FB97930FB7CF35AEF72224BD626BC61
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/VdmYJJUNqrDVLvFZ7LTAU1BxbRg.roa
Signing time: Mon 26 Aug 2024 17:26:22 +0000
ROA not before: Mon 26 Aug 2024 17:26:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39238
IP address blocks: 91.194.10.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 28 Aug 2024 11:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:8f:b9:79:30:fb:7c:f3:5a:ef:72:22:4b:d6:26:bc:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Aug 26 17:26:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=55d99824950daab0d52ef159ecb4c05350716d18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6d:10:7c:a8:5d:0f:b5:59:66:90:bd:d9:0b:
1c:0b:d8:42:0a:bf:29:64:cf:e8:6f:2b:a1:62:1c:
cd:9e:29:37:23:31:a0:22:42:0b:77:c6:d0:11:47:
37:93:9b:37:3b:24:dc:28:56:fd:8e:70:10:f6:32:
40:d5:ed:58:02:5d:68:be:6b:b3:23:18:92:47:99:
ee:4f:1d:25:ca:2b:dc:9e:8d:63:e4:ef:17:33:ea:
0d:2a:9f:02:ff:f2:84:cd:19:da:30:2d:ca:57:04:
eb:0c:bd:d2:79:53:d8:56:2e:16:bc:bf:8d:47:d2:
c4:ae:fc:56:46:bf:8d:db:0a:f8:4d:f8:ce:35:fc:
99:7e:73:e9:82:2d:72:32:9f:8a:bb:40:7a:dd:f4:
27:12:ac:d9:ef:aa:83:c0:da:92:ed:03:b1:d2:d0:
13:12:34:cb:ef:14:f0:7b:3c:be:70:58:fc:38:b2:
36:24:8d:31:b2:11:2a:23:93:28:6c:ba:c8:88:23:
9c:37:fc:b1:e5:62:d4:79:1c:bc:53:20:8e:90:c8:
97:a7:a2:7f:d9:e0:66:a8:fe:f9:3d:8e:e9:d2:a0:
de:7c:23:62:15:64:74:01:a8:ca:41:46:b9:21:4d:
f1:f2:91:ad:9d:5f:66:51:e6:3f:bf:e4:f0:e3:26:
18:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:D9:98:24:95:0D:AA:B0:D5:2E:F1:59:EC:B4:C0:53:50:71:6D:18
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/VdmYJJUNqrDVLvFZ7LTAU1BxbRg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.10.0/24
Signature Algorithm: sha256WithRSAEncryption
11:99:9f:a6:55:bd:0b:d1:45:93:e2:c7:2f:1e:b6:8d:4f:ec:
25:06:4a:a2:f8:be:8f:bb:84:2e:3d:e8:4b:41:1d:ac:d2:d7:
9f:94:7b:cd:e2:f0:f4:33:21:57:2a:47:36:20:ae:3a:be:d6:
85:f3:5e:5f:ca:aa:d9:c7:97:52:6e:c2:ff:4d:3c:4f:1e:73:
27:d8:05:a8:2b:31:f0:8f:08:44:7a:4e:71:7e:f1:7e:d7:be:
df:fb:c8:ee:a8:ef:8e:b1:0e:0a:12:0c:10:93:b2:6f:e3:15:
b6:91:47:b7:56:a7:0e:2c:33:1c:5d:d7:63:7c:a5:a8:dd:d4:
e9:98:9c:81:8d:5a:7d:31:40:95:13:a9:05:d3:43:8e:05:0c:
2c:83:4f:15:eb:2a:47:98:ea:be:65:dc:41:b2:d1:31:ab:e3:
c7:68:fd:9f:fd:86:ab:c6:0a:e0:c1:99:53:df:e9:a4:02:88:
99:d4:b9:d4:fb:66:95:ea:94:11:8b:e5:d1:0a:1f:72:93:d9:
23:f2:c6:40:6e:ec:b8:fb:4c:ac:74:85:d4:23:d2:23:5a:64:
27:e1:8b:b8:43:ec:bc:bb:02:16:0c:71:37:ec:63:05:55:43:
27:1a:0d:83:d0:2b:59:7b:d5:17:85:5b:cf:7c:16:60:a5:be:
f2:af:85:b3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZGPuXkw+3zzWu9yIkvWJrxhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmODQxMTM1NDVkOTAwMDc2MGY2NjA2MmE0MjIxOTMzYTJl
OTU5ZDgwHhcNMjQwODI2MTcyNjIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NWQ5OTgyNDk1MGRhYWIwZDUyZWYxNTllY2I0YzA1MzUwNzE2ZDE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvW0QfKhdD7VZZpC92QscC9hCCr8p
ZM/obyuhYhzNnik3IzGgIkILd8bQEUc3k5s3OyTcKFb9jnAQ9jJA1e1YAl1ovmuz
IxiSR5nuTx0lyivcno1j5O8XM+oNKp8C//KEzRnaMC3KVwTrDL3SeVPYVi4WvL+N
R9LErvxWRr+N2wr4TfjONfyZfnPpgi1yMp+Ku0B63fQnEqzZ76qDwNqS7QOx0tAT
EjTL7xTwezy+cFj8OLI2JI0xshEqI5MobLrIiCOcN/yx5WLUeRy8UyCOkMiXp6J/
2eBmqP75PY7p0qDefCNiFWR0AajKQUa5IU3x8pGtnV9mUeY/v+Tw4yYYvQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFXZmCSVDaqw1S7xWey0wFNQcW0YMB8GA1UdIwQY
MBaAFL+EETVF2QAHYPZgYqQiGTOi6VnYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdjRRUk5VWFpBQWRnOW1CaXBDSVpNNkxwV2RnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8zMGRjODUtMmRkOC00YjFjLWIxNTEt
NGJkNjNhZGM3MzU0LzEvVmRtWUpKVU5xckRWTHZGWjdMVEFVMUJ4YlJnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS8zMGRjODUtMmRkOC00YjFjLWIxNTEtNGJkNjNhZGM3MzU0
LzEvdjRRUk5VWFpBQWRnOW1CaXBDSVpNNkxwV2RnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8IKMA0G
CSqGSIb3DQEBCwUAA4IBAQARmZ+mVb0L0UWT4scvHraNT+wlBkqi+L6Pu4QuPehL
QR2s0teflHvN4vD0MyFXKkc2IK46vtaF815fyqrZx5dSbsL/TTxPHnMn2AWoKzHw
jwhEek5xfvF+177f+8juqO+OsQ4KEgwQk7Jv4xW2kUe3VqcOLDMcXddjfKWo3dTp
mJyBjVp9MUCVE6kF00OOBQwsg08V6ypHmOq+ZdxBstExq+PHaP2f/YarxgrgwZlT
3+mkAoiZ1LnU+2aV6pQRi+XRCh9yk9kj8sZAbuy4+0ysdIXUI9IjWmQn4Yu4Q+y8
uwIWDHE37GMFVUMnGg2D0CtZe9UXhVvPfBZgpb7yr4Wz
-----END CERTIFICATE-----
Generated at Wed Aug 28 13:39:37 2024 by rpki-client on console-fra.rpki-client.org