Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/LX6eMpNC4dx3H6jKG9MeM22G7m0.roa
File: LX6eMpNC4dx3H6jKG9MeM22G7m0.roa (raw, json)
Hash identifier: 1Q4LD/6Va7Rw9MUsihSy/fcneoAgDNRUkNBuRr3NEbM=
Subject key identifier: 2D:7E:9E:32:93:42:E1:DC:77:1F:A8:CA:1B:D3:1E:33:6D:86:EE:6D
Certificate issuer: /CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Certificate serial: 018678F11E2DB95287D6C5ABACBB23CBD468
Authority key identifier: 34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/LX6eMpNC4dx3H6jKG9MeM22G7m0.roa
Signing time: Wed 22 Feb 2023 11:45:13 +0000
ROA not before: Wed 22 Feb 2023 11:45:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396356
IP address blocks: 91.238.213.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:78:f1:1e:2d:b9:52:87:d6:c5:ab:ac:bb:23:cb:d4:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Validity
Not Before: Feb 22 11:45:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2d7e9e329342e1dc771fa8ca1bd31e336d86ee6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e1:cc:42:0a:30:f8:b0:34:fb:87:40:ed:05:
83:8f:d2:46:11:3c:50:a6:ce:11:31:a8:04:8b:ef:
20:1c:51:25:29:94:5e:f4:5a:3e:5d:6d:af:35:dd:
85:95:ab:7f:f2:ef:8d:88:47:f6:6a:5f:78:03:db:
8a:29:28:d6:1e:68:8c:c6:4b:11:0a:1e:22:b2:5e:
88:11:38:7a:39:04:5b:54:1e:35:85:9a:36:d2:ff:
d1:8c:a7:76:e9:40:01:45:6d:c1:f6:82:45:6b:44:
82:6b:09:b9:89:2b:7e:b1:2b:66:53:49:b0:8a:5c:
45:87:44:f4:c3:eb:36:2b:00:37:11:8b:5f:f7:f8:
52:e9:09:37:17:88:f5:6e:f5:25:38:0c:72:36:7c:
4f:28:32:e9:6e:9e:81:71:cc:de:07:e6:cc:8a:d6:
bd:c4:24:a8:76:9c:24:d3:06:fd:9b:f0:cb:2b:d3:
22:89:90:e1:85:56:c9:f0:00:97:e7:bf:5f:de:b7:
46:8c:0f:22:90:e1:c0:0d:ec:9a:a4:58:7a:11:25:
7b:8b:e7:10:69:1f:cc:ad:f7:14:1f:a2:1e:36:ee:
f5:6f:f5:ea:74:fd:94:84:89:18:61:e3:3a:40:1c:
27:fa:37:6f:6f:7d:fd:03:bd:a8:28:39:9f:5c:16:
fe:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:7E:9E:32:93:42:E1:DC:77:1F:A8:CA:1B:D3:1E:33:6D:86:EE:6D
X509v3 Authority Key Identifier:
keyid:34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/LX6eMpNC4dx3H6jKG9MeM22G7m0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/NHtIeEj_9jUz2HwyTsxRwsPqKts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.238.213.0/24
Signature Algorithm: sha256WithRSAEncryption
28:9c:55:33:ed:a2:a0:cc:9e:22:ad:c2:ee:56:95:40:4f:c8:
43:97:31:78:6f:da:df:2f:e5:60:61:ce:38:b2:88:c6:d7:bb:
5a:13:2f:6b:b8:13:c8:85:c8:1d:8a:ea:05:44:e9:f5:a8:bb:
13:97:36:cb:ac:22:20:63:ac:73:1a:37:b9:7d:6f:8c:08:2f:
5d:7f:aa:5f:63:ae:89:28:7e:c3:c1:c0:8c:b0:ab:bc:f5:cf:
2b:d3:c0:80:4a:79:46:03:10:fc:ff:cc:f5:ea:37:02:4c:2a:
65:9b:1c:48:35:b3:08:b2:79:ac:06:bb:72:7f:39:a0:70:9f:
11:7f:85:b8:f5:2e:35:77:e7:dd:2d:53:57:fb:e9:dc:70:98:
89:da:5d:31:79:92:33:93:50:3c:72:d3:a4:d5:a3:ee:d0:d9:
d0:98:66:2e:9e:51:e4:bd:cb:98:37:51:0a:20:9f:fe:97:fd:
50:ec:78:91:31:cf:3e:94:f6:43:b0:d9:cf:3a:97:77:ba:b7:
5b:86:1b:a0:c1:55:3d:1a:0d:ed:5b:c9:c5:01:c9:95:01:4a:
6b:1a:e4:22:fb:00:18:3b:53:e3:ae:3e:31:f5:22:82:38:99:
af:e5:61:1b:c0:9a:cd:08:74:2c:ca:65:a6:df:38:12:d9:6b:
56:73:43:f3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYZ48R4tuVKH1sWrrLsjy9RoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0N2I0ODc4NDhmZmY2MzUzM2Q4N2MzMjRlY2M1MWMyYzNl
YTJhZGIwHhcNMjMwMjIyMTE0NTEzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZDdlOWUzMjkzNDJlMWRjNzcxZmE4Y2ExYmQzMWUzMzZkODZlZTZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxOHMQgow+LA0+4dA7QWDj9JGETxQ
ps4RMagEi+8gHFElKZRe9Fo+XW2vNd2Flat/8u+NiEf2al94A9uKKSjWHmiMxksR
Ch4isl6IETh6OQRbVB41hZo20v/RjKd26UABRW3B9oJFa0SCawm5iSt+sStmU0mw
ilxFh0T0w+s2KwA3EYtf9/hS6Qk3F4j1bvUlOAxyNnxPKDLpbp6BcczeB+bMita9
xCSodpwk0wb9m/DLK9MiiZDhhVbJ8ACX579f3rdGjA8ikOHADeyapFh6ESV7i+cQ
aR/MrfcUH6IeNu71b/XqdP2UhIkYYeM6QBwn+jdvb339A72oKDmfXBb+kwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC1+njKTQuHcdx+oyhvTHjNthu5tMB8GA1UdIwQY
MBaAFDR7SHhI//Y1M9h8Mk7MUcLD6irbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTkh0SWVFal85alV6Mkh3eVRzeFJ3c1BxS3RzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9iYzcxMjItNGQxYi00NmE3LWFlY2It
MjMwYjNiNzJhMTc1LzEvTFg2ZU1wTkM0ZHgzSDZqS0c5TWVNMjJHN20wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy9iYzcxMjItNGQxYi00NmE3LWFlY2ItMjMwYjNiNzJhMTc1
LzEvTkh0SWVFal85alV6Mkh3eVRzeFJ3c1BxS3RzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+7VMA0G
CSqGSIb3DQEBCwUAA4IBAQAonFUz7aKgzJ4ircLuVpVAT8hDlzF4b9rfL+VgYc44
sojG17taEy9ruBPIhcgdiuoFROn1qLsTlzbLrCIgY6xzGje5fW+MCC9df6pfY66J
KH7DwcCMsKu89c8r08CASnlGAxD8/8z16jcCTCplmxxINbMIsnmsBrtyfzmgcJ8R
f4W49S41d+fdLVNX++nccJiJ2l0xeZIzk1A8ctOk1aPu0NnQmGYunlHkvcuYN1EK
IJ/+l/1Q7HiRMc8+lPZDsNnPOpd3urdbhhugwVU9Gg3tW8nFAcmVAUprGuQi+wAY
O1Pjrj4x9SKCOJmv5WEbwJrNCHQsymWm3zgS2WtWc0Pz
-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:13 2024 by rpki-client on console-fra.rpki-client.org