Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/fead16-dd2f-4d66-8503-5d5aec20fc9a/1/BLFhlDZM1on3CHyc__onto9opyI.roa
File: BLFhlDZM1on3CHyc__onto9opyI.roa (raw, json)
Hash identifier: ZX9stRVTC6fJOPXYKgInILrY3em9UYE8JEQxWmmKt7M=
Subject key identifier: 04:B1:61:94:36:4C:D6:89:F7:08:7C:9C:FF:FA:27:B6:8F:68:A7:22
Certificate issuer: /CN=da1a521ec13031527d2f2cacfc85eb99e4841256
Certificate serial: 01857170AC3C0B295376E606364FF3C89B83
Authority key identifier: DA:1A:52:1E:C1:30:31:52:7D:2F:2C:AC:FC:85:EB:99:E4:84:12:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2hpSHsEwMVJ9Lyys_IXrmeSEElY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/fead16-dd2f-4d66-8503-5d5aec20fc9a/1/BLFhlDZM1on3CHyc__onto9opyI.roa
Signing time: Mon 02 Jan 2023 07:44:47 +0000
ROA not before: Mon 02 Jan 2023 07:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 91.209.81.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:70:ac:3c:0b:29:53:76:e6:06:36:4f:f3:c8:9b:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da1a521ec13031527d2f2cacfc85eb99e4841256
Validity
Not Before: Jan 2 07:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=04b16194364cd689f7087c9cfffa27b68f68a722
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:e1:02:3a:2b:db:aa:3b:7e:c0:24:3f:b1:e9:
54:6a:b6:67:0f:aa:98:69:3d:de:8f:f0:e0:1a:e5:
17:4c:4f:5b:80:de:10:10:4d:7c:93:ad:b9:3a:72:
a4:cf:38:63:8f:fd:17:89:90:c1:c4:8e:86:c5:b9:
19:34:e7:3a:4b:bf:bf:dd:21:2b:06:e4:ee:e2:71:
38:e1:06:65:78:71:3a:7f:4e:40:b2:91:fb:f3:ec:
ab:b6:27:40:02:76:2f:4c:a2:c0:06:15:4c:88:43:
67:ff:d8:08:7c:3e:ef:a2:9b:c2:fd:82:fb:18:21:
86:20:b4:26:be:ef:7b:1d:4b:4a:5d:35:76:8b:6a:
80:ce:e4:c8:26:50:35:d9:e6:80:8f:9d:0a:d3:a0:
b9:ea:f0:b3:0a:42:72:74:d1:ac:30:2f:6a:3f:92:
5d:e8:a5:94:62:53:dc:52:56:a1:30:f3:cd:24:8f:
11:ae:86:73:f4:af:4c:98:06:15:f6:df:b1:47:35:
f9:80:44:5b:b2:cf:28:ba:aa:86:ef:e9:a9:e6:94:
2a:7f:df:a7:f8:bc:6f:d4:51:f7:04:31:73:67:42:
35:4f:07:da:09:d7:1c:2b:f3:e2:94:66:52:1c:d0:
09:3e:45:b3:e2:62:0f:b5:ba:30:1e:e9:7e:49:e7:
50:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:B1:61:94:36:4C:D6:89:F7:08:7C:9C:FF:FA:27:B6:8F:68:A7:22
X509v3 Authority Key Identifier:
keyid:DA:1A:52:1E:C1:30:31:52:7D:2F:2C:AC:FC:85:EB:99:E4:84:12:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2hpSHsEwMVJ9Lyys_IXrmeSEElY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/fead16-dd2f-4d66-8503-5d5aec20fc9a/1/BLFhlDZM1on3CHyc__onto9opyI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/fead16-dd2f-4d66-8503-5d5aec20fc9a/1/2hpSHsEwMVJ9Lyys_IXrmeSEElY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.81.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:f2:5f:91:21:f0:06:bc:03:bf:8b:49:1d:96:fb:bf:84:70:
96:44:05:2e:e5:44:97:9b:d6:d6:08:40:fe:02:e1:81:4d:9f:
6c:b4:79:ce:be:24:40:d0:97:1f:3d:46:c5:41:a4:ba:70:e5:
ba:7b:bc:34:ff:91:71:8b:4d:07:9f:88:58:05:80:eb:05:41:
d3:29:6d:4c:bf:85:48:6b:de:53:71:97:a2:d4:ff:47:b9:d0:
39:6d:c3:f3:ca:1c:7e:e4:8a:1c:c1:c6:8e:75:58:46:38:be:
8c:3c:51:f5:b8:cb:1b:eb:6a:35:82:1c:6f:fc:a4:bf:86:63:
fd:fe:05:45:04:b7:75:a2:36:f6:97:f7:3f:df:ec:d5:40:1c:
64:09:a7:71:9c:7f:e8:6b:17:54:b8:01:9d:c3:18:99:ae:5d:
6b:67:bf:76:da:bf:bb:24:9c:51:26:2a:45:c6:4c:4e:0a:ae:
26:7c:9c:5e:04:66:19:0c:05:53:85:09:ef:a1:66:7b:e8:1c:
0b:78:ff:24:1a:97:4d:ee:1d:5c:07:0e:a5:1f:8a:9b:96:b0:
2d:ba:bf:0e:c5:85:cf:0d:ec:46:24:4a:23:11:d5:cb:a9:d0:
3a:96:16:df:41:81:b5:72:03:5a:e9:d2:40:8c:f4:4f:6c:d5:
13:87:b1:96
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxcKw8CylTduYGNk/zyJuDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRhMWE1MjFlYzEzMDMxNTI3ZDJmMmNhY2ZjODVlYjk5ZTQ4
NDEyNTYwHhcNMjMwMTAyMDc0NDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNGIxNjE5NDM2NGNkNjg5ZjcwODdjOWNmZmZhMjdiNjhmNjhhNzIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4+ECOivbqjt+wCQ/selUarZnD6qY
aT3ej/DgGuUXTE9bgN4QEE18k625OnKkzzhjj/0XiZDBxI6GxbkZNOc6S7+/3SEr
BuTu4nE44QZleHE6f05AspH78+yrtidAAnYvTKLABhVMiENn/9gIfD7vopvC/YL7
GCGGILQmvu97HUtKXTV2i2qAzuTIJlA12eaAj50K06C56vCzCkJydNGsMC9qP5Jd
6KWUYlPcUlahMPPNJI8RroZz9K9MmAYV9t+xRzX5gERbss8ouqqG7+mp5pQqf9+n
+Lxv1FH3BDFzZ0I1TwfaCdccK/PilGZSHNAJPkWz4mIPtbowHul+SedQrQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFASxYZQ2TNaJ9wh8nP/6J7aPaKciMB8GA1UdIwQY
MBaAFNoaUh7BMDFSfS8srPyF65nkhBJWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmhwU0hzRXdNVko5THl5c19JWHJtZVNFRWxZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9mZWFkMTYtZGQyZi00ZDY2LTg1MDMt
NWQ1YWVjMjBmYzlhLzEvQkxGaGxEWk0xb24zQ0h5Y19fb250bzlvcHlJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNy9mZWFkMTYtZGQyZi00ZDY2LTg1MDMtNWQ1YWVjMjBmYzlh
LzEvMmhwU0hzRXdNVko5THl5c19JWHJtZVNFRWxZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9FRMA0G
CSqGSIb3DQEBCwUAA4IBAQCb8l+RIfAGvAO/i0kdlvu/hHCWRAUu5USXm9bWCED+
AuGBTZ9stHnOviRA0JcfPUbFQaS6cOW6e7w0/5Fxi00Hn4hYBYDrBUHTKW1Mv4VI
a95TcZei1P9HudA5bcPzyhx+5IocwcaOdVhGOL6MPFH1uMsb62o1ghxv/KS/hmP9
/gVFBLd1ojb2l/c/3+zVQBxkCadxnH/oaxdUuAGdwxiZrl1rZ7922r+7JJxRJipF
xkxOCq4mfJxeBGYZDAVThQnvoWZ76BwLeP8kGpdN7h1cBw6lH4qblrAtur8OxYXP
DexGJEojEdXLqdA6lhbfQYG1cgNa6dJAjPRPbNUTh7GW
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:17 2024 by rpki-client on console-ams.rpki-client.org