Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/a765a3-ed94-4fe0-bf45-e0c7b96b57f2/1/SsmDhMqwi1hA1RZ1VUzwbMVj00E.roa
File: SsmDhMqwi1hA1RZ1VUzwbMVj00E.roa (raw, json)
Hash identifier: SmI5bZ/awAVoNRp6oqPAwHp3Ppr/PUOm6OIn3UQYsfA=
Subject key identifier: 4A:C9:83:84:CA:B0:8B:58:40:D5:16:75:55:4C:F0:6C:C5:63:D3:41
Certificate issuer: /CN=cf8375c321def9265983e2194d40ba97afe7f1cc
Certificate serial: 018CC56EB711F7FA93869112CB59EEFA2815
Authority key identifier: CF:83:75:C3:21:DE:F9:26:59:83:E2:19:4D:40:BA:97:AF:E7:F1:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z4N1wyHe-SZZg-IZTUC6l6_n8cw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/a765a3-ed94-4fe0-bf45-e0c7b96b57f2/1/SsmDhMqwi1hA1RZ1VUzwbMVj00E.roa
Signing time: Mon 01 Jan 2024 14:30:16 +0000
ROA not before: Mon 01 Jan 2024 14:30:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51553
IP address blocks: 85.91.50.0/24 maxlen: 24
85.91.51.0/24 maxlen: 24
91.217.237.0/24 maxlen: 24
85.91.49.0/24 maxlen: 24
85.91.53.0/24 maxlen: 24
85.91.54.0/24 maxlen: 24
85.91.55.0/24 maxlen: 24
85.91.52.0/24 maxlen: 24
85.91.56.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 09 Feb 2024 06:50:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:b7:11:f7:fa:93:86:91:12:cb:59:ee:fa:28:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf8375c321def9265983e2194d40ba97afe7f1cc
Validity
Not Before: Jan 1 14:30:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4ac98384cab08b5840d51675554cf06cc563d341
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:89:44:0f:a4:a9:32:66:cd:8c:37:2c:04:6a:
cf:36:e5:87:1d:6c:f8:52:f3:15:a8:a0:82:19:9a:
ff:b1:e9:b6:94:99:03:8a:d6:e6:47:c8:c3:a9:5b:
40:a4:0f:42:7d:a7:86:4a:7e:12:28:3b:dd:ca:82:
37:d9:75:59:08:3a:cc:b7:b7:73:4b:af:40:d6:32:
43:e6:98:b7:aa:3e:21:7d:2e:cd:ba:82:cf:56:d6:
2a:ea:98:ae:37:7f:6d:25:b9:7e:dc:b4:48:01:9e:
b3:08:e5:96:f5:d2:e3:15:23:4c:b8:5a:24:52:7d:
ae:14:42:38:23:38:7a:94:95:8e:57:c3:52:b8:95:
df:f8:42:47:aa:7d:24:c0:96:9d:92:6e:14:4a:f1:
5c:a4:cf:7a:0b:d9:5d:3f:25:36:aa:b7:fe:fa:80:
ee:8a:ce:1b:9c:31:66:b5:a2:28:b2:50:58:9b:3c:
b8:76:16:62:61:26:24:b6:72:9d:72:9b:6d:b5:c2:
26:76:54:51:b2:5f:05:09:5e:46:1c:fb:54:8f:cf:
9f:d6:fc:9a:4d:4d:e9:d8:13:d2:00:a6:b4:22:9e:
df:27:c3:09:33:e8:4a:7c:5f:24:07:b6:16:7c:f4:
e3:83:87:39:d5:e5:12:ea:dd:81:28:86:c7:14:98:
d9:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:C9:83:84:CA:B0:8B:58:40:D5:16:75:55:4C:F0:6C:C5:63:D3:41
X509v3 Authority Key Identifier:
keyid:CF:83:75:C3:21:DE:F9:26:59:83:E2:19:4D:40:BA:97:AF:E7:F1:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z4N1wyHe-SZZg-IZTUC6l6_n8cw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a765a3-ed94-4fe0-bf45-e0c7b96b57f2/1/SsmDhMqwi1hA1RZ1VUzwbMVj00E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a765a3-ed94-4fe0-bf45-e0c7b96b57f2/1/z4N1wyHe-SZZg-IZTUC6l6_n8cw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.91.49.0-85.91.56.255
91.217.237.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:6d:38:91:3e:0b:12:2b:81:07:c8:08:8b:8c:6c:86:33:24:
b7:cc:fb:d8:0d:ef:59:cf:22:50:a3:dc:37:d5:a8:e8:89:96:
9c:1c:27:ac:90:7b:50:12:f8:5d:d7:12:44:49:5b:a8:72:77:
42:31:98:34:d0:d5:a0:49:65:50:3d:45:dc:f6:12:db:34:76:
5c:79:5d:40:82:1a:a7:77:4d:72:3d:3e:c0:27:7f:c8:e8:cb:
86:67:15:ff:8c:da:ad:f4:ff:7d:0e:40:a6:f0:77:5d:47:17:
b9:44:f1:ac:42:7f:e4:b9:f2:99:33:bf:9e:32:ac:c0:b3:de:
fb:79:6d:9d:4c:79:35:4a:b5:ec:be:5f:8c:ee:02:41:31:0a:
9a:65:6d:6f:97:a7:fb:40:95:ae:16:1a:f5:89:60:6d:83:1d:
2a:c7:1e:7e:fb:75:28:de:2b:14:68:d6:40:b9:18:f9:03:fd:
10:19:f2:ff:31:50:f9:a8:bc:7e:25:21:43:16:d6:9d:29:54:
27:63:2d:9e:53:d6:a6:8d:c3:19:42:97:9c:a3:e8:41:67:4e:
e5:45:c5:c5:89:31:89:ee:58:eb:8f:f6:f5:55:01:80:11:4c:
d0:88:7a:de:46:6d:6d:e7:31:8b:5f:49:e8:8e:2d:7f:ef:70:
5b:f2:91:96
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgISAYzFbrcR9/qThpESy1nu+igVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmODM3NWMzMjFkZWY5MjY1OTgzZTIxOTRkNDBiYTk3YWZl
N2YxY2MwHhcNMjQwMTAxMTQzMDE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YWM5ODM4NGNhYjA4YjU4NDBkNTE2NzU1NTRjZjA2Y2M1NjNkMzQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgYlED6SpMmbNjDcsBGrPNuWHHWz4
UvMVqKCCGZr/sem2lJkDitbmR8jDqVtApA9CfaeGSn4SKDvdyoI32XVZCDrMt7dz
S69A1jJD5pi3qj4hfS7NuoLPVtYq6piuN39tJbl+3LRIAZ6zCOWW9dLjFSNMuFok
Un2uFEI4Izh6lJWOV8NSuJXf+EJHqn0kwJadkm4USvFcpM96C9ldPyU2qrf++oDu
is4bnDFmtaIoslBYmzy4dhZiYSYktnKdcptttcImdlRRsl8FCV5GHPtUj8+f1vya
TU3p2BPSAKa0Ip7fJ8MJM+hKfF8kB7YWfPTjg4c51eUS6t2BKIbHFJjZ1wIDAQAB
o4ICFzCCAhMwHQYDVR0OBBYEFErJg4TKsItYQNUWdVVM8GzFY9NBMB8GA1UdIwQY
MBaAFM+DdcMh3vkmWYPiGU1Aupev5/HMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvejROMXd5SGUtU1paZy1JWlRVQzZsNl9uOGN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9hNzY1YTMtZWQ5NC00ZmUwLWJmNDUt
ZTBjN2I5NmI1N2YyLzEvU3NtRGhNcXdpMWhBMVJaMVZVendiTVZqMDBFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS9hNzY1YTMtZWQ5NC00ZmUwLWJmNDUtZTBjN2I5NmI1N2Yy
LzEvejROMXd5SGUtU1paZy1JWlRVQzZsNl9uOGN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAATAUMAwDBABVWzED
BABVWzgDBABb2e0wDQYJKoZIhvcNAQELBQADggEBAEptOJE+CxIrgQfICIuMbIYz
JLfM+9gN71nPIlCj3DfVqOiJlpwcJ6yQe1AS+F3XEkRJW6hyd0IxmDTQ1aBJZVA9
Rdz2Ets0dlx5XUCCGqd3TXI9PsAnf8joy4ZnFf+M2q30/30OQKbwd11HF7lE8axC
f+S58pkzv54yrMCz3vt5bZ1MeTVKtey+X4zuAkExCpplbW+Xp/tAla4WGvWJYG2D
HSrHHn77dSjeKxRo1kC5GPkD/RAZ8v8xUPmovH4lIUMW1p0pVCdjLZ5T1qaNwxlC
l5yj6EFnTuVFxcWJMYnuWOuP9vVVAYARTNCIet5GbW3nMYtfSeiOLX/vcFvykZY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:35 2024 by rpki-client on console-fra.rpki-client.org