Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/392489-7337-4bd7-95ae-fa8a5e86b348/1/1-e2KT0dk-qmzhG3x62JpSirV7IA.roa
File: 1-e2KT0dk-qmzhG3x62JpSirV7IA.roa (raw, json)
Hash identifier: zDShjWxuQjn1nH1hQTK0Efr00HpEZgQ/a2WjRWVSuaI=
Subject key identifier: F9:ED:8A:4F:47:64:FA:A9:B3:84:6D:F1:EB:62:69:4A:2A:D5:EC:80
Certificate issuer: /CN=22ab3bbcb3cd5326a8b124fc95ded14453752fa2
Certificate serial: 0191810DFA25FE603AF23412D54E40D754AD
Authority key identifier: 22:AB:3B:BC:B3:CD:53:26:A8:B1:24:FC:95:DE:D1:44:53:75:2F:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iqs7vLPNUyaosST8ld7RRFN1L6I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/392489-7337-4bd7-95ae-fa8a5e86b348/1/1-e2KT0dk-qmzhG3x62JpSirV7IA.roa
Signing time: Fri 23 Aug 2024 21:04:22 +0000
ROA not before: Fri 23 Aug 2024 21:04:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30931
IP address blocks: 91.223.203.0/24 maxlen: 24
193.30.41.0/24 maxlen: 24
194.107.118.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 30 Aug 2024 21:09:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:81:0d:fa:25:fe:60:3a:f2:34:12:d5:4e:40:d7:54:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22ab3bbcb3cd5326a8b124fc95ded14453752fa2
Validity
Not Before: Aug 23 21:04:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f9ed8a4f4764faa9b3846df1eb62694a2ad5ec80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:63:04:a6:71:75:fc:c0:be:7c:49:2a:36:7c:
e5:a7:97:0b:3a:6d:fe:51:df:22:9d:a9:41:5d:1b:
0d:e3:d1:ac:21:eb:3d:21:cb:76:58:b6:f2:16:1b:
e7:e3:d2:a7:3a:d2:c7:02:94:b7:7a:9d:a8:e3:13:
6c:14:d5:41:77:67:88:e1:4b:62:bb:94:62:27:af:
15:fc:fc:16:fe:b2:cb:4f:1b:47:9d:85:27:18:98:
00:b4:15:b3:8b:33:37:4e:9d:16:67:20:9a:3d:af:
76:c4:26:51:a1:c1:f1:b8:8c:65:99:c2:e5:ae:97:
2b:8e:c9:2f:a4:4f:c3:6a:8e:2d:90:c4:aa:72:d4:
45:09:5c:95:71:fe:9e:49:b4:95:b0:6c:37:db:ba:
53:20:3e:99:7c:51:4d:8d:d6:27:09:cd:9c:50:b9:
d9:3f:98:69:53:55:aa:ca:f9:7f:35:45:74:d3:8d:
e6:49:8a:0d:fd:3e:1d:4a:e7:0c:92:58:f0:4b:26:
63:96:49:4a:1a:f3:e9:d5:3b:21:02:3a:88:96:cd:
b1:18:10:a5:c4:55:07:28:e6:26:54:22:b3:c4:52:
40:55:ae:54:fa:4b:6f:5c:eb:8f:f7:9c:20:c9:1b:
73:97:75:9b:d7:b1:fa:de:03:b5:18:53:f0:5a:90:
7d:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:ED:8A:4F:47:64:FA:A9:B3:84:6D:F1:EB:62:69:4A:2A:D5:EC:80
X509v3 Authority Key Identifier:
keyid:22:AB:3B:BC:B3:CD:53:26:A8:B1:24:FC:95:DE:D1:44:53:75:2F:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iqs7vLPNUyaosST8ld7RRFN1L6I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/392489-7337-4bd7-95ae-fa8a5e86b348/1/1-e2KT0dk-qmzhG3x62JpSirV7IA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/392489-7337-4bd7-95ae-fa8a5e86b348/1/Iqs7vLPNUyaosST8ld7RRFN1L6I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.203.0/24
193.30.41.0/24
194.107.118.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:1a:f2:f1:5f:45:26:59:ce:cd:bc:51:7d:4c:d5:db:b0:61:
1a:de:ab:37:1c:cb:08:cd:22:73:d2:32:dc:7b:bc:69:5c:20:
29:87:ed:8a:58:32:a7:57:4b:41:b9:a2:13:d5:be:fb:1e:9f:
28:a8:36:ab:bf:83:58:e9:7d:d2:30:8b:f1:51:a0:87:8c:48:
32:4c:27:f3:76:a4:2e:cd:f5:38:67:4d:3b:2f:ef:7b:d3:17:
47:f1:c4:0c:f0:d9:78:a5:36:3a:43:40:28:16:c5:49:11:07:
e8:28:56:36:65:df:e4:d9:4b:fe:c1:f9:e3:55:15:bc:c4:5c:
6d:4d:70:a5:9d:e4:78:15:ac:89:22:c8:cd:c7:04:67:30:ec:
b3:a3:03:b7:20:0b:2c:e0:55:f3:93:dc:ed:ab:e8:33:33:39:
dc:06:bb:a4:6e:c2:f0:47:24:d9:3f:74:32:89:7b:22:6f:d7:
47:62:7a:50:c5:44:39:85:16:95:33:e5:a3:df:9b:ac:f9:13:
42:14:a7:a4:48:91:a9:f2:5e:72:55:37:fe:8b:a0:51:f3:b4:
18:e6:61:a5:e0:e0:b0:2d:74:c8:0b:77:d0:b5:96:5f:0b:20:
3f:5d:cc:33:d4:ab:98:26:7c:fb:6a:1e:40:fd:bf:14:c4:90:
0c:c4:03:0a
-----BEGIN CERTIFICATE-----
MIIFCjCCA/KgAwIBAgISAZGBDfol/mA68jQS1U5A11StMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYWIzYmJjYjNjZDUzMjZhOGIxMjRmYzk1ZGVkMTQ0NTM3
NTJmYTIwHhcNMjQwODIzMjEwNDIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOWVkOGE0ZjQ3NjRmYWE5YjM4NDZkZjFlYjYyNjk0YTJhZDVlYzgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6mMEpnF1/MC+fEkqNnzlp5cLOm3+
Ud8inalBXRsN49GsIes9Ict2WLbyFhvn49KnOtLHApS3ep2o4xNsFNVBd2eI4Uti
u5RiJ68V/PwW/rLLTxtHnYUnGJgAtBWzizM3Tp0WZyCaPa92xCZRocHxuIxlmcLl
rpcrjskvpE/Dao4tkMSqctRFCVyVcf6eSbSVsGw327pTID6ZfFFNjdYnCc2cULnZ
P5hpU1Wqyvl/NUV0043mSYoN/T4dSucMkljwSyZjlklKGvPp1TshAjqIls2xGBCl
xFUHKOYmVCKzxFJAVa5U+ktvXOuP95wgyRtzl3Wb17H63gO1GFPwWpB9EQIDAQAB
o4ICFjCCAhIwHQYDVR0OBBYEFPntik9HZPqps4Rt8etiaUoq1eyAMB8GA1UdIwQY
MBaAFCKrO7yzzVMmqLEk/JXe0URTdS+iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXFzN3ZMUE5VeWFvc1NUOGxkN1JSRk4xTDZJLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy8zOTI0ODktNzMzNy00YmQ3LTk1YWUt
ZmE4YTVlODZiMzQ4LzEvMS1lMktUMGRrLXFtemhHM3g2MkpwU2lyVjdJQS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvMmMvMzkyNDg5LTczMzctNGJkNy05NWFlLWZhOGE1ZTg2YjM0
OC8xL0lxczd2TFBOVXlhb3NTVDhsZDdSUkZOMUw2SS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjArBggrBgEFBQcBBwEB/wQcMBowGAQCAAEwEgMEAFvfywME
AMEeKQMEAMJrdjANBgkqhkiG9w0BAQsFAAOCAQEAuhry8V9FJlnOzbxRfUzV27Bh
Gt6rNxzLCM0ic9Iy3Hu8aVwgKYftilgyp1dLQbmiE9W++x6fKKg2q7+DWOl90jCL
8VGgh4xIMkwn83akLs31OGdNOy/ve9MXR/HEDPDZeKU2OkNAKBbFSREH6ChWNmXf
5NlL/sH541UVvMRcbU1wpZ3keBWsiSLIzccEZzDss6MDtyALLOBV85Pc7avoMzM5
3Aa7pG7C8Eck2T90Mol7Im/XR2J6UMVEOYUWlTPlo9+brPkTQhSnpEiRqfJeclU3
/ougUfO0GOZhpeDgsC10yAt30LWWXwsgP13MM9SrmCZ8+2oeQP2/FMSQDMQDCg==
-----END CERTIFICATE-----
Generated at Fri Aug 30 22:58:11 2024 by rpki-client on console-ams.rpki-client.org