Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/1EsUdhjrtB4i9YKAxpNhIYTYTRA.roa
File: 1EsUdhjrtB4i9YKAxpNhIYTYTRA.roa (raw, json)
Hash identifier: joHebaB4NWdZIsIm3djbR5e29pdTMdD6HWPgeFSRu80=
Subject key identifier: D4:4B:14:76:18:EB:B4:1E:22:F5:82:80:C6:93:61:21:84:D8:4D:10
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 018EAD9C6FCFF9E230114CC9DFE5A5E7D014
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/1EsUdhjrtB4i9YKAxpNhIYTYTRA.roa
Signing time: Fri 05 Apr 2024 09:34:54 +0000
ROA not before: Fri 05 Apr 2024 09:34:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62206
IP address blocks: 91.228.13.0/24 maxlen: 24
91.228.14.0/24 maxlen: 24
91.228.15.0/24 maxlen: 24
94.154.32.0/22 maxlen: 24
94.154.32.0/24 maxlen: 24
94.154.35.0/24 maxlen: 24
94.154.36.0/24 maxlen: 24
94.154.37.0/24 maxlen: 24
94.154.38.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 13 Apr 2024 07:05:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:ad:9c:6f:cf:f9:e2:30:11:4c:c9:df:e5:a5:e7:d0:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Apr 5 09:34:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d44b147618ebb41e22f58280c693612184d84d10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:fa:db:77:bb:63:19:b7:66:60:04:3b:c4:7e:
58:63:46:c2:97:e7:63:40:92:98:7d:e5:10:0d:d4:
af:53:65:0a:7d:c5:fe:6a:12:69:7f:ba:ea:13:cb:
d9:a9:72:5b:fb:c1:cb:bf:5d:93:42:9d:a2:d8:e7:
dc:7c:48:36:1a:1b:2e:47:02:17:71:3d:c3:2c:3d:
b6:ac:a3:28:f7:d6:97:f8:0d:1a:db:35:6f:d7:df:
c1:69:b8:6e:88:44:c1:fa:f2:cc:4a:22:c1:17:23:
ac:3a:26:1a:15:0d:bc:a7:04:89:7b:3d:13:e8:95:
fe:6a:7b:44:3f:26:06:71:7c:0c:45:c9:79:c0:d0:
f6:d7:92:cb:93:e6:c4:62:10:69:51:46:9d:0c:1b:
3e:56:68:e7:15:f9:2d:29:64:c9:7f:31:d2:3d:66:
aa:1a:30:1a:80:3b:2e:2c:23:7c:72:5a:e5:bd:30:
0a:6d:22:94:0f:c0:a1:31:a7:6f:14:f7:7d:c7:31:
e7:2d:f1:aa:e0:20:5b:68:57:9d:ab:97:37:60:54:
cf:c0:0f:dc:52:9c:82:ca:ee:02:6f:b9:bd:70:1f:
2e:df:6d:8c:a6:30:1a:f8:81:74:39:1b:a5:b5:e1:
f4:1f:7c:1c:37:cb:31:10:42:44:a7:d1:50:ec:40:
83:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:4B:14:76:18:EB:B4:1E:22:F5:82:80:C6:93:61:21:84:D8:4D:10
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/1EsUdhjrtB4i9YKAxpNhIYTYTRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.13.0-91.228.15.255
94.154.32.0-94.154.38.255
Signature Algorithm: sha256WithRSAEncryption
4c:04:a6:4a:c9:82:6f:65:0a:74:c3:b2:3b:0f:44:e0:db:9f:
32:d8:7d:2d:ba:36:9f:6b:f2:d8:c0:6b:c5:cb:cd:fb:ed:e0:
9c:f2:19:2f:c5:c6:6d:c0:5b:db:05:f1:6e:11:2e:a4:49:a5:
e4:f8:14:45:6a:93:f5:94:2e:d8:19:d3:f3:bb:0d:50:88:fd:
60:1f:da:ec:33:be:b3:09:b1:f7:e7:17:57:b4:49:23:6e:92:
ac:5c:3a:f2:d1:c3:fd:45:e4:1f:52:a2:ab:e8:aa:42:58:da:
bc:b4:82:46:cd:85:90:dd:f0:e8:47:c8:c3:9b:02:82:e1:db:
d8:b5:ee:ca:4b:2f:a2:fc:f6:f8:87:f3:5a:15:9d:74:3b:8c:
7e:97:21:b3:59:3b:d0:cd:51:72:92:53:46:c8:b2:6f:52:4b:
97:c5:67:4c:6c:b4:b7:ae:c0:25:2e:dd:a2:1e:9d:c5:9e:74:
7a:37:37:24:ca:16:db:e4:ba:1b:6f:ab:a7:8b:8d:7e:6c:8a:
b2:dd:de:b1:23:3d:58:10:9a:9f:14:8d:c2:e4:a3:8c:d7:d4:
b2:0d:e0:66:d0:d1:75:8e:27:30:b0:06:bb:54:0a:68:7e:96:
cd:1e:c6:b3:70:ca:6d:f1:26:59:dc:a2:d1:93:1f:e9:2e:f6:
0c:1e:ee:20
-----BEGIN CERTIFICATE-----
MIIFEzCCA/ugAwIBAgISAY6tnG/P+eIwEUzJ3+Wl59AUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3Y2YzODg0Yjc4MDA3YTI1ZGJlMmUyY2VmMGNjNzNiNjk5
MjFmODgwHhcNMjQwNDA1MDkzNDU0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNDRiMTQ3NjE4ZWJiNDFlMjJmNTgyODBjNjkzNjEyMTg0ZDg0ZDEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7Prbd7tjGbdmYAQ7xH5YY0bCl+dj
QJKYfeUQDdSvU2UKfcX+ahJpf7rqE8vZqXJb+8HLv12TQp2i2OfcfEg2GhsuRwIX
cT3DLD22rKMo99aX+A0a2zVv19/BabhuiETB+vLMSiLBFyOsOiYaFQ28pwSJez0T
6JX+antEPyYGcXwMRcl5wND215LLk+bEYhBpUUadDBs+VmjnFfktKWTJfzHSPWaq
GjAagDsuLCN8clrlvTAKbSKUD8ChMadvFPd9xzHnLfGq4CBbaFedq5c3YFTPwA/c
UpyCyu4Cb7m9cB8u322MpjAa+IF0ORulteH0H3wcN8sxEEJEp9FQ7ECDeQIDAQAB
o4ICHzCCAhswHQYDVR0OBBYEFNRLFHYY67QeIvWCgMaTYSGE2E0QMB8GA1UdIwQY
MBaAFOfPOIS3gAeiXb4uLO8Mxztpkh+IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNTg4NGhMZUFCNkpkdmk0czd3ekhPMm1TSDRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC80ZTdiYzctMjYwZS00N2U2LTgzODgt
YTE4NGYzNTU2ZTQzLzEvMUVzVWRoanJ0QjRpOVlLQXhwTmhJWVRZVFJBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC80ZTdiYzctMjYwZS00N2U2LTgzODgtYTE4NGYzNTU2ZTQz
LzEvNTg4NGhMZUFCNkpkdmk0czd3ekhPMm1TSDRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDUGCCsGAQUFBwEHAQH/BCYwJDAiBAIAATAcMAwDBABb5A0D
BARb5AAwDAMEBV6aIAMEAF6aJjANBgkqhkiG9w0BAQsFAAOCAQEATASmSsmCb2UK
dMOyOw9E4NufMth9Lbo2n2vy2MBrxcvN++3gnPIZL8XGbcBb2wXxbhEupEml5PgU
RWqT9ZQu2BnT87sNUIj9YB/a7DO+swmx9+cXV7RJI26SrFw68tHD/UXkH1Kiq+iq
QljavLSCRs2FkN3w6EfIw5sCguHb2LXuyksvovz2+IfzWhWddDuMfpchs1k70M1R
cpJTRsiyb1JLl8VnTGy0t67AJS7doh6dxZ50ejc3JMoW2+S6G2+rp4uNfmyKst3e
sSM9WBCanxSNwuSjjNfUsg3gZtDRdY4nMLAGu1QKaH6WzR7Gs3DKbfEmWdyi0ZMf
6S72DB7uIA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:25 2024 by rpki-client on console-ams.rpki-client.org