Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/U5rHmx-eboteOo_syXs5m8E5yUs.roa
File: U5rHmx-eboteOo_syXs5m8E5yUs.roa (raw, json)
Hash identifier: CAP+70NoLzUvSbauJLbgSRpVoNL99F8l2tpT6o/f0kg=
Subject key identifier: 53:9A:C7:9B:1F:9E:6E:8B:5E:3A:8F:EC:C9:7B:39:9B:C1:39:C9:4B
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 018B2030433A665246CC0B7743A91734EB3F
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/U5rHmx-eboteOo_syXs5m8E5yUs.roa
Signing time: Wed 11 Oct 2023 19:21:55 +0000
ROA not before: Wed 11 Oct 2023 19:21:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209371
IP address blocks: 91.228.15.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:20:30:43:3a:66:52:46:cc:0b:77:43:a9:17:34:eb:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Oct 11 19:21:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=539ac79b1f9e6e8b5e3a8fecc97b399bc139c94b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:87:01:d7:50:1d:aa:27:dc:ab:e0:9a:e8:8d:
69:52:9a:d5:15:2c:ff:2d:b3:e1:38:e6:48:88:b6:
ef:71:ac:0e:7a:b4:97:10:45:ad:4f:bc:cf:f1:13:
ba:69:4f:87:47:00:a4:59:e7:12:6e:6c:4d:d0:2d:
ae:90:9f:28:cf:a0:cf:2b:a7:9c:fb:89:fc:a9:9a:
67:f9:fd:63:16:75:5a:52:8a:05:9f:32:5e:25:90:
e0:de:72:ca:6a:e8:c6:0c:0e:ec:9e:af:33:9f:62:
6f:45:88:a7:ca:62:16:d7:48:56:7f:08:18:46:c3:
85:aa:50:5c:64:c9:fe:81:a3:05:e8:8c:89:64:0c:
aa:e7:76:86:cb:b3:3a:0a:01:3e:db:4b:fa:a6:dc:
93:d2:9f:2a:2e:a3:8d:dd:dc:17:cc:d4:a0:06:59:
f5:8f:73:07:15:ed:71:8d:13:17:ab:80:c9:25:44:
a1:79:fc:bc:18:c7:6e:c1:8b:7d:e2:92:26:f8:0e:
51:1d:21:3f:1d:dd:ed:cc:88:c2:51:eb:7e:c8:cd:
0b:3c:24:b2:1a:54:3b:4e:83:36:45:87:7b:ae:c3:
70:6a:af:52:bb:97:0c:25:d9:b5:ef:a0:78:98:0f:
6a:99:a3:cb:c0:bb:d6:8c:05:4a:4a:4b:62:4a:17:
89:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:9A:C7:9B:1F:9E:6E:8B:5E:3A:8F:EC:C9:7B:39:9B:C1:39:C9:4B
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/U5rHmx-eboteOo_syXs5m8E5yUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.15.0/24
Signature Algorithm: sha256WithRSAEncryption
64:6e:6a:da:28:6d:ba:5d:4c:a1:cc:94:37:3e:98:96:46:12:
7e:4c:d8:cc:32:57:48:66:49:83:8f:93:1d:e1:60:3e:e8:e8:
a3:fd:6d:77:3e:a3:68:ff:10:38:7e:0f:8a:5b:3b:9c:9f:50:
7b:01:28:77:2d:4d:97:97:13:68:4e:b0:26:d8:49:7a:aa:4c:
21:65:dc:85:61:41:1a:d9:75:11:c0:90:8d:07:cd:26:bd:76:
b1:de:db:40:31:65:c1:4e:7c:93:f9:30:a8:aa:ae:1c:f5:de:
14:de:5b:d1:d9:2f:42:83:71:65:c5:ae:9f:3a:2a:00:21:30:
ea:27:78:3d:a7:f0:b2:56:f1:08:c5:e7:bd:d4:f7:00:64:c2:
4d:08:43:48:8c:e3:42:40:b0:eb:38:e0:5b:f3:a8:6e:69:cf:
5e:e0:67:41:5e:40:d5:e1:b4:17:f6:d8:0b:fc:6d:50:cf:73:
f2:c6:ca:07:91:10:dc:1b:1b:ed:7b:0a:d0:ba:3a:33:7b:b8:
36:9f:c6:f5:04:da:04:7e:2c:89:e8:f3:06:46:36:be:74:a2:
45:f4:e1:8a:ea:66:11:ba:7d:88:61:bf:00:e8:f1:ce:03:cf:
4a:67:bc:6b:91:4b:06:70:01:08:ec:ca:be:4d:46:a3:ec:59:
64:b5:1a:94
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYsgMEM6ZlJGzAt3Q6kXNOs/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3Y2YzODg0Yjc4MDA3YTI1ZGJlMmUyY2VmMGNjNzNiNjk5
MjFmODgwHhcNMjMxMDExMTkyMTU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MzlhYzc5YjFmOWU2ZThiNWUzYThmZWNjOTdiMzk5YmMxMzljOTRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjYcB11Adqifcq+Ca6I1pUprVFSz/
LbPhOOZIiLbvcawOerSXEEWtT7zP8RO6aU+HRwCkWecSbmxN0C2ukJ8oz6DPK6ec
+4n8qZpn+f1jFnVaUooFnzJeJZDg3nLKaujGDA7snq8zn2JvRYinymIW10hWfwgY
RsOFqlBcZMn+gaMF6IyJZAyq53aGy7M6CgE+20v6ptyT0p8qLqON3dwXzNSgBln1
j3MHFe1xjRMXq4DJJUShefy8GMduwYt94pIm+A5RHSE/Hd3tzIjCUet+yM0LPCSy
GlQ7ToM2RYd7rsNwaq9Su5cMJdm176B4mA9qmaPLwLvWjAVKSktiSheJLQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFOax5sfnm6LXjqP7Ml7OZvBOclLMB8GA1UdIwQY
MBaAFOfPOIS3gAeiXb4uLO8Mxztpkh+IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNTg4NGhMZUFCNkpkdmk0czd3ekhPMm1TSDRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC80ZTdiYzctMjYwZS00N2U2LTgzODgt
YTE4NGYzNTU2ZTQzLzEvVTVySG14LWVib3RlT29fc3lYczVtOEU1eVVzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC80ZTdiYzctMjYwZS00N2U2LTgzODgtYTE4NGYzNTU2ZTQz
LzEvNTg4NGhMZUFCNkpkdmk0czd3ekhPMm1TSDRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+QPMA0G
CSqGSIb3DQEBCwUAA4IBAQBkbmraKG26XUyhzJQ3PpiWRhJ+TNjMMldIZkmDj5Md
4WA+6Oij/W13PqNo/xA4fg+KWzucn1B7ASh3LU2XlxNoTrAm2El6qkwhZdyFYUEa
2XURwJCNB80mvXax3ttAMWXBTnyT+TCoqq4c9d4U3lvR2S9Cg3Flxa6fOioAITDq
J3g9p/CyVvEIxee91PcAZMJNCENIjONCQLDrOOBb86huac9e4GdBXkDV4bQX9tgL
/G1Qz3PyxsoHkRDcGxvtewrQujoze7g2n8b1BNoEfiyJ6PMGRja+dKJF9OGK6mYR
un2IYb8A6PHOA89KZ7xrkUsGcAEI7Mq+TUaj7FlktRqU
-----END CERTIFICATE-----
Generated at Thu Oct 12 16:41:13 2023 by rpki-client on console-ams.rpki-client.org