Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/_63MK83s4KgrdCQxfDo2n9zgP2U.roa
File: _63MK83s4KgrdCQxfDo2n9zgP2U.roa (raw, json)
Hash identifier: yyfikaxX87wUYqH+A2jN9KQzSC866aq6y1GgYb4F8/Q=
Subject key identifier: FF:AD:CC:2B:CD:EC:E0:A8:2B:74:24:31:7C:3A:36:9F:DC:E0:3F:65
Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Certificate serial: 0189D4F511F8AA79B058170824C0DF0FBA5C
Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/_63MK83s4KgrdCQxfDo2n9zgP2U.roa
Signing time: Tue 08 Aug 2023 11:42:57 +0000
ROA not before: Tue 08 Aug 2023 11:42:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212335
IP address blocks: 91.243.178.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:d4:f5:11:f8:aa:79:b0:58:17:08:24:c0:df:0f:ba:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Validity
Not Before: Aug 8 11:42:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ffadcc2bcdece0a82b7424317c3a369fdce03f65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a7:cd:20:96:0f:ca:cf:20:e2:64:d7:cb:5e:
25:db:9d:7d:f7:1d:ea:e2:6b:3a:6c:ef:3b:4a:1f:
86:6d:bd:12:4a:5d:81:ed:01:bb:40:ba:22:89:23:
b3:83:eb:cd:7b:8e:03:fd:e9:4d:6c:79:9d:35:c6:
13:2a:85:62:0d:ca:43:64:70:7e:b7:dc:dc:b7:0c:
11:01:3a:8f:e9:57:7e:0e:f0:8e:bc:45:65:42:e0:
14:5e:95:e2:32:b5:c0:ec:6a:fe:34:06:e3:49:af:
81:50:34:e4:c9:2a:57:62:70:6c:f9:38:75:f0:9e:
e4:53:23:99:77:08:e3:87:46:27:ab:cc:04:a7:79:
34:6d:ef:37:57:b9:cd:32:3a:0a:05:68:8f:e6:68:
c2:f4:28:6d:2f:5f:8f:58:28:f2:21:93:4b:7e:41:
3f:17:5f:85:74:e9:13:ce:8d:e6:f4:b5:9e:42:bc:
55:b6:e9:d9:84:a5:61:0c:ff:45:56:81:6a:ba:80:
6f:e1:f0:00:94:94:7f:ed:9f:47:53:bf:dd:c7:ae:
bc:8d:b7:f8:04:41:64:70:54:c8:c8:ec:c5:dc:c2:
b4:e9:20:8e:a9:6d:9f:73:91:90:46:60:1e:46:34:
6d:46:6e:33:51:e9:8d:ce:c1:f3:1c:33:59:7c:6d:
d3:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:AD:CC:2B:CD:EC:E0:A8:2B:74:24:31:7C:3A:36:9F:DC:E0:3F:65
X509v3 Authority Key Identifier:
keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/_63MK83s4KgrdCQxfDo2n9zgP2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.243.178.0/24
Signature Algorithm: sha256WithRSAEncryption
78:0a:89:9b:28:90:1d:92:d2:03:87:7f:40:86:65:86:e8:33:
28:8a:da:94:36:8d:db:4b:48:5f:3d:66:dc:3d:fe:46:b0:30:
ab:9a:f9:7b:ff:3a:cc:ad:ec:df:f7:27:a8:b9:7c:fc:41:a9:
7a:c1:6f:35:ad:c6:60:eb:4f:88:99:27:16:70:39:2c:2f:4f:
f5:74:96:21:78:a7:6c:8b:65:9f:b7:05:4c:03:bf:ee:72:80:
4f:ed:c1:86:70:44:ae:b9:93:78:10:64:25:22:42:11:de:e5:
36:bb:77:6d:0c:08:3c:d7:d1:4a:d0:7a:0e:14:61:79:56:02:
94:54:3c:cf:f4:b6:b5:b7:d7:09:d1:c7:00:e1:ef:d3:57:67:
0b:4e:72:bf:f1:c1:82:69:08:90:13:fb:52:99:c8:cd:b2:25:
ce:e5:2b:28:fe:03:3d:d7:5b:f6:1d:34:4b:20:59:c8:f7:af:
db:60:a7:11:09:e0:49:be:03:66:d7:5a:45:b9:b4:a6:2d:06:
ca:83:70:14:49:89:17:59:d4:ac:ed:22:72:c7:1a:2a:cd:09:
04:d1:5f:49:d2:46:ce:e0:77:d0:77:da:4a:54:20:85:36:67:
d0:a8:97:a6:70:6e:e9:ed:a0:b9:d6:eb:5b:e9:cb:d1:b2:17:
9a:4c:c2:7b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYnU9RH4qnmwWBcIJMDfD7pcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwYWZmNmI0ZWZmZTdjMzYzZWYyMDBmNmYzZTU4ODhiOTE1
YmE2ODEwHhcNMjMwODA4MTE0MjU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZmFkY2MyYmNkZWNlMGE4MmI3NDI0MzE3YzNhMzY5ZmRjZTAzZjY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqKfNIJYPys8g4mTXy14l25199x3q
4ms6bO87Sh+Gbb0SSl2B7QG7QLoiiSOzg+vNe44D/elNbHmdNcYTKoViDcpDZHB+
t9zctwwRATqP6Vd+DvCOvEVlQuAUXpXiMrXA7Gr+NAbjSa+BUDTkySpXYnBs+Th1
8J7kUyOZdwjjh0Ynq8wEp3k0be83V7nNMjoKBWiP5mjC9ChtL1+PWCjyIZNLfkE/
F1+FdOkTzo3m9LWeQrxVtunZhKVhDP9FVoFquoBv4fAAlJR/7Z9HU7/dx668jbf4
BEFkcFTIyOzF3MK06SCOqW2fc5GQRmAeRjRtRm4zUemNzsHzHDNZfG3TgwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFP+tzCvN7OCoK3QkMXw6Np/c4D9lMB8GA1UdIwQY
MBaAFACv9rTv/nw2PvIA9vPliIuRW6aBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUtfMnRPXy1mRFktOGdEMjgtV0lpNUZicG9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8wOThkMTMtNmQ2ZC00Mjk0LTk3NTMt
YTg3NzNkZTc2OGY3LzEvXzYzTUs4M3M0S2dyZENReGZEbzJuOXpnUDJVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC8wOThkMTMtNmQ2ZC00Mjk0LTk3NTMtYTg3NzNkZTc2OGY3
LzEvQUtfMnRPXy1mRFktOGdEMjgtV0lpNUZicG9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW/OyMA0G
CSqGSIb3DQEBCwUAA4IBAQB4CombKJAdktIDh39AhmWG6DMoitqUNo3bS0hfPWbc
Pf5GsDCrmvl7/zrMrezf9yeouXz8Qal6wW81rcZg60+ImScWcDksL0/1dJYheKds
i2WftwVMA7/ucoBP7cGGcESuuZN4EGQlIkIR3uU2u3dtDAg819FK0HoOFGF5VgKU
VDzP9La1t9cJ0ccA4e/TV2cLTnK/8cGCaQiQE/tSmcjNsiXO5Sso/gM911v2HTRL
IFnI96/bYKcRCeBJvgNm11pFubSmLQbKg3AUSYkXWdSs7SJyxxoqzQkE0V9J0kbO
4HfQd9pKVCCFNmfQqJemcG7p7aC51utb6cvRsheaTMJ7
-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:34 2024 by rpki-client on console-fra.rpki-client.org