Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/73195c-e663-498c-97db-af64f3fa2459/1/u91cwggPwvJS_yoN0ceZRsMcu_w.roa
File: u91cwggPwvJS_yoN0ceZRsMcu_w.roa (raw, json)
Hash identifier: gSHnWSjyTCZi/rMCJCMt6SmfKqdelDycWtKc7ymdh0g=
Subject key identifier: BB:DD:5C:C2:08:0F:C2:F2:52:FF:2A:0D:D1:C7:99:46:C3:1C:BB:FC
Certificate issuer: /CN=83f36b0adee6cb5518763b5bc8eaa3d41f23e938
Certificate serial: 018697FFC05993DC9714BA913C17DAA567EF
Authority key identifier: 83:F3:6B:0A:DE:E6:CB:55:18:76:3B:5B:C8:EA:A3:D4:1F:23:E9:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g_NrCt7my1UYdjtbyOqj1B8j6Tg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/73195c-e663-498c-97db-af64f3fa2459/1/u91cwggPwvJS_yoN0ceZRsMcu_w.roa
Signing time: Tue 28 Feb 2023 12:29:25 +0000
ROA not before: Tue 28 Feb 2023 12:29:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400377
IP address blocks: 176.100.150.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 May 2023 11:22:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:97:ff:c0:59:93:dc:97:14:ba:91:3c:17:da:a5:67:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83f36b0adee6cb5518763b5bc8eaa3d41f23e938
Validity
Not Before: Feb 28 12:29:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bbdd5cc2080fc2f252ff2a0dd1c79946c31cbbfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:64:62:33:03:f3:b6:7d:7b:66:aa:7b:db:b5:
e3:5a:9d:db:fa:c4:8c:f7:57:cd:24:0d:14:3e:b9:
d0:24:02:58:94:2c:42:68:9b:84:f6:31:e9:1b:e8:
b2:e5:82:52:e8:1b:4b:a7:17:0e:48:1d:6f:3c:f4:
85:04:3a:37:c4:1d:9a:36:03:08:05:84:fe:47:bf:
ba:32:45:ba:97:0d:ae:65:df:eb:3b:e9:7f:51:d1:
35:16:a9:95:c1:1b:b2:e9:2a:1e:2d:57:ba:75:83:
6e:ec:02:ce:1a:51:08:7c:f1:7e:27:77:59:0d:12:
c5:8e:0e:ac:fd:a0:ba:bd:8a:2f:28:47:51:d2:64:
ef:2c:17:67:d5:af:25:fd:47:ef:ec:a9:aa:f2:5a:
ab:9f:24:f9:8b:d2:19:b8:59:7b:b6:e2:38:aa:7d:
0c:7e:89:e8:16:e3:2d:76:b4:a4:49:9c:b6:aa:99:
73:1e:b7:93:21:d7:70:0d:95:11:57:b3:70:f8:66:
ac:d1:73:85:f3:dd:3f:dc:72:9f:c1:28:ef:a5:ea:
04:4b:61:7a:5c:c6:08:24:f1:83:e3:75:33:67:38:
1d:8a:fe:03:86:b8:bd:ee:eb:03:be:fe:7c:a8:31:
be:0a:7b:2c:40:54:ad:88:8c:c0:d5:f5:be:7b:f8:
90:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:DD:5C:C2:08:0F:C2:F2:52:FF:2A:0D:D1:C7:99:46:C3:1C:BB:FC
X509v3 Authority Key Identifier:
keyid:83:F3:6B:0A:DE:E6:CB:55:18:76:3B:5B:C8:EA:A3:D4:1F:23:E9:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g_NrCt7my1UYdjtbyOqj1B8j6Tg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/73195c-e663-498c-97db-af64f3fa2459/1/u91cwggPwvJS_yoN0ceZRsMcu_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/73195c-e663-498c-97db-af64f3fa2459/1/g_NrCt7my1UYdjtbyOqj1B8j6Tg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.100.150.0/24
Signature Algorithm: sha256WithRSAEncryption
09:7d:ac:77:10:eb:dc:53:8c:0a:bc:65:1f:ba:cc:4a:1f:0e:
6f:52:bb:e2:94:8f:a0:48:3b:8b:aa:40:4f:40:df:3c:86:27:
48:90:67:b4:9d:4c:11:23:6d:d3:1c:e2:1e:9a:70:c8:09:98:
12:2f:da:f2:e9:37:3d:6f:88:04:94:1c:1d:19:88:07:a0:4e:
92:61:39:f4:c7:43:42:a5:b7:e7:61:10:03:e1:1e:ab:dd:0b:
fe:4f:82:85:c3:c3:13:1d:6f:18:75:80:c2:dd:c8:b7:f2:f4:
45:4c:22:5e:66:e5:84:fb:84:7c:f6:25:78:a0:85:33:f2:1d:
15:e6:72:58:3f:01:92:09:ba:82:83:af:58:c0:c1:ca:b2:59:
60:e1:75:84:b2:7e:cb:a3:8a:72:4d:42:45:1b:f0:39:3e:d1:
0d:65:fb:dc:69:8d:2d:ab:00:fe:83:64:60:f0:ed:ec:10:f7:
4d:c5:0e:95:95:7b:93:f4:69:76:ed:e1:a0:d3:7a:a4:2f:29:
ce:41:79:63:5c:fc:23:ac:fa:15:09:45:a6:1d:7d:9f:df:c6:
31:cf:15:02:83:cb:7f:75:31:65:61:95:5b:b4:0b:d9:3e:c2:
0b:b4:bc:5a:a5:54:13:b8:c9:f9:59:e6:ea:51:d3:3e:4b:0c:
75:af:8d:c2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYaX/8BZk9yXFLqRPBfapWfvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzZjM2YjBhZGVlNmNiNTUxODc2M2I1YmM4ZWFhM2Q0MWYy
M2U5MzgwHhcNMjMwMjI4MTIyOTI1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYmRkNWNjMjA4MGZjMmYyNTJmZjJhMGRkMWM3OTk0NmMzMWNiYmZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmmRiMwPztn17Zqp727XjWp3b+sSM
91fNJA0UPrnQJAJYlCxCaJuE9jHpG+iy5YJS6BtLpxcOSB1vPPSFBDo3xB2aNgMI
BYT+R7+6MkW6lw2uZd/rO+l/UdE1FqmVwRuy6SoeLVe6dYNu7ALOGlEIfPF+J3dZ
DRLFjg6s/aC6vYovKEdR0mTvLBdn1a8l/Ufv7Kmq8lqrnyT5i9IZuFl7tuI4qn0M
fonoFuMtdrSkSZy2qplzHreTIddwDZURV7Nw+Gas0XOF890/3HKfwSjvpeoES2F6
XMYIJPGD43UzZzgdiv4Dhri97usDvv58qDG+CnssQFStiIzA1fW+e/iQIQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLvdXMIID8LyUv8qDdHHmUbDHLv8MB8GA1UdIwQY
MBaAFIPzawre5stVGHY7W8jqo9QfI+k4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ19OckN0N215MVVZZGp0YnlPcWoxQjhqNlRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC83MzE5NWMtZTY2My00OThjLTk3ZGIt
YWY2NGYzZmEyNDU5LzEvdTkxY3dnZ1B3dkpTX3lvTjBjZVpSc01jdV93LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC83MzE5NWMtZTY2My00OThjLTk3ZGItYWY2NGYzZmEyNDU5
LzEvZ19OckN0N215MVVZZGp0YnlPcWoxQjhqNlRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsGSWMA0G
CSqGSIb3DQEBCwUAA4IBAQAJfax3EOvcU4wKvGUfusxKHw5vUrvilI+gSDuLqkBP
QN88hidIkGe0nUwRI23THOIemnDICZgSL9ry6Tc9b4gElBwdGYgHoE6SYTn0x0NC
pbfnYRAD4R6r3Qv+T4KFw8MTHW8YdYDC3ci38vRFTCJeZuWE+4R89iV4oIUz8h0V
5nJYPwGSCbqCg69YwMHKsllg4XWEsn7Lo4pyTUJFG/A5PtENZfvcaY0tqwD+g2Rg
8O3sEPdNxQ6VlXuT9Gl27eGg03qkLynOQXljXPwjrPoVCUWmHX2f38YxzxUCg8t/
dTFlYZVbtAvZPsILtLxapVQTuMn5WebqUdM+Swx1r43C
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:59 2024 by rpki-client on console-fra.rpki-client.org