Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/ba7854-886d-4148-a208-5c78639264aa/1/q3CZ5JlNr_lJGAkZ-mz5KjUULVQ.roa
File: q3CZ5JlNr_lJGAkZ-mz5KjUULVQ.roa (raw, json)
Hash identifier: s97yyoncuL7R3vLK2xTYmGn76ODy+Psjj0apY6UDIOM=
Subject key identifier: AB:70:99:E4:99:4D:AF:F9:49:18:09:19:FA:6C:F9:2A:35:14:2D:54
Certificate issuer: /CN=cb173e8a827e636c4f251ef363bd94ea90a04cbf
Certificate serial: 01857182FD9AF81E60653ACCFDB66DDF4F73
Authority key identifier: CB:17:3E:8A:82:7E:63:6C:4F:25:1E:F3:63:BD:94:EA:90:A0:4C:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yxc-ioJ-Y2xPJR7zY72U6pCgTL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/ba7854-886d-4148-a208-5c78639264aa/1/q3CZ5JlNr_lJGAkZ-mz5KjUULVQ.roa
Signing time: Mon 02 Jan 2023 08:04:48 +0000
ROA not before: Mon 02 Jan 2023 08:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12843
IP address blocks: 91.208.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:82:fd:9a:f8:1e:60:65:3a:cc:fd:b6:6d:df:4f:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb173e8a827e636c4f251ef363bd94ea90a04cbf
Validity
Not Before: Jan 2 08:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab7099e4994daff949180919fa6cf92a35142d54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:af:8c:52:68:19:8b:12:1b:5c:eb:d7:f0:79:
a5:f8:c3:21:4e:05:b6:3b:93:a1:c6:a5:41:9e:2e:
79:36:0a:ff:68:4c:a8:54:de:26:7e:75:f9:da:d6:
20:6c:fc:46:d5:58:d9:ab:f5:34:0d:c7:78:98:c6:
4e:c8:c1:28:a6:75:7a:e5:e7:1d:4a:34:c5:59:c1:
99:98:57:ca:fb:3b:24:4f:fe:5e:21:94:e3:9e:47:
9c:6c:e7:cf:6f:f2:64:a9:a2:0f:05:61:0d:ea:7c:
5d:25:95:6e:d2:52:e8:6a:52:af:34:b9:f2:ad:25:
90:ab:fe:97:1a:8b:fd:ff:a8:79:35:23:b4:51:9f:
b1:6e:dd:00:79:bd:42:0e:a9:01:3f:c4:2b:2e:71:
23:24:ca:aa:95:dd:50:cd:0b:e8:6a:a5:be:12:d1:
2d:0a:3a:af:e0:a1:e7:d8:ee:e2:b1:cd:58:da:e7:
30:0b:6e:31:be:82:6e:ad:de:50:c5:3d:8d:02:d0:
96:be:a5:9e:09:98:54:ed:ab:f4:87:83:46:cb:41:
d0:55:d3:d7:e5:d7:ec:ea:f8:3f:43:e5:da:d8:f5:
1e:90:a6:3c:58:ac:b5:8d:e5:c2:8f:5c:eb:d6:34:
9c:9a:88:70:54:a2:a1:ef:f2:9e:7b:9f:56:6c:bd:
ad:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:70:99:E4:99:4D:AF:F9:49:18:09:19:FA:6C:F9:2A:35:14:2D:54
X509v3 Authority Key Identifier:
keyid:CB:17:3E:8A:82:7E:63:6C:4F:25:1E:F3:63:BD:94:EA:90:A0:4C:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yxc-ioJ-Y2xPJR7zY72U6pCgTL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/ba7854-886d-4148-a208-5c78639264aa/1/q3CZ5JlNr_lJGAkZ-mz5KjUULVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/ba7854-886d-4148-a208-5c78639264aa/1/yxc-ioJ-Y2xPJR7zY72U6pCgTL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.5.0/24
Signature Algorithm: sha256WithRSAEncryption
12:ee:77:19:67:92:a5:f3:77:fa:19:8c:59:f3:b6:ec:1e:13:
c3:f8:c0:df:9b:b0:43:32:fe:ed:0d:08:3d:b1:5f:e4:9c:c8:
ea:09:18:01:b1:51:f0:2c:95:b6:95:d3:77:5f:f0:22:4e:67:
e3:a9:91:70:e7:27:ae:11:e5:16:c2:c1:9e:a4:b7:53:97:eb:
1d:f1:53:25:8e:94:ca:4d:3c:d7:47:da:8a:de:6d:09:e0:40:
67:4f:56:1c:5b:67:47:b3:3d:5b:5b:61:68:de:05:fb:8a:32:
e6:b4:e0:1c:a3:d0:cf:4e:b7:96:fe:22:9c:e2:31:b3:02:0e:
16:79:2d:7c:96:b2:94:8d:b9:4f:f7:74:82:3d:24:39:d9:fb:
2b:0b:db:9c:05:10:b0:42:86:98:46:fe:7c:da:df:8a:a1:2a:
82:85:74:21:e8:36:0c:50:03:ac:7a:1b:62:0d:aa:0a:77:99:
72:2d:36:eb:eb:d5:5a:89:40:1f:df:34:31:d9:ec:10:01:e5:
e7:4a:f9:2f:0f:75:79:1c:77:ef:e4:7b:33:27:80:fc:67:76:
99:e7:9b:72:4b:e4:5e:4a:7a:c0:d1:99:c8:67:29:03:69:15:
e6:98:6f:89:58:a6:c3:02:8d:bf:21:c8:4a:ec:74:bc:d8:45:
c0:25:fa:95
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxgv2a+B5gZTrM/bZt309zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNiMTczZThhODI3ZTYzNmM0ZjI1MWVmMzYzYmQ5NGVhOTBh
MDRjYmYwHhcNMjMwMTAyMDgwNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYjcwOTllNDk5NGRhZmY5NDkxODA5MTlmYTZjZjkyYTM1MTQyZDU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3K+MUmgZixIbXOvX8Hml+MMhTgW2
O5OhxqVBni55Ngr/aEyoVN4mfnX52tYgbPxG1VjZq/U0Dcd4mMZOyMEopnV65ecd
SjTFWcGZmFfK+zskT/5eIZTjnkecbOfPb/JkqaIPBWEN6nxdJZVu0lLoalKvNLny
rSWQq/6XGov9/6h5NSO0UZ+xbt0Aeb1CDqkBP8QrLnEjJMqqld1QzQvoaqW+EtEt
Cjqv4KHn2O7isc1Y2ucwC24xvoJurd5QxT2NAtCWvqWeCZhU7av0h4NGy0HQVdPX
5dfs6vg/Q+Xa2PUekKY8WKy1jeXCj1zr1jScmohwVKKh7/Kee59WbL2tywIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKtwmeSZTa/5SRgJGfps+So1FC1UMB8GA1UdIwQY
MBaAFMsXPoqCfmNsTyUe82O9lOqQoEy/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveXhjLWlvSi1ZMnhQSlI3elk3MlU2cENnVEw4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC9iYTc4NTQtODg2ZC00MTQ4LWEyMDgt
NWM3ODYzOTI2NGFhLzEvcTNDWjVKbE5yX2xKR0FrWi1tejVLalVVTFZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC9iYTc4NTQtODg2ZC00MTQ4LWEyMDgtNWM3ODYzOTI2NGFh
LzEveXhjLWlvSi1ZMnhQSlI3elk3MlU2cENnVEw4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9AFMA0G
CSqGSIb3DQEBCwUAA4IBAQAS7ncZZ5Kl83f6GYxZ87bsHhPD+MDfm7BDMv7tDQg9
sV/knMjqCRgBsVHwLJW2ldN3X/AiTmfjqZFw5yeuEeUWwsGepLdTl+sd8VMljpTK
TTzXR9qK3m0J4EBnT1YcW2dHsz1bW2Fo3gX7ijLmtOAco9DPTreW/iKc4jGzAg4W
eS18lrKUjblP93SCPSQ52fsrC9ucBRCwQoaYRv582t+KoSqChXQh6DYMUAOsehti
DaoKd5lyLTbr69VaiUAf3zQx2ewQAeXnSvkvD3V5HHfv5HszJ4D8Z3aZ55tyS+Re
SnrA0ZnIZykDaRXmmG+JWKbDAo2/IchK7HS82EXAJfqV
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:22 2024 by rpki-client on console-ams.rpki-client.org