Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/92c1cf-5a22-453c-907f-eb1f8715eec0/1/5bQsGw8d-jOoiSBzcpZseJ5wA_A.roa
File: 5bQsGw8d-jOoiSBzcpZseJ5wA_A.roa (raw, json)
Hash identifier: n2C3Jh01VlywhIXWewYxOtGcFybxrYLtsqUIsxn9Tlc=
Subject key identifier: E5:B4:2C:1B:0F:1D:FA:33:A8:89:20:73:72:96:6C:78:9E:70:03:F0
Certificate issuer: /CN=b3d66297c5cdbd36d86849ddeae7985979f450ca
Certificate serial: 0185711545CB060687ABABAC62CBC67772B2
Authority key identifier: B3:D6:62:97:C5:CD:BD:36:D8:68:49:DD:EA:E7:98:59:79:F4:50:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s9Zil8XNvTbYaEnd6ueYWXn0UMo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/92c1cf-5a22-453c-907f-eb1f8715eec0/1/5bQsGw8d-jOoiSBzcpZseJ5wA_A.roa
Signing time: Mon 02 Jan 2023 06:04:57 +0000
ROA not before: Mon 02 Jan 2023 06:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 91.241.15.0/24 maxlen: 24
91.241.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Sep 2023 08:52:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:15:45:cb:06:06:87:ab:ab:ac:62:cb:c6:77:72:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3d66297c5cdbd36d86849ddeae7985979f450ca
Validity
Not Before: Jan 2 06:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e5b42c1b0f1dfa33a889207372966c789e7003f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d7:0c:c7:42:2e:50:dc:f7:58:24:05:26:8c:
bf:94:ed:30:e8:af:83:22:8e:8f:79:8e:c6:02:5b:
68:31:73:1d:ea:2b:85:ba:be:98:9a:75:e8:90:bd:
14:eb:83:dc:56:28:ec:e8:4e:5d:a7:3f:5a:76:2d:
a6:93:f3:c6:44:d0:39:83:c1:5c:76:f9:00:20:4d:
7d:b2:0e:81:8a:c4:e4:71:22:be:22:02:25:26:07:
d6:67:7b:a8:66:7d:bf:67:3f:17:0c:45:a5:5d:f4:
c5:32:7a:ce:fe:b9:52:19:cf:d7:69:90:7a:4b:80:
dd:d2:62:ac:51:4e:4f:e8:16:60:59:1f:33:53:39:
41:f8:d7:91:82:b3:0d:01:ea:6c:c8:21:b2:4e:76:
a7:ed:60:39:fe:0c:5b:8e:84:f6:a2:7b:ca:58:35:
5f:86:20:35:16:5a:1b:54:93:87:aa:a0:8f:15:8b:
53:39:c3:b3:06:d7:54:01:a0:a7:28:8b:39:f1:c8:
ce:1d:fc:d1:d9:fd:8f:5a:f5:09:5f:71:cc:b1:45:
fa:0a:95:49:b3:c2:bf:60:de:49:4d:6b:0f:a5:cd:
9b:84:43:f1:b1:dc:44:7f:7d:52:4a:ab:2e:bd:a6:
fa:7a:53:c7:ed:b2:b7:95:d4:17:0a:db:bd:6c:03:
d8:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:B4:2C:1B:0F:1D:FA:33:A8:89:20:73:72:96:6C:78:9E:70:03:F0
X509v3 Authority Key Identifier:
keyid:B3:D6:62:97:C5:CD:BD:36:D8:68:49:DD:EA:E7:98:59:79:F4:50:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s9Zil8XNvTbYaEnd6ueYWXn0UMo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/92c1cf-5a22-453c-907f-eb1f8715eec0/1/5bQsGw8d-jOoiSBzcpZseJ5wA_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/92c1cf-5a22-453c-907f-eb1f8715eec0/1/s9Zil8XNvTbYaEnd6ueYWXn0UMo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.241.14.0/23
Signature Algorithm: sha256WithRSAEncryption
99:d2:56:67:d5:01:bd:b7:ff:95:88:46:b2:42:35:40:26:1a:
56:32:0a:d3:d9:bf:95:83:cd:9c:d7:a8:e8:7e:0e:0a:60:b3:
37:a4:f7:c4:b7:e5:93:b9:2e:69:09:0b:27:80:01:d7:d3:68:
b9:07:92:72:28:92:98:5c:1e:d9:53:dd:d0:ce:5c:33:b2:27:
0f:9f:5e:60:b7:17:d6:6a:21:43:b0:5e:3c:c5:96:9b:46:58:
ba:49:6c:cd:a2:c8:59:99:f5:a7:e3:29:b2:6b:5f:16:08:65:
63:8a:04:59:ea:d0:6d:23:7d:c9:eb:09:81:47:1e:f9:6f:e8:
ce:bb:a6:cb:77:34:18:37:68:fc:35:16:7c:29:98:21:d0:90:
c0:cf:14:99:c9:a4:f4:34:a7:0e:f4:34:d2:76:ae:a9:40:61:
bb:2f:81:d5:b1:13:ab:6c:2f:5f:59:7b:59:7f:ac:88:93:ac:
37:d5:92:c5:ab:84:9c:13:03:fc:bd:cc:af:91:e5:c6:81:5f:
ff:db:91:9b:e6:bd:c6:5e:e7:e7:65:38:94:d2:86:d6:c6:7e:
4d:80:9f:7a:13:33:63:0e:a9:a9:57:a4:68:2c:5b:3f:c4:c9:
de:16:e9:f6:1a:26:c5:46:c9:65:42:3f:6d:06:a9:e2:0c:9f:
a3:e1:32:79
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxFUXLBgaHq6usYsvGd3KyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzZDY2Mjk3YzVjZGJkMzZkODY4NDlkZGVhZTc5ODU5Nzlm
NDUwY2EwHhcNMjMwMTAyMDYwNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNWI0MmMxYjBmMWRmYTMzYTg4OTIwNzM3Mjk2NmM3ODllNzAwM2YwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw9cMx0IuUNz3WCQFJoy/lO0w6K+D
Io6PeY7GAltoMXMd6iuFur6YmnXokL0U64PcVijs6E5dpz9adi2mk/PGRNA5g8Fc
dvkAIE19sg6BisTkcSK+IgIlJgfWZ3uoZn2/Zz8XDEWlXfTFMnrO/rlSGc/XaZB6
S4Dd0mKsUU5P6BZgWR8zUzlB+NeRgrMNAepsyCGyTnan7WA5/gxbjoT2onvKWDVf
hiA1FlobVJOHqqCPFYtTOcOzBtdUAaCnKIs58cjOHfzR2f2PWvUJX3HMsUX6CpVJ
s8K/YN5JTWsPpc2bhEPxsdxEf31SSqsuvab6elPH7bK3ldQXCtu9bAPYPwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOW0LBsPHfozqIkgc3KWbHiecAPwMB8GA1UdIwQY
MBaAFLPWYpfFzb022GhJ3ernmFl59FDKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczlaaWw4WE52VGJZYUVuZDZ1ZVlXWG4wVU1vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS85MmMxY2YtNWEyMi00NTNjLTkwN2Yt
ZWIxZjg3MTVlZWMwLzEvNWJRc0d3OGQtak9vaVNCemNwWnNlSjV3QV9BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS85MmMxY2YtNWEyMi00NTNjLTkwN2YtZWIxZjg3MTVlZWMw
LzEvczlaaWw4WE52VGJZYUVuZDZ1ZVlXWG4wVU1vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW/EOMA0G
CSqGSIb3DQEBCwUAA4IBAQCZ0lZn1QG9t/+ViEayQjVAJhpWMgrT2b+Vg82c16jo
fg4KYLM3pPfEt+WTuS5pCQsngAHX02i5B5JyKJKYXB7ZU93QzlwzsicPn15gtxfW
aiFDsF48xZabRli6SWzNoshZmfWn4ymya18WCGVjigRZ6tBtI33J6wmBRx75b+jO
u6bLdzQYN2j8NRZ8KZgh0JDAzxSZyaT0NKcO9DTSdq6pQGG7L4HVsROrbC9fWXtZ
f6yIk6w31ZLFq4ScEwP8vcyvkeXGgV//25Gb5r3GXufnZTiU0obWxn5NgJ96EzNj
DqmpV6RoLFs/xMneFun2GibFRsllQj9tBqniDJ+j4TJ5
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:56 2024 by rpki-client on console-ams.rpki-client.org