Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/92c1cf-5a22-453c-907f-eb1f8715eec0/1/cZL2fX6TFRAIllSE5hg0LnpCJ1M.roa
File: cZL2fX6TFRAIllSE5hg0LnpCJ1M.roa (raw, json)
Hash identifier: yxDgX004gfaJoJuMP/neTyznGmCPuQCTZdQC4cqPTbQ=
Subject key identifier: 71:92:F6:7D:7E:93:15:10:08:96:54:84:E6:18:34:2E:7A:42:27:53
Certificate issuer: /CN=b3d66297c5cdbd36d86849ddeae7985979f450ca
Certificate serial: 018AACA467A43EA957654BC3FAEDCE8A3156
Authority key identifier: B3:D6:62:97:C5:CD:BD:36:D8:68:49:DD:EA:E7:98:59:79:F4:50:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s9Zil8XNvTbYaEnd6ueYWXn0UMo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/92c1cf-5a22-453c-907f-eb1f8715eec0/1/cZL2fX6TFRAIllSE5hg0LnpCJ1M.roa
Signing time: Tue 19 Sep 2023 08:52:50 +0000
ROA not before: Tue 19 Sep 2023 08:52:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 91.241.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ac:a4:67:a4:3e:a9:57:65:4b:c3:fa:ed:ce:8a:31:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3d66297c5cdbd36d86849ddeae7985979f450ca
Validity
Not Before: Sep 19 08:52:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7192f67d7e93151008965484e618342e7a422753
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b1:2c:85:c5:ac:b3:3a:02:a6:ad:55:88:cf:
72:79:2b:43:7a:ca:cd:48:61:0a:d6:67:e6:68:a0:
3a:49:04:38:c2:d6:43:71:0e:46:76:29:41:32:19:
c0:83:43:aa:88:0c:64:d1:79:72:43:c0:a7:8e:0e:
1b:c1:ce:d2:e7:9d:1c:eb:6d:1c:27:e0:9d:d3:ca:
28:2d:40:c1:06:44:a8:77:9f:6e:1a:b5:8b:16:da:
73:93:31:c8:4d:2b:00:05:cd:ef:f0:bb:b0:2f:13:
f7:ed:63:eb:48:36:89:5d:6e:61:e2:89:f4:47:97:
a0:f0:df:8a:24:7f:f5:ff:bd:87:6a:32:7b:c7:f7:
fb:86:a1:e9:98:c2:d7:8c:77:e2:9b:b2:0b:fb:ae:
ad:9c:e3:ef:9a:2b:ce:1e:31:e9:0e:9e:66:79:e4:
58:9b:90:76:55:1a:20:5b:3f:94:aa:71:64:88:38:
b0:a2:5a:e2:37:8b:a3:99:21:b8:9c:8c:84:20:15:
8b:c6:98:07:6f:a9:6b:d4:4d:6f:7e:bc:8a:73:6b:
69:d4:71:a0:f7:ea:82:9e:47:19:3c:a9:5d:5c:fc:
24:73:b8:33:a2:ef:12:4b:ec:ff:7e:f4:17:06:a7:
43:dd:2f:f9:2e:6c:68:cb:df:6b:3b:97:4b:77:92:
ea:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:92:F6:7D:7E:93:15:10:08:96:54:84:E6:18:34:2E:7A:42:27:53
X509v3 Authority Key Identifier:
keyid:B3:D6:62:97:C5:CD:BD:36:D8:68:49:DD:EA:E7:98:59:79:F4:50:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s9Zil8XNvTbYaEnd6ueYWXn0UMo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/92c1cf-5a22-453c-907f-eb1f8715eec0/1/cZL2fX6TFRAIllSE5hg0LnpCJ1M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/92c1cf-5a22-453c-907f-eb1f8715eec0/1/s9Zil8XNvTbYaEnd6ueYWXn0UMo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.241.14.0/24
Signature Algorithm: sha256WithRSAEncryption
10:c2:00:a0:59:05:11:80:f7:1c:b7:15:f9:53:1b:c5:46:c7:
89:96:cb:ad:2f:af:24:b3:89:cb:4a:a4:c9:ff:a9:9f:cc:a5:
91:94:86:30:74:d9:2e:15:b8:c8:f6:5c:e5:a7:4a:a0:c8:2d:
99:c3:0d:d2:ea:9f:2e:63:c4:13:35:6c:cf:11:fa:92:7a:ce:
34:e8:f0:5c:3e:10:cf:2f:5b:b6:33:2c:b6:c2:a8:65:31:0c:
54:32:d1:08:54:2f:89:38:5f:65:9c:d4:62:57:7b:22:7d:31:
bb:b7:84:74:35:d6:7d:91:0b:90:83:fb:71:21:29:c8:b1:25:
5f:d2:d8:e0:eb:8a:7b:43:0c:ad:35:8b:7d:d1:c3:c9:9a:89:
5e:ec:72:4a:c4:41:54:3e:4d:d7:c0:62:b7:81:3d:dc:b2:d7:
b7:35:07:54:c8:4a:b2:12:5d:77:2b:f6:40:11:67:f8:ba:43:
1e:86:8e:b4:af:bf:c0:b3:84:36:62:e8:a1:a0:51:35:a7:d6:
e7:85:0c:ba:59:43:fb:7d:94:9f:d4:0e:2a:e2:fd:dd:f1:c0:
31:87:a3:ee:8c:20:71:8e:c9:3e:27:c9:34:a1:8f:20:bd:f3:
69:9d:f8:f7:ef:09:a4:f1:56:c5:50:91:e8:3e:e9:1c:99:a3:
55:42:ad:db
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYqspGekPqlXZUvD+u3OijFWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzZDY2Mjk3YzVjZGJkMzZkODY4NDlkZGVhZTc5ODU5Nzlm
NDUwY2EwHhcNMjMwOTE5MDg1MjUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MTkyZjY3ZDdlOTMxNTEwMDg5NjU0ODRlNjE4MzQyZTdhNDIyNzUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqLEshcWsszoCpq1ViM9yeStDesrN
SGEK1mfmaKA6SQQ4wtZDcQ5GdilBMhnAg0OqiAxk0XlyQ8Cnjg4bwc7S550c620c
J+Cd08ooLUDBBkSod59uGrWLFtpzkzHITSsABc3v8LuwLxP37WPrSDaJXW5h4on0
R5eg8N+KJH/1/72HajJ7x/f7hqHpmMLXjHfim7IL+66tnOPvmivOHjHpDp5meeRY
m5B2VRogWz+UqnFkiDiwolriN4ujmSG4nIyEIBWLxpgHb6lr1E1vfryKc2tp1HGg
9+qCnkcZPKldXPwkc7gzou8SS+z/fvQXBqdD3S/5Lmxoy99rO5dLd5Lq8QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHGS9n1+kxUQCJZUhOYYNC56QidTMB8GA1UdIwQY
MBaAFLPWYpfFzb022GhJ3ernmFl59FDKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczlaaWw4WE52VGJZYUVuZDZ1ZVlXWG4wVU1vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS85MmMxY2YtNWEyMi00NTNjLTkwN2Yt
ZWIxZjg3MTVlZWMwLzEvY1pMMmZYNlRGUkFJbGxTRTVoZzBMbnBDSjFNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS85MmMxY2YtNWEyMi00NTNjLTkwN2YtZWIxZjg3MTVlZWMw
LzEvczlaaWw4WE52VGJZYUVuZDZ1ZVlXWG4wVU1vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW/EOMA0G
CSqGSIb3DQEBCwUAA4IBAQAQwgCgWQURgPcctxX5UxvFRseJlsutL68ks4nLSqTJ
/6mfzKWRlIYwdNkuFbjI9lzlp0qgyC2Zww3S6p8uY8QTNWzPEfqSes406PBcPhDP
L1u2Myy2wqhlMQxUMtEIVC+JOF9lnNRiV3sifTG7t4R0NdZ9kQuQg/txISnIsSVf
0tjg64p7QwytNYt90cPJmole7HJKxEFUPk3XwGK3gT3cste3NQdUyEqyEl13K/ZA
EWf4ukMeho60r7/As4Q2YuihoFE1p9bnhQy6WUP7fZSf1A4q4v3d8cAxh6PujCBx
jsk+J8k0oY8gvfNpnfj37wmk8VbFUJHoPukcmaNVQq3b
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:03 2024 by rpki-client on console-fra.rpki-client.org