Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/70c19f-29ca-4b62-ac62-8ba768022763/1/FyAjAh1DaPdMet1uwgNH3qB0zXQ.roa
File: FyAjAh1DaPdMet1uwgNH3qB0zXQ.roa (raw, json)
Hash identifier: h6kfi6FB/rtEcJnnKbgjjlXR0i3anw2u5Q+w09SClT4=
Subject key identifier: 17:20:23:02:1D:43:68:F7:4C:7A:DD:6E:C2:03:47:DE:A0:74:CD:74
Certificate issuer: /CN=837e177f76663166c75190e2d209335a6aae5ace
Certificate serial: 01856CAF1578C1419B0CCD62C91964888B3C
Authority key identifier: 83:7E:17:7F:76:66:31:66:C7:51:90:E2:D2:09:33:5A:6A:AE:5A:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g34Xf3ZmMWbHUZDi0gkzWmquWs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/70c19f-29ca-4b62-ac62-8ba768022763/1/FyAjAh1DaPdMet1uwgNH3qB0zXQ.roa
Signing time: Sun 01 Jan 2023 09:34:51 +0000
ROA not before: Sun 01 Jan 2023 09:34:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57069
IP address blocks: 91.226.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:30:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:15:78:c1:41:9b:0c:cd:62:c9:19:64:88:8b:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=837e177f76663166c75190e2d209335a6aae5ace
Validity
Not Before: Jan 1 09:34:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=172023021d4368f74c7add6ec20347dea074cd74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e8:af:a4:ef:62:b8:e9:8b:9b:4b:cf:da:78:
aa:66:fc:65:78:65:b9:93:31:c2:7c:68:13:09:48:
93:08:00:49:47:c0:64:1c:a6:c6:cf:fe:78:05:23:
6a:13:67:70:b5:a7:ef:cf:76:98:04:86:61:60:d1:
37:2a:dd:53:dc:ee:ad:53:53:40:52:80:b0:59:b1:
43:1f:db:d0:70:6b:f0:36:be:78:9b:f1:4d:ba:1f:
89:a8:33:9f:77:21:76:b1:04:51:17:7b:f8:92:d8:
3b:57:26:f8:dc:ad:7d:e8:ba:66:3c:9e:74:4e:8b:
92:cb:a4:43:6b:44:01:76:5c:74:0b:da:97:0c:de:
3a:a6:37:5e:16:5d:d4:33:5d:8a:3c:05:6e:44:2a:
cb:c2:0b:5e:d7:c3:9f:1e:bc:87:d3:e1:74:04:e9:
2b:b0:87:81:7e:c9:58:e0:04:8b:b2:1d:09:9c:ee:
56:6c:0f:df:43:89:ca:0d:c9:7d:87:1c:10:fe:84:
c9:d6:15:f5:e2:ed:9d:cc:28:e5:e1:aa:59:15:d9:
be:46:d7:be:7b:5f:93:83:97:79:d3:c7:6b:c3:25:
86:39:c1:2a:d8:4a:15:43:c0:f9:0f:96:97:92:b3:
e8:a4:36:fa:5b:cd:3e:1a:2b:82:d7:26:62:16:a8:
8d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:20:23:02:1D:43:68:F7:4C:7A:DD:6E:C2:03:47:DE:A0:74:CD:74
X509v3 Authority Key Identifier:
keyid:83:7E:17:7F:76:66:31:66:C7:51:90:E2:D2:09:33:5A:6A:AE:5A:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g34Xf3ZmMWbHUZDi0gkzWmquWs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/70c19f-29ca-4b62-ac62-8ba768022763/1/FyAjAh1DaPdMet1uwgNH3qB0zXQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/70c19f-29ca-4b62-ac62-8ba768022763/1/g34Xf3ZmMWbHUZDi0gkzWmquWs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.226.219.0/24
Signature Algorithm: sha256WithRSAEncryption
83:36:f1:d2:56:02:a5:b2:c8:88:3a:58:2f:c3:f9:7a:9a:81:
37:72:d4:8c:9f:3e:11:18:8b:dc:d5:82:3c:34:d8:a1:81:67:
58:df:63:ec:41:94:6e:76:1d:f5:a6:89:ed:3e:d7:58:4f:a8:
e8:d8:d4:6c:5c:d8:e5:87:da:a5:81:2e:32:5e:3c:d4:1d:d4:
6f:91:b5:91:76:b5:bc:ff:0d:b4:77:a3:9d:ae:8d:9d:28:49:
fc:f5:ab:3e:17:f6:69:c1:73:15:93:9c:12:b3:af:35:a4:64:
81:de:b4:20:09:00:b4:74:09:c2:15:85:d4:7c:ce:53:5d:09:
24:ed:55:a6:e0:23:9a:ae:aa:a5:0b:9b:a1:53:df:1f:14:f5:
a6:d5:2c:6f:95:40:8b:12:56:1a:eb:63:3b:e1:57:ac:e7:b6:
32:72:52:7f:ec:d2:7d:a3:d7:a2:0c:2b:11:d8:e8:e4:00:4f:
22:4f:4d:26:b5:41:63:76:85:51:53:26:ad:50:aa:2d:43:86:
4e:95:37:2c:70:d8:ee:4d:59:f2:fc:94:bc:70:ad:ab:82:a0:
42:0f:52:4b:55:1f:50:39:59:01:10:06:aa:40:2e:19:58:da:
8d:eb:a7:8d:18:cb:33:82:7f:d8:c6:a0:77:b5:0a:69:b2:72:
22:d1:f1:f2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsrxV4wUGbDM1iyRlkiIs8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzN2UxNzdmNzY2NjMxNjZjNzUxOTBlMmQyMDkzMzVhNmFh
ZTVhY2UwHhcNMjMwMTAxMDkzNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNzIwMjMwMjFkNDM2OGY3NGM3YWRkNmVjMjAzNDdkZWEwNzRjZDc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoOivpO9iuOmLm0vP2niqZvxleGW5
kzHCfGgTCUiTCABJR8BkHKbGz/54BSNqE2dwtafvz3aYBIZhYNE3Kt1T3O6tU1NA
UoCwWbFDH9vQcGvwNr54m/FNuh+JqDOfdyF2sQRRF3v4ktg7Vyb43K196LpmPJ50
TouSy6RDa0QBdlx0C9qXDN46pjdeFl3UM12KPAVuRCrLwgte18OfHryH0+F0BOkr
sIeBfslY4ASLsh0JnO5WbA/fQ4nKDcl9hxwQ/oTJ1hX14u2dzCjl4apZFdm+Rte+
e1+Tg5d508drwyWGOcEq2EoVQ8D5D5aXkrPopDb6W80+GiuC1yZiFqiNswIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBcgIwIdQ2j3THrdbsIDR96gdM10MB8GA1UdIwQY
MBaAFIN+F392ZjFmx1GQ4tIJM1pqrlrOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZzM0WGYzWm1NV2JIVVpEaTBna3pXbXF1V3M0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My83MGMxOWYtMjljYS00YjYyLWFjNjIt
OGJhNzY4MDIyNzYzLzEvRnlBakFoMURhUGRNZXQxdXdnTkgzcUIwelhRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My83MGMxOWYtMjljYS00YjYyLWFjNjItOGJhNzY4MDIyNzYz
LzEvZzM0WGYzWm1NV2JIVVpEaTBna3pXbXF1V3M0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+LbMA0G
CSqGSIb3DQEBCwUAA4IBAQCDNvHSVgKlssiIOlgvw/l6moE3ctSMnz4RGIvc1YI8
NNihgWdY32PsQZRudh31pontPtdYT6jo2NRsXNjlh9qlgS4yXjzUHdRvkbWRdrW8
/w20d6Odro2dKEn89as+F/ZpwXMVk5wSs681pGSB3rQgCQC0dAnCFYXUfM5TXQkk
7VWm4COarqqlC5uhU98fFPWm1SxvlUCLElYa62M74Ves57YyclJ/7NJ9o9eiDCsR
2OjkAE8iT00mtUFjdoVRUyatUKotQ4ZOlTcscNjuTVny/JS8cK2rgqBCD1JLVR9Q
OVkBEAaqQC4ZWNqN66eNGMszgn/YxqB3tQppsnIi0fHy
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:35 2024 by rpki-client on console-ams.rpki-client.org