Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/z63Qv8S4RE3CE4g08p6tINnaVaM.roa
File: z63Qv8S4RE3CE4g08p6tINnaVaM.roa (raw, json)
Hash identifier: 9NAaDtO2jXhUX6zE46j1ax9dJwsiuFOfzNkxMHEAhrs=
Subject key identifier: CF:AD:D0:BF:C4:B8:44:4D:C2:13:88:34:F2:9E:AD:20:D9:DA:55:A3
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 018572BA6EB29CF70F1234F34F0D63C7A38D
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/z63Qv8S4RE3CE4g08p6tINnaVaM.roa
Signing time: Mon 02 Jan 2023 13:44:58 +0000
ROA not before: Mon 02 Jan 2023 13:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39344
IP address blocks: 91.205.196.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:6e:b2:9c:f7:0f:12:34:f3:4f:0d:63:c7:a3:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Jan 2 13:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cfadd0bfc4b8444dc2138834f29ead20d9da55a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:06:c6:88:2b:6a:07:de:2d:51:8b:f0:04:21:
b9:cb:a5:f1:29:ce:14:bc:37:82:e4:a6:76:cf:54:
28:7b:59:7e:e7:f2:5e:3c:b2:db:35:46:71:24:72:
5e:d0:d2:30:7d:dd:4a:af:3d:bc:26:96:1e:c0:e6:
0a:76:b8:10:2e:3b:8a:66:b7:ed:e6:dd:7e:b3:b9:
08:d5:7f:04:f8:f4:d7:29:f6:f2:b4:4a:09:60:89:
bf:6c:ff:9f:47:ff:b0:52:1b:c5:e2:60:c6:83:c8:
ce:cf:96:42:10:64:af:e7:2d:86:27:9e:4d:8a:6f:
18:33:a6:82:c0:1c:aa:e0:ad:b4:06:8b:2f:b1:3d:
64:aa:65:52:68:90:ed:da:59:0f:1a:9c:02:34:a3:
ce:5c:c8:2f:11:00:6c:f7:e4:7f:8b:c7:b0:f5:73:
09:ca:5d:21:cf:25:7d:05:f0:00:e7:93:e7:2d:3a:
ab:1c:fe:5c:57:75:ea:05:11:c2:6e:c6:f7:a3:26:
51:73:9d:5d:41:d0:3e:17:0d:48:c3:22:0c:38:54:
f9:52:89:6c:ad:fa:b8:81:cb:2e:12:38:9f:dd:5d:
dc:06:da:79:8c:dc:a4:e9:4b:0b:71:22:a0:45:ce:
b6:59:c3:64:06:ab:05:a1:fe:a1:c0:bb:15:1e:12:
82:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:AD:D0:BF:C4:B8:44:4D:C2:13:88:34:F2:9E:AD:20:D9:DA:55:A3
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/z63Qv8S4RE3CE4g08p6tINnaVaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.205.196.0/23
Signature Algorithm: sha256WithRSAEncryption
65:ad:ac:e5:0d:be:be:1c:f4:f2:ce:52:4e:d3:4c:57:4a:f0:
4a:69:67:ba:8c:af:e8:b0:ce:5b:b1:7a:dc:ca:30:ad:1a:c2:
07:d5:f3:e8:33:46:a0:af:b7:97:32:d3:b4:91:68:68:b1:fa:
22:9d:bc:12:f0:6d:cf:b6:ae:1f:83:d5:85:b1:ec:0b:1b:58:
55:e0:fa:d0:e2:90:a7:5e:42:e3:5d:91:9b:2d:e3:79:a5:b6:
4f:18:a2:57:d1:ce:43:1c:11:ed:50:cf:94:ae:f5:f9:2c:1e:
f3:90:79:e1:75:64:c2:7e:23:12:e3:3f:5c:d6:67:98:8f:c0:
2d:66:36:8d:b8:22:98:c2:27:25:96:79:fe:a8:8e:ee:d5:59:
85:df:f4:fb:c9:a5:58:3c:cf:f4:d8:e9:ed:80:db:7d:14:3b:
4e:23:85:a5:3f:7c:b9:f5:07:86:a1:02:dc:11:27:2f:fb:98:
c8:bb:5e:ca:4c:4c:74:dc:4a:a4:e4:c2:c6:de:a0:5b:f0:f9:
91:96:10:d9:ab:10:c8:7d:e7:22:68:f2:1c:42:3a:a7:3b:fb:
cb:58:87:cc:be:f1:04:41:f2:d2:ee:2a:66:57:d2:cb:ef:fb:
9a:64:92:bb:77:9b:95:c3:62:d1:f3:0d:31:4a:b6:72:4b:52:
7e:7a:f1:93
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyum6ynPcPEjTzTw1jx6ONMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzZThmNGVkNWRkMDYzMDFjNDIzOTg4ZTc4NmRhYmY1MWM1
ZjU2NzQwHhcNMjMwMTAyMTM0NDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZmFkZDBiZmM0Yjg0NDRkYzIxMzg4MzRmMjllYWQyMGQ5ZGE1NWEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhgbGiCtqB94tUYvwBCG5y6XxKc4U
vDeC5KZ2z1Qoe1l+5/JePLLbNUZxJHJe0NIwfd1Krz28JpYewOYKdrgQLjuKZrft
5t1+s7kI1X8E+PTXKfbytEoJYIm/bP+fR/+wUhvF4mDGg8jOz5ZCEGSv5y2GJ55N
im8YM6aCwByq4K20BosvsT1kqmVSaJDt2lkPGpwCNKPOXMgvEQBs9+R/i8ew9XMJ
yl0hzyV9BfAA55PnLTqrHP5cV3XqBRHCbsb3oyZRc51dQdA+Fw1IwyIMOFT5Uols
rfq4gcsuEjif3V3cBtp5jNyk6UsLcSKgRc62WcNkBqsFof6hwLsVHhKCpQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFM+t0L/EuERNwhOINPKerSDZ2lWjMB8GA1UdIwQY
MBaAFJPo9O1d0GMBxCOYjnhtq/UcX1Z0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvay1qMDdWM1FZd0hFSTVpT2VHMnI5UnhmVm5RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi9hNzg5NzktZGQyNC00YmU3LTgxOTQt
MWZjMTllYTczYTJhLzEvejYzUXY4UzRSRTNDRTRnMDhwNnRJTm5hVmFNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi9hNzg5NzktZGQyNC00YmU3LTgxOTQtMWZjMTllYTczYTJh
LzEvay1qMDdWM1FZd0hFSTVpT2VHMnI5UnhmVm5RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW83EMA0G
CSqGSIb3DQEBCwUAA4IBAQBlrazlDb6+HPTyzlJO00xXSvBKaWe6jK/osM5bsXrc
yjCtGsIH1fPoM0agr7eXMtO0kWhosfoinbwS8G3Ptq4fg9WFsewLG1hV4PrQ4pCn
XkLjXZGbLeN5pbZPGKJX0c5DHBHtUM+UrvX5LB7zkHnhdWTCfiMS4z9c1meYj8At
ZjaNuCKYwicllnn+qI7u1VmF3/T7yaVYPM/02OntgNt9FDtOI4WlP3y59QeGoQLc
EScv+5jIu17KTEx03Eqk5MLG3qBb8PmRlhDZqxDIfeciaPIcQjqnO/vLWIfMvvEE
QfLS7ipmV9LL7/uaZJK7d5uVw2LR8w0xSrZyS1J+evGT
-----END CERTIFICATE-----
Generated at Mon Jan 1 15:02:40 2024 by rpki-client on console-ams.rpki-client.org