Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/38006f-fbfc-48aa-85ef-065bc28c2a52/1/ApNGpQ2WLprVXndpXCpaGNiq4Ow.roa
File: ApNGpQ2WLprVXndpXCpaGNiq4Ow.roa (raw, json)
Hash identifier: K4+zH/02tI+tQG1U98aL49dVl986UWY4jbfX8PD406c=
Subject key identifier: 02:93:46:A5:0D:96:2E:9A:D5:5E:77:69:5C:2A:5A:18:D8:AA:E0:EC
Certificate issuer: /CN=5847f1f4f6bcb2a4758ac8a997bc108000e418d1
Certificate serial: 018B5F199CC2DB5BBCF85244456D732FC87C
Authority key identifier: 58:47:F1:F4:F6:BC:B2:A4:75:8A:C8:A9:97:BC:10:80:00:E4:18:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WEfx9Pa8sqR1isipl7wQgADkGNE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/38006f-fbfc-48aa-85ef-065bc28c2a52/1/ApNGpQ2WLprVXndpXCpaGNiq4Ow.roa
Signing time: Tue 24 Oct 2023 00:33:15 +0000
ROA not before: Tue 24 Oct 2023 00:33:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12570
IP address blocks: 91.222.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5f:19:9c:c2:db:5b:bc:f8:52:44:45:6d:73:2f:c8:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5847f1f4f6bcb2a4758ac8a997bc108000e418d1
Validity
Not Before: Oct 24 00:33:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=029346a50d962e9ad55e77695c2a5a18d8aae0ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:8e:5f:9e:63:b6:6e:04:47:cf:e0:4d:8b:f2:
ef:d5:ea:8e:fd:18:c3:d2:95:74:ae:06:56:70:4b:
c2:b1:ee:90:8a:f6:3d:b5:fc:90:40:69:fd:40:aa:
16:74:ab:03:c8:f1:b0:2a:6a:b6:96:19:0b:84:55:
10:2d:35:86:d0:8f:12:6f:38:e7:5d:4f:c0:cf:b8:
a5:71:dc:51:78:50:0f:47:62:29:00:b9:69:14:9f:
35:3a:3d:46:ca:45:97:6c:e7:0a:21:af:ff:9f:f2:
cc:70:ce:74:b3:9c:d4:c7:8f:cf:c6:87:11:1b:fd:
f5:63:d3:63:79:a6:f9:43:f4:1d:55:9f:70:30:b7:
01:bd:e6:ed:9c:a9:5b:c9:18:e0:b3:7d:c3:25:ff:
b5:23:5b:5d:72:2f:50:91:aa:4e:37:78:cd:33:19:
95:07:5a:56:98:01:d7:31:8d:db:9c:c0:b1:3b:f9:
7c:57:95:53:47:02:b9:58:4a:2f:3c:30:8a:d2:c4:
40:7b:92:f7:0f:36:17:35:cf:f0:12:cc:41:18:d7:
b5:fc:13:2c:fe:91:bd:46:a3:10:2f:6c:a6:5e:eb:
f9:69:2e:d4:96:54:1d:49:88:b1:b3:d6:e7:16:c8:
56:9d:45:92:b7:17:57:da:a8:05:88:28:d6:ea:8f:
84:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:93:46:A5:0D:96:2E:9A:D5:5E:77:69:5C:2A:5A:18:D8:AA:E0:EC
X509v3 Authority Key Identifier:
keyid:58:47:F1:F4:F6:BC:B2:A4:75:8A:C8:A9:97:BC:10:80:00:E4:18:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WEfx9Pa8sqR1isipl7wQgADkGNE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/38006f-fbfc-48aa-85ef-065bc28c2a52/1/ApNGpQ2WLprVXndpXCpaGNiq4Ow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/38006f-fbfc-48aa-85ef-065bc28c2a52/1/WEfx9Pa8sqR1isipl7wQgADkGNE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.222.52.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:e0:49:3e:62:4d:41:b5:1d:df:f5:2e:af:9c:b6:13:1c:31:
2e:5d:f8:86:aa:8f:70:7c:5f:41:8c:73:25:54:a6:9e:43:01:
0f:61:64:56:09:df:7e:09:b8:fa:f0:9f:94:04:2a:06:38:ac:
d7:ea:9b:02:20:6d:ea:c4:89:f3:b3:4e:df:63:fe:a3:36:ca:
94:e4:10:c6:88:99:bf:4e:93:9b:19:ab:9a:fe:c0:ab:68:bd:
7f:58:96:fa:23:ac:c1:9b:13:8b:27:e7:d4:8d:3f:54:d0:df:
64:e3:6d:64:ba:e5:89:3b:a5:e0:50:ab:d7:5f:dd:87:ea:9c:
5b:96:87:33:65:1e:48:5d:36:17:42:0e:2a:08:07:e5:45:5b:
80:2d:b9:3c:45:35:42:17:e7:f8:a7:0c:5b:40:a8:d7:e4:8a:
32:97:c7:a8:5d:b6:46:0c:ff:9b:06:62:a7:dd:b3:4b:7d:b6:
18:27:38:59:49:08:9b:d8:c4:82:5c:49:69:0e:33:46:fe:fe:
3d:94:b3:f6:67:b4:7f:6a:5b:07:13:b7:58:33:75:9d:ae:3f:
5c:6a:9e:e0:c3:2e:3d:7c:01:12:4e:0e:1b:37:19:aa:75:25:
c4:48:97:d5:f1:b7:2f:98:3f:44:3f:55:af:56:e9:93:67:07:
dd:88:36:9c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYtfGZzC21u8+FJERW1zL8h8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4NDdmMWY0ZjZiY2IyYTQ3NThhYzhhOTk3YmMxMDgwMDBl
NDE4ZDEwHhcNMjMxMDI0MDAzMzE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMjkzNDZhNTBkOTYyZTlhZDU1ZTc3Njk1YzJhNWExOGQ4YWFlMGVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgY5fnmO2bgRHz+BNi/Lv1eqO/RjD
0pV0rgZWcEvCse6QivY9tfyQQGn9QKoWdKsDyPGwKmq2lhkLhFUQLTWG0I8Sbzjn
XU/Az7ilcdxReFAPR2IpALlpFJ81Oj1GykWXbOcKIa//n/LMcM50s5zUx4/PxocR
G/31Y9Njeab5Q/QdVZ9wMLcBvebtnKlbyRjgs33DJf+1I1tdci9QkapON3jNMxmV
B1pWmAHXMY3bnMCxO/l8V5VTRwK5WEovPDCK0sRAe5L3DzYXNc/wEsxBGNe1/BMs
/pG9RqMQL2ymXuv5aS7UllQdSYixs9bnFshWnUWStxdX2qgFiCjW6o+EBQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAKTRqUNli6a1V53aVwqWhjYquDsMB8GA1UdIwQY
MBaAFFhH8fT2vLKkdYrIqZe8EIAA5BjRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0VmeDlQYThzcVIxaXNpcGw3d1FnQURrR05FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8zODAwNmYtZmJmYy00OGFhLTg1ZWYt
MDY1YmMyOGMyYTUyLzEvQXBOR3BRMldMcHJWWG5kcFhDcGFHTmlxNE93LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC8zODAwNmYtZmJmYy00OGFhLTg1ZWYtMDY1YmMyOGMyYTUy
LzEvV0VmeDlQYThzcVIxaXNpcGw3d1FnQURrR05FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW940MA0G
CSqGSIb3DQEBCwUAA4IBAQAq4Ek+Yk1BtR3f9S6vnLYTHDEuXfiGqo9wfF9BjHMl
VKaeQwEPYWRWCd9+Cbj68J+UBCoGOKzX6psCIG3qxInzs07fY/6jNsqU5BDGiJm/
TpObGaua/sCraL1/WJb6I6zBmxOLJ+fUjT9U0N9k421kuuWJO6XgUKvXX92H6pxb
loczZR5IXTYXQg4qCAflRVuALbk8RTVCF+f4pwxbQKjX5Ioyl8eoXbZGDP+bBmKn
3bNLfbYYJzhZSQib2MSCXElpDjNG/v49lLP2Z7R/alsHE7dYM3Wdrj9cap7gwy49
fAESTg4bNxmqdSXESJfV8bcvmD9EP1WvVumTZwfdiDac
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:45 2024 by rpki-client on console-fra.rpki-client.org