Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/q-cDEgThMzsb8OKHx98pjk-_z0M.roa
File: q-cDEgThMzsb8OKHx98pjk-_z0M.roa (raw, json)
Hash identifier: JZM5cFW7rGRpukkdixj221aBxwgurRAh+ygB7wHjFKU=
Subject key identifier: AB:E7:03:12:04:E1:33:3B:1B:F0:E2:87:C7:DF:29:8E:4F:BF:CF:43
Certificate issuer: /CN=db7ba2a2f0bfa3a76f5c991a47cd9868c6d1ebbe
Certificate serial: 01856E01E834CA2C04F95611DEBA5F7C1D93
Authority key identifier: DB:7B:A2:A2:F0:BF:A3:A7:6F:5C:99:1A:47:CD:98:68:C6:D1:EB:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/23uiovC_o6dvXJkaR82YaMbR674.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/q-cDEgThMzsb8OKHx98pjk-_z0M.roa
Signing time: Sun 01 Jan 2023 15:44:56 +0000
ROA not before: Sun 01 Jan 2023 15:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57630
IP address blocks: 91.237.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:01:e8:34:ca:2c:04:f9:56:11:de:ba:5f:7c:1d:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db7ba2a2f0bfa3a76f5c991a47cd9868c6d1ebbe
Validity
Not Before: Jan 1 15:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=abe7031204e1333b1bf0e287c7df298e4fbfcf43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ec:59:5d:be:65:8f:71:ce:9f:aa:d2:bb:4b:
64:b9:2a:56:e6:65:3d:89:d1:7a:a1:ed:8e:55:16:
9c:00:e5:a7:92:9b:f7:0d:1e:68:19:63:99:1b:eb:
21:7c:1a:d2:1d:17:07:1a:c9:a8:1f:e4:0f:d9:47:
fe:63:3c:9a:d2:45:c3:98:20:42:e2:bf:61:15:f0:
37:df:fa:63:26:e3:99:f7:54:f5:2b:7b:8a:e6:14:
30:f8:01:7f:af:d0:8b:f2:54:ce:07:c9:ed:8d:f9:
e2:03:cd:ac:8c:83:6e:dd:7c:35:1c:52:47:74:07:
35:eb:11:ed:d9:00:e0:0e:fc:0a:50:ba:f4:43:d4:
77:19:65:fe:6d:81:36:7d:9d:f8:c8:85:e3:49:73:
7e:2d:85:95:a2:3d:d4:bd:09:d3:d5:9e:58:30:94:
3b:70:d8:14:fd:0f:fe:d8:28:5a:1c:20:0f:c4:b2:
28:7f:a6:41:47:d3:50:8d:21:fa:85:b0:4c:46:1e:
c6:88:be:7b:45:b0:36:ff:36:6b:84:4f:a0:4a:54:
97:e0:8d:89:70:92:4d:25:39:ef:8c:21:c8:0a:a0:
7c:c8:42:a1:12:18:e9:ca:8f:d0:33:d5:e7:d2:2a:
4e:91:72:4d:85:07:4f:d2:73:45:cd:c2:b5:c1:03:
cf:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:E7:03:12:04:E1:33:3B:1B:F0:E2:87:C7:DF:29:8E:4F:BF:CF:43
X509v3 Authority Key Identifier:
keyid:DB:7B:A2:A2:F0:BF:A3:A7:6F:5C:99:1A:47:CD:98:68:C6:D1:EB:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/23uiovC_o6dvXJkaR82YaMbR674.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/q-cDEgThMzsb8OKHx98pjk-_z0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.106.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:3a:4c:79:fa:78:90:b0:da:8d:a0:a7:41:59:ac:79:7b:4c:
48:51:0d:95:9e:e5:28:86:6a:ab:6e:2f:7c:e0:25:06:39:50:
94:56:1a:fa:b6:ff:69:31:6f:a9:f5:55:11:05:ce:89:50:7e:
ac:b2:97:b2:1d:09:53:3a:f8:48:88:e3:8b:e9:55:b5:7f:a8:
50:b5:c4:45:fe:57:8f:24:0d:2e:ae:7b:f3:ba:aa:4a:c6:b8:
12:27:c6:0c:01:46:b3:cf:9e:d8:7d:30:07:05:70:bb:2c:df:
41:b6:29:a1:b3:1d:26:f7:ca:38:86:c0:90:87:ae:25:58:08:
6c:66:f4:a6:f5:e3:62:92:26:22:bc:72:4b:db:02:ef:b0:d3:
05:5e:1e:78:f4:84:9e:a6:45:27:3a:45:00:b3:96:b5:13:21:
34:da:72:4e:02:5b:58:46:b7:09:0d:7f:42:0a:53:46:4d:25:
76:5c:39:d1:7d:4a:15:76:a0:74:1e:5b:4a:f3:68:8d:25:06:
f8:4b:cb:d8:28:35:f2:0e:0c:05:bc:77:64:06:00:af:ba:d1:
b1:ce:3a:c4:7d:16:a7:9e:4b:0f:49:e7:67:6f:23:ff:7f:46:
84:9b:50:6b:39:4a:27:8d:4a:51:ec:bd:3f:34:68:1a:ec:ba:
cb:3b:17:ce
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuAeg0yiwE+VYR3rpffB2TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiN2JhMmEyZjBiZmEzYTc2ZjVjOTkxYTQ3Y2Q5ODY4YzZk
MWViYmUwHhcNMjMwMTAxMTU0NDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYmU3MDMxMjA0ZTEzMzNiMWJmMGUyODdjN2RmMjk4ZTRmYmZjZjQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs+xZXb5lj3HOn6rSu0tkuSpW5mU9
idF6oe2OVRacAOWnkpv3DR5oGWOZG+shfBrSHRcHGsmoH+QP2Uf+Yzya0kXDmCBC
4r9hFfA33/pjJuOZ91T1K3uK5hQw+AF/r9CL8lTOB8ntjfniA82sjINu3Xw1HFJH
dAc16xHt2QDgDvwKULr0Q9R3GWX+bYE2fZ34yIXjSXN+LYWVoj3UvQnT1Z5YMJQ7
cNgU/Q/+2ChaHCAPxLIof6ZBR9NQjSH6hbBMRh7GiL57RbA2/zZrhE+gSlSX4I2J
cJJNJTnvjCHICqB8yEKhEhjpyo/QM9Xn0ipOkXJNhQdP0nNFzcK1wQPPJQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKvnAxIE4TM7G/Dih8ffKY5Pv89DMB8GA1UdIwQY
MBaAFNt7oqLwv6Onb1yZGkfNmGjG0eu+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMjN1aW92Q19vNmR2WEprYVI4MllhTWJSNjc0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC82MTdhOWYtM2ZiMi00Y2JiLTk5ZmEt
ZjIyZWI2NWZjYzcyLzEvcS1jREVnVGhNenNiOE9LSHg5OHBqay1fejBNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC82MTdhOWYtM2ZiMi00Y2JiLTk5ZmEtZjIyZWI2NWZjYzcy
LzEvMjN1aW92Q19vNmR2WEprYVI4MllhTWJSNjc0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+1qMA0G
CSqGSIb3DQEBCwUAA4IBAQB/Okx5+niQsNqNoKdBWax5e0xIUQ2VnuUohmqrbi98
4CUGOVCUVhr6tv9pMW+p9VURBc6JUH6sspeyHQlTOvhIiOOL6VW1f6hQtcRF/leP
JA0urnvzuqpKxrgSJ8YMAUazz57YfTAHBXC7LN9Btimhsx0m98o4hsCQh64lWAhs
ZvSm9eNikiYivHJL2wLvsNMFXh549ISepkUnOkUAs5a1EyE02nJOAltYRrcJDX9C
ClNGTSV2XDnRfUoVdqB0HltK82iNJQb4S8vYKDXyDgwFvHdkBgCvutGxzjrEfRan
nksPSednbyP/f0aEm1BrOUonjUpR7L0/NGga7LrLOxfO
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:46 2024 by rpki-client on console-fra.rpki-client.org