Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/URlZlh_UHdtHePVEJBLCfit8aq8.roa
File: URlZlh_UHdtHePVEJBLCfit8aq8.roa (raw, json)
Hash identifier: ofZJkXa1OptBHI9jPHWtfYcm/+v4n04R5I7oKaMudIk=
Subject key identifier: 51:19:59:96:1F:D4:1D:DB:47:78:F5:44:24:12:C2:7E:2B:7C:6A:AF
Certificate issuer: /CN=07f231365985828d5a9663ed1b440624b24fec13
Certificate serial: 0188239DE374E2950E628C933A718F6925B2
Authority key identifier: 07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/URlZlh_UHdtHePVEJBLCfit8aq8.roa
Signing time: Tue 16 May 2023 08:12:09 +0000
ROA not before: Tue 16 May 2023 08:12:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211975
IP address blocks: 91.199.42.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 May 2023 12:27:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:23:9d:e3:74:e2:95:0e:62:8c:93:3a:71:8f:69:25:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07f231365985828d5a9663ed1b440624b24fec13
Validity
Not Before: May 16 08:12:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=511959961fd41ddb4778f5442412c27e2b7c6aaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:57:44:2e:76:b9:72:da:b7:51:a9:22:25:85:
7b:9f:3b:0d:a3:7a:0b:d2:92:b5:c8:71:a0:8c:4f:
ff:ea:af:66:52:ea:79:fc:7b:8c:ea:fa:96:d5:fd:
01:60:08:68:1d:5c:09:1f:25:16:c7:08:7f:0f:9b:
3c:c1:f2:2c:58:53:9f:e3:ec:bb:e8:53:1d:fa:90:
c0:be:81:92:11:fc:4d:46:e7:92:a9:94:d5:dd:83:
d1:57:49:b3:ed:dd:c5:1a:95:ae:90:27:1b:72:95:
60:4d:98:46:cf:8f:c2:6a:81:12:53:b6:9b:50:78:
46:04:59:85:7d:6c:cb:45:ca:81:f1:d9:f8:bf:f6:
5e:4f:8d:79:39:5f:b4:5d:ee:65:e4:e4:35:ce:90:
c2:c6:21:cb:fe:88:cd:5e:43:a3:e9:f6:b7:f1:5e:
2a:c5:26:fc:4a:bd:f4:03:9e:c5:39:b3:e5:b4:23:
73:70:e5:4e:53:cd:29:a7:9d:ab:e4:f1:5b:47:25:
2b:05:2d:5d:43:30:1d:9d:a8:c7:a1:27:05:4f:1b:
75:b8:b2:b9:88:82:29:ce:14:b4:26:94:73:4e:95:
79:a4:ce:b0:f3:2b:c0:56:51:08:72:42:25:4b:2b:
fa:74:e2:e7:79:e8:72:04:76:4d:ff:fb:36:9a:3b:
dc:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:19:59:96:1F:D4:1D:DB:47:78:F5:44:24:12:C2:7E:2B:7C:6A:AF
X509v3 Authority Key Identifier:
keyid:07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/URlZlh_UHdtHePVEJBLCfit8aq8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/B_IxNlmFgo1almPtG0QGJLJP7BM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.42.0/24
Signature Algorithm: sha256WithRSAEncryption
91:9f:bd:ff:32:77:52:b9:40:01:bd:07:5a:e0:f0:f4:79:d2:
86:04:86:7e:5e:4b:2d:9f:c8:9f:33:9b:e9:0f:cf:ae:8b:dd:
45:42:9d:61:69:99:e9:8d:5b:ca:b1:0e:72:0a:8e:c1:53:f8:
b2:5a:96:fa:09:af:d8:96:dd:ae:39:97:3d:bb:9b:f3:db:79:
cd:f1:08:e0:87:95:9b:f7:0f:0f:86:31:31:16:c2:11:d3:e5:
03:8a:c1:0d:f6:5c:da:9d:02:91:c4:c5:b6:a9:82:56:2a:c3:
61:b9:00:fc:41:54:35:52:0e:6d:d6:a9:0f:61:a1:ed:c7:24:
99:3b:53:31:7e:fa:3d:af:4e:26:2d:cf:45:ea:04:85:5c:44:
5f:f8:ed:b2:4b:c8:66:33:9a:1a:aa:5c:26:b7:0c:4f:86:70:
f3:0b:bc:d4:a9:36:a0:5b:3b:27:79:f6:a7:b8:e2:46:89:c2:
df:d4:f9:93:00:74:3c:99:e8:52:0e:ec:9d:38:6d:93:1f:a1:
34:2d:14:3a:b0:95:a6:ea:19:d0:96:9a:23:56:03:aa:f7:39:
2f:26:19:6d:d9:6b:1f:3d:16:52:5a:22:6a:f0:f6:59:ad:e7:
02:ff:9b:24:d9:66:e8:50:3f:a5:b7:4b:07:74:83:f5:9a:28:
f4:b7:7e:53
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYgjneN04pUOYoyTOnGPaSWyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA3ZjIzMTM2NTk4NTgyOGQ1YTk2NjNlZDFiNDQwNjI0YjI0
ZmVjMTMwHhcNMjMwNTE2MDgxMjA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MTE5NTk5NjFmZDQxZGRiNDc3OGY1NDQyNDEyYzI3ZTJiN2M2YWFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq1dELna5ctq3UakiJYV7nzsNo3oL
0pK1yHGgjE//6q9mUup5/HuM6vqW1f0BYAhoHVwJHyUWxwh/D5s8wfIsWFOf4+y7
6FMd+pDAvoGSEfxNRueSqZTV3YPRV0mz7d3FGpWukCcbcpVgTZhGz4/CaoESU7ab
UHhGBFmFfWzLRcqB8dn4v/ZeT415OV+0Xe5l5OQ1zpDCxiHL/ojNXkOj6fa38V4q
xSb8Sr30A57FObPltCNzcOVOU80pp52r5PFbRyUrBS1dQzAdnajHoScFTxt1uLK5
iIIpzhS0JpRzTpV5pM6w8yvAVlEIckIlSyv6dOLneehyBHZN//s2mjvcXQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFEZWZYf1B3bR3j1RCQSwn4rfGqvMB8GA1UdIwQY
MBaAFAfyMTZZhYKNWpZj7RtEBiSyT+wTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQl9JeE5sbUZnbzFhbG1QdEcwUUdKTEpQN0JNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9lZjVmYjMtM2U1Ni00Yjc3LWFhYzct
MDg1ZmEwYTU2MDUyLzEvVVJsWmxoX1VIZHRIZVBWRUpCTENmaXQ4YXE4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS9lZjVmYjMtM2U1Ni00Yjc3LWFhYzctMDg1ZmEwYTU2MDUy
LzEvQl9JeE5sbUZnbzFhbG1QdEcwUUdKTEpQN0JNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8cqMA0G
CSqGSIb3DQEBCwUAA4IBAQCRn73/MndSuUABvQda4PD0edKGBIZ+Xkstn8ifM5vp
D8+ui91FQp1haZnpjVvKsQ5yCo7BU/iyWpb6Ca/Ylt2uOZc9u5vz23nN8Qjgh5Wb
9w8PhjExFsIR0+UDisEN9lzanQKRxMW2qYJWKsNhuQD8QVQ1Ug5t1qkPYaHtxySZ
O1Mxfvo9r04mLc9F6gSFXERf+O2yS8hmM5oaqlwmtwxPhnDzC7zUqTagWzsnefan
uOJGicLf1PmTAHQ8mehSDuydOG2TH6E0LRQ6sJWm6hnQlpojVgOq9zkvJhlt2Wsf
PRZSWiJq8PZZrecC/5sk2WboUD+lt0sHdIP1mij0t35T
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:58 2024 by rpki-client on console-fra.rpki-client.org