Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/mpdY6xvlFsmnHjeka0BRvoplcTc.roa
File: mpdY6xvlFsmnHjeka0BRvoplcTc.roa (raw, json)
Hash identifier: IFK9zIVGU6weZFMTHNBTgsLzEfHF1HxN/VFhrn+Yunw=
Subject key identifier: 9A:97:58:EB:1B:E5:16:C9:A7:1E:37:A4:6B:40:51:BE:8A:65:71:37
Certificate issuer: /CN=07f231365985828d5a9663ed1b440624b24fec13
Certificate serial: 018870C4CA29D3337CE3A664DEEB201E7774
Authority key identifier: 07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/mpdY6xvlFsmnHjeka0BRvoplcTc.roa
Signing time: Wed 31 May 2023 07:45:25 +0000
ROA not before: Wed 31 May 2023 07:45:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 91.199.32.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:70:c4:ca:29:d3:33:7c:e3:a6:64:de:eb:20:1e:77:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07f231365985828d5a9663ed1b440624b24fec13
Validity
Not Before: May 31 07:45:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9a9758eb1be516c9a71e37a46b4051be8a657137
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:94:5f:52:39:7a:7f:41:ac:f2:a2:b4:3e:bc:
cc:83:48:25:e3:fe:87:58:34:c4:f7:aa:dd:20:25:
1b:88:70:93:58:81:9a:af:86:69:18:d1:c7:84:e1:
8c:f3:cf:96:c0:91:5f:76:28:ed:d2:f7:ae:79:b9:
65:cc:d7:17:23:04:ea:e4:5b:9d:27:0c:c5:53:1a:
f8:e3:e7:4a:6a:1b:3e:78:9d:d5:4f:e2:84:75:eb:
1e:c7:b7:08:8c:b7:7c:c7:3b:30:90:74:b1:b2:fb:
1f:c6:6d:96:10:51:8e:7d:74:50:8b:56:e8:03:d3:
dc:2a:22:b3:f7:35:42:ba:3c:3a:f2:8a:35:7e:26:
a9:09:90:c2:1f:eb:8f:a5:95:81:ac:43:ae:98:30:
a2:e6:35:b4:ea:de:2e:67:a0:4f:f2:9b:f0:16:e0:
c1:f4:e3:26:d0:07:b6:ce:37:ec:00:49:b9:cf:61:
23:e2:7f:0a:15:f0:88:7b:11:8e:37:9d:f4:bf:15:
e1:d9:03:16:73:7f:bf:0e:e9:b0:6b:ca:0b:0b:5d:
da:d7:e7:8d:3c:f1:87:1d:1d:ec:66:a9:fe:cc:4b:
6b:44:de:ac:de:da:0f:5c:f6:9e:8f:df:d9:b5:e3:
0e:13:ab:60:10:37:ad:a3:83:0c:ff:b1:22:72:e2:
3c:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:97:58:EB:1B:E5:16:C9:A7:1E:37:A4:6B:40:51:BE:8A:65:71:37
X509v3 Authority Key Identifier:
keyid:07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/mpdY6xvlFsmnHjeka0BRvoplcTc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/B_IxNlmFgo1almPtG0QGJLJP7BM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.32.0/24
Signature Algorithm: sha256WithRSAEncryption
90:2e:28:72:7f:f0:91:ab:6f:35:91:c8:1f:8a:de:fa:e9:17:
86:78:0c:03:84:d0:ac:21:19:5e:43:d9:3b:ff:12:63:e5:72:
e3:a5:ef:33:20:f3:c5:02:03:86:07:5c:75:34:87:50:4e:16:
7c:b9:16:0a:f7:61:94:91:70:fe:6f:41:4b:cb:a7:82:f6:e1:
61:69:bb:29:7c:13:89:b4:92:8e:64:1d:b5:5a:0c:06:aa:cc:
5b:e3:66:3b:6c:4e:1b:ca:0f:fb:a8:40:11:fe:e5:ff:ae:75:
f1:29:0d:22:79:a8:c0:d1:f1:b3:44:f2:15:71:89:b0:2a:17:
1f:b1:35:0a:19:51:b3:62:dd:72:8a:ec:d8:21:10:19:4d:ef:
22:b9:95:b6:6b:fd:8a:b4:aa:3c:c6:43:b7:ea:2a:1e:7b:d7:
e1:55:1f:5a:57:80:35:b3:02:a2:d3:40:3f:86:92:59:48:96:
ee:37:95:d1:3f:47:09:e1:44:04:27:62:ea:37:ce:79:b6:08:
8c:c7:31:6f:a2:e4:66:c0:64:37:0a:09:2d:b2:92:38:35:81:
e0:84:62:e7:4e:a4:2c:2f:0a:9f:ca:83:68:0a:44:1a:11:68:
13:73:5f:71:f5:a1:92:71:4e:53:c7:ce:2f:e7:62:e1:00:20:
4b:7b:34:6d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYhwxMop0zN846Zk3usgHnd0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA3ZjIzMTM2NTk4NTgyOGQ1YTk2NjNlZDFiNDQwNjI0YjI0
ZmVjMTMwHhcNMjMwNTMxMDc0NTI1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YTk3NThlYjFiZTUxNmM5YTcxZTM3YTQ2YjQwNTFiZThhNjU3MTM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyZRfUjl6f0Gs8qK0PrzMg0gl4/6H
WDTE96rdICUbiHCTWIGar4ZpGNHHhOGM88+WwJFfdijt0veuebllzNcXIwTq5Fud
JwzFUxr44+dKahs+eJ3VT+KEdesex7cIjLd8xzswkHSxsvsfxm2WEFGOfXRQi1bo
A9PcKiKz9zVCujw68oo1fiapCZDCH+uPpZWBrEOumDCi5jW06t4uZ6BP8pvwFuDB
9OMm0Ae2zjfsAEm5z2Ej4n8KFfCIexGON530vxXh2QMWc3+/Dumwa8oLC13a1+eN
PPGHHR3sZqn+zEtrRN6s3toPXPaej9/ZteMOE6tgEDeto4MM/7EicuI8CwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJqXWOsb5RbJpx43pGtAUb6KZXE3MB8GA1UdIwQY
MBaAFAfyMTZZhYKNWpZj7RtEBiSyT+wTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQl9JeE5sbUZnbzFhbG1QdEcwUUdKTEpQN0JNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS9lZjVmYjMtM2U1Ni00Yjc3LWFhYzct
MDg1ZmEwYTU2MDUyLzEvbXBkWTZ4dmxGc21uSGpla2EwQlJ2b3BsY1RjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZS9lZjVmYjMtM2U1Ni00Yjc3LWFhYzctMDg1ZmEwYTU2MDUy
LzEvQl9JeE5sbUZnbzFhbG1QdEcwUUdKTEpQN0JNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8cgMA0G
CSqGSIb3DQEBCwUAA4IBAQCQLihyf/CRq281kcgfit766ReGeAwDhNCsIRleQ9k7
/xJj5XLjpe8zIPPFAgOGB1x1NIdQThZ8uRYK92GUkXD+b0FLy6eC9uFhabspfBOJ
tJKOZB21WgwGqsxb42Y7bE4byg/7qEAR/uX/rnXxKQ0ieajA0fGzRPIVcYmwKhcf
sTUKGVGzYt1yiuzYIRAZTe8iuZW2a/2KtKo8xkO36ioee9fhVR9aV4A1swKi00A/
hpJZSJbuN5XRP0cJ4UQEJ2LqN855tgiMxzFvouRmwGQ3CgktspI4NYHghGLnTqQs
LwqfyoNoCkQaEWgTc19x9aGScU5Tx84v52LhACBLezRt
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:46 2023 by rpki-client on console-ams.rpki-client.org