Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/vQDr71RM-dtqgAdfk6h7fw79Rco.roa
File: vQDr71RM-dtqgAdfk6h7fw79Rco.roa (raw, json)
Hash identifier: 5QzAJrtjMFUvQpysV6kje6XJ2OGRfof1v+GQfPr71Lo=
Subject key identifier: BD:00:EB:EF:54:4C:F9:DB:6A:80:07:5F:93:A8:7B:7F:0E:FD:45:CA
Certificate issuer: /CN=e92c415d1775ae9993e900a7536b46ab144a9aa2
Certificate serial: 018C906E545A232BE058E960CEC0BC7A302B
Authority key identifier: E9:2C:41:5D:17:75:AE:99:93:E9:00:A7:53:6B:46:AB:14:4A:9A:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6SxBXRd1rpmT6QCnU2tGqxRKmqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/vQDr71RM-dtqgAdfk6h7fw79Rco.roa
Signing time: Fri 22 Dec 2023 07:29:58 +0000
ROA not before: Fri 22 Dec 2023 07:29:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212833
IP address blocks: 91.223.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:90:6e:54:5a:23:2b:e0:58:e9:60:ce:c0:bc:7a:30:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e92c415d1775ae9993e900a7536b46ab144a9aa2
Validity
Not Before: Dec 22 07:29:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bd00ebef544cf9db6a80075f93a87b7f0efd45ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:b6:d6:29:f1:31:96:fb:3c:26:e4:71:6b:dc:
fb:b6:41:e3:db:e6:18:d1:09:92:dc:0f:25:c5:1d:
bb:eb:3a:53:4b:c5:98:1d:a1:3c:22:1c:5c:c2:94:
9c:ad:c4:13:47:70:74:87:78:92:68:59:98:fa:df:
ae:ee:59:f1:12:7d:1c:5c:f6:d4:05:95:95:3e:0d:
49:0c:37:49:37:12:fd:06:db:ea:cc:a0:3d:78:f3:
a7:36:3b:36:cc:11:95:b6:bb:50:c3:dc:05:ad:ba:
0a:a1:95:ea:0e:69:7e:31:db:d1:6c:96:78:26:07:
eb:06:86:8e:79:b0:c3:85:90:a1:cd:1d:d2:9c:f6:
67:2d:b8:f4:30:c6:e7:d6:38:5c:19:08:1b:46:0b:
b3:6f:83:9f:ad:8c:63:99:f9:25:79:7a:dc:05:cc:
20:b4:d5:3e:b2:30:4b:fe:ff:3d:02:79:b6:fe:2a:
88:1b:50:f5:e0:5d:76:28:10:97:d7:85:36:ae:28:
49:2d:16:8e:1a:e2:f7:70:96:c0:ab:cc:98:2a:a8:
49:cc:7e:d6:78:91:bb:dc:3a:89:a4:2c:0a:18:ba:
0d:38:ff:75:78:7b:71:36:c8:dd:6c:a4:f9:b6:55:
12:25:c0:98:55:b5:c0:4d:66:a9:c5:43:42:df:6e:
93:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:00:EB:EF:54:4C:F9:DB:6A:80:07:5F:93:A8:7B:7F:0E:FD:45:CA
X509v3 Authority Key Identifier:
keyid:E9:2C:41:5D:17:75:AE:99:93:E9:00:A7:53:6B:46:AB:14:4A:9A:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6SxBXRd1rpmT6QCnU2tGqxRKmqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/vQDr71RM-dtqgAdfk6h7fw79Rco.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0898be-b037-429f-b504-1d934a048474/1/6SxBXRd1rpmT6QCnU2tGqxRKmqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.7.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:53:ff:6f:13:52:af:46:a4:72:5e:ab:41:58:ec:00:e7:44:
bf:38:e2:a9:c4:1b:ba:91:02:ac:37:d3:d4:a5:a8:e3:58:9c:
db:40:ed:02:d8:b7:3f:16:92:33:18:37:4e:fd:a3:ca:64:63:
48:7f:34:3b:b6:2f:b9:22:6a:a5:7d:6c:b0:a0:c1:6f:74:46:
cd:e7:b8:e1:89:7d:9b:a3:65:62:56:5d:af:13:be:4c:3f:fc:
bd:e2:28:a0:9c:a1:3f:10:45:7b:e2:9e:c4:c2:99:51:30:3e:
aa:ea:7e:e0:3a:d8:dd:ca:4d:83:e4:60:15:3e:91:a7:8d:46:
95:09:69:df:bc:5a:e0:c7:39:7c:fa:69:06:f2:34:0a:5b:3d:
4a:62:32:86:7a:21:91:e5:e7:e0:fc:b4:aa:c4:4e:7e:71:c6:
ee:d0:a8:8d:68:2f:f8:b7:2e:7c:d0:0f:47:d4:ec:c9:a6:fc:
ff:48:4e:36:14:f0:4d:a8:1d:ff:3f:7b:1f:d5:c6:75:01:77:
2e:9f:e5:b4:5f:cd:1b:cd:fb:73:57:df:ba:a8:41:10:ec:39:
92:5a:a3:31:1c:12:7b:16:71:26:4a:14:63:8b:a4:cd:92:a7:
1a:65:c2:73:0c:61:06:7b:12:9c:cc:f5:98:04:3a:ee:c7:09:
b7:90:44:26
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYyQblRaIyvgWOlgzsC8ejArMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU5MmM0MTVkMTc3NWFlOTk5M2U5MDBhNzUzNmI0NmFiMTQ0
YTlhYTIwHhcNMjMxMjIyMDcyOTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZDAwZWJlZjU0NGNmOWRiNmE4MDA3NWY5M2E4N2I3ZjBlZmQ0NWNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3LbWKfExlvs8JuRxa9z7tkHj2+YY
0QmS3A8lxR276zpTS8WYHaE8IhxcwpScrcQTR3B0h3iSaFmY+t+u7lnxEn0cXPbU
BZWVPg1JDDdJNxL9BtvqzKA9ePOnNjs2zBGVtrtQw9wFrboKoZXqDml+MdvRbJZ4
JgfrBoaOebDDhZChzR3SnPZnLbj0MMbn1jhcGQgbRguzb4OfrYxjmfkleXrcBcwg
tNU+sjBL/v89Anm2/iqIG1D14F12KBCX14U2rihJLRaOGuL3cJbAq8yYKqhJzH7W
eJG73DqJpCwKGLoNOP91eHtxNsjdbKT5tlUSJcCYVbXATWapxUNC326T1wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFL0A6+9UTPnbaoAHX5Ooe38O/UXKMB8GA1UdIwQY
MBaAFOksQV0Xda6Zk+kAp1NrRqsUSpqiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNlN4QlhSZDFycG1UNlFDblUydEdxeFJLbXFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS8wODk4YmUtYjAzNy00MjlmLWI1MDQt
MWQ5MzRhMDQ4NDc0LzEvdlFEcjcxUk0tZHRxZ0FkZms2aDdmdzc5UmNvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS8wODk4YmUtYjAzNy00MjlmLWI1MDQtMWQ5MzRhMDQ4NDc0
LzEvNlN4QlhSZDFycG1UNlFDblUydEdxeFJLbXFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW98HMA0G
CSqGSIb3DQEBCwUAA4IBAQAKU/9vE1KvRqRyXqtBWOwA50S/OOKpxBu6kQKsN9PU
pajjWJzbQO0C2Lc/FpIzGDdO/aPKZGNIfzQ7ti+5ImqlfWywoMFvdEbN57jhiX2b
o2ViVl2vE75MP/y94iignKE/EEV74p7EwplRMD6q6n7gOtjdyk2D5GAVPpGnjUaV
CWnfvFrgxzl8+mkG8jQKWz1KYjKGeiGR5efg/LSqxE5+ccbu0KiNaC/4ty580A9H
1OzJpvz/SE42FPBNqB3/P3sf1cZ1AXcun+W0X80bzftzV9+6qEEQ7DmSWqMxHBJ7
FnEmShRji6TNkqcaZcJzDGEGexKczPWYBDruxwm3kEQm
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:48 2024 by rpki-client on console-ams.rpki-client.org