Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/4d4e4c-d6a9-422d-bacb-d8a7a2cc873b/1/hccd4sRO5z-tJ5elQxG1OPd4blI.roa
File: hccd4sRO5z-tJ5elQxG1OPd4blI.roa (raw, json)
Hash identifier: bKnI+plCK+SnV93HEwp/zVKdFF+FXtn6jXKsFS9dP28=
Subject key identifier: 85:C7:1D:E2:C4:4E:E7:3F:AD:27:97:A5:43:11:B5:38:F7:78:6E:52
Certificate issuer: /CN=ef49cac151db158ed6a856335855557f4e75f725
Certificate serial: 018570DE34AE876CCD0953D1B035E68905EC
Authority key identifier: EF:49:CA:C1:51:DB:15:8E:D6:A8:56:33:58:55:55:7F:4E:75:F7:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70nKwVHbFY7WqFYzWFVVf0519yU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/4d4e4c-d6a9-422d-bacb-d8a7a2cc873b/1/hccd4sRO5z-tJ5elQxG1OPd4blI.roa
Signing time: Mon 02 Jan 2023 05:04:48 +0000
ROA not before: Mon 02 Jan 2023 05:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47958
IP address blocks: 91.208.215.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:de:34:ae:87:6c:cd:09:53:d1:b0:35:e6:89:05:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef49cac151db158ed6a856335855557f4e75f725
Validity
Not Before: Jan 2 05:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=85c71de2c44ee73fad2797a54311b538f7786e52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ea:b6:81:4d:8c:fe:8a:5a:ac:ce:6f:13:c0:
26:4a:8d:7a:05:79:fd:8d:f4:75:03:7e:f4:f2:23:
03:b9:db:ac:47:52:c2:f5:d2:b8:7a:a0:f1:57:2e:
88:aa:be:e4:f1:a3:96:14:5f:14:ab:42:38:d1:f0:
d5:f7:35:58:ac:a6:f0:1b:04:97:8d:db:3a:42:ed:
87:cb:2b:3d:52:50:a2:21:c1:4b:ce:42:78:38:ce:
5e:e2:5a:0c:11:72:78:7c:f6:77:9b:d9:7f:2a:24:
2e:b2:fa:79:b8:53:7e:b1:71:06:09:f8:bc:f3:00:
5f:39:2b:34:fb:9b:50:d8:15:d9:c8:4f:a6:81:97:
d7:bd:76:5a:fb:b2:2e:3f:08:8e:15:a6:35:7d:1a:
a0:13:4a:9b:d4:6d:fc:54:b0:00:05:cc:70:f9:36:
42:92:c3:92:2c:4e:71:2a:73:bb:07:56:bc:25:ef:
e8:6e:fb:2c:8e:54:15:e3:3a:2b:90:c5:ee:39:67:
50:09:ec:b0:a7:f4:99:36:52:2e:a8:99:1e:2e:77:
a2:d3:29:c0:68:b2:47:0a:a2:d6:79:01:df:0c:63:
e8:fc:22:75:b6:ea:6f:32:97:52:13:88:a6:f7:3d:
53:25:44:03:e0:bb:eb:f3:1d:98:42:c2:f0:97:13:
95:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:C7:1D:E2:C4:4E:E7:3F:AD:27:97:A5:43:11:B5:38:F7:78:6E:52
X509v3 Authority Key Identifier:
keyid:EF:49:CA:C1:51:DB:15:8E:D6:A8:56:33:58:55:55:7F:4E:75:F7:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70nKwVHbFY7WqFYzWFVVf0519yU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/4d4e4c-d6a9-422d-bacb-d8a7a2cc873b/1/hccd4sRO5z-tJ5elQxG1OPd4blI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/4d4e4c-d6a9-422d-bacb-d8a7a2cc873b/1/70nKwVHbFY7WqFYzWFVVf0519yU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.215.0/24
Signature Algorithm: sha256WithRSAEncryption
55:15:c2:e9:a9:38:10:1b:a9:4f:ec:f9:de:df:32:bb:8b:5e:
e6:19:5f:7b:fe:ee:46:5c:c6:cd:e7:a6:48:45:7f:aa:53:3b:
00:9d:66:60:03:cc:d6:97:86:bb:94:f7:ae:32:23:84:30:09:
cb:a1:71:a3:8d:67:c6:ca:93:47:0d:a4:7f:33:af:0b:59:d6:
27:13:49:2e:ca:f7:ef:1e:51:2b:22:e4:ed:ce:37:df:1d:96:
b3:68:05:34:84:a2:92:4b:37:47:5c:92:5a:91:3f:67:72:3a:
3f:8d:20:d2:da:8f:cd:70:6a:f8:76:f2:fc:70:07:77:e6:b7:
f8:1b:67:f8:35:d3:10:d8:2e:7e:d8:a8:41:e5:7e:9d:d8:69:
64:aa:fe:29:e1:fd:90:a0:6a:61:8d:31:01:d2:41:48:02:b2:
14:2a:ed:0f:c9:b6:b0:3a:89:72:67:0d:a1:30:f8:d9:f1:c5:
09:00:69:db:3d:02:9a:ec:69:70:6c:ed:25:e8:58:9e:a4:df:
49:b8:ca:0e:29:2b:1e:60:5a:5c:1c:86:39:06:bd:7a:df:49:
08:bb:6a:ff:6d:cf:54:46:e7:7f:57:97:49:b6:df:93:4c:24:
4e:cf:6a:9b:3b:30:bc:6b:c2:67:59:c1:ef:2a:1d:96:97:56:
24:97:3f:b1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVw3jSuh2zNCVPRsDXmiQXsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVmNDljYWMxNTFkYjE1OGVkNmE4NTYzMzU4NTU1NTdmNGU3
NWY3MjUwHhcNMjMwMTAyMDUwNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NWM3MWRlMmM0NGVlNzNmYWQyNzk3YTU0MzExYjUzOGY3Nzg2ZTUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoOq2gU2M/oparM5vE8AmSo16BXn9
jfR1A3708iMDudusR1LC9dK4eqDxVy6Iqr7k8aOWFF8Uq0I40fDV9zVYrKbwGwSX
jds6Qu2Hyys9UlCiIcFLzkJ4OM5e4loMEXJ4fPZ3m9l/KiQusvp5uFN+sXEGCfi8
8wBfOSs0+5tQ2BXZyE+mgZfXvXZa+7IuPwiOFaY1fRqgE0qb1G38VLAABcxw+TZC
ksOSLE5xKnO7B1a8Je/obvssjlQV4zorkMXuOWdQCeywp/SZNlIuqJkeLnei0ynA
aLJHCqLWeQHfDGPo/CJ1tupvMpdSE4im9z1TJUQD4Lvr8x2YQsLwlxOViQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIXHHeLETuc/rSeXpUMRtTj3eG5SMB8GA1UdIwQY
MBaAFO9JysFR2xWO1qhWM1hVVX9OdfclMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNzBuS3dWSGJGWTdXcUZZeldGVlZmMDUxOXlVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80ZDRlNGMtZDZhOS00MjJkLWJhY2It
ZDhhN2EyY2M4NzNiLzEvaGNjZDRzUk81ei10SjVlbFF4RzFPUGQ0YmxJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC80ZDRlNGMtZDZhOS00MjJkLWJhY2ItZDhhN2EyY2M4NzNi
LzEvNzBuS3dWSGJGWTdXcUZZeldGVlZmMDUxOXlVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9DXMA0G
CSqGSIb3DQEBCwUAA4IBAQBVFcLpqTgQG6lP7Pne3zK7i17mGV97/u5GXMbN56ZI
RX+qUzsAnWZgA8zWl4a7lPeuMiOEMAnLoXGjjWfGypNHDaR/M68LWdYnE0kuyvfv
HlErIuTtzjffHZazaAU0hKKSSzdHXJJakT9ncjo/jSDS2o/NcGr4dvL8cAd35rf4
G2f4NdMQ2C5+2KhB5X6d2Glkqv4p4f2QoGphjTEB0kFIArIUKu0PybawOolyZw2h
MPjZ8cUJAGnbPQKa7GlwbO0l6FiepN9JuMoOKSseYFpcHIY5Br1630kIu2r/bc9U
Rud/V5dJtt+TTCROz2qbOzC8a8JnWcHvKh2Wl1Yklz+x
-----END CERTIFICATE-----
Generated at Mon Jan 1 19:16:15 2024 by rpki-client on console-ams.rpki-client.org