Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/8f96d1-9278-4b63-8288-f77c32ff19f7/1/sXuEoO_1dBFYwCqVx3lz9jpcofY.roa
File: sXuEoO_1dBFYwCqVx3lz9jpcofY.roa (raw, json)
Hash identifier: EST3/paKpZeMcmmXKoDP0VlkOaf8G6jnmImQt2n/4Iw=
Subject key identifier: B1:7B:84:A0:EF:F5:74:11:58:C0:2A:95:C7:79:73:F6:3A:5C:A1:F6
Certificate issuer: /CN=505026928467770d1c2fa7ceba98a18c38d6556d
Certificate serial: 01857195834D36B34C36E3A97573B8BFA79E
Authority key identifier: 50:50:26:92:84:67:77:0D:1C:2F:A7:CE:BA:98:A1:8C:38:D6:55:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFAmkoRndw0cL6fOupihjDjWVW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/8f96d1-9278-4b63-8288-f77c32ff19f7/1/sXuEoO_1dBFYwCqVx3lz9jpcofY.roa
Signing time: Mon 02 Jan 2023 08:25:01 +0000
ROA not before: Mon 02 Jan 2023 08:25:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60345
IP address blocks: 91.228.135.0/24 maxlen: 24
2a06:2c80::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:83:4d:36:b3:4c:36:e3:a9:75:73:b8:bf:a7:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=505026928467770d1c2fa7ceba98a18c38d6556d
Validity
Not Before: Jan 2 08:25:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b17b84a0eff5741158c02a95c77973f63a5ca1f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:fb:0e:de:f3:c7:7f:3e:00:05:5d:31:d2:64:
f9:33:66:0b:fd:25:9e:b9:d3:45:fc:44:d1:50:bd:
49:7e:a0:63:43:ff:13:73:bf:00:84:4d:c4:09:68:
8e:12:ed:9c:ce:02:d5:c3:4b:a5:f8:18:92:78:97:
fc:50:35:d5:fa:37:ff:9d:3e:d1:26:86:6f:e9:90:
0e:aa:20:a1:e5:33:06:64:49:ba:20:ea:bc:69:f8:
ed:d3:97:57:58:c0:da:25:0c:61:b4:dd:0c:3a:00:
5f:3c:f9:d3:65:39:52:e2:b8:6b:61:e4:c1:e6:23:
88:85:f7:87:25:4d:9c:09:bb:6e:f4:be:67:d2:16:
67:a9:a2:0a:09:98:77:f0:b3:f7:e7:da:c5:ab:e3:
a4:67:97:4f:e2:82:45:9a:fa:26:2c:d5:9a:cd:1d:
9c:85:dd:9e:96:90:54:b9:f5:39:0f:32:8f:ce:02:
1d:0b:5d:4f:df:db:a5:c8:79:d6:4b:28:2d:89:f4:
e9:f8:27:58:23:53:64:38:4c:cf:44:58:91:eb:a3:
1a:8a:cc:52:5f:2b:00:99:5d:5e:75:03:18:7a:26:
0c:f3:4d:ea:b7:0e:ca:2d:25:12:0e:42:ce:6e:d0:
fb:33:78:33:a0:8a:9b:97:ad:35:00:9c:99:63:17:
e8:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:7B:84:A0:EF:F5:74:11:58:C0:2A:95:C7:79:73:F6:3A:5C:A1:F6
X509v3 Authority Key Identifier:
keyid:50:50:26:92:84:67:77:0D:1C:2F:A7:CE:BA:98:A1:8C:38:D6:55:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFAmkoRndw0cL6fOupihjDjWVW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/8f96d1-9278-4b63-8288-f77c32ff19f7/1/sXuEoO_1dBFYwCqVx3lz9jpcofY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/8f96d1-9278-4b63-8288-f77c32ff19f7/1/UFAmkoRndw0cL6fOupihjDjWVW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.135.0/24
IPv6:
2a06:2c80::/32
Signature Algorithm: sha256WithRSAEncryption
8d:e1:04:5f:be:9e:56:fb:39:06:39:76:0f:65:91:39:14:5b:
73:85:23:71:7c:7c:d3:b8:62:1d:f6:7d:38:e6:b6:fa:99:5f:
7d:3e:c7:ca:15:74:e4:44:3c:49:15:40:31:c7:19:4f:5d:7f:
be:59:ad:dc:57:51:82:72:c3:6d:a6:13:6d:31:59:fa:52:79:
ea:ac:67:a4:33:03:b9:2a:03:d4:9a:aa:53:3a:a9:17:fc:48:
42:b2:5b:06:e8:df:47:b1:8e:70:c4:10:72:7f:0c:f4:53:3a:
bb:55:d8:51:eb:86:78:db:a3:39:eb:c0:ff:6d:ba:04:96:cb:
b6:9b:61:25:3c:49:6d:b1:46:12:99:3a:66:42:cd:31:d8:30:
ad:62:5b:19:14:32:d8:53:8a:f7:ba:3e:58:2c:18:2e:4f:92:
92:91:36:6e:e5:ec:48:85:e0:f4:c9:3d:ea:3a:16:a0:fe:a1:
2a:f4:85:12:89:03:ee:a0:56:76:29:18:f7:df:d4:ee:f4:73:
92:69:32:d1:b1:0e:d9:e5:59:38:80:3e:dc:b1:de:46:13:c3:
82:8f:6b:ab:9e:fc:cf:b4:f9:46:69:ec:d0:a5:2e:eb:b5:1d:
e5:29:66:6e:8f:1f:22:6e:41:42:f2:a4:23:64:a2:d5:c8:50:
77:79:95:a9
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVxlYNNNrNMNuOpdXO4v6eeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwNTAyNjkyODQ2Nzc3MGQxYzJmYTdjZWJhOThhMThjMzhk
NjU1NmQwHhcNMjMwMTAyMDgyNTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMTdiODRhMGVmZjU3NDExNThjMDJhOTVjNzc5NzNmNjNhNWNhMWY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvvsO3vPHfz4ABV0x0mT5M2YL/SWe
udNF/ETRUL1JfqBjQ/8Tc78AhE3ECWiOEu2czgLVw0ul+BiSeJf8UDXV+jf/nT7R
JoZv6ZAOqiCh5TMGZEm6IOq8afjt05dXWMDaJQxhtN0MOgBfPPnTZTlS4rhrYeTB
5iOIhfeHJU2cCbtu9L5n0hZnqaIKCZh38LP359rFq+OkZ5dP4oJFmvomLNWazR2c
hd2elpBUufU5DzKPzgIdC11P39ulyHnWSygtifTp+CdYI1NkOEzPRFiR66MaisxS
XysAmV1edQMYeiYM803qtw7KLSUSDkLObtD7M3gzoIqbl601AJyZYxfo5QIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFLF7hKDv9XQRWMAqlcd5c/Y6XKH2MB8GA1UdIwQY
MBaAFFBQJpKEZ3cNHC+nzrqYoYw41lVtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVUZBbWtvUm5kdzBjTDZmT3VwaWhqRGpXVlcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC84Zjk2ZDEtOTI3OC00YjYzLTgyODgt
Zjc3YzMyZmYxOWY3LzEvc1h1RW9PXzFkQkZZd0NxVngzbHo5anBjb2ZZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC84Zjk2ZDEtOTI3OC00YjYzLTgyODgtZjc3YzMyZmYxOWY3
LzEvVUZBbWtvUm5kdzBjTDZmT3VwaWhqRGpXVlcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAW+SHMA0E
AgACMAcDBQAqBiyAMA0GCSqGSIb3DQEBCwUAA4IBAQCN4QRfvp5W+zkGOXYPZZE5
FFtzhSNxfHzTuGId9n045rb6mV99PsfKFXTkRDxJFUAxxxlPXX++Wa3cV1GCcsNt
phNtMVn6UnnqrGekMwO5KgPUmqpTOqkX/EhCslsG6N9HsY5wxBByfwz0Uzq7VdhR
64Z426M568D/bboElsu2m2ElPEltsUYSmTpmQs0x2DCtYlsZFDLYU4r3uj5YLBgu
T5KSkTZu5exIheD0yT3qOhag/qEq9IUSiQPuoFZ2KRj339Tu9HOSaTLRsQ7Z5Vk4
gD7csd5GE8OCj2urnvzPtPlGaezQpS7rtR3lKWZujx8ibkFC8qQjZKLVyFB3eZWp
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:03 2024 by rpki-client on console-fra.rpki-client.org