Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/97e057-0f60-4aaf-9a48-83a44310a964/1/buUuXgzg8KPR-qWhnsBxII8gx2Y.roa
File: buUuXgzg8KPR-qWhnsBxII8gx2Y.roa (raw, json)
Hash identifier: XNKPpZTb6X1zUBmwYzd7e4DOTm7pNq2z8BXWCBW4v+g=
Subject key identifier: 6E:E5:2E:5E:0C:E0:F0:A3:D1:FA:A5:A1:9E:C0:71:20:8F:20:C7:66
Certificate issuer: /CN=8c96c66af331c985b859d403b36974c0632e1ef2
Certificate serial: 01856E6FBDA2BF709D50C6F6FC63572CAEF6
Authority key identifier: 8C:96:C6:6A:F3:31:C9:85:B8:59:D4:03:B3:69:74:C0:63:2E:1E:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jJbGavMxyYW4WdQDs2l0wGMuHvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/97e057-0f60-4aaf-9a48-83a44310a964/1/buUuXgzg8KPR-qWhnsBxII8gx2Y.roa
Signing time: Sun 01 Jan 2023 17:44:54 +0000
ROA not before: Sun 01 Jan 2023 17:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49250
IP address blocks: 91.233.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:6f:bd:a2:bf:70:9d:50:c6:f6:fc:63:57:2c:ae:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c96c66af331c985b859d403b36974c0632e1ef2
Validity
Not Before: Jan 1 17:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6ee52e5e0ce0f0a3d1faa5a19ec071208f20c766
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:9b:78:af:a5:b4:32:c2:07:23:4b:2e:ec:fd:
3e:f4:eb:3e:f6:5c:b1:91:a1:ad:06:33:fb:a7:50:
51:a9:46:aa:ff:be:8b:48:d6:00:f7:a0:f8:e7:77:
d3:f0:9e:a8:0d:da:ce:2e:43:af:2c:59:ca:9c:47:
d8:fe:7e:18:3e:54:0e:ec:6a:c4:ff:fb:db:b6:43:
14:83:f8:5a:8c:e6:dc:5a:91:3c:1e:f7:2d:19:8a:
d5:02:3b:f6:2c:f5:dc:e2:a4:62:8f:c6:a7:42:05:
cb:c1:7b:10:cf:5e:31:a3:2c:f4:0b:09:8a:ff:d3:
3c:14:8a:5c:0e:ef:13:e2:e7:74:9e:6b:02:4b:57:
4b:d2:5f:19:04:65:d9:a6:38:4f:b5:fd:62:af:c7:
c4:4c:77:d3:71:fa:a0:fd:e2:07:36:7c:ea:d1:38:
60:41:06:42:c3:33:84:c2:4d:13:d9:5e:f1:bc:18:
7e:52:36:b9:21:cb:d4:3a:6b:53:f5:54:96:2e:90:
58:70:ec:a2:eb:96:38:e0:3b:8b:35:66:af:0a:00:
68:d0:38:c5:13:4b:38:da:5e:16:87:2a:b3:c3:3d:
03:d1:60:ae:d9:a3:ad:49:18:a4:d6:b7:ef:ef:04:
6e:4d:3e:68:e4:0e:c4:13:49:22:c1:b8:d5:11:38:
ae:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:E5:2E:5E:0C:E0:F0:A3:D1:FA:A5:A1:9E:C0:71:20:8F:20:C7:66
X509v3 Authority Key Identifier:
keyid:8C:96:C6:6A:F3:31:C9:85:B8:59:D4:03:B3:69:74:C0:63:2E:1E:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jJbGavMxyYW4WdQDs2l0wGMuHvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/97e057-0f60-4aaf-9a48-83a44310a964/1/buUuXgzg8KPR-qWhnsBxII8gx2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/97e057-0f60-4aaf-9a48-83a44310a964/1/jJbGavMxyYW4WdQDs2l0wGMuHvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.233.67.0/24
Signature Algorithm: sha256WithRSAEncryption
27:a8:b5:0a:c3:fe:62:89:aa:98:3f:9d:38:9f:06:49:e8:a4:
77:3f:0a:e2:8f:31:18:0a:fe:e6:16:3a:b5:6d:d6:6d:47:e5:
e1:65:6d:30:99:33:39:4d:fa:ef:f5:0b:5f:09:3a:6a:4c:ea:
de:78:80:ba:52:87:f9:b0:c7:de:ff:c1:98:33:cf:6e:e9:b5:
c5:9f:38:d0:e3:df:c4:46:1b:9f:0a:01:c6:44:37:d6:77:06:
aa:9c:8b:37:a1:63:8a:d9:d5:18:61:1b:6f:64:21:e8:98:8f:
b9:b9:8a:89:07:b5:73:4b:2f:66:24:ea:9b:02:34:73:e8:e9:
c6:66:7b:e6:2a:53:87:70:63:52:b0:30:9e:ed:55:f5:0e:44:
f6:a8:3a:7d:49:a5:f7:0f:f8:e0:f9:01:ff:84:21:9c:e1:95:
05:ca:3b:e8:14:12:9f:31:91:07:ce:68:45:b1:9d:eb:5f:30:
f7:63:ae:03:8e:9f:f7:23:26:f1:37:aa:81:76:8f:4f:6e:44:
81:46:f3:52:cf:97:e7:fb:d7:60:83:64:7c:66:cd:45:a7:a0:
ed:87:0a:73:d7:ae:af:ae:9b:13:15:64:82:3c:b7:1e:8a:82:
3d:3b:2d:ab:ef:94:2a:86:c3:36:e4:ef:cc:0f:95:53:59:c7:
30:b8:38:63
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVub72iv3CdUMb2/GNXLK72MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhjOTZjNjZhZjMzMWM5ODViODU5ZDQwM2IzNjk3NGMwNjMy
ZTFlZjIwHhcNMjMwMTAxMTc0NDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZWU1MmU1ZTBjZTBmMGEzZDFmYWE1YTE5ZWMwNzEyMDhmMjBjNzY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs5t4r6W0MsIHI0su7P0+9Os+9lyx
kaGtBjP7p1BRqUaq/76LSNYA96D453fT8J6oDdrOLkOvLFnKnEfY/n4YPlQO7GrE
//vbtkMUg/hajObcWpE8HvctGYrVAjv2LPXc4qRij8anQgXLwXsQz14xoyz0CwmK
/9M8FIpcDu8T4ud0nmsCS1dL0l8ZBGXZpjhPtf1ir8fETHfTcfqg/eIHNnzq0Thg
QQZCwzOEwk0T2V7xvBh+Uja5IcvUOmtT9VSWLpBYcOyi65Y44DuLNWavCgBo0DjF
E0s42l4Whyqzwz0D0WCu2aOtSRik1rfv7wRuTT5o5A7EE0kiwbjVETiuDwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG7lLl4M4PCj0fqloZ7AcSCPIMdmMB8GA1UdIwQY
MBaAFIyWxmrzMcmFuFnUA7NpdMBjLh7yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvakpiR2F2TXh5WVc0V2RRRHMybDB3R011SHZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC85N2UwNTctMGY2MC00YWFmLTlhNDgt
ODNhNDQzMTBhOTY0LzEvYnVVdVhnemc4S1BSLXFXaG5zQnhJSThneDJZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC85N2UwNTctMGY2MC00YWFmLTlhNDgtODNhNDQzMTBhOTY0
LzEvakpiR2F2TXh5WVc0V2RRRHMybDB3R011SHZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+lDMA0G
CSqGSIb3DQEBCwUAA4IBAQAnqLUKw/5iiaqYP504nwZJ6KR3PwrijzEYCv7mFjq1
bdZtR+XhZW0wmTM5Tfrv9QtfCTpqTOreeIC6Uof5sMfe/8GYM89u6bXFnzjQ49/E
RhufCgHGRDfWdwaqnIs3oWOK2dUYYRtvZCHomI+5uYqJB7VzSy9mJOqbAjRz6OnG
ZnvmKlOHcGNSsDCe7VX1DkT2qDp9SaX3D/jg+QH/hCGc4ZUFyjvoFBKfMZEHzmhF
sZ3rXzD3Y64Djp/3IybxN6qBdo9PbkSBRvNSz5fn+9dgg2R8Zs1Fp6Dthwpz166v
rpsTFWSCPLceioI9Oy2r75QqhsM25O/MD5VTWccwuDhj
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:07 2024 by rpki-client on console-ams.rpki-client.org