Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/3f9158-6a90-4e57-a28f-3e06a0182614/1/foDW2cL213wIXvzJBYdt7I_BZUM.roa
File: foDW2cL213wIXvzJBYdt7I_BZUM.roa (raw, json)
Hash identifier: mLditBrQYYTpEdfXBws98IFkio7ANaU0RDDYqkzDHDs=
Subject key identifier: 7E:80:D6:D9:C2:F6:D7:7C:08:5E:FC:C9:05:87:6D:EC:8F:C1:65:43
Certificate issuer: /CN=a1dc0630e96096de4822d1f51ef80c6fff54191b
Certificate serial: 018E2E472765CB72BC0EEF800D299D7C33E1
Authority key identifier: A1:DC:06:30:E9:60:96:DE:48:22:D1:F5:1E:F8:0C:6F:FF:54:19:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/odwGMOlglt5IItH1HvgMb_9UGRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/3f9158-6a90-4e57-a28f-3e06a0182614/1/foDW2cL213wIXvzJBYdt7I_BZUM.roa
Signing time: Mon 11 Mar 2024 16:09:58 +0000
ROA not before: Mon 11 Mar 2024 16:09:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212150
IP address blocks: 91.227.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Apr 2024 06:04:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:2e:47:27:65:cb:72:bc:0e:ef:80:0d:29:9d:7c:33:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1dc0630e96096de4822d1f51ef80c6fff54191b
Validity
Not Before: Mar 11 16:09:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7e80d6d9c2f6d77c085efcc905876dec8fc16543
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a8:b7:df:bb:56:be:8e:cf:7c:37:28:5c:0b:
ac:e5:b1:0b:41:9d:fe:a9:7a:5e:6f:3e:2d:d2:31:
b8:2c:c9:38:b9:49:12:8b:db:8f:77:f2:68:35:83:
4f:29:09:ea:a8:72:62:8c:78:71:a5:bc:5e:77:32:
85:3a:96:8c:4f:e8:77:5c:a8:b2:1e:6c:91:b3:16:
b4:45:8b:bf:d0:61:93:3d:d1:2f:c0:a6:14:03:99:
86:69:6c:3f:29:7a:ac:aa:81:e8:f9:ee:16:47:0f:
2c:22:6b:2d:ef:95:20:78:cd:2d:57:e5:33:d6:e2:
04:77:bd:15:6b:9b:fa:5c:7d:54:f4:4f:bc:28:8a:
fd:2a:57:6b:82:67:e7:c5:5a:25:38:bb:2e:0b:9e:
10:5a:85:05:04:9f:b2:17:52:3f:5f:f5:a1:b8:d5:
be:56:79:4f:e0:3b:4a:6c:33:9f:28:86:ae:a3:d6:
c8:1a:19:c3:41:86:0a:92:6f:72:4d:4c:c7:eb:5c:
ea:a7:83:ce:15:77:60:cf:52:2b:8b:7f:ef:8e:45:
dd:d1:a3:1a:69:81:93:ee:9f:b6:63:eb:e9:b4:d1:
91:9c:1b:08:19:17:60:0a:66:d8:76:24:6e:c8:5e:
45:7a:48:43:98:cb:22:3d:b0:92:db:60:4e:c6:e8:
89:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:80:D6:D9:C2:F6:D7:7C:08:5E:FC:C9:05:87:6D:EC:8F:C1:65:43
X509v3 Authority Key Identifier:
keyid:A1:DC:06:30:E9:60:96:DE:48:22:D1:F5:1E:F8:0C:6F:FF:54:19:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/odwGMOlglt5IItH1HvgMb_9UGRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3f9158-6a90-4e57-a28f-3e06a0182614/1/foDW2cL213wIXvzJBYdt7I_BZUM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3f9158-6a90-4e57-a28f-3e06a0182614/1/odwGMOlglt5IItH1HvgMb_9UGRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.62.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:60:78:77:4e:ee:75:68:b2:d1:da:c4:61:82:e1:50:49:97:
d5:79:f7:a5:af:47:6d:a5:17:54:88:ce:1d:fa:11:6e:66:54:
1f:1e:51:e2:b5:2a:be:5a:2b:e7:21:80:87:95:de:7b:04:2d:
33:6d:e8:c7:79:1b:14:d9:cf:3a:c0:59:8d:4f:9c:92:83:8a:
4d:68:22:6c:0c:44:f7:02:e1:b3:ce:fa:e0:f2:34:4f:af:cd:
ee:47:78:8d:0a:a0:91:57:1e:82:5c:46:54:7e:34:7f:bb:5f:
ef:f2:7d:f0:21:5e:f9:e9:0f:d8:4c:c1:3c:14:38:8a:d5:7f:
29:31:25:91:38:91:ec:82:a2:e0:c0:ac:3d:78:36:2d:9b:44:
88:eb:ca:be:fa:d0:30:ac:35:88:67:bf:3f:bd:f6:67:e8:96:
6e:d3:b8:2d:64:76:e0:4b:49:35:73:9b:4b:98:56:0e:63:ab:
8b:11:5e:df:fc:a1:2d:6c:0b:7a:4a:f8:70:43:3e:d7:27:f8:
ee:3e:3f:c8:eb:e1:d6:ab:71:9f:b0:c0:53:21:7c:07:02:ee:
05:85:20:31:80:3c:c9:92:04:a4:19:96:bf:70:7f:f6:35:20:
2d:06:4e:04:d5:ad:44:1e:f1:23:6b:25:c6:9a:93:9a:45:cb:
c6:11:11:44
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY4uRydly3K8Du+ADSmdfDPhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExZGMwNjMwZTk2MDk2ZGU0ODIyZDFmNTFlZjgwYzZmZmY1
NDE5MWIwHhcNMjQwMzExMTYwOTU4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZTgwZDZkOWMyZjZkNzdjMDg1ZWZjYzkwNTg3NmRlYzhmYzE2NTQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoai337tWvo7PfDcoXAus5bELQZ3+
qXpebz4t0jG4LMk4uUkSi9uPd/JoNYNPKQnqqHJijHhxpbxedzKFOpaMT+h3XKiy
HmyRsxa0RYu/0GGTPdEvwKYUA5mGaWw/KXqsqoHo+e4WRw8sImst75UgeM0tV+Uz
1uIEd70Va5v6XH1U9E+8KIr9KldrgmfnxVolOLsuC54QWoUFBJ+yF1I/X/WhuNW+
VnlP4DtKbDOfKIauo9bIGhnDQYYKkm9yTUzH61zqp4POFXdgz1Iri3/vjkXd0aMa
aYGT7p+2Y+vptNGRnBsIGRdgCmbYdiRuyF5FekhDmMsiPbCS22BOxuiJowIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH6A1tnC9td8CF78yQWHbeyPwWVDMB8GA1UdIwQY
MBaAFKHcBjDpYJbeSCLR9R74DG//VBkbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2R3R01PbGdsdDVJSXRIMUh2Z01iXzlVR1JzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny8zZjkxNTgtNmE5MC00ZTU3LWEyOGYt
M2UwNmEwMTgyNjE0LzEvZm9EVzJjTDIxM3dJWHZ6SkJZZHQ3SV9CWlVNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny8zZjkxNTgtNmE5MC00ZTU3LWEyOGYtM2UwNmEwMTgyNjE0
LzEvb2R3R01PbGdsdDVJSXRIMUh2Z01iXzlVR1JzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+M+MA0G
CSqGSIb3DQEBCwUAA4IBAQAcYHh3Tu51aLLR2sRhguFQSZfVefelr0dtpRdUiM4d
+hFuZlQfHlHitSq+WivnIYCHld57BC0zbejHeRsU2c86wFmNT5ySg4pNaCJsDET3
AuGzzvrg8jRPr83uR3iNCqCRVx6CXEZUfjR/u1/v8n3wIV756Q/YTME8FDiK1X8p
MSWROJHsgqLgwKw9eDYtm0SI68q++tAwrDWIZ78/vfZn6JZu07gtZHbgS0k1c5tL
mFYOY6uLEV7f/KEtbAt6SvhwQz7XJ/juPj/I6+HWq3GfsMBTIXwHAu4FhSAxgDzJ
kgSkGZa/cH/2NSAtBk4E1a1EHvEjayXGmpOaRcvGERFE
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:29 2024 by rpki-client on console-fra.rpki-client.org