Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/leiEjYFXki0rQMTbA_XhYlBRZHA.roa
File: leiEjYFXki0rQMTbA_XhYlBRZHA.roa (raw, json)
Hash identifier: Dn7nAHO7usyUm2a8i5sH+msqs26gc1SGijpFaob7R4I=
Subject key identifier: 95:E8:84:8D:81:57:92:2D:2B:40:C4:DB:03:F5:E1:62:50:51:64:70
Certificate issuer: /CN=34012343a62f3f09b55cdbc01e75c38212a235df
Certificate serial: 01856C65E5439B17CC6F81DEF261128EE6F0
Authority key identifier: 34:01:23:43:A6:2F:3F:09:B5:5C:DB:C0:1E:75:C3:82:12:A2:35:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NAEjQ6YvPwm1XNvAHnXDghKiNd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/leiEjYFXki0rQMTbA_XhYlBRZHA.roa
Signing time: Sun 01 Jan 2023 08:14:55 +0000
ROA not before: Sun 01 Jan 2023 08:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57593
IP address blocks: 91.233.60.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:65:e5:43:9b:17:cc:6f:81:de:f2:61:12:8e:e6:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34012343a62f3f09b55cdbc01e75c38212a235df
Validity
Not Before: Jan 1 08:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=95e8848d8157922d2b40c4db03f5e16250516470
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:74:32:98:cd:3c:ea:9c:b5:ec:88:fa:78:3b:
67:07:a0:45:12:0f:e3:f8:fe:6e:87:15:e6:a9:c7:
fb:92:84:df:1b:6a:64:a2:00:f6:43:fd:6a:5a:db:
58:d5:87:d6:cf:e3:94:e9:7c:88:3f:f8:3b:40:bd:
b0:65:91:ea:97:df:95:3b:ff:6a:e2:05:a1:78:b0:
49:16:47:64:83:09:c2:5f:c1:6e:e9:09:44:70:df:
f0:0c:ea:66:f5:e3:11:45:1a:7a:b7:95:05:e3:c8:
b3:9e:d9:9e:89:81:7f:24:de:1b:bf:1f:93:94:85:
52:58:5a:a5:a2:74:4d:fb:39:1a:8d:b5:d7:3a:4d:
9c:8a:8e:a1:47:39:0d:e0:3c:a3:af:ba:07:c5:f6:
0d:1f:4c:46:b5:ac:61:54:5b:b5:7c:98:62:5d:44:
31:11:c2:9c:3f:29:d5:10:b4:06:30:39:85:17:e2:
7b:82:06:14:12:da:32:fb:67:e5:e0:1a:98:4d:be:
dd:64:e0:5d:dd:fb:7c:fa:6b:16:98:4d:b9:f8:5b:
20:23:76:6f:dc:7b:89:af:59:78:99:a1:2a:e1:b6:
53:78:57:25:3a:e7:ca:58:d9:d7:f8:cc:40:50:df:
06:b6:fe:ea:70:d0:de:f7:a5:15:09:50:e3:7f:82:
33:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:E8:84:8D:81:57:92:2D:2B:40:C4:DB:03:F5:E1:62:50:51:64:70
X509v3 Authority Key Identifier:
keyid:34:01:23:43:A6:2F:3F:09:B5:5C:DB:C0:1E:75:C3:82:12:A2:35:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NAEjQ6YvPwm1XNvAHnXDghKiNd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/leiEjYFXki0rQMTbA_XhYlBRZHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/b2302e-aade-465a-aa9b-32d2bdd4bbb1/1/NAEjQ6YvPwm1XNvAHnXDghKiNd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.233.60.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:73:e7:c1:ae:bb:8c:9d:98:bf:89:ad:dd:73:fa:1d:2c:3e:
28:81:57:b8:bb:be:35:d8:2d:2f:8f:9c:bb:c3:27:8e:6c:04:
fd:32:66:75:a8:a1:92:a0:f0:59:21:aa:9d:64:1d:2a:9f:ab:
5a:3d:d0:8a:79:9a:63:0e:98:95:3d:30:60:06:77:2a:74:a7:
93:bf:5e:74:eb:01:af:79:fb:90:2c:87:1e:7a:58:12:f4:65:
07:6f:a4:c8:1b:86:91:7a:94:1a:9c:9f:14:56:4c:d1:be:62:
4a:11:48:fa:e2:20:3e:0a:d1:26:c8:3c:30:21:d4:43:7e:6e:
9a:da:ca:1c:10:de:3c:6b:4c:31:96:fd:f7:64:cc:fe:f6:b2:
f1:0e:a7:c2:72:92:a7:e9:f3:d4:1d:f7:a5:b6:59:54:82:9f:
8e:ea:69:d2:73:a9:e1:e5:36:cd:e4:76:d4:c0:3f:1f:cf:c7:
c2:8c:41:74:9d:cf:d1:dc:68:67:79:71:f9:32:ae:cb:67:00:
7a:8f:7f:a8:56:19:20:58:74:8a:67:4e:df:92:09:d9:51:18:
9b:72:a9:d0:90:df:20:53:1e:7b:31:7a:06:8e:fc:e7:9c:ac:
ae:3e:86:a0:49:da:4c:52:46:6a:0d:65:f4:32:4d:84:66:80:
6f:dc:2b:d3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsZeVDmxfMb4He8mESjubwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0MDEyMzQzYTYyZjNmMDliNTVjZGJjMDFlNzVjMzgyMTJh
MjM1ZGYwHhcNMjMwMTAxMDgxNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NWU4ODQ4ZDgxNTc5MjJkMmI0MGM0ZGIwM2Y1ZTE2MjUwNTE2NDcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk3QymM086py17Ij6eDtnB6BFEg/j
+P5uhxXmqcf7koTfG2pkogD2Q/1qWttY1YfWz+OU6XyIP/g7QL2wZZHql9+VO/9q
4gWheLBJFkdkgwnCX8Fu6QlEcN/wDOpm9eMRRRp6t5UF48izntmeiYF/JN4bvx+T
lIVSWFqlonRN+zkajbXXOk2cio6hRzkN4Dyjr7oHxfYNH0xGtaxhVFu1fJhiXUQx
EcKcPynVELQGMDmFF+J7ggYUEtoy+2fl4BqYTb7dZOBd3ft8+msWmE25+FsgI3Zv
3HuJr1l4maEq4bZTeFclOufKWNnX+MxAUN8Gtv7qcNDe96UVCVDjf4IzLQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJXohI2BV5ItK0DE2wP14WJQUWRwMB8GA1UdIwQY
MBaAFDQBI0OmLz8JtVzbwB51w4ISojXfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTkFFalE2WXZQd20xWE52QUhuWERnaEtpTmQ4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9iMjMwMmUtYWFkZS00NjVhLWFhOWIt
MzJkMmJkZDRiYmIxLzEvbGVpRWpZRlhraTByUU1UYkFfWGhZbEJSWkhBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS9iMjMwMmUtYWFkZS00NjVhLWFhOWItMzJkMmJkZDRiYmIx
LzEvTkFFalE2WXZQd20xWE52QUhuWERnaEtpTmQ4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+k8MA0G
CSqGSIb3DQEBCwUAA4IBAQC3c+fBrruMnZi/ia3dc/odLD4ogVe4u7412C0vj5y7
wyeObAT9MmZ1qKGSoPBZIaqdZB0qn6taPdCKeZpjDpiVPTBgBncqdKeTv1506wGv
efuQLIceelgS9GUHb6TIG4aRepQanJ8UVkzRvmJKEUj64iA+CtEmyDwwIdRDfm6a
2socEN48a0wxlv33ZMz+9rLxDqfCcpKn6fPUHfeltllUgp+O6mnSc6nh5TbN5HbU
wD8fz8fCjEF0nc/R3GhneXH5Mq7LZwB6j3+oVhkgWHSKZ07fkgnZURibcqnQkN8g
Ux57MXoGjvznnKyuPoagSdpMUkZqDWX0Mk2EZoBv3CvT
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:48 2024 by rpki-client on console-fra.rpki-client.org