Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/szapj0_yLTfzcT9VrGxf0ie9NPY.roa
File: szapj0_yLTfzcT9VrGxf0ie9NPY.roa (raw, json)
Hash identifier: FKzIEU0Uct10UeDjKdkoxSsOHZA3haHFiWSdKPqI5aA=
Subject key identifier: B3:36:A9:8F:4F:F2:2D:37:F3:71:3F:55:AC:6C:5F:D2:27:BD:34:F6
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 018EAFA73396E9C0036D782675529E148222
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/szapj0_yLTfzcT9VrGxf0ie9NPY.roa
Signing time: Fri 05 Apr 2024 19:05:54 +0000
ROA not before: Fri 05 Apr 2024 19:05:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61048
IP address blocks: 91.212.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Apr 2024 17:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:af:a7:33:96:e9:c0:03:6d:78:26:75:52:9e:14:82:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Apr 5 19:05:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b336a98f4ff22d37f3713f55ac6c5fd227bd34f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:2f:e3:3b:47:e2:c1:6b:e1:09:bc:c7:fd:36:
62:6a:3a:9b:32:ae:82:99:38:71:76:15:1b:de:81:
83:77:5e:5b:5f:9d:ef:74:f3:37:99:f5:17:11:14:
de:2f:07:24:cd:c1:08:14:88:1c:6b:72:16:55:30:
25:03:6d:86:fb:ee:8f:b4:d6:5a:d9:43:6b:52:5e:
75:78:24:2c:2f:f9:66:d3:94:52:4d:cf:04:a7:b9:
62:67:f8:a0:e2:da:ad:36:0b:22:a5:f3:bb:7c:5e:
a5:3e:d0:9d:f1:cf:c6:c5:8f:f8:b2:1a:20:41:04:
0f:c4:99:9d:65:ec:b6:71:28:70:79:5a:2d:81:a1:
ae:65:9c:b6:0a:99:97:1d:ab:ca:e9:79:ff:0d:43:
65:07:b6:4f:1e:18:d9:99:c4:a4:4e:b0:91:48:20:
a8:cc:8d:f7:b6:c0:79:b9:d3:02:4c:b1:26:c7:41:
e9:c6:e6:d2:ec:e0:2c:e8:57:47:c8:f4:e9:e3:5b:
bf:bb:88:d4:56:b1:44:3f:3f:f6:00:09:38:17:e1:
f5:70:e4:86:3f:c8:2c:a4:e3:f6:e1:e7:c5:20:8c:
d1:33:e4:66:b1:87:90:9d:f2:5c:3b:74:d1:ee:47:
39:ba:36:56:86:30:d8:ad:2b:34:1f:f5:ad:37:cb:
eb:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:36:A9:8F:4F:F2:2D:37:F3:71:3F:55:AC:6C:5F:D2:27:BD:34:F6
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/szapj0_yLTfzcT9VrGxf0ie9NPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.103.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:33:e7:da:4e:95:1f:b1:7f:a8:b1:8e:06:05:50:10:72:36:
09:fe:c1:0b:bd:6e:c5:f8:17:b0:47:f9:d8:a9:49:d0:75:67:
7d:9f:0e:42:e3:54:5b:52:14:dc:f5:e8:ce:2c:5f:7b:7e:ae:
ef:9f:14:1d:fa:13:73:11:f0:a9:0b:e2:93:7a:f0:e5:67:55:
75:81:d6:5e:b8:ef:52:c0:51:1b:e0:ab:0a:ea:9a:bb:ac:5a:
1f:f8:7f:c1:a5:6c:e7:2c:8b:a1:5f:93:ff:96:64:d0:a0:c7:
e9:5d:06:b7:fb:d5:a1:cc:21:17:c6:1c:84:5a:d4:26:94:01:
5a:df:08:0c:42:10:c8:92:d1:62:de:c8:9b:2a:40:a5:09:be:
3f:7f:98:5a:b8:7a:77:e5:8e:8d:c6:3a:68:b3:18:74:7e:71:
52:f5:72:26:bb:df:eb:0a:7c:ea:be:c5:55:bd:db:d3:6f:f3:
b1:df:b4:c6:c5:86:ec:66:4d:1d:80:2d:6c:b7:4a:8a:d5:13:
93:be:82:fe:d3:7f:9a:f9:a2:4d:45:44:e4:63:61:17:4e:d2:
3a:93:6f:b2:27:2c:7b:21:4a:9d:d0:27:d8:dc:2e:b2:11:91:
c2:a0:96:5a:3f:71:a3:7d:7f:25:87:5c:1c:8b:6d:9e:aa:b4:
de:8a:77:6a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY6vpzOW6cADbXgmdVKeFIIiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA5MzM1M2MxZmFiZTg5NmFmOGI4NWZlNzYwMGU0NjM0OTY4
ZmNjNGMwHhcNMjQwNDA1MTkwNTU0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMzM2YTk4ZjRmZjIyZDM3ZjM3MTNmNTVhYzZjNWZkMjI3YmQzNGY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhC/jO0fiwWvhCbzH/TZiajqbMq6C
mThxdhUb3oGDd15bX53vdPM3mfUXERTeLwckzcEIFIgca3IWVTAlA22G++6PtNZa
2UNrUl51eCQsL/lm05RSTc8Ep7liZ/ig4tqtNgsipfO7fF6lPtCd8c/GxY/4shog
QQQPxJmdZey2cShweVotgaGuZZy2CpmXHavK6Xn/DUNlB7ZPHhjZmcSkTrCRSCCo
zI33tsB5udMCTLEmx0HpxubS7OAs6FdHyPTp41u/u4jUVrFEPz/2AAk4F+H1cOSG
P8gspOP24efFIIzRM+RmsYeQnfJcO3TR7kc5ujZWhjDYrSs0H/WtN8vrDQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLM2qY9P8i0383E/VaxsX9InvTT2MB8GA1UdIwQY
MBaAFAkzU8H6volq+Lhf52AORjSWj8xMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGIt
MjM5ZDJmZTM5OGIxLzEvc3phcGowX3lMVGZ6Y1Q5VnJHeGYwaWU5TlBZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi83YjkzMzYtZTlmOC00ZTI3LWFmNGItMjM5ZDJmZTM5OGIx
LzEvQ1ROVHdmcS1pV3I0dUZfbllBNUdOSmFQekV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9RnMA0G
CSqGSIb3DQEBCwUAA4IBAQCLM+faTpUfsX+osY4GBVAQcjYJ/sELvW7F+BewR/nY
qUnQdWd9nw5C41RbUhTc9ejOLF97fq7vnxQd+hNzEfCpC+KTevDlZ1V1gdZeuO9S
wFEb4KsK6pq7rFof+H/BpWznLIuhX5P/lmTQoMfpXQa3+9WhzCEXxhyEWtQmlAFa
3wgMQhDIktFi3sibKkClCb4/f5hauHp35Y6Nxjposxh0fnFS9XImu9/rCnzqvsVV
vdvTb/Ox37TGxYbsZk0dgC1st0qK1ROTvoL+03+a+aJNRUTkY2EXTtI6k2+yJyx7
IUqd0CfY3C6yEZHCoJZaP3GjfX8lh1wci22eqrTeindq
-----END CERTIFICATE-----
Generated at Mon Apr 8 22:42:02 2024 by rpki-client on console-fra.rpki-client.org