Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/Syzz4VPbtqc0wnYB5HODQO6mh1Y.roa
File: Syzz4VPbtqc0wnYB5HODQO6mh1Y.roa (raw, json)
Hash identifier: lNnJm3nZOvmLD0bs3VAHJ1zH6kWMe71xXoXu6I4F1is=
Subject key identifier: 4B:2C:F3:E1:53:DB:B6:A7:34:C2:76:01:E4:73:83:40:EE:A6:87:56
Certificate issuer: /CN=512e27be891b19eca9bceb53e4dc237c5a355697
Certificate serial: 01856E142D67D3D8138D706D629782169469
Authority key identifier: 51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/Syzz4VPbtqc0wnYB5HODQO6mh1Y.roa
Signing time: Sun 01 Jan 2023 16:04:54 +0000
ROA not before: Sun 01 Jan 2023 16:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48772
IP address blocks: 91.223.49.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:2d:67:d3:d8:13:8d:70:6d:62:97:82:16:94:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512e27be891b19eca9bceb53e4dc237c5a355697
Validity
Not Before: Jan 1 16:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b2cf3e153dbb6a734c27601e4738340eea68756
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:df:ec:15:bd:e8:83:af:2d:3f:d5:a8:9a:a8:
49:02:69:47:ee:9b:55:8b:f2:d4:1e:35:74:8b:29:
18:95:61:27:18:0a:a1:3e:5d:62:9b:36:7c:b9:d4:
9e:bd:a5:e7:de:0d:31:4b:11:ff:ad:1c:80:15:9e:
77:48:96:0f:34:ff:41:04:90:23:cc:39:00:df:f7:
b1:7e:db:56:4f:53:6b:5f:8d:28:4d:57:70:e1:f2:
c9:b6:4e:85:e9:e8:bb:1c:49:06:a4:ef:13:ef:73:
b3:2b:04:28:c8:82:75:c1:b6:d7:b6:6d:c7:df:ba:
1e:17:7b:c6:ae:b1:c3:a3:0a:98:ee:a3:eb:7c:4b:
0a:d2:60:86:83:a6:14:04:19:5f:37:5c:50:d4:35:
3b:bf:ef:f6:8b:ad:93:74:f4:d8:14:9c:f1:59:22:
28:84:8a:ae:f5:e9:4c:71:c2:d0:ac:dc:af:ce:dd:
fd:5d:17:1b:ad:76:7f:23:e5:c3:75:f6:f8:57:1a:
6e:4c:08:b1:1e:7e:c0:97:d1:b4:b5:5e:ad:95:20:
e2:da:0a:44:64:bc:9d:0c:e0:1a:a5:8e:eb:9c:3c:
ee:a7:eb:01:26:6e:88:fa:e9:a7:e3:5a:37:58:7c:
79:6f:bf:57:21:9f:a6:3a:f5:3b:c8:15:d2:72:f5:
31:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:2C:F3:E1:53:DB:B6:A7:34:C2:76:01:E4:73:83:40:EE:A6:87:56
X509v3 Authority Key Identifier:
keyid:51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/Syzz4VPbtqc0wnYB5HODQO6mh1Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.49.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:ce:d5:95:d2:dc:97:9b:07:cf:a1:cf:90:31:fa:4e:36:ff:
ee:ce:4a:8f:4f:42:d0:b2:8c:c7:a3:0e:ae:62:e5:9c:77:9d:
17:7b:8f:1f:7a:55:1a:ce:70:31:05:62:0a:e9:3b:e2:e2:5b:
82:a4:90:df:8f:91:54:e0:92:39:c1:9f:d4:a6:21:6a:2c:3f:
d0:a4:ea:f6:ab:85:42:9f:d3:d4:4e:0b:a4:5a:5b:88:51:52:
59:2c:73:0e:1d:a2:ec:a6:11:4f:db:f0:d0:24:f1:64:4b:2f:
c8:7c:f8:c1:fb:d5:88:f3:9d:b2:b9:47:a1:87:45:7e:73:10:
ba:6c:56:87:87:5c:ea:1b:c3:75:c1:48:54:11:e5:0d:80:e1:
e1:99:84:7e:48:ad:ea:0b:d5:c7:76:9e:37:e8:1b:d6:4b:21:
2e:08:ea:47:fe:10:af:c9:fc:1b:f5:e6:21:63:78:4d:99:be:
6d:96:54:36:a2:6e:9c:0d:94:64:6f:d5:c0:41:a7:4a:f2:e1:
04:0f:54:e6:e6:da:39:00:60:2f:3e:f2:b6:ef:b8:db:6c:93:
dd:32:a4:61:b4:82:68:eb:1c:a5:0e:79:b3:e9:6a:f2:50:d8:
3e:a0:a5:62:20:4f:e6:3f:83:65:ab:c7:d9:63:75:d6:30:8a:
34:d4:a6:b0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuFC1n09gTjXBtYpeCFpRpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUxMmUyN2JlODkxYjE5ZWNhOWJjZWI1M2U0ZGMyMzdjNWEz
NTU2OTcwHhcNMjMwMTAxMTYwNDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YjJjZjNlMTUzZGJiNmE3MzRjMjc2MDFlNDczODM0MGVlYTY4NzU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApt/sFb3og68tP9WomqhJAmlH7ptV
i/LUHjV0iykYlWEnGAqhPl1imzZ8udSevaXn3g0xSxH/rRyAFZ53SJYPNP9BBJAj
zDkA3/exfttWT1NrX40oTVdw4fLJtk6F6ei7HEkGpO8T73OzKwQoyIJ1wbbXtm3H
37oeF3vGrrHDowqY7qPrfEsK0mCGg6YUBBlfN1xQ1DU7v+/2i62TdPTYFJzxWSIo
hIqu9elMccLQrNyvzt39XRcbrXZ/I+XDdfb4VxpuTAixHn7Al9G0tV6tlSDi2gpE
ZLydDOAapY7rnDzup+sBJm6I+umn41o3WHx5b79XIZ+mOvU7yBXScvUx8QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEss8+FT27anNMJ2AeRzg0DupodWMB8GA1UdIwQY
MBaAFFEuJ76JGxnsqbzrU+TcI3xaNVaXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVVM0bnZva2JHZXlwdk90VDVOd2pmRm8xVnBjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC8wZjFiOGYtMWQ0Ny00MmYwLWEwNTAt
NWExMTRlZjliMmFhLzEvU3l6ejRWUGJ0cWMwd25ZQjVIT0RRTzZtaDFZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC8wZjFiOGYtMWQ0Ny00MmYwLWEwNTAtNWExMTRlZjliMmFh
LzEvVVM0bnZva2JHZXlwdk90VDVOd2pmRm8xVnBjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW98xMA0G
CSqGSIb3DQEBCwUAA4IBAQCzztWV0tyXmwfPoc+QMfpONv/uzkqPT0LQsozHow6u
YuWcd50Xe48felUaznAxBWIK6Tvi4luCpJDfj5FU4JI5wZ/UpiFqLD/QpOr2q4VC
n9PUTgukWluIUVJZLHMOHaLsphFP2/DQJPFkSy/IfPjB+9WI852yuUehh0V+cxC6
bFaHh1zqG8N1wUhUEeUNgOHhmYR+SK3qC9XHdp436BvWSyEuCOpH/hCvyfwb9eYh
Y3hNmb5tllQ2om6cDZRkb9XAQadK8uEED1Tm5to5AGAvPvK277jbbJPdMqRhtIJo
6xylDnmz6WryUNg+oKViIE/mP4Nlq8fZY3XWMIo01Kaw
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:10 2024 by rpki-client on console-ams.rpki-client.org