Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/4d4b24-9b58-4e3c-a515-e325621e86dd/1/P5aDYlpBBQVskclT-PceDp0Re9M.roa
File: P5aDYlpBBQVskclT-PceDp0Re9M.roa (raw, json)
Hash identifier: E7GBTY1M87wXvlvmq597elldtYItckClg4wxlQKKcgo=
Subject key identifier: 3F:96:83:62:5A:41:05:05:6C:91:C9:53:F8:F7:1E:0E:9D:11:7B:D3
Certificate issuer: /CN=27f48c85a42b00b39d1803e63c9fd5adebf7f95e
Certificate serial: 01856FB112C1AB77AFA557EC26E7B938B153
Authority key identifier: 27:F4:8C:85:A4:2B:00:B3:9D:18:03:E6:3C:9F:D5:AD:EB:F7:F9:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J_SMhaQrALOdGAPmPJ_Vrev3-V4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/4d4b24-9b58-4e3c-a515-e325621e86dd/1/P5aDYlpBBQVskclT-PceDp0Re9M.roa
Signing time: Sun 01 Jan 2023 23:35:53 +0000
ROA not before: Sun 01 Jan 2023 23:35:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44005
IP address blocks: 91.198.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:b1:12:c1:ab:77:af:a5:57:ec:26:e7:b9:38:b1:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27f48c85a42b00b39d1803e63c9fd5adebf7f95e
Validity
Not Before: Jan 1 23:35:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3f9683625a4105056c91c953f8f71e0e9d117bd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:e2:87:59:a8:f6:cb:31:6f:25:bf:eb:a7:02:
d1:fe:2a:e4:e3:8e:5b:fa:8b:df:3e:0d:06:88:0a:
72:dc:0a:94:4e:70:e9:ca:a8:7e:d2:87:44:00:b1:
63:b2:95:02:e4:16:7d:ad:2f:ec:3d:fd:8f:d0:ee:
73:56:d7:0e:be:0a:76:9e:8b:d7:ff:0a:f5:3d:32:
21:80:e9:34:14:65:07:8c:90:1d:45:10:46:4f:09:
0f:7d:a4:9b:9f:d4:a4:60:7a:da:b7:10:8f:94:60:
23:d3:29:e3:77:7a:a6:09:c6:ea:69:75:40:47:86:
d0:f4:b4:a0:d7:b7:46:07:ef:9d:87:65:07:20:70:
7f:db:bb:11:77:6e:db:e2:62:58:fb:f6:ac:e5:c6:
e6:f4:77:75:8f:1d:e8:29:d7:80:55:58:03:5f:a5:
4e:7f:e2:8f:1f:8a:c0:f2:3f:cf:00:93:29:4e:05:
93:b5:53:63:26:bf:c6:d6:7d:38:7b:f7:5f:81:32:
43:54:ab:06:d5:85:60:b2:8e:4c:12:15:90:bc:fa:
01:60:f0:3c:93:8c:7f:51:23:e8:f3:2c:62:8a:63:
49:bc:d0:8f:ae:7f:69:89:d6:63:7b:4d:93:a1:d6:
c2:2d:9c:42:78:fb:42:3c:44:eb:c7:82:fc:9a:11:
ef:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:96:83:62:5A:41:05:05:6C:91:C9:53:F8:F7:1E:0E:9D:11:7B:D3
X509v3 Authority Key Identifier:
keyid:27:F4:8C:85:A4:2B:00:B3:9D:18:03:E6:3C:9F:D5:AD:EB:F7:F9:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J_SMhaQrALOdGAPmPJ_Vrev3-V4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/4d4b24-9b58-4e3c-a515-e325621e86dd/1/P5aDYlpBBQVskclT-PceDp0Re9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/4d4b24-9b58-4e3c-a515-e325621e86dd/1/J_SMhaQrALOdGAPmPJ_Vrev3-V4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.235.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:60:ba:1b:18:08:7f:0f:83:f9:cb:fd:37:84:fa:43:4a:8c:
78:c3:03:a6:d3:77:ba:f4:78:a5:8e:bd:e6:1d:44:3e:ee:15:
20:94:3d:79:68:9b:11:87:f5:0e:cd:80:3b:a8:5f:d4:77:da:
be:80:c7:fe:b1:f4:87:a5:57:fa:7f:16:fc:0b:aa:a2:ed:1d:
57:34:44:d5:2e:87:05:4a:3a:a5:ef:94:b0:d1:24:02:b4:bf:
d4:97:59:e9:e2:db:83:c5:05:17:87:1a:1b:f3:1e:f4:fe:80:
9f:36:2c:08:58:b1:49:3d:5e:d9:de:c2:95:e6:d7:18:64:1c:
0f:c0:54:70:50:fd:50:f1:3f:28:fd:80:13:5b:ec:27:e8:9e:
44:a8:5b:ea:e8:5f:79:47:b1:af:77:bc:47:62:8b:64:45:9a:
f0:89:31:c5:bc:6d:fb:f9:29:a4:d8:8b:e1:99:68:a7:e0:fb:
3c:c9:82:5f:76:42:45:5e:5e:0c:e7:06:67:1a:10:ba:35:6b:
b8:be:5e:4d:a9:b4:53:8b:7f:63:f8:6d:d1:bb:fe:bd:f2:14:
ab:b1:3e:d1:1e:5a:a9:5f:6d:15:ba:d3:a7:6a:c3:21:27:39:
28:3b:37:75:ee:30:cc:3a:bf:34:79:ba:80:a8:bf:29:5a:e1:
ef:11:1b:45
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvsRLBq3evpVfsJue5OLFTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI3ZjQ4Yzg1YTQyYjAwYjM5ZDE4MDNlNjNjOWZkNWFkZWJm
N2Y5NWUwHhcNMjMwMTAxMjMzNTUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZjk2ODM2MjVhNDEwNTA1NmM5MWM5NTNmOGY3MWUwZTlkMTE3YmQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAheKHWaj2yzFvJb/rpwLR/irk445b
+ovfPg0GiApy3AqUTnDpyqh+0odEALFjspUC5BZ9rS/sPf2P0O5zVtcOvgp2novX
/wr1PTIhgOk0FGUHjJAdRRBGTwkPfaSbn9SkYHratxCPlGAj0ynjd3qmCcbqaXVA
R4bQ9LSg17dGB++dh2UHIHB/27sRd27b4mJY+/as5cbm9Hd1jx3oKdeAVVgDX6VO
f+KPH4rA8j/PAJMpTgWTtVNjJr/G1n04e/dfgTJDVKsG1YVgso5MEhWQvPoBYPA8
k4x/USPo8yxiimNJvNCPrn9pidZje02TodbCLZxCePtCPETrx4L8mhHvLwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFD+Wg2JaQQUFbJHJU/j3Hg6dEXvTMB8GA1UdIwQY
MBaAFCf0jIWkKwCznRgD5jyf1a3r9/leMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSl9TTWhhUXJBTE9kR0FQbVBKX1ZyZXYzLVY0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi80ZDRiMjQtOWI1OC00ZTNjLWE1MTUt
ZTMyNTYyMWU4NmRkLzEvUDVhRFlscEJCUVZza2NsVC1QY2VEcDBSZTlNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi80ZDRiMjQtOWI1OC00ZTNjLWE1MTUtZTMyNTYyMWU4NmRk
LzEvSl9TTWhhUXJBTE9kR0FQbVBKX1ZyZXYzLVY0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8brMA0G
CSqGSIb3DQEBCwUAA4IBAQDEYLobGAh/D4P5y/03hPpDSox4wwOm03e69Hiljr3m
HUQ+7hUglD15aJsRh/UOzYA7qF/Ud9q+gMf+sfSHpVf6fxb8C6qi7R1XNETVLocF
Sjql75Sw0SQCtL/Ul1np4tuDxQUXhxob8x70/oCfNiwIWLFJPV7Z3sKV5tcYZBwP
wFRwUP1Q8T8o/YATW+wn6J5EqFvq6F95R7Gvd7xHYotkRZrwiTHFvG37+Smk2Ivh
mWin4Ps8yYJfdkJFXl4M5wZnGhC6NWu4vl5NqbRTi39j+G3Ru/698hSrsT7RHlqp
X20VutOnasMhJzkoOzd17jDMOr80ebqAqL8pWuHvERtF
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:34 2024 by rpki-client on console-ams.rpki-client.org