Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/8f5119-6dcc-43a2-8daf-f3211d91520d/1/4MJHfMz0GHrpzNPI_sxoZ6NQnQY.roa
File: 4MJHfMz0GHrpzNPI_sxoZ6NQnQY.roa (raw, json)
Hash identifier: S+E8U/tfjFdaHrpc1wk+khPOXcJPVHWy5eZH74RCbXc=
Subject key identifier: E0:C2:47:7C:CC:F4:18:7A:E9:CC:D3:C8:FE:CC:68:67:A3:50:9D:06
Certificate issuer: /CN=6baa05c6f8f9bfd70e3d41fe05bafc50d1253bf5
Certificate serial: 01857094E7160DB0F0E83B057D7648AAF0E0
Authority key identifier: 6B:AA:05:C6:F8:F9:BF:D7:0E:3D:41:FE:05:BA:FC:50:D1:25:3B:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a6oFxvj5v9cOPUH-Bbr8UNElO_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/8f5119-6dcc-43a2-8daf-f3211d91520d/1/4MJHfMz0GHrpzNPI_sxoZ6NQnQY.roa
Signing time: Mon 02 Jan 2023 03:44:44 +0000
ROA not before: Mon 02 Jan 2023 03:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 91.196.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:94:e7:16:0d:b0:f0:e8:3b:05:7d:76:48:aa:f0:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6baa05c6f8f9bfd70e3d41fe05bafc50d1253bf5
Validity
Not Before: Jan 2 03:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e0c2477cccf4187ae9ccd3c8fecc6867a3509d06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:cd:f5:70:66:6b:7a:56:95:f1:5a:ef:41:1d:
22:74:f3:73:0a:cd:34:db:43:35:34:42:d8:9e:3d:
7f:17:ee:9d:aa:d5:13:98:3a:b4:91:62:a4:d3:eb:
c8:3b:68:6e:b6:5b:7f:b6:1d:59:5d:c1:2a:09:56:
19:e8:61:d0:6f:e6:f8:94:fc:ab:91:bc:05:b6:65:
34:0f:cb:1d:5f:1f:88:a9:32:a5:64:0d:31:ee:ee:
e3:79:c1:f1:58:39:51:91:be:6c:13:c5:6f:02:97:
78:03:39:00:10:a8:4a:dc:75:82:8b:c2:07:94:34:
a8:1d:67:b6:95:6d:09:c9:62:14:51:fc:2d:a9:ea:
27:75:21:f0:97:1d:ff:0e:1d:87:a2:b4:4a:56:34:
15:a9:65:4d:41:fc:4a:f7:24:66:b5:a8:4a:ad:2f:
60:c9:ad:2e:c9:2f:57:68:2f:8c:54:53:bb:8a:2c:
0d:b5:a1:2c:b6:00:42:c0:e5:b1:d3:78:0d:03:ef:
84:ff:32:1f:6a:61:81:7a:b5:71:f6:3e:c7:a0:81:
60:65:c0:12:84:b2:aa:e9:4e:f2:ca:77:d6:0b:9e:
71:f2:56:17:31:32:ea:52:25:26:7f:0a:02:5f:3b:
a1:66:1a:1e:90:5b:74:c3:70:e7:71:2b:9a:28:62:
5a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:C2:47:7C:CC:F4:18:7A:E9:CC:D3:C8:FE:CC:68:67:A3:50:9D:06
X509v3 Authority Key Identifier:
keyid:6B:AA:05:C6:F8:F9:BF:D7:0E:3D:41:FE:05:BA:FC:50:D1:25:3B:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6oFxvj5v9cOPUH-Bbr8UNElO_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8f5119-6dcc-43a2-8daf-f3211d91520d/1/4MJHfMz0GHrpzNPI_sxoZ6NQnQY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/8f5119-6dcc-43a2-8daf-f3211d91520d/1/a6oFxvj5v9cOPUH-Bbr8UNElO_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.196.152.0/24
Signature Algorithm: sha256WithRSAEncryption
66:74:d5:51:ac:e6:61:55:b0:10:c4:03:7a:88:82:61:16:58:
97:64:31:30:68:08:61:23:d9:a0:58:f9:26:67:9b:95:01:60:
f0:f8:f5:0f:c8:34:e8:af:ee:71:f5:3b:83:b7:98:80:af:7b:
f2:8a:c0:e1:d8:38:c4:f2:c7:63:65:43:91:ad:19:02:3e:5f:
a1:e1:a2:33:39:e9:5a:0c:44:7d:0c:8f:33:d9:28:e8:d6:5a:
d2:6b:2a:f3:c8:06:c8:27:10:a2:1b:c2:8c:4f:61:eb:17:7d:
5a:75:94:96:90:67:fa:7a:10:4c:76:6f:c5:70:db:48:28:b3:
ad:ff:e9:10:e1:30:ab:4c:7a:b8:d9:e8:d5:bb:b4:4f:e5:23:
15:60:fa:23:69:49:40:88:86:9f:e7:e7:63:3d:2c:36:fa:b5:
79:aa:7a:a7:29:03:10:9a:4f:43:c4:58:7e:2b:1f:62:b0:b1:
f1:6a:35:c1:53:84:54:36:d6:c3:20:3e:3f:3a:e9:76:dc:40:
d9:bc:67:3a:ee:b0:27:a0:b6:ea:f2:9f:e4:c5:fa:ec:b6:a1:
a6:b6:31:78:3d:4e:c6:dc:3f:c8:17:49:6c:bf:ec:f1:18:01:
db:d5:53:be:16:2b:e7:44:c6:83:e5:bc:78:66:00:b3:2c:51:
07:ed:71:0b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwlOcWDbDw6DsFfXZIqvDgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiYWEwNWM2ZjhmOWJmZDcwZTNkNDFmZTA1YmFmYzUwZDEy
NTNiZjUwHhcNMjMwMTAyMDM0NDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMGMyNDc3Y2NjZjQxODdhZTljY2QzYzhmZWNjNjg2N2EzNTA5ZDA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxc31cGZrelaV8VrvQR0idPNzCs00
20M1NELYnj1/F+6dqtUTmDq0kWKk0+vIO2hutlt/th1ZXcEqCVYZ6GHQb+b4lPyr
kbwFtmU0D8sdXx+IqTKlZA0x7u7jecHxWDlRkb5sE8VvApd4AzkAEKhK3HWCi8IH
lDSoHWe2lW0JyWIUUfwtqeondSHwlx3/Dh2HorRKVjQVqWVNQfxK9yRmtahKrS9g
ya0uyS9XaC+MVFO7iiwNtaEstgBCwOWx03gNA++E/zIfamGBerVx9j7HoIFgZcAS
hLKq6U7yynfWC55x8lYXMTLqUiUmfwoCXzuhZhoekFt0w3DncSuaKGJa2wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFODCR3zM9Bh66czTyP7MaGejUJ0GMB8GA1UdIwQY
MBaAFGuqBcb4+b/XDj1B/gW6/FDRJTv1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYTZvRnh2ajV2OWNPUFVILUJicjhVTkVsT19VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC84ZjUxMTktNmRjYy00M2EyLThkYWYt
ZjMyMTFkOTE1MjBkLzEvNE1KSGZNejBHSHJwek5QSV9zeG9aNk5RblFZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MC84ZjUxMTktNmRjYy00M2EyLThkYWYtZjMyMTFkOTE1MjBk
LzEvYTZvRnh2ajV2OWNPUFVILUJicjhVTkVsT19VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8SYMA0G
CSqGSIb3DQEBCwUAA4IBAQBmdNVRrOZhVbAQxAN6iIJhFliXZDEwaAhhI9mgWPkm
Z5uVAWDw+PUPyDTor+5x9TuDt5iAr3vyisDh2DjE8sdjZUORrRkCPl+h4aIzOela
DER9DI8z2Sjo1lrSayrzyAbIJxCiG8KMT2HrF31adZSWkGf6ehBMdm/FcNtIKLOt
/+kQ4TCrTHq42ejVu7RP5SMVYPojaUlAiIaf5+djPSw2+rV5qnqnKQMQmk9DxFh+
Kx9isLHxajXBU4RUNtbDID4/Oul23EDZvGc67rAnoLbq8p/kxfrstqGmtjF4PU7G
3D/IF0lsv+zxGAHb1VO+FivnRMaD5bx4ZgCzLFEH7XEL
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:18 2024 by rpki-client on console-fra.rpki-client.org