Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/nIjL6vx1v-hClOVQ6Q-Dl1-7UHM.roa
File: nIjL6vx1v-hClOVQ6Q-Dl1-7UHM.roa (raw, json)
Hash identifier: BodtdgQSiA1mx2N4pSreiv3kFOaxRPD3hG1/iSlvp4A=
Subject key identifier: 9C:88:CB:EA:FC:75:BF:E8:42:94:E5:50:E9:0F:83:97:5F:BB:50:73
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01858D4FB1BFC7B60B8900FAA2F1F3A0B229
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/nIjL6vx1v-hClOVQ6Q-Dl1-7UHM.roa
Signing time: Sat 07 Jan 2023 17:38:08 +0000
ROA not before: Sat 07 Jan 2023 17:38:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213035
IP address blocks: 91.216.185.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 Feb 2023 05:11:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:8d:4f:b1:bf:c7:b6:0b:89:00:fa:a2:f1:f3:a0:b2:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 7 17:38:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9c88cbeafc75bfe84294e550e90f83975fbb5073
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c1:de:65:0c:5b:75:75:af:b3:b2:e6:b2:66:
d0:25:8d:a6:3c:1e:80:d6:c6:fc:05:ae:96:48:d8:
a0:7b:ba:af:52:78:4c:ba:b4:49:c1:f7:5f:ef:bb:
ee:47:f3:4a:85:f9:95:a4:cd:db:c4:78:11:6c:0d:
6d:48:c5:46:22:40:e7:76:b1:89:5f:87:f5:9e:b7:
df:64:f3:52:4f:fc:3e:e2:6c:22:9f:a0:c6:21:9a:
bc:34:af:d5:2d:09:08:e3:45:05:2c:2b:09:13:31:
43:23:fc:12:c6:02:2b:4a:4e:a3:e2:c2:c8:fb:c9:
47:ac:89:12:60:5e:38:58:4e:32:85:11:7c:27:46:
28:15:d0:7a:ca:53:a1:83:6f:c1:38:ee:9e:b0:de:
56:1f:c3:a9:ad:8f:48:39:5e:4e:fb:df:5f:5a:0f:
18:c2:eb:9e:9d:ae:b5:b5:87:76:c6:8a:64:69:f5:
80:a3:42:b4:9a:18:0b:8a:ea:4e:dd:b1:58:60:82:
48:ac:65:db:f8:98:3a:dd:c1:22:f2:9d:b0:ed:a5:
14:f8:0a:2f:47:6c:db:15:a7:d4:6b:bb:84:bc:b2:
3a:70:f1:ba:5d:41:96:08:6f:ae:61:e1:ea:ad:fa:
d7:97:33:ff:41:90:1d:1a:a0:2d:81:50:95:25:b7:
a1:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:88:CB:EA:FC:75:BF:E8:42:94:E5:50:E9:0F:83:97:5F:BB:50:73
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/nIjL6vx1v-hClOVQ6Q-Dl1-7UHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.185.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:5d:89:ab:8f:4b:28:f5:35:8f:16:bf:5b:b4:f0:90:a6:c0:
3e:70:86:fb:71:22:64:60:e4:00:8d:4a:74:b8:2c:86:aa:51:
a5:9a:8d:77:ce:5f:ad:13:72:3f:d6:e6:c5:88:83:b1:35:ce:
f4:0f:2c:97:5a:a2:74:ce:f2:87:07:fe:bb:61:91:c4:35:78:
5f:53:9d:05:83:17:a3:2b:4b:ca:74:ce:05:4b:6b:bd:f5:59:
ae:ac:ff:f4:a2:13:d8:64:85:5b:ec:07:46:f4:81:7c:45:88:
9f:5c:5e:62:a2:db:65:58:61:6e:98:3a:ec:a0:00:e5:46:a5:
4f:50:2f:f7:da:37:ef:10:7b:1a:30:ee:7e:ac:81:0b:85:28:
50:e8:23:99:f4:47:d1:f4:ed:76:99:c0:5a:68:c2:c5:cb:e0:
df:80:80:51:e0:bb:f6:0b:53:05:3f:dd:97:09:48:a3:04:d8:
51:7e:d2:1e:9b:33:d7:0f:6e:fd:13:1f:39:e8:f5:a4:7f:b9:
38:d1:56:7c:94:93:c1:24:f9:32:57:15:e3:c8:1c:60:be:bd:
8f:bd:ed:a8:7f:16:2e:fb:47:60:63:64:a6:dd:1e:d0:90:09:
47:b2:66:1b:a7:70:20:f4:0b:f0:ab:5a:dd:8c:f5:e8:6c:df:
b8:36:1a:63
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYWNT7G/x7YLiQD6ovHzoLIpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjMwMTA3MTczODA4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5Yzg4Y2JlYWZjNzViZmU4NDI5NGU1NTBlOTBmODM5NzVmYmI1MDczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxMHeZQxbdXWvs7LmsmbQJY2mPB6A
1sb8Ba6WSNige7qvUnhMurRJwfdf77vuR/NKhfmVpM3bxHgRbA1tSMVGIkDndrGJ
X4f1nrffZPNST/w+4mwin6DGIZq8NK/VLQkI40UFLCsJEzFDI/wSxgIrSk6j4sLI
+8lHrIkSYF44WE4yhRF8J0YoFdB6ylOhg2/BOO6esN5WH8OprY9IOV5O+99fWg8Y
wuuena61tYd2xopkafWAo0K0mhgLiupO3bFYYIJIrGXb+Jg63cEi8p2w7aUU+Aov
R2zbFafUa7uEvLI6cPG6XUGWCG+uYeHqrfrXlzP/QZAdGqAtgVCVJbeh9wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJyIy+r8db/oQpTlUOkPg5dfu1BzMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvbklqTDZ2eDF2LWhDbE9WUTZRLURsMS03VUhNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9i5MA0G
CSqGSIb3DQEBCwUAA4IBAQA8XYmrj0so9TWPFr9btPCQpsA+cIb7cSJkYOQAjUp0
uCyGqlGlmo13zl+tE3I/1ubFiIOxNc70DyyXWqJ0zvKHB/67YZHENXhfU50Fgxej
K0vKdM4FS2u99VmurP/0ohPYZIVb7AdG9IF8RYifXF5iottlWGFumDrsoADlRqVP
UC/32jfvEHsaMO5+rIELhShQ6COZ9EfR9O12mcBaaMLFy+DfgIBR4Lv2C1MFP92X
CUijBNhRftIemzPXD279Ex856PWkf7k40VZ8lJPBJPkyVxXjyBxgvr2Pve2ofxYu
+0dgY2Sm3R7QkAlHsmYbp3Ag9Avwq1rdjPXobN+4Nhpj
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:10 2024 by rpki-client on console-fra.rpki-client.org