Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/uyDgQEoQtxemH8VUnsGIKLYZ1Ds.roa
File: uyDgQEoQtxemH8VUnsGIKLYZ1Ds.roa (raw, json)
Hash identifier: Gpkc1Q00orfxaL5YCOqc4Y+i4AUbgNDFtpifWoa5nW4=
Subject key identifier: BB:20:E0:40:4A:10:B7:17:A6:1F:C5:54:9E:C1:88:28:B6:19:D4:3B
Certificate issuer: /CN=1e7b2e243f8aa954597932bcdcd9af6560dce516
Certificate serial: 018570E750102A3E41F51B076E4F7BAF6FE3
Authority key identifier: 1E:7B:2E:24:3F:8A:A9:54:59:79:32:BC:DC:D9:AF:65:60:DC:E5:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HnsuJD-KqVRZeTK83NmvZWDc5RY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/uyDgQEoQtxemH8VUnsGIKLYZ1Ds.roa
Signing time: Mon 02 Jan 2023 05:14:45 +0000
ROA not before: Mon 02 Jan 2023 05:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24631
IP address blocks: 91.208.165.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:50:10:2a:3e:41:f5:1b:07:6e:4f:7b:af:6f:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e7b2e243f8aa954597932bcdcd9af6560dce516
Validity
Not Before: Jan 2 05:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb20e0404a10b717a61fc5549ec18828b619d43b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:38:08:41:62:5a:4d:57:46:84:99:52:f9:3f:
01:29:aa:0b:5a:9f:63:6b:cf:c2:87:1e:4c:71:ca:
b9:a0:d1:42:ed:6c:de:1f:8c:f6:8b:d7:98:2b:6f:
c0:6e:40:5f:e4:85:7a:13:73:c1:c5:ea:17:ad:0b:
6e:68:13:b6:ac:a7:7d:0f:3d:03:ae:77:9e:e2:e7:
3a:4a:44:ee:04:7d:81:ad:36:4d:9a:d0:06:71:fa:
64:97:cf:06:ce:c4:97:c2:41:7f:df:3e:99:db:4a:
26:1e:b6:96:91:95:5a:6b:56:37:37:2d:b1:be:dd:
6d:28:68:f6:30:40:b1:a3:bc:00:6e:00:dc:0b:30:
c7:c3:64:47:c6:82:9c:81:2f:1a:3e:5c:04:ab:6d:
1e:9f:10:54:cf:39:69:a2:31:5d:0f:36:62:ba:89:
87:50:2f:bb:76:65:7e:d4:9d:a6:73:3d:b3:6f:7d:
97:af:be:b3:13:fb:1c:b0:88:5e:61:84:59:31:94:
3b:62:88:9f:54:79:83:e3:4c:1d:ca:fc:b6:d9:13:
b4:77:42:a8:72:ec:d1:f4:c5:7f:10:b5:92:fb:91:
21:54:86:e7:33:99:0e:29:5d:f9:0b:7c:bb:77:db:
93:f2:18:08:ac:fc:97:cb:5a:48:76:80:11:0f:5f:
19:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:20:E0:40:4A:10:B7:17:A6:1F:C5:54:9E:C1:88:28:B6:19:D4:3B
X509v3 Authority Key Identifier:
keyid:1E:7B:2E:24:3F:8A:A9:54:59:79:32:BC:DC:D9:AF:65:60:DC:E5:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HnsuJD-KqVRZeTK83NmvZWDc5RY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/uyDgQEoQtxemH8VUnsGIKLYZ1Ds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/4daee0-84e2-41e9-9643-d54955643cd9/1/HnsuJD-KqVRZeTK83NmvZWDc5RY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.165.0/24
Signature Algorithm: sha256WithRSAEncryption
15:11:70:2c:33:81:d6:7b:73:66:b3:4a:0c:fa:9d:90:9f:40:
5f:50:13:1f:a1:2f:5d:bf:cf:9c:f6:cb:4b:68:70:cd:c7:81:
68:66:ee:38:f9:d0:c1:3f:ee:e0:ee:7e:4c:0f:5a:60:2f:b2:
39:7d:80:26:ba:98:e9:94:db:91:1a:2f:2c:35:dc:d7:64:59:
f0:e7:ec:97:fc:7b:5e:95:85:a4:49:5b:9a:9b:0e:c3:4b:d1:
93:f5:53:ed:93:62:8a:8a:43:c6:e5:59:da:0b:b2:2b:9c:73:
bf:e7:13:6c:09:22:b0:4d:54:56:31:4b:5a:1b:9c:21:d0:44:
17:f3:cd:46:bd:f6:0e:4a:8c:3f:75:11:a0:49:58:5b:ca:a2:
9a:88:07:42:5e:bb:26:93:9f:a3:cf:6c:44:36:ec:1d:60:9a:
da:3f:ca:35:d9:0e:77:43:43:c0:87:6c:98:ac:ed:bc:5e:72:
89:78:d1:0c:82:af:1b:7e:79:8c:50:49:40:e3:01:30:5c:a4:
81:33:c1:f4:7f:60:df:ce:dc:2c:5a:20:9d:05:92:27:18:3a:
d5:7b:ca:4a:8d:9a:1b:2e:d5:70:fe:8d:38:c2:db:bd:ab:24:
ca:75:d5:df:fa:07:a4:7c:e1:a9:58:2e:e5:06:9f:49:0c:98:
9c:8f:d9:1e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVw51AQKj5B9RsHbk97r2/jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlN2IyZTI0M2Y4YWE5NTQ1OTc5MzJiY2RjZDlhZjY1NjBk
Y2U1MTYwHhcNMjMwMTAyMDUxNDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYjIwZTA0MDRhMTBiNzE3YTYxZmM1NTQ5ZWMxODgyOGI2MTlkNDNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoDgIQWJaTVdGhJlS+T8BKaoLWp9j
a8/Chx5Mccq5oNFC7WzeH4z2i9eYK2/AbkBf5IV6E3PBxeoXrQtuaBO2rKd9Dz0D
rnee4uc6SkTuBH2BrTZNmtAGcfpkl88GzsSXwkF/3z6Z20omHraWkZVaa1Y3Ny2x
vt1tKGj2MECxo7wAbgDcCzDHw2RHxoKcgS8aPlwEq20enxBUzzlpojFdDzZiuomH
UC+7dmV+1J2mcz2zb32Xr76zE/scsIheYYRZMZQ7YoifVHmD40wdyvy22RO0d0Ko
cuzR9MV/ELWS+5EhVIbnM5kOKV35C3y7d9uT8hgIrPyXy1pIdoARD18ZKwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLsg4EBKELcXph/FVJ7BiCi2GdQ7MB8GA1UdIwQY
MBaAFB57LiQ/iqlUWXkyvNzZr2Vg3OUWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSG5zdUpELUtxVlJaZVRLODNObXZaV0RjNVJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC80ZGFlZTAtODRlMi00MWU5LTk2NDMt
ZDU0OTU1NjQzY2Q5LzEvdXlEZ1FFb1F0eGVtSDhWVW5zR0lLTFlaMURzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC80ZGFlZTAtODRlMi00MWU5LTk2NDMtZDU0OTU1NjQzY2Q5
LzEvSG5zdUpELUtxVlJaZVRLODNObXZaV0RjNVJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9ClMA0G
CSqGSIb3DQEBCwUAA4IBAQAVEXAsM4HWe3Nms0oM+p2Qn0BfUBMfoS9dv8+c9stL
aHDNx4FoZu44+dDBP+7g7n5MD1pgL7I5fYAmupjplNuRGi8sNdzXZFnw5+yX/Hte
lYWkSVuamw7DS9GT9VPtk2KKikPG5VnaC7IrnHO/5xNsCSKwTVRWMUtaG5wh0EQX
881GvfYOSow/dRGgSVhbyqKaiAdCXrsmk5+jz2xENuwdYJraP8o12Q53Q0PAh2yY
rO28XnKJeNEMgq8bfnmMUElA4wEwXKSBM8H0f2DfztwsWiCdBZInGDrVe8pKjZob
LtVw/o04wtu9qyTKddXf+gekfOGpWC7lBp9JDJicj9ke
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:25 2024 by rpki-client on console-fra.rpki-client.org