Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/9b4b96-2bdd-4bf5-a022-ee7896e5cc95/1/Ct_DcykKiDDr5HIlafqAQ5Nxnh8.roa
File: Ct_DcykKiDDr5HIlafqAQ5Nxnh8.roa (raw, json)
Hash identifier: V25+oi97x8pl7JgOayltPfSRjAtG18R2umQB0X6tfBA=
Subject key identifier: 0A:DF:C3:73:29:0A:88:30:EB:E4:72:25:69:FA:80:43:93:71:9E:1F
Certificate issuer: /CN=273a88c578166988506e13642adb12f631e0a3c2
Certificate serial: 018AD72259C10BB83511B19806CB26560BF6
Authority key identifier: 27:3A:88:C5:78:16:69:88:50:6E:13:64:2A:DB:12:F6:31:E0:A3:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JzqIxXgWaYhQbhNkKtsS9jHgo8I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/9b4b96-2bdd-4bf5-a022-ee7896e5cc95/1/Ct_DcykKiDDr5HIlafqAQ5Nxnh8.roa
Signing time: Wed 27 Sep 2023 14:54:27 +0000
ROA not before: Wed 27 Sep 2023 14:54:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.234.202.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d7:22:59:c1:0b:b8:35:11:b1:98:06:cb:26:56:0b:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=273a88c578166988506e13642adb12f631e0a3c2
Validity
Not Before: Sep 27 14:54:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0adfc373290a8830ebe4722569fa804393719e1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:e8:e9:30:f7:68:f7:f2:7e:d5:5e:77:b2:8c:
3d:60:e8:3e:79:f9:62:3d:59:1a:9d:10:31:e9:8e:
67:42:32:df:30:89:7c:7f:52:ab:79:ef:df:41:13:
3f:e9:84:55:75:a4:65:6c:bf:89:d9:f3:35:19:a1:
eb:4e:85:98:70:22:95:06:c6:0d:a3:98:b4:46:6f:
7e:db:03:20:f3:f9:48:80:9d:9b:6f:99:f0:bf:f8:
db:1f:34:6a:56:0c:95:14:48:6f:a8:4a:a2:3c:4e:
af:22:b1:0c:60:3e:f5:11:61:4f:23:da:dc:7e:f0:
b2:05:d3:d6:b0:0c:74:15:1e:a1:ed:66:32:44:52:
3d:a3:86:e8:c8:e8:0d:34:51:8e:ee:24:99:6e:e7:
dc:15:8b:64:5a:6f:7e:0f:14:7d:c3:54:47:5e:d5:
53:21:a8:6d:0d:d2:ea:b3:af:0d:b2:f2:cb:54:06:
56:71:bb:4d:13:47:6e:6a:ce:d1:59:32:cb:ff:b5:
01:38:da:c0:26:01:3a:b1:f0:5e:66:a6:d7:d5:27:
c2:b1:53:46:9a:fe:59:fe:dd:00:0b:63:6d:72:49:
29:c5:91:be:04:e3:91:73:88:09:6b:e2:76:da:4f:
da:cc:3d:61:a0:1d:53:90:3a:0a:20:f1:a0:89:4c:
cb:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:DF:C3:73:29:0A:88:30:EB:E4:72:25:69:FA:80:43:93:71:9E:1F
X509v3 Authority Key Identifier:
keyid:27:3A:88:C5:78:16:69:88:50:6E:13:64:2A:DB:12:F6:31:E0:A3:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JzqIxXgWaYhQbhNkKtsS9jHgo8I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/9b4b96-2bdd-4bf5-a022-ee7896e5cc95/1/Ct_DcykKiDDr5HIlafqAQ5Nxnh8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/9b4b96-2bdd-4bf5-a022-ee7896e5cc95/1/JzqIxXgWaYhQbhNkKtsS9jHgo8I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.202.0/24
Signature Algorithm: sha256WithRSAEncryption
59:36:ef:1e:38:6d:c5:99:45:34:04:4e:cb:c6:72:ff:cf:4e:
6c:74:4f:46:b7:ae:a4:cd:e6:ef:c6:08:20:c0:96:b2:97:94:
24:a6:02:ec:61:ba:92:03:a0:8e:bd:e0:57:07:ad:41:f5:d2:
3e:37:f3:5f:f0:47:cd:3e:5b:13:a9:8a:65:73:76:08:e4:2f:
c7:06:57:2c:39:34:82:1d:19:ed:91:6e:f0:81:1d:88:61:d6:
f6:62:5b:42:0b:18:ac:42:26:dc:fd:aa:3e:fb:78:d9:e0:24:
68:be:90:45:df:02:0f:03:1a:7e:4d:c8:ca:a7:ef:88:3b:2e:
bf:f2:e5:a3:c1:c6:9a:c4:6d:36:32:b6:2a:a1:2d:10:49:31:
08:5f:63:22:0d:98:84:ad:40:85:f3:e1:ca:05:53:31:59:17:
c9:55:03:b9:7c:e3:3c:38:0a:48:1b:a1:e4:5a:8e:e1:72:15:
86:f5:f0:01:54:2c:e8:41:98:1c:67:2d:14:5c:a3:49:ae:b3:
ba:2e:7c:23:6e:7a:cd:67:86:4c:d7:68:9a:10:83:5e:67:a3:
e1:07:1b:b2:44:68:13:ab:c7:28:a2:86:de:cc:cd:b8:fa:7d:
1e:fb:5d:46:b2:74:40:fb:5a:5d:1c:77:bf:a1:f4:7f:fe:c1:
29:29:74:52
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYrXIlnBC7g1EbGYBssmVgv2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI3M2E4OGM1NzgxNjY5ODg1MDZlMTM2NDJhZGIxMmY2MzFl
MGEzYzIwHhcNMjMwOTI3MTQ1NDI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYWRmYzM3MzI5MGE4ODMwZWJlNDcyMjU2OWZhODA0MzkzNzE5ZTFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjejpMPdo9/J+1V53sow9YOg+efli
PVkanRAx6Y5nQjLfMIl8f1Kree/fQRM/6YRVdaRlbL+J2fM1GaHrToWYcCKVBsYN
o5i0Rm9+2wMg8/lIgJ2bb5nwv/jbHzRqVgyVFEhvqEqiPE6vIrEMYD71EWFPI9rc
fvCyBdPWsAx0FR6h7WYyRFI9o4boyOgNNFGO7iSZbufcFYtkWm9+DxR9w1RHXtVT
IahtDdLqs68NsvLLVAZWcbtNE0duas7RWTLL/7UBONrAJgE6sfBeZqbX1SfCsVNG
mv5Z/t0AC2NtckkpxZG+BOORc4gJa+J22k/azD1hoB1TkDoKIPGgiUzLQQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFArfw3MpCogw6+RyJWn6gEOTcZ4fMB8GA1UdIwQY
MBaAFCc6iMV4FmmIUG4TZCrbEvYx4KPCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSnpxSXhYZ1dhWWhRYmhOa0t0c1M5akhnbzhJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC85YjRiOTYtMmJkZC00YmY1LWEwMjIt
ZWU3ODk2ZTVjYzk1LzEvQ3RfRGN5a0tpRERyNUhJbGFmcUFRNU54bmg4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC85YjRiOTYtMmJkZC00YmY1LWEwMjItZWU3ODk2ZTVjYzk1
LzEvSnpxSXhYZ1dhWWhRYmhOa0t0c1M5akhnbzhJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+rKMA0G
CSqGSIb3DQEBCwUAA4IBAQBZNu8eOG3FmUU0BE7LxnL/z05sdE9Gt66kzebvxggg
wJayl5QkpgLsYbqSA6COveBXB61B9dI+N/Nf8EfNPlsTqYplc3YI5C/HBlcsOTSC
HRntkW7wgR2IYdb2YltCCxisQibc/ao++3jZ4CRovpBF3wIPAxp+TcjKp++IOy6/
8uWjwcaaxG02MrYqoS0QSTEIX2MiDZiErUCF8+HKBVMxWRfJVQO5fOM8OApIG6Hk
Wo7hchWG9fABVCzoQZgcZy0UXKNJrrO6LnwjbnrNZ4ZM12iaEINeZ6PhBxuyRGgT
q8cooobezM24+n0e+11GsnRA+1pdHHe/ofR//sEpKXRS
-----END CERTIFICATE-----
Generated at Thu Oct 5 18:34:01 2023 by rpki-client on console-ams.rpki-client.org