Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/svgqvVOUvmrLEje6MLv7c48dYPU.roa
File: svgqvVOUvmrLEje6MLv7c48dYPU.roa (raw, json)
Hash identifier: SKZ+u2nJmFmmU11eliS9FKP03Qp3i7vySQoTtjYOtoM=
Subject key identifier: B2:F8:2A:BD:53:94:BE:6A:CB:12:37:BA:30:BB:FB:73:8F:1D:60:F5
Certificate issuer: /CN=aca2a1952e718944a40434a0ebefffda2bfeed5f
Certificate serial: 01856BF7D9F36CF6FEA59EA82F45FD82703E
Authority key identifier: AC:A2:A1:95:2E:71:89:44:A4:04:34:A0:EB:EF:FF:DA:2B:FE:ED:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKKhlS5xiUSkBDSg6-__2iv-7V8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/svgqvVOUvmrLEje6MLv7c48dYPU.roa
Signing time: Sun 01 Jan 2023 06:14:43 +0000
ROA not before: Sun 01 Jan 2023 06:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58147
IP address blocks: 91.239.60.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:f7:d9:f3:6c:f6:fe:a5:9e:a8:2f:45:fd:82:70:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca2a1952e718944a40434a0ebefffda2bfeed5f
Validity
Not Before: Jan 1 06:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b2f82abd5394be6acb1237ba30bbfb738f1d60f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8b:4e:9a:ab:40:ef:45:86:01:04:56:3f:bd:
88:53:6c:4e:b9:75:61:96:d0:57:15:fc:8e:57:ec:
6a:13:b6:87:c0:2a:ec:8a:33:db:ed:27:8d:18:e2:
f9:df:ba:bf:c6:56:1e:f2:41:0f:4c:f1:ee:f4:e8:
63:d8:54:a2:2e:ab:c6:01:f6:8b:7d:dc:62:b9:74:
bd:4e:4f:84:2d:bc:6a:e7:e8:aa:39:ef:d1:54:03:
ef:9c:e1:80:e7:7b:94:be:17:62:0b:9a:37:4c:23:
21:1f:04:88:c6:2b:7e:a9:0d:be:24:54:34:5f:8b:
d1:81:0e:04:70:83:18:4c:0f:31:28:70:90:0c:c7:
df:8a:6c:fb:c6:e9:75:61:4f:42:06:28:c7:51:93:
47:b7:1f:2e:52:bc:e0:a3:d0:aa:92:b5:dd:ec:b7:
41:30:b1:01:97:82:2a:ce:63:25:83:38:5f:81:b8:
69:fd:01:bc:04:42:15:ed:57:93:2a:30:77:b3:af:
60:ab:b9:12:df:1f:10:ae:15:d4:ef:a1:57:b5:34:
f0:7b:25:3a:6a:2b:03:12:e8:fe:7e:bc:5e:6a:7b:
3d:f5:6a:01:f5:30:a2:c8:e8:de:f4:ff:65:ab:7c:
59:af:cd:0b:b5:93:61:a6:ef:02:5e:b9:15:a7:ca:
79:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:F8:2A:BD:53:94:BE:6A:CB:12:37:BA:30:BB:FB:73:8F:1D:60:F5
X509v3 Authority Key Identifier:
keyid:AC:A2:A1:95:2E:71:89:44:A4:04:34:A0:EB:EF:FF:DA:2B:FE:ED:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKKhlS5xiUSkBDSg6-__2iv-7V8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/svgqvVOUvmrLEje6MLv7c48dYPU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.60.0/24
Signature Algorithm: sha256WithRSAEncryption
28:79:e3:bd:19:9a:ad:91:87:18:88:f9:f3:19:cd:68:42:e5:
2b:ea:f2:59:1b:8c:33:81:2f:29:6f:91:7d:83:76:f3:ff:3c:
76:c6:1a:05:7d:8d:21:f9:74:37:9d:f4:4f:6b:30:75:40:ff:
26:83:70:7d:b5:0a:fd:fb:14:15:e1:2f:8e:02:9c:11:8d:66:
84:bd:80:75:e3:a8:46:3b:c1:41:92:10:05:09:99:87:c8:d0:
d0:e5:9b:34:ee:e4:1c:0b:54:1f:fd:f2:22:d8:2d:81:d4:cc:
78:f7:99:57:86:46:80:3c:4b:c5:5f:0c:50:f4:80:f1:10:d0:
fd:ac:e3:bf:7e:6c:fa:a7:7b:44:74:d1:1b:91:5b:61:54:f8:
0e:cc:54:d4:51:76:ac:79:0f:8b:29:82:54:1f:9e:41:17:32:
03:d4:05:e1:80:52:a0:e5:1b:40:16:5e:f4:d9:58:97:38:39:
c6:4f:3e:e3:9c:16:e7:e0:13:34:91:95:d8:1f:ad:1e:b1:92:
e0:b5:4d:96:31:52:2d:00:00:5d:c0:5a:7a:a1:da:e9:8b:ab:
4a:90:ed:29:be:6e:16:89:14:ba:0a:0a:f5:cf:3f:fa:e4:f0:
6a:75:8d:03:9e:62:66:75:d4:e4:a5:2d:4d:c9:76:b7:b0:e8:
14:ed:a9:35
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVr99nzbPb+pZ6oL0X9gnA+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjYTJhMTk1MmU3MTg5NDRhNDA0MzRhMGViZWZmZmRhMmJm
ZWVkNWYwHhcNMjMwMTAxMDYxNDQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMmY4MmFiZDUzOTRiZTZhY2IxMjM3YmEzMGJiZmI3MzhmMWQ2MGY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtotOmqtA70WGAQRWP72IU2xOuXVh
ltBXFfyOV+xqE7aHwCrsijPb7SeNGOL537q/xlYe8kEPTPHu9Ohj2FSiLqvGAfaL
fdxiuXS9Tk+ELbxq5+iqOe/RVAPvnOGA53uUvhdiC5o3TCMhHwSIxit+qQ2+JFQ0
X4vRgQ4EcIMYTA8xKHCQDMffimz7xul1YU9CBijHUZNHtx8uUrzgo9CqkrXd7LdB
MLEBl4IqzmMlgzhfgbhp/QG8BEIV7VeTKjB3s69gq7kS3x8QrhXU76FXtTTweyU6
aisDEuj+frxeans99WoB9TCiyOje9P9lq3xZr80LtZNhpu8CXrkVp8p58QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLL4Kr1TlL5qyxI3ujC7+3OPHWD1MB8GA1UdIwQY
MBaAFKyioZUucYlEpAQ0oOvv/9or/u1fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcktLaGxTNXhpVVNrQkRTZzYtX18yaXYtN1Y4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC9hMjY0YTgtYTY2Ni00Yzg3LTg1MWMt
YWRhMjRlZjMxMGNhLzEvc3ZncXZWT1V2bXJMRWplNk1MdjdjNDhkWVBVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC9hMjY0YTgtYTY2Ni00Yzg3LTg1MWMtYWRhMjRlZjMxMGNh
LzEvcktLaGxTNXhpVVNrQkRTZzYtX18yaXYtN1Y4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+88MA0G
CSqGSIb3DQEBCwUAA4IBAQAoeeO9GZqtkYcYiPnzGc1oQuUr6vJZG4wzgS8pb5F9
g3bz/zx2xhoFfY0h+XQ3nfRPazB1QP8mg3B9tQr9+xQV4S+OApwRjWaEvYB146hG
O8FBkhAFCZmHyNDQ5Zs07uQcC1Qf/fIi2C2B1Mx495lXhkaAPEvFXwxQ9IDxEND9
rOO/fmz6p3tEdNEbkVthVPgOzFTUUXaseQ+LKYJUH55BFzID1AXhgFKg5RtAFl70
2ViXODnGTz7jnBbn4BM0kZXYH60esZLgtU2WMVItAABdwFp6odrpi6tKkO0pvm4W
iRS6Cgr1zz/65PBqdY0DnmJmddTkpS1NyXa3sOgU7ak1
-----END CERTIFICATE-----
Generated at Mon Jan 1 19:16:24 2024 by rpki-client on console-ams.rpki-client.org