Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/9FhARfMZ29lUofQMf5XiqsQgTQY.roa
File: 9FhARfMZ29lUofQMf5XiqsQgTQY.roa (raw, json)
Hash identifier: YJcrCiky1EHymIqiLQUJqszfZ0WbUkWc2RrVy/yQc4c=
Subject key identifier: F4:58:40:45:F3:19:DB:D9:54:A1:F4:0C:7F:95:E2:AA:C4:20:4D:06
Certificate issuer: /CN=27c8b427c313598a92e8d8ec60e2950da39fc2c9
Certificate serial: 019130D5837D8B29A96B06A8FE26A32C3BAB
Authority key identifier: 27:C8:B4:27:C3:13:59:8A:92:E8:D8:EC:60:E2:95:0D:A3:9F:C2:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J8i0J8MTWYqS6NjsYOKVDaOfwsk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/9FhARfMZ29lUofQMf5XiqsQgTQY.roa
Signing time: Thu 08 Aug 2024 07:13:04 +0000
ROA not before: Thu 08 Aug 2024 07:13:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5065
IP address blocks: 91.102.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Sep 2024 06:16:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:30:d5:83:7d:8b:29:a9:6b:06:a8:fe:26:a3:2c:3b:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27c8b427c313598a92e8d8ec60e2950da39fc2c9
Validity
Not Before: Aug 8 07:13:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f4584045f319dbd954a1f40c7f95e2aac4204d06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e7:fa:9e:70:8e:2f:b7:76:8a:15:51:79:95:
17:5f:b6:36:e9:21:28:ed:c0:b5:00:4d:52:d5:af:
3f:0c:00:3c:fd:a7:67:28:3d:65:98:b0:85:b1:3c:
6c:f8:cb:03:8a:46:16:91:72:84:8a:ce:5b:1f:51:
c0:ac:07:3d:b8:cc:8c:5a:b4:9e:77:46:dc:2d:2e:
dd:6d:8f:50:d9:5b:24:76:7e:e8:43:37:d6:22:73:
2f:95:f3:95:b3:7f:f2:9c:35:62:5c:be:79:52:af:
b0:87:34:ab:c3:2b:2a:64:08:ce:0d:f9:7e:0b:d0:
2b:e7:94:66:fa:d9:cb:6d:4f:4e:15:82:3d:0f:93:
0d:aa:f3:17:7a:c9:f9:bb:2a:af:c6:44:97:15:c1:
00:a7:06:d1:e3:f4:25:4a:2c:ce:a1:35:04:fd:b7:
78:b2:6a:10:74:ef:5b:28:7a:e6:a7:00:78:94:23:
7e:5d:51:71:77:93:40:a3:b1:0c:5f:64:a5:34:70:
cd:8a:89:53:08:8f:5e:37:83:73:6f:4f:d0:f1:42:
0e:fd:05:d8:5c:bb:16:b8:7c:9d:69:4d:67:de:af:
cc:df:d9:1a:55:12:bd:1d:4f:d5:a9:2f:c8:bf:3e:
6f:0f:73:07:1f:f8:39:fd:04:e5:d6:3b:be:5f:a0:
1a:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:58:40:45:F3:19:DB:D9:54:A1:F4:0C:7F:95:E2:AA:C4:20:4D:06
X509v3 Authority Key Identifier:
keyid:27:C8:B4:27:C3:13:59:8A:92:E8:D8:EC:60:E2:95:0D:A3:9F:C2:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J8i0J8MTWYqS6NjsYOKVDaOfwsk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/9FhARfMZ29lUofQMf5XiqsQgTQY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/J8i0J8MTWYqS6NjsYOKVDaOfwsk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.102.167.0/24
Signature Algorithm: sha256WithRSAEncryption
40:ca:6a:2a:e5:c7:f0:c3:a7:fc:6e:e2:2e:20:75:b9:2b:89:
21:e4:0f:08:20:38:dd:7e:77:8a:d3:1b:5d:46:28:ba:f9:12:
f1:cc:f6:c2:5d:83:07:b8:af:6f:86:9a:10:21:71:06:6c:0b:
66:48:b0:ff:8e:8d:48:fe:26:4e:38:c4:20:5a:b0:6c:10:52:
a8:1d:24:f2:5e:92:09:0a:ec:14:9c:96:f5:cf:40:c1:85:68:
a1:fa:82:4c:01:ca:fb:1d:1f:70:cd:18:a9:5a:ea:d5:50:3a:
c5:77:da:c4:94:21:19:cb:f7:41:e4:4f:b3:b0:f5:3f:1f:5a:
46:bc:5e:f5:80:81:ff:d5:2e:79:51:a8:04:44:63:5b:0a:31:
33:60:b1:1f:a7:3d:80:27:f4:5c:f1:f7:02:67:24:c4:81:66:
29:db:f5:96:ca:c8:ea:1f:bc:fa:58:50:7f:6d:3b:96:d3:72:
2b:3f:45:7f:9e:0f:b6:36:55:90:ca:07:4e:7f:60:8b:71:0e:
b1:a2:cb:5e:71:89:ad:62:a5:3e:aa:41:d9:13:20:95:39:e6:
9b:f1:13:d6:0e:f6:cc:f2:13:af:64:fc:99:62:17:25:7d:4f:
48:6b:92:d7:f5:9d:90:82:77:c5:2f:cc:29:09:1c:21:85:f0:
72:0a:fe:35
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZEw1YN9iympawao/iajLDurMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI3YzhiNDI3YzMxMzU5OGE5MmU4ZDhlYzYwZTI5NTBkYTM5
ZmMyYzkwHhcNMjQwODA4MDcxMzA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNDU4NDA0NWYzMTlkYmQ5NTRhMWY0MGM3Zjk1ZTJhYWM0MjA0ZDA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuuf6nnCOL7d2ihVReZUXX7Y26SEo
7cC1AE1S1a8/DAA8/adnKD1lmLCFsTxs+MsDikYWkXKEis5bH1HArAc9uMyMWrSe
d0bcLS7dbY9Q2Vskdn7oQzfWInMvlfOVs3/ynDViXL55Uq+whzSrwysqZAjODfl+
C9Ar55Rm+tnLbU9OFYI9D5MNqvMXesn5uyqvxkSXFcEApwbR4/QlSizOoTUE/bd4
smoQdO9bKHrmpwB4lCN+XVFxd5NAo7EMX2SlNHDNiolTCI9eN4Nzb0/Q8UIO/QXY
XLsWuHydaU1n3q/M39kaVRK9HU/VqS/Ivz5vD3MHH/g5/QTl1ju+X6AaKQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPRYQEXzGdvZVKH0DH+V4qrEIE0GMB8GA1UdIwQY
MBaAFCfItCfDE1mKkujY7GDilQ2jn8LJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSjhpMEo4TVRXWXFTNk5qc1lPS1ZEYU9md3NrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS9hN2NkYmYtZGE4ZS00ZDQzLWJkYzct
MWM2ZWU0NGUxMWFkLzEvOUZoQVJmTVoyOWxVb2ZRTWY1WGlxc1FnVFFZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZS9hN2NkYmYtZGE4ZS00ZDQzLWJkYzctMWM2ZWU0NGUxMWFk
LzEvSjhpMEo4TVRXWXFTNk5qc1lPS1ZEYU9md3NrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW2anMA0G
CSqGSIb3DQEBCwUAA4IBAQBAymoq5cfww6f8buIuIHW5K4kh5A8IIDjdfneK0xtd
Rii6+RLxzPbCXYMHuK9vhpoQIXEGbAtmSLD/jo1I/iZOOMQgWrBsEFKoHSTyXpIJ
CuwUnJb1z0DBhWih+oJMAcr7HR9wzRipWurVUDrFd9rElCEZy/dB5E+zsPU/H1pG
vF71gIH/1S55UagERGNbCjEzYLEfpz2AJ/Rc8fcCZyTEgWYp2/WWysjqH7z6WFB/
bTuW03IrP0V/ng+2NlWQygdOf2CLcQ6xostecYmtYqU+qkHZEyCVOeab8RPWDvbM
8hOvZPyZYhclfU9Ia5LX9Z2QgnfFL8wpCRwhhfByCv41
-----END CERTIFICATE-----
Generated at Mon Sep 30 08:54:03 2024 by rpki-client on console-ams.rpki-client.org