Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/4Fepiy2QyPvd-8TD6q13HG8U_ts.roa
File: 4Fepiy2QyPvd-8TD6q13HG8U_ts.roa (raw, json)
Hash identifier: aEiFbZpFG12+Ml0n9SKm5FdvVs6ldaLyCQCrDFiaT7M=
Subject key identifier: E0:57:A9:8B:2D:90:C8:FB:DD:FB:C4:C3:EA:AD:77:1C:6F:14:FE:DB
Certificate issuer: /CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Certificate serial: 018A6FE8FCE5CE13DC22DF426FAF9BDF75EE
Authority key identifier: 1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/4Fepiy2QyPvd-8TD6q13HG8U_ts.roa
Signing time: Thu 07 Sep 2023 13:50:54 +0000
ROA not before: Thu 07 Sep 2023 13:50:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42960
IP address blocks: 91.213.200.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6f:e8:fc:e5:ce:13:dc:22:df:42:6f:af:9b:df:75:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Validity
Not Before: Sep 7 13:50:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e057a98b2d90c8fbddfbc4c3eaad771c6f14fedb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:fd:2c:4c:81:8a:fc:13:10:ec:db:47:ac:62:
ce:4f:dc:ad:db:90:4d:07:3f:41:f3:f7:68:65:38:
c2:26:dc:56:81:91:bd:22:a6:ff:7d:f8:80:38:50:
5e:db:c9:83:a1:74:cf:95:42:53:20:5c:4c:c4:2a:
01:fe:8b:3d:cc:64:bd:38:cb:dd:9e:a4:5c:16:2e:
f1:90:03:f2:dd:19:af:3d:28:1b:a3:67:fe:c2:e3:
25:ef:bb:f8:46:15:ba:45:92:8a:3f:84:d3:68:8d:
5a:2c:12:cb:1f:92:88:d7:c9:e7:bc:9b:eb:12:ce:
08:eb:84:2e:3b:29:72:76:c8:27:0c:59:25:47:66:
1f:d5:26:51:bc:db:48:57:f9:76:05:8b:cb:f5:3f:
64:25:ba:9a:46:8e:07:3d:3e:76:16:33:23:a3:95:
f4:13:d8:bf:3d:0b:28:1e:65:7d:e1:e7:a4:84:f7:
9e:c4:90:41:86:d6:73:29:af:3e:8d:93:86:0e:59:
c0:d0:73:a5:ee:d6:b3:b0:08:53:ca:bf:68:be:d4:
3c:a8:83:67:55:fd:de:cb:9c:53:7d:82:e0:6a:39:
e1:ae:16:d0:47:ca:df:fd:eb:64:92:e2:60:d2:ee:
53:74:15:cc:96:0a:71:c5:9f:68:03:c0:dd:91:7f:
ea:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:57:A9:8B:2D:90:C8:FB:DD:FB:C4:C3:EA:AD:77:1C:6F:14:FE:DB
X509v3 Authority Key Identifier:
keyid:1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/4Fepiy2QyPvd-8TD6q13HG8U_ts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/H0c4OJyzuZjsT6bUJy-N15n7xKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.200.0/24
Signature Algorithm: sha256WithRSAEncryption
82:c5:94:3d:d3:45:f0:0c:39:54:39:88:a9:1f:e4:b3:e2:48:
e8:51:d6:ad:15:14:62:20:7c:d3:53:e0:8e:9c:f5:4c:af:3a:
2f:51:d3:21:dc:d1:19:a7:a8:07:b0:ac:50:dc:bb:77:59:98:
69:ac:c4:a3:69:74:1d:d9:f7:7c:77:b4:0d:c2:d0:09:63:b0:
7e:c3:61:ac:76:50:79:d2:8a:18:c2:92:b7:5d:f9:7b:09:60:
2b:a8:58:b3:73:2f:f7:f4:d3:78:1f:d1:69:3d:93:32:fa:ae:
77:36:9d:7b:d1:ed:a4:ac:f2:1d:37:db:f1:d5:23:c5:a9:72:
f3:71:98:f1:33:c7:b9:17:39:ad:1c:cc:7e:2f:ad:d4:5d:1b:
29:b4:b7:a2:5a:33:1f:1f:4b:1a:da:70:03:fa:bc:ae:3d:1c:
7d:27:31:99:68:d5:8d:d1:64:a8:bd:87:cd:7f:e0:4e:cc:30:
ff:71:d4:69:5c:05:e8:81:1e:33:90:68:66:34:d4:5b:cf:ab:
ca:11:03:1c:2e:fc:28:a1:41:e0:37:2e:2f:a7:50:87:68:84:
67:58:61:a3:88:a7:84:31:a6:a8:e5:c7:9e:c5:bd:fd:20:dd:
53:1d:f8:99:3a:6d:81:9f:3e:bb:7a:f8:9a:09:ec:7b:61:70:
29:69:3c:8a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYpv6PzlzhPcIt9Cb6+b33XuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmNDczODM4OWNiM2I5OThlYzRmYTZkNDI3MmY4ZGQ3OTlm
YmM0YTkwHhcNMjMwOTA3MTM1MDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMDU3YTk4YjJkOTBjOGZiZGRmYmM0YzNlYWFkNzcxYzZmMTRmZWRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv/0sTIGK/BMQ7NtHrGLOT9yt25BN
Bz9B8/doZTjCJtxWgZG9Iqb/ffiAOFBe28mDoXTPlUJTIFxMxCoB/os9zGS9OMvd
nqRcFi7xkAPy3RmvPSgbo2f+wuMl77v4RhW6RZKKP4TTaI1aLBLLH5KI18nnvJvr
Es4I64QuOylydsgnDFklR2Yf1SZRvNtIV/l2BYvL9T9kJbqaRo4HPT52FjMjo5X0
E9i/PQsoHmV94eekhPeexJBBhtZzKa8+jZOGDlnA0HOl7tazsAhTyr9ovtQ8qINn
Vf3ey5xTfYLgajnhrhbQR8rf/etkkuJg0u5TdBXMlgpxxZ9oA8DdkX/qswIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOBXqYstkMj73fvEw+qtdxxvFP7bMB8GA1UdIwQY
MBaAFB9HODics7mY7E+m1CcvjdeZ+8SpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDBjNE9KeXp1WmpzVDZiVUp5LU4xNW43eEtrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS81MTc2OTQtYzhhMS00NThiLTljZjIt
NmM3ZTU2ODU4OTBjLzEvNEZlcGl5MlF5UHZkLThURDZxMTNIRzhVX3RzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NS81MTc2OTQtYzhhMS00NThiLTljZjItNmM3ZTU2ODU4OTBj
LzEvSDBjNE9KeXp1WmpzVDZiVUp5LU4xNW43eEtrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9XIMA0G
CSqGSIb3DQEBCwUAA4IBAQCCxZQ900XwDDlUOYipH+Sz4kjoUdatFRRiIHzTU+CO
nPVMrzovUdMh3NEZp6gHsKxQ3Lt3WZhprMSjaXQd2fd8d7QNwtAJY7B+w2GsdlB5
0ooYwpK3Xfl7CWArqFizcy/39NN4H9FpPZMy+q53Np170e2krPIdN9vx1SPFqXLz
cZjxM8e5FzmtHMx+L63UXRsptLeiWjMfH0sa2nAD+ryuPRx9JzGZaNWN0WSovYfN
f+BOzDD/cdRpXAXogR4zkGhmNNRbz6vKEQMcLvwooUHgNy4vp1CHaIRnWGGjiKeE
Maao5ceexb39IN1THfiZOm2Bnz67eviaCex7YXApaTyK
-----END CERTIFICATE-----
Generated at Mon Jan 1 15:15:04 2024 by rpki-client on console-fra.rpki-client.org