Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/ARickpvxvO841USlxqhxVUkfGKc.roa
File: ARickpvxvO841USlxqhxVUkfGKc.roa (raw, json)
Hash identifier: ZVkX4utTaxViDG0x8CpJWU1sf/Ki4AI2KwRfTunOW1k=
Subject key identifier: 01:18:9C:92:9B:F1:BC:EF:38:D5:44:A5:C6:A8:71:55:49:1F:18:A7
Certificate issuer: /CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Certificate serial: 01880E8B9A0919A3D096D4A99BC54B167C2E
Authority key identifier: 1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/ARickpvxvO841USlxqhxVUkfGKc.roa
Signing time: Fri 12 May 2023 06:00:09 +0000
ROA not before: Fri 12 May 2023 06:00:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3507
IP address blocks: 91.208.104.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Jul 2023 13:45:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:0e:8b:9a:09:19:a3:d0:96:d4:a9:9b:c5:4b:16:7c:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Validity
Not Before: May 12 06:00:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=01189c929bf1bcef38d544a5c6a87155491f18a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:0e:57:c4:f2:a0:70:63:da:8a:a3:22:a9:fd:
fc:e4:34:1f:2b:58:b0:25:2b:0b:9b:ef:31:93:31:
69:c2:f6:8f:68:60:1f:da:ac:10:1d:80:21:5a:4c:
20:fc:9d:92:1e:28:61:4e:fe:09:d7:27:e4:a7:84:
e2:78:2d:04:18:e3:ee:3f:31:ac:40:f7:e4:ef:96:
c3:d3:fb:56:83:29:3f:5b:ad:d0:c5:da:6b:e3:c3:
e1:d3:8a:bc:6d:c7:d3:10:4d:c2:af:0b:96:6d:78:
93:2a:a9:ea:b5:a3:78:44:96:f7:30:6d:00:a1:be:
e5:e0:ff:e0:3b:17:aa:e2:87:17:46:64:df:5e:d7:
79:5f:54:d0:6e:e9:6b:d9:8f:f8:cb:34:69:f6:37:
c6:f1:08:06:13:6e:a5:35:17:78:50:43:8d:63:df:
05:43:e8:7a:5a:d0:0e:5c:70:ca:a7:0a:25:72:ae:
65:a4:fc:f9:42:a4:e0:db:5e:a5:39:e8:d0:70:82:
42:08:2d:89:61:dd:4e:0f:f5:1e:72:9b:f3:61:9d:
76:1a:95:eb:c5:b3:20:bf:ab:9e:30:65:f1:bd:4d:
cd:84:5b:2c:2b:b3:9d:49:89:d8:e2:17:80:2d:7d:
0b:fe:56:63:d6:e2:2b:e4:92:89:21:9f:3a:de:88:
97:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:18:9C:92:9B:F1:BC:EF:38:D5:44:A5:C6:A8:71:55:49:1F:18:A7
X509v3 Authority Key Identifier:
keyid:1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/ARickpvxvO841USlxqhxVUkfGKc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/H0c4OJyzuZjsT6bUJy-N15n7xKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.104.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:ee:a1:ce:22:e0:f9:24:17:93:71:d4:f3:7c:7c:5b:85:e3:
96:3f:53:f9:04:4c:d4:ec:19:a9:a0:df:be:24:ac:42:15:18:
d8:95:c3:06:6e:70:ca:80:9f:b3:9f:df:31:ff:2d:cf:5c:e8:
32:8e:66:24:2d:0a:5f:79:69:ec:f0:bf:a1:d8:c0:d6:7b:23:
49:9a:a6:20:84:99:77:da:0a:14:a0:17:f5:6b:e3:ab:72:b7:
bb:0f:b1:5c:9e:6b:b7:6e:5c:67:94:4f:d2:b5:61:b1:ab:27:
6b:4a:af:da:c3:bc:bb:57:21:cb:44:aa:eb:0d:e5:2a:d1:2a:
d2:58:4c:0a:36:ec:e4:7b:25:2b:f6:42:7c:2c:c6:ec:8c:1a:
b1:4a:1c:92:3b:63:27:73:59:e1:26:bd:92:25:41:b2:ac:9a:
94:cd:e1:18:54:c5:c2:c3:33:88:92:0d:b1:7f:22:99:81:8b:
d1:1b:c7:cc:25:52:aa:58:b4:69:5e:26:7d:16:ac:77:69:a4:
49:6e:43:07:11:4f:cf:79:3e:48:bc:3d:3d:3f:e0:a1:9a:23:
be:fe:72:04:12:a8:a4:f0:78:6f:9c:d7:62:ac:5d:13:b7:41:
63:00:bc:60:b6:21:c5:73:ed:8b:de:7c:32:c0:4b:b6:b2:ae:
00:52:84:e9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYgOi5oJGaPQltSpm8VLFnwuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmNDczODM4OWNiM2I5OThlYzRmYTZkNDI3MmY4ZGQ3OTlm
YmM0YTkwHhcNMjMwNTEyMDYwMDA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMTE4OWM5MjliZjFiY2VmMzhkNTQ0YTVjNmE4NzE1NTQ5MWYxOGE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjw5XxPKgcGPaiqMiqf385DQfK1iw
JSsLm+8xkzFpwvaPaGAf2qwQHYAhWkwg/J2SHihhTv4J1yfkp4TieC0EGOPuPzGs
QPfk75bD0/tWgyk/W63Qxdpr48Ph04q8bcfTEE3CrwuWbXiTKqnqtaN4RJb3MG0A
ob7l4P/gOxeq4ocXRmTfXtd5X1TQbulr2Y/4yzRp9jfG8QgGE26lNRd4UEONY98F
Q+h6WtAOXHDKpwolcq5lpPz5QqTg216lOejQcIJCCC2JYd1OD/UecpvzYZ12GpXr
xbMgv6ueMGXxvU3NhFssK7OdSYnY4heALX0L/lZj1uIr5JKJIZ863oiX5QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAEYnJKb8bzvONVEpcaocVVJHxinMB8GA1UdIwQY
MBaAFB9HODics7mY7E+m1CcvjdeZ+8SpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDBjNE9KeXp1WmpzVDZiVUp5LU4xNW43eEtrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS81MTc2OTQtYzhhMS00NThiLTljZjIt
NmM3ZTU2ODU4OTBjLzEvQVJpY2twdnh2Tzg0MVVTbHhxaHhWVWtmR0tjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NS81MTc2OTQtYzhhMS00NThiLTljZjItNmM3ZTU2ODU4OTBj
LzEvSDBjNE9KeXp1WmpzVDZiVUp5LU4xNW43eEtrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9BoMA0G
CSqGSIb3DQEBCwUAA4IBAQC77qHOIuD5JBeTcdTzfHxbheOWP1P5BEzU7BmpoN++
JKxCFRjYlcMGbnDKgJ+zn98x/y3PXOgyjmYkLQpfeWns8L+h2MDWeyNJmqYghJl3
2goUoBf1a+Orcre7D7Fcnmu3blxnlE/StWGxqydrSq/aw7y7VyHLRKrrDeUq0SrS
WEwKNuzkeyUr9kJ8LMbsjBqxShySO2Mnc1nhJr2SJUGyrJqUzeEYVMXCwzOIkg2x
fyKZgYvRG8fMJVKqWLRpXiZ9Fqx3aaRJbkMHEU/PeT5IvD09P+ChmiO+/nIEEqik
8HhvnNdirF0Tt0FjALxgtiHFc+2L3nwywEu2sq4AUoTp
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:13 2024 by rpki-client on console-fra.rpki-client.org