Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/bD57Uk_w4UrJSwKHb_UIssEznoU.roa
File: bD57Uk_w4UrJSwKHb_UIssEznoU.roa (raw, json)
Hash identifier: Q/G4s5uIf79yxyJFSJN17frMaOkZcnn9mu/xqKlUEyo=
Subject key identifier: 6C:3E:7B:52:4F:F0:E1:4A:C9:4B:02:87:6F:F5:08:B2:C1:33:9E:85
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 01865E8D81AC81DC413E52F777B0A8796C6A
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/bD57Uk_w4UrJSwKHb_UIssEznoU.roa
Signing time: Fri 17 Feb 2023 08:46:17 +0000
ROA not before: Fri 17 Feb 2023 08:46:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43444
IP address blocks: 91.132.198.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:5e:8d:81:ac:81:dc:41:3e:52:f7:77:b0:a8:79:6c:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Feb 17 08:46:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c3e7b524ff0e14ac94b02876ff508b2c1339e85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:56:0e:f8:c4:4f:48:50:a5:ad:61:57:1f:99:
89:f9:1d:ac:33:c0:b5:d8:09:aa:6c:a8:92:80:2e:
d8:98:f9:7c:9d:e0:07:93:9a:e8:35:c2:da:dd:44:
10:ef:d3:b6:c1:9e:da:f5:8f:c7:f2:04:9e:84:fb:
25:73:ec:6c:82:24:a3:02:eb:46:08:fc:37:d3:25:
9e:d7:7d:b7:13:c7:75:ac:58:36:12:d4:c9:dc:cc:
c0:66:07:cc:75:d3:41:6a:66:68:63:49:f2:5f:55:
4a:a3:e6:35:43:bb:e3:b7:b8:40:c5:f6:15:75:1d:
7c:7e:cd:4e:62:9e:5d:2e:3c:64:c3:40:75:c1:d5:
8b:6c:b0:66:be:63:17:3a:9f:ed:c9:53:c5:73:68:
b2:a4:db:06:2c:46:a4:47:0f:e4:a8:bb:ab:7a:d4:
16:e9:3c:3e:fd:2d:9c:58:81:eb:31:57:c2:f2:14:
e5:e9:3e:ba:50:6f:ae:61:bc:4c:cc:79:7d:d0:4d:
4f:fb:fd:1c:9a:f7:21:5d:e4:04:f9:69:bb:a1:44:
eb:a7:98:c4:3e:14:d9:ac:f9:56:2a:42:99:66:91:
1d:49:9c:fa:24:aa:87:4c:d6:d6:22:61:21:33:49:
3c:e2:1f:37:6f:a9:5a:d5:eb:51:56:6b:66:d9:24:
8d:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:3E:7B:52:4F:F0:E1:4A:C9:4B:02:87:6F:F5:08:B2:C1:33:9E:85
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/bD57Uk_w4UrJSwKHb_UIssEznoU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.198.0/24
Signature Algorithm: sha256WithRSAEncryption
66:43:60:76:f7:ca:3d:46:a5:26:ed:54:c4:c0:fb:45:f5:f1:
e5:0d:63:40:6a:cf:48:5c:33:ba:68:69:85:81:a0:77:44:35:
13:fb:ea:6c:20:6c:6a:6e:e9:d5:4d:ec:00:34:94:51:00:81:
0d:9c:d5:1a:12:68:a4:33:db:64:9f:7b:ef:ae:9d:55:fa:bd:
12:0f:6a:76:90:f4:7f:a3:7f:cb:99:19:6a:62:aa:04:e7:c0:
6d:ae:e4:b0:e2:de:92:8b:21:b7:87:0c:1c:e8:78:90:4e:4a:
eb:73:de:75:c3:92:b8:dc:67:f7:f7:39:2f:b6:b1:0c:8e:26:
73:88:54:60:55:5c:72:42:c0:fa:86:05:d6:3b:55:64:60:12:
ea:85:81:30:c5:17:73:6b:43:bb:8c:96:9f:53:14:3b:e3:c6:
60:65:c6:b4:04:37:96:3e:67:ce:19:c9:65:40:41:f7:f4:1d:
73:b8:53:a4:91:a1:6c:eb:f6:cb:5b:5f:79:de:ed:c2:12:9b:
54:c2:87:52:9d:78:0b:3e:47:1e:be:72:fc:d6:85:57:19:82:
9b:4a:c3:e1:1a:37:61:8a:29:e1:11:63:82:17:a0:cc:86:24:
54:b8:b6:b0:7a:fb:d6:be:45:1a:c6:4f:bc:7a:b8:b9:2f:99:
1e:3d:12:ac
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYZejYGsgdxBPlL3d7CoeWxqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlhZWUxNWMzM2RlMzU4OTM4ZDY5MDBhMWIzYzE0NDgwYTM4
OWU4NWIwHhcNMjMwMjE3MDg0NjE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YzNlN2I1MjRmZjBlMTRhYzk0YjAyODc2ZmY1MDhiMmMxMzM5ZTg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAklYO+MRPSFClrWFXH5mJ+R2sM8C1
2AmqbKiSgC7YmPl8neAHk5roNcLa3UQQ79O2wZ7a9Y/H8gSehPslc+xsgiSjAutG
CPw30yWe1323E8d1rFg2EtTJ3MzAZgfMddNBamZoY0nyX1VKo+Y1Q7vjt7hAxfYV
dR18fs1OYp5dLjxkw0B1wdWLbLBmvmMXOp/tyVPFc2iypNsGLEakRw/kqLuretQW
6Tw+/S2cWIHrMVfC8hTl6T66UG+uYbxMzHl90E1P+/0cmvchXeQE+Wm7oUTrp5jE
PhTZrPlWKkKZZpEdSZz6JKqHTNbWImEhM0k84h83b6la1etRVmtm2SSNhQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGw+e1JP8OFKyUsCh2/1CLLBM56FMB8GA1UdIwQY
MBaAFJruFcM941iTjWkAobPBRICjiehbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbXU0Vnd6M2pXSk9OYVFDaHM4RkVnS09KNkZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS83MmY3N2YtNzZhYi00ZTc5LWEwNjIt
NmVlNTM0ZDkyZTUyLzEvYkQ1N1VrX3c0VXJKU3dLSGJfVUlzc0V6bm9VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS83MmY3N2YtNzZhYi00ZTc5LWEwNjItNmVlNTM0ZDkyZTUy
LzEvbXU0Vnd6M2pXSk9OYVFDaHM4RkVnS09KNkZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW4TGMA0G
CSqGSIb3DQEBCwUAA4IBAQBmQ2B298o9RqUm7VTEwPtF9fHlDWNAas9IXDO6aGmF
gaB3RDUT++psIGxqbunVTewANJRRAIENnNUaEmikM9tkn3vvrp1V+r0SD2p2kPR/
o3/LmRlqYqoE58BtruSw4t6SiyG3hwwc6HiQTkrrc951w5K43Gf39zkvtrEMjiZz
iFRgVVxyQsD6hgXWO1VkYBLqhYEwxRdza0O7jJafUxQ748ZgZca0BDeWPmfOGcll
QEH39B1zuFOkkaFs6/bLW1953u3CEptUwodSnXgLPkcevnL81oVXGYKbSsPhGjdh
iinhEWOCF6DMhiRUuLawevvWvkUaxk+8eri5L5kePRKs
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:59 2024 by rpki-client on console-fra.rpki-client.org