Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/XWp3kM1RmqnqsyrDHY7rhLN16QY.roa
File: XWp3kM1RmqnqsyrDHY7rhLN16QY.roa (raw, json)
Hash identifier: O4hQ7iNMHjv4BtmJEF661PP919ATbdSIk7U3Al2C2/4=
Subject key identifier: 5D:6A:77:90:CD:51:9A:A9:EA:B3:2A:C3:1D:8E:EB:84:B3:75:E9:06
Certificate issuer: /CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Certificate serial: 0187EC14982DBD2ED6B12B5A6FC4905807BB
Authority key identifier: 62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/XWp3kM1RmqnqsyrDHY7rhLN16QY.roa
Signing time: Fri 05 May 2023 13:23:05 +0000
ROA not before: Fri 05 May 2023 13:23:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210773
IP address blocks: 91.193.252.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:ec:14:98:2d:bd:2e:d6:b1:2b:5a:6f:c4:90:58:07:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Validity
Not Before: May 5 13:23:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5d6a7790cd519aa9eab32ac31d8eeb84b375e906
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:08:0f:2f:f6:4b:aa:cf:d6:74:1c:64:e0:f2:
d8:df:99:a1:38:4d:3f:8e:31:f9:47:77:af:a5:41:
86:72:39:0a:c3:d3:04:a5:be:b5:d7:5e:18:3f:de:
7b:00:59:fe:9e:82:6b:e0:03:d7:ab:03:a3:a7:c0:
77:9e:7f:30:5e:4b:34:b7:2c:f6:1e:39:6f:71:08:
06:1e:69:39:8b:b4:68:17:6d:a1:05:51:21:4e:59:
b5:5e:89:8e:be:4f:dc:7e:33:dc:52:7f:ed:e8:f5:
eb:b5:6e:04:12:87:36:aa:26:93:56:60:fe:14:29:
3d:a7:0b:ae:28:a6:fe:fc:77:a6:97:85:44:c9:a9:
eb:9f:94:d7:d3:75:56:2d:45:6d:46:94:1a:14:bd:
50:72:57:38:d3:32:0d:f1:f5:96:ad:0e:cc:e7:b5:
47:bf:bf:a3:da:6d:ec:7a:66:52:ee:6e:78:2d:a1:
e6:3e:ff:73:37:7c:dd:49:8f:ac:65:fb:41:99:bf:
4f:89:e1:25:f1:10:da:27:90:1c:22:68:72:f0:34:
ef:31:3b:ba:9f:c3:7e:ba:8b:fb:0b:76:ff:33:aa:
6d:67:22:4d:7d:33:c9:19:11:f2:71:3b:36:af:b3:
ce:33:22:e3:da:f1:f6:25:e9:05:71:ee:05:29:59:
88:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:6A:77:90:CD:51:9A:A9:EA:B3:2A:C3:1D:8E:EB:84:B3:75:E9:06
X509v3 Authority Key Identifier:
keyid:62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/XWp3kM1RmqnqsyrDHY7rhLN16QY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.193.252.0/24
Signature Algorithm: sha256WithRSAEncryption
20:0b:d6:e8:f8:ed:47:f9:73:55:04:d2:ca:7d:3c:fb:b4:39:
83:1f:f5:1d:e3:f4:5a:6b:9d:5e:69:46:83:78:e9:10:ce:a6:
23:a4:2f:15:d4:30:ee:b7:78:ba:f4:e4:e9:cd:3b:ef:c8:c4:
0f:89:96:4d:46:d2:09:7f:88:53:b2:7f:35:94:a4:1f:b0:89:
7f:2b:66:3e:bb:47:73:06:ee:a5:d9:b7:14:d4:82:4c:3a:25:
ca:c0:3e:eb:41:f3:21:8b:19:70:d1:e1:58:62:4f:ff:59:38:
d9:7c:08:1b:1c:c7:10:35:a6:3a:ce:27:32:00:6c:20:a7:6e:
95:3d:cd:ed:fa:19:fc:5e:f8:d2:d1:c7:37:ab:ca:bd:77:7b:
23:0d:84:d3:dd:be:b8:a3:de:78:19:9b:72:81:01:aa:72:14:
a5:ef:af:8f:19:c7:fe:6f:fe:43:ba:42:72:ef:40:45:da:e3:
03:01:1d:07:58:69:f5:83:02:6b:9d:73:f7:35:e9:32:2c:70:
ef:ff:f7:fe:b5:24:c1:f9:21:b8:04:ea:82:ef:66:81:8d:70:
80:48:d7:a4:30:d5:00:e8:b0:96:68:47:5b:28:6d:16:b4:4e:
b5:84:53:93:1b:ea:1a:f5:dd:60:ec:b8:89:28:d4:d2:e5:c4:
e0:50:66:10
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYfsFJgtvS7WsStab8SQWAe7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyYTE1Y2M4ODY1OWY1NzhjYzE1OWM1MmIzYTdlOWVjNTgx
OWZiMjAwHhcNMjMwNTA1MTMyMzA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZDZhNzc5MGNkNTE5YWE5ZWFiMzJhYzMxZDhlZWI4NGIzNzVlOTA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmwgPL/ZLqs/WdBxk4PLY35mhOE0/
jjH5R3evpUGGcjkKw9MEpb61114YP957AFn+noJr4APXqwOjp8B3nn8wXks0tyz2
HjlvcQgGHmk5i7RoF22hBVEhTlm1XomOvk/cfjPcUn/t6PXrtW4EEoc2qiaTVmD+
FCk9pwuuKKb+/Heml4VEyanrn5TX03VWLUVtRpQaFL1Qclc40zIN8fWWrQ7M57VH
v7+j2m3semZS7m54LaHmPv9zN3zdSY+sZftBmb9PieEl8RDaJ5AcImhy8DTvMTu6
n8N+uov7C3b/M6ptZyJNfTPJGRHycTs2r7POMyLj2vH2JekFce4FKVmI8wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF1qd5DNUZqp6rMqwx2O64SzdekGMB8GA1UdIwQY
MBaAFGKhXMiGWfV4zBWcUrOn6exYGfsgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXFGY3lJWlo5WGpNRlp4U3M2ZnA3RmdaLXlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi8yMTE3YmMtMWY5ZS00NTkwLWE1NTAt
NDI2OWI1NmJmN2Q0LzEvWFdwM2tNMVJtcW5xc3lyREhZN3JoTE4xNlFZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi8yMTE3YmMtMWY5ZS00NTkwLWE1NTAtNDI2OWI1NmJmN2Q0
LzEvWXFGY3lJWlo5WGpNRlp4U3M2ZnA3RmdaLXlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8H8MA0G
CSqGSIb3DQEBCwUAA4IBAQAgC9bo+O1H+XNVBNLKfTz7tDmDH/Ud4/Raa51eaUaD
eOkQzqYjpC8V1DDut3i69OTpzTvvyMQPiZZNRtIJf4hTsn81lKQfsIl/K2Y+u0dz
Bu6l2bcU1IJMOiXKwD7rQfMhixlw0eFYYk//WTjZfAgbHMcQNaY6zicyAGwgp26V
Pc3t+hn8XvjS0cc3q8q9d3sjDYTT3b64o954GZtygQGqchSl76+PGcf+b/5DukJy
70BF2uMDAR0HWGn1gwJrnXP3NekyLHDv//f+tSTB+SG4BOqC72aBjXCASNekMNUA
6LCWaEdbKG0WtE61hFOTG+oa9d1g7LiJKNTS5cTgUGYQ
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:22 2024 by rpki-client on console-fra.rpki-client.org