Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/9eedb9-e594-415b-b88a-de381db436ec/1/XUV1Et4GbG5SBxeYZ81qoLmdU60.roa
File: XUV1Et4GbG5SBxeYZ81qoLmdU60.roa (raw, json)
Hash identifier: o2uSUfOUvRT6hbb2vypgmKk3X+KYk48/Q3Untf7fTqA=
Subject key identifier: 5D:45:75:12:DE:06:6C:6E:52:07:17:98:67:CD:6A:A0:B9:9D:53:AD
Certificate issuer: /CN=d977120937500eb46696428962e510e02c348e6c
Certificate serial: 018570F0751990A52C8B6A6253C0CDAA14F6
Authority key identifier: D9:77:12:09:37:50:0E:B4:66:96:42:89:62:E5:10:E0:2C:34:8E:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2XcSCTdQDrRmlkKJYuUQ4Cw0jmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/9eedb9-e594-415b-b88a-de381db436ec/1/XUV1Et4GbG5SBxeYZ81qoLmdU60.roa
Signing time: Mon 02 Jan 2023 05:24:44 +0000
ROA not before: Mon 02 Jan 2023 05:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47703
IP address blocks: 91.236.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:75:19:90:a5:2c:8b:6a:62:53:c0:cd:aa:14:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d977120937500eb46696428962e510e02c348e6c
Validity
Not Before: Jan 2 05:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5d457512de066c6e5207179867cd6aa0b99d53ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4f:1a:f1:2a:a7:3e:33:fb:9c:12:2d:e3:00:
46:16:18:e7:44:f9:7b:1b:41:82:7b:f7:10:36:55:
6b:0c:38:48:b3:98:b7:ae:3a:21:37:ed:0c:b6:6c:
84:35:9b:17:6b:f9:85:89:a0:7a:50:29:67:fb:c6:
07:c4:06:df:4a:d7:c5:b6:18:86:4f:77:c0:14:0e:
9b:38:08:bd:1e:ad:2a:34:74:da:f0:67:5f:4e:a0:
a2:6c:d9:53:2f:93:6e:72:94:b4:20:a4:df:5e:0f:
db:53:b3:c6:45:6d:4b:ae:09:62:67:37:d5:50:8c:
d1:15:e2:a8:e7:db:17:e9:87:86:f2:af:1a:0d:6c:
4b:3b:3a:7f:24:cb:d4:e5:85:f2:2d:a9:0e:4f:94:
85:53:86:3d:97:46:45:c0:81:cf:9d:0f:bd:f4:b5:
3a:07:e3:b9:cd:5e:70:20:21:89:5d:17:d3:8f:0c:
30:71:65:00:b4:a6:09:90:36:4d:7e:ce:97:0c:5f:
21:07:18:43:b6:bf:15:2e:8b:a3:85:0e:f3:9b:c8:
40:e7:58:76:42:e5:d4:38:99:58:82:9d:d3:f8:f9:
eb:e7:81:a0:a0:f4:1e:89:2d:01:89:7f:37:91:57:
11:ab:0a:5e:60:5c:82:f2:81:72:e3:81:92:f1:ad:
2f:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:45:75:12:DE:06:6C:6E:52:07:17:98:67:CD:6A:A0:B9:9D:53:AD
X509v3 Authority Key Identifier:
keyid:D9:77:12:09:37:50:0E:B4:66:96:42:89:62:E5:10:E0:2C:34:8E:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2XcSCTdQDrRmlkKJYuUQ4Cw0jmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/9eedb9-e594-415b-b88a-de381db436ec/1/XUV1Et4GbG5SBxeYZ81qoLmdU60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/9eedb9-e594-415b-b88a-de381db436ec/1/2XcSCTdQDrRmlkKJYuUQ4Cw0jmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.228.0/24
Signature Algorithm: sha256WithRSAEncryption
97:ee:11:ae:4d:cb:20:9d:31:8b:b2:ee:76:60:ee:1c:e7:af:
43:c9:d0:4e:c6:3b:22:b0:f8:44:c5:ef:a4:04:3b:07:68:8f:
78:99:f6:ab:d0:6a:4b:28:57:db:d3:37:f6:b2:62:61:30:fc:
4e:1a:60:14:97:63:00:6e:c0:29:68:a2:0a:33:2f:6a:96:4f:
bb:5e:5e:ff:2f:4b:46:68:d3:0d:57:0b:8c:a7:2f:2c:55:0f:
d4:8b:7f:60:05:d8:c5:0e:5f:85:1d:46:74:03:a1:cc:af:b3:
fa:27:12:db:36:d2:e5:fe:f8:ac:6e:0c:ff:c3:a0:b8:d8:35:
93:5f:3d:b1:fa:8e:d8:29:39:fb:3c:62:93:e3:93:4b:df:ea:
56:44:5c:fa:c9:aa:11:e5:68:dd:05:20:c1:96:fb:92:9d:30:
f6:87:52:41:91:d1:5d:59:d1:1a:a0:b5:04:5c:d0:da:3c:49:
ae:f0:6c:cf:94:64:87:b1:02:fe:b0:4c:00:63:ff:de:32:4f:
05:2c:14:b9:fb:8c:14:ce:2d:7e:3c:aa:a0:09:9b:41:a0:39:
87:6f:d1:ce:74:8b:55:b5:62:db:98:2c:39:a2:27:3f:47:5d:
f5:32:f7:26:1d:ab:1a:5f:a2:31:80:3d:04:9c:e6:17:0c:da:
7f:c2:31:13
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVw8HUZkKUsi2piU8DNqhT2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5NzcxMjA5Mzc1MDBlYjQ2Njk2NDI4OTYyZTUxMGUwMmMz
NDhlNmMwHhcNMjMwMTAyMDUyNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZDQ1NzUxMmRlMDY2YzZlNTIwNzE3OTg2N2NkNmFhMGI5OWQ1M2FkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwE8a8SqnPjP7nBIt4wBGFhjnRPl7
G0GCe/cQNlVrDDhIs5i3rjohN+0MtmyENZsXa/mFiaB6UCln+8YHxAbfStfFthiG
T3fAFA6bOAi9Hq0qNHTa8GdfTqCibNlTL5NucpS0IKTfXg/bU7PGRW1LrgliZzfV
UIzRFeKo59sX6YeG8q8aDWxLOzp/JMvU5YXyLakOT5SFU4Y9l0ZFwIHPnQ+99LU6
B+O5zV5wICGJXRfTjwwwcWUAtKYJkDZNfs6XDF8hBxhDtr8VLoujhQ7zm8hA51h2
QuXUOJlYgp3T+Pnr54GgoPQeiS0BiX83kVcRqwpeYFyC8oFy44GS8a0v3QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF1FdRLeBmxuUgcXmGfNaqC5nVOtMB8GA1UdIwQY
MBaAFNl3Egk3UA60ZpZCiWLlEOAsNI5sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlhjU0NUZFFEclJtbGtLSll1VVE0Q3cwam13LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS85ZWVkYjktZTU5NC00MTViLWI4OGEt
ZGUzODFkYjQzNmVjLzEvWFVWMUV0NEdiRzVTQnhlWVo4MXFvTG1kVTYwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZS85ZWVkYjktZTU5NC00MTViLWI4OGEtZGUzODFkYjQzNmVj
LzEvMlhjU0NUZFFEclJtbGtLSll1VVE0Q3cwam13LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+zkMA0G
CSqGSIb3DQEBCwUAA4IBAQCX7hGuTcsgnTGLsu52YO4c569DydBOxjsisPhExe+k
BDsHaI94mfar0GpLKFfb0zf2smJhMPxOGmAUl2MAbsApaKIKMy9qlk+7Xl7/L0tG
aNMNVwuMpy8sVQ/Ui39gBdjFDl+FHUZ0A6HMr7P6JxLbNtLl/visbgz/w6C42DWT
Xz2x+o7YKTn7PGKT45NL3+pWRFz6yaoR5WjdBSDBlvuSnTD2h1JBkdFdWdEaoLUE
XNDaPEmu8GzPlGSHsQL+sEwAY//eMk8FLBS5+4wUzi1+PKqgCZtBoDmHb9HOdItV
tWLbmCw5oic/R131MvcmHasaX6IxgD0EnOYXDNp/wjET
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:31 2024 by rpki-client on console-fra.rpki-client.org