Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/49f3ad-ef9e-4fc4-95c4-4f37011ee581/1/hTfGNym3dxt6qN5LDPud-oRQZqM.roa
File: hTfGNym3dxt6qN5LDPud-oRQZqM.roa (raw, json)
Hash identifier: B7n6rRNs+rz3SnvLyXYRucfd7Sdg4QVA56/BOjyWLEo=
Subject key identifier: 85:37:C6:37:29:B7:77:1B:7A:A8:DE:4B:0C:FB:9D:FA:84:50:66:A3
Certificate issuer: /CN=fad92323d22b44275dcecd4de295b44794623e92
Certificate serial: 018571A79CA0CC5155159F69283CC4B22B58
Authority key identifier: FA:D9:23:23:D2:2B:44:27:5D:CE:CD:4D:E2:95:B4:47:94:62:3E:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tkjI9IrRCddzs1N4pW0R5RiPpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/49f3ad-ef9e-4fc4-95c4-4f37011ee581/1/hTfGNym3dxt6qN5LDPud-oRQZqM.roa
Signing time: Mon 02 Jan 2023 08:44:48 +0000
ROA not before: Mon 02 Jan 2023 08:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50893
IP address blocks: 91.216.1.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:a7:9c:a0:cc:51:55:15:9f:69:28:3c:c4:b2:2b:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fad92323d22b44275dcecd4de295b44794623e92
Validity
Not Before: Jan 2 08:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8537c63729b7771b7aa8de4b0cfb9dfa845066a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:f8:ee:ca:72:a8:80:82:65:52:fd:aa:14:f1:
28:2e:a9:9a:2d:eb:e0:1e:7f:00:45:ba:15:5d:a8:
cc:4d:0c:7d:62:de:c9:2d:0f:a5:30:6b:cd:0e:35:
2c:43:e5:60:08:68:99:60:fb:f5:11:02:aa:65:de:
b1:63:e2:3c:f9:df:87:4b:68:38:8a:9e:56:ea:28:
9a:21:33:31:a2:7f:1f:3f:68:7a:5e:40:63:1b:bc:
47:07:03:28:de:87:9a:1c:9e:f1:45:f5:e3:6b:1d:
71:ed:62:3e:6c:de:26:97:88:03:d2:43:4d:49:ea:
f6:ba:3c:18:e0:b4:15:70:f7:8e:85:e2:21:68:39:
47:c2:9b:2b:cc:06:03:fa:ec:b7:d2:59:c1:6a:a5:
15:60:31:3f:16:01:10:e0:09:b2:57:ca:dd:f1:f8:
58:e5:7f:a4:8f:cc:5a:58:72:6f:fa:38:24:be:fb:
7c:6d:93:6b:67:30:16:0a:ef:e2:59:eb:cb:d9:35:
74:08:2a:fa:bb:c0:6e:2d:15:e2:1a:c6:39:c6:e0:
80:54:af:5a:4d:f7:46:9c:e9:93:74:7f:35:9e:b3:
13:8c:7a:bc:ff:97:8e:04:d7:72:4a:98:9d:e4:4d:
3e:19:8d:de:14:2f:f5:ee:c4:f0:ac:f2:21:a3:4f:
50:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:37:C6:37:29:B7:77:1B:7A:A8:DE:4B:0C:FB:9D:FA:84:50:66:A3
X509v3 Authority Key Identifier:
keyid:FA:D9:23:23:D2:2B:44:27:5D:CE:CD:4D:E2:95:B4:47:94:62:3E:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tkjI9IrRCddzs1N4pW0R5RiPpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/49f3ad-ef9e-4fc4-95c4-4f37011ee581/1/hTfGNym3dxt6qN5LDPud-oRQZqM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/49f3ad-ef9e-4fc4-95c4-4f37011ee581/1/1-tkjI9IrRCddzs1N4pW0R5RiPpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.1.0/24
Signature Algorithm: sha256WithRSAEncryption
48:cb:66:92:4c:7c:e1:06:58:ac:10:f0:6d:f4:9c:0b:94:9b:
20:bd:d2:95:8e:e3:03:5f:a7:6f:71:3f:1e:3e:5a:c2:f1:e4:
f9:6b:03:21:e7:fc:cf:58:a5:b5:17:06:c3:17:3f:88:17:fd:
75:53:c4:2d:7c:19:31:49:c3:bc:a3:e0:7b:d5:46:d9:22:da:
eb:60:31:a3:8f:d1:f6:00:aa:c3:b0:22:58:2c:98:5f:a5:f6:
4c:3a:e6:85:4d:63:51:d1:d8:b4:8c:82:ef:c8:1a:cc:8b:1b:
32:ef:2b:86:e6:e9:10:16:86:cd:33:6b:13:40:d0:c8:95:51:
60:b5:7d:79:93:2f:12:e4:30:ab:7d:c2:0a:fa:4d:15:bf:e9:
c5:c1:09:ea:cb:ac:c0:74:b8:af:6f:6a:5c:a4:23:b3:64:68:
03:f3:ae:dd:5e:f4:84:bd:ca:de:c1:b6:04:05:c7:19:92:a8:
44:f2:3d:a4:f2:f1:8c:31:25:3e:b3:e8:fb:3a:10:39:28:9c:
c8:98:fc:86:35:84:76:52:c5:20:45:c2:4a:f6:f6:e7:10:70:
d8:1c:d6:53:45:03:e3:c1:ec:8a:32:1b:9b:19:12:56:ba:93:
e2:94:72:90:6f:09:cf:55:e1:40:13:cf:65:16:15:4a:ba:37:
cd:c6:98:18
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYVxp5ygzFFVFZ9pKDzEsitYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZhZDkyMzIzZDIyYjQ0Mjc1ZGNlY2Q0ZGUyOTViNDQ3OTQ2
MjNlOTIwHhcNMjMwMTAyMDg0NDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NTM3YzYzNzI5Yjc3NzFiN2FhOGRlNGIwY2ZiOWRmYTg0NTA2NmEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz/juynKogIJlUv2qFPEoLqmaLevg
Hn8ARboVXajMTQx9Yt7JLQ+lMGvNDjUsQ+VgCGiZYPv1EQKqZd6xY+I8+d+HS2g4
ip5W6iiaITMxon8fP2h6XkBjG7xHBwMo3oeaHJ7xRfXjax1x7WI+bN4ml4gD0kNN
Ser2ujwY4LQVcPeOheIhaDlHwpsrzAYD+uy30lnBaqUVYDE/FgEQ4AmyV8rd8fhY
5X+kj8xaWHJv+jgkvvt8bZNrZzAWCu/iWevL2TV0CCr6u8BuLRXiGsY5xuCAVK9a
TfdGnOmTdH81nrMTjHq8/5eOBNdySpid5E0+GY3eFC/17sTwrPIho09QeQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFIU3xjcpt3cbeqjeSwz7nfqEUGajMB8GA1UdIwQY
MBaAFPrZIyPSK0QnXc7NTeKVtEeUYj6SMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS10a2pJOUlyUkNkZHpzMU40cFcwUjVSaVBwSS5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODMvNDlmM2FkLWVmOWUtNGZjNC05NWM0
LTRmMzcwMTFlZTU4MS8xL2hUZkdOeW0zZHh0NnFONUxEUHVkLW9SUVpxTS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvODMvNDlmM2FkLWVmOWUtNGZjNC05NWM0LTRmMzcwMTFlZTU4
MS8xLzEtdGtqSTlJclJDZGR6czFONHBXMFI1UmlQcEkuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABb2AEw
DQYJKoZIhvcNAQELBQADggEBAEjLZpJMfOEGWKwQ8G30nAuUmyC90pWO4wNfp29x
Px4+WsLx5PlrAyHn/M9YpbUXBsMXP4gX/XVTxC18GTFJw7yj4HvVRtki2utgMaOP
0fYAqsOwIlgsmF+l9kw65oVNY1HR2LSMgu/IGsyLGzLvK4bm6RAWhs0zaxNA0MiV
UWC1fXmTLxLkMKt9wgr6TRW/6cXBCerLrMB0uK9valykI7NkaAPzrt1e9IS9yt7B
tgQFxxmSqETyPaTy8YwxJT6z6Ps6EDkonMiY/IY1hHZSxSBFwkr29ucQcNgc1lNF
A+PB7IoyG5sZEla6k+KUcpBvCc9V4UATz2UWFUq6N83GmBg=
-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:33 2024 by rpki-client on console-ams.rpki-client.org