Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/ca8d98-e7a4-4bdc-8c90-b29606d51f9d/1/im1k-a8ZHLJyMdPCj7DYYZzrCsE.roa
File: im1k-a8ZHLJyMdPCj7DYYZzrCsE.roa (raw, json)
Hash identifier: vZDRLymBf3JnicpSQHbbAy1QfO1FvTt5OXaxrJATpCM=
Subject key identifier: 8A:6D:64:F9:AF:19:1C:B2:72:31:D3:C2:8F:B0:D8:61:9C:EB:0A:C1
Certificate issuer: /CN=9e2d7d5b82c8378ba2153943ce9482ce4cd4951b
Certificate serial: 01856F1DA8DA3DD6303288F2A5C926D6CFC3
Authority key identifier: 9E:2D:7D:5B:82:C8:37:8B:A2:15:39:43:CE:94:82:CE:4C:D4:95:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ni19W4LIN4uiFTlDzpSCzkzUlRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/ca8d98-e7a4-4bdc-8c90-b29606d51f9d/1/im1k-a8ZHLJyMdPCj7DYYZzrCsE.roa
Signing time: Sun 01 Jan 2023 20:54:52 +0000
ROA not before: Sun 01 Jan 2023 20:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213149
IP address blocks: 91.205.229.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:a8:da:3d:d6:30:32:88:f2:a5:c9:26:d6:cf:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e2d7d5b82c8378ba2153943ce9482ce4cd4951b
Validity
Not Before: Jan 1 20:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a6d64f9af191cb27231d3c28fb0d8619ceb0ac1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:47:30:0b:34:8c:f6:1f:3d:d3:dd:9c:3d:ef:
aa:b9:c7:b2:8d:60:74:be:c1:7b:8d:f9:89:34:51:
88:94:8b:cc:04:fb:22:f6:4c:8f:b5:1d:4a:a1:76:
41:35:ff:59:0d:4b:e5:42:6e:69:cf:73:83:b5:c1:
ad:09:86:80:d9:25:2f:fa:64:8c:45:94:f1:71:13:
74:ab:7a:a5:30:d6:c1:c3:72:27:2c:30:3b:1a:84:
5e:ae:b1:6d:24:86:1f:d3:28:38:6c:0d:1d:44:37:
cb:a1:10:5f:0e:6e:9c:f0:1c:bb:d5:d9:a5:e9:d5:
df:0c:86:e9:b0:2c:fc:40:15:08:77:10:79:35:dd:
3b:3b:ae:8a:96:89:75:52:02:03:60:3a:5c:9c:51:
db:44:86:2e:1a:88:52:9e:19:e3:03:37:f7:d8:34:
54:70:23:cd:24:36:42:1b:32:7f:d6:31:c7:52:20:
b3:81:97:45:ba:85:9a:b6:8a:9f:2a:be:f1:98:bb:
00:89:01:d1:36:83:40:4d:45:55:09:8b:a6:fb:c1:
2f:7a:3d:03:55:ac:9a:eb:c2:5d:3b:63:30:b4:12:
21:01:04:38:2f:8c:18:03:86:48:2f:60:f6:65:68:
3d:6e:83:98:3c:b3:bc:7d:cc:0b:bd:fc:17:96:ed:
58:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:6D:64:F9:AF:19:1C:B2:72:31:D3:C2:8F:B0:D8:61:9C:EB:0A:C1
X509v3 Authority Key Identifier:
keyid:9E:2D:7D:5B:82:C8:37:8B:A2:15:39:43:CE:94:82:CE:4C:D4:95:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ni19W4LIN4uiFTlDzpSCzkzUlRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ca8d98-e7a4-4bdc-8c90-b29606d51f9d/1/im1k-a8ZHLJyMdPCj7DYYZzrCsE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ca8d98-e7a4-4bdc-8c90-b29606d51f9d/1/ni19W4LIN4uiFTlDzpSCzkzUlRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.205.229.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:16:e9:7a:3f:d8:4d:a8:69:f1:bc:13:d4:f5:f5:47:e0:42:
67:e1:d3:65:36:54:3c:44:fb:72:25:6d:ba:8f:38:4b:84:5d:
8e:41:c6:b5:41:58:df:a3:5b:bc:bc:29:7c:0e:00:78:88:cf:
0f:f3:fb:a7:00:d9:1b:c6:2b:7c:83:a5:ae:10:75:d8:5a:cc:
40:78:dc:e7:38:c6:ea:2f:94:42:b5:fa:1a:ea:7b:31:42:df:
a1:15:de:f7:1a:3b:97:11:ed:d7:47:db:fb:b5:90:50:ee:33:
95:53:b4:81:8f:a8:e9:c5:00:c3:28:00:74:94:a4:51:f3:b1:
49:15:f1:a3:19:9f:ea:a5:76:c7:8c:54:1e:3a:a3:95:fe:d0:
03:29:36:15:52:88:d3:ca:f2:e1:41:9d:8d:db:90:85:ea:da:
4a:d9:bd:d3:f3:e0:af:63:20:f0:29:50:0a:9e:e5:71:a2:ba:
1e:30:41:bd:d3:ba:1e:4c:c2:8b:ce:0e:3a:24:b4:0e:42:45:
52:c5:25:9e:28:aa:8c:ed:4e:02:01:5f:61:99:97:b1:8a:dd:
5b:3b:f3:6b:e0:59:9c:04:68:cb:21:16:81:e8:de:ad:ba:f5:
bf:eb:71:b3:4e:8e:dd:e4:12:c0:45:fb:17:f8:5a:43:fb:54:
43:cb:dc:10
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvHajaPdYwMojypckm1s/DMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllMmQ3ZDViODJjODM3OGJhMjE1Mzk0M2NlOTQ4MmNlNGNk
NDk1MWIwHhcNMjMwMTAxMjA1NDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YTZkNjRmOWFmMTkxY2IyNzIzMWQzYzI4ZmIwZDg2MTljZWIwYWMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgEcwCzSM9h89092cPe+quceyjWB0
vsF7jfmJNFGIlIvMBPsi9kyPtR1KoXZBNf9ZDUvlQm5pz3ODtcGtCYaA2SUv+mSM
RZTxcRN0q3qlMNbBw3InLDA7GoRerrFtJIYf0yg4bA0dRDfLoRBfDm6c8By71dml
6dXfDIbpsCz8QBUIdxB5Nd07O66Klol1UgIDYDpcnFHbRIYuGohSnhnjAzf32DRU
cCPNJDZCGzJ/1jHHUiCzgZdFuoWatoqfKr7xmLsAiQHRNoNATUVVCYum+8Evej0D
Vaya68JdO2MwtBIhAQQ4L4wYA4ZIL2D2ZWg9boOYPLO8fcwLvfwXlu1YDwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIptZPmvGRyycjHTwo+w2GGc6wrBMB8GA1UdIwQY
MBaAFJ4tfVuCyDeLohU5Q86Ugs5M1JUbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbmkxOVc0TElONHVpRlRsRHpwU0N6a3pVbFJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS9jYThkOTgtZTdhNC00YmRjLThjOTAt
YjI5NjA2ZDUxZjlkLzEvaW0xay1hOFpITEp5TWRQQ2o3RFlZWnpyQ3NFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS9jYThkOTgtZTdhNC00YmRjLThjOTAtYjI5NjA2ZDUxZjlk
LzEvbmkxOVc0TElONHVpRlRsRHpwU0N6a3pVbFJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW83lMA0G
CSqGSIb3DQEBCwUAA4IBAQCdFul6P9hNqGnxvBPU9fVH4EJn4dNlNlQ8RPtyJW26
jzhLhF2OQca1QVjfo1u8vCl8DgB4iM8P8/unANkbxit8g6WuEHXYWsxAeNznOMbq
L5RCtfoa6nsxQt+hFd73GjuXEe3XR9v7tZBQ7jOVU7SBj6jpxQDDKAB0lKRR87FJ
FfGjGZ/qpXbHjFQeOqOV/tADKTYVUojTyvLhQZ2N25CF6tpK2b3T8+CvYyDwKVAK
nuVxoroeMEG907oeTMKLzg46JLQOQkVSxSWeKKqM7U4CAV9hmZexit1bO/Nr4Fmc
BGjLIRaB6N6tuvW/63GzTo7d5BLARfsX+FpD+1RDy9wQ
-----END CERTIFICATE-----
Generated at Tue Jan 2 15:21:47 2024 by rpki-client on console-ams.rpki-client.org