Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/aDUdCBNz3lIX-HdJSq3sEpxEfvk.roa
File: aDUdCBNz3lIX-HdJSq3sEpxEfvk.roa (raw, json)
Hash identifier: CXzEo+St/i/C7P2rIFH51QH18JL5uG8tfas+LJ4+ewk=
Subject key identifier: 68:35:1D:08:13:73:DE:52:17:F8:77:49:4A:AD:EC:12:9C:44:7E:F9
Certificate issuer: /CN=27a7d1f0d73fe481c2188d28def0e858e715697e
Certificate serial: 018977EDE6144823EC4668556A59A6CFA9E1
Authority key identifier: 27:A7:D1:F0:D7:3F:E4:81:C2:18:8D:28:DE:F0:E8:58:E7:15:69:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/aDUdCBNz3lIX-HdJSq3sEpxEfvk.roa
Signing time: Fri 21 Jul 2023 10:10:26 +0000
ROA not before: Fri 21 Jul 2023 10:10:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 91.204.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Jul 2023 22:42:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:77:ed:e6:14:48:23:ec:46:68:55:6a:59:a6:cf:a9:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a7d1f0d73fe481c2188d28def0e858e715697e
Validity
Not Before: Jul 21 10:10:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=68351d081373de5217f877494aadec129c447ef9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:05:68:36:5c:6b:ac:40:27:70:71:0d:31:19:
60:42:8e:92:0f:41:04:6b:c7:05:d2:08:24:84:4a:
d8:4c:b6:0c:ab:5e:4e:01:85:c3:1d:76:35:74:22:
36:e5:09:fd:7f:13:1e:b5:27:d6:12:2b:28:45:ec:
7e:aa:7a:9c:de:98:24:a9:d8:80:ae:f8:08:33:86:
f8:5c:cc:ca:5a:c3:eb:37:d5:17:bb:59:0b:af:a1:
75:5b:33:b4:d6:01:f9:e3:93:d7:c4:27:5c:e7:3d:
75:57:1b:49:cf:69:81:d1:53:0a:6e:7d:74:5f:c0:
32:67:12:11:60:32:5e:70:b0:9e:66:31:39:72:a8:
df:05:44:38:68:41:5c:50:c9:00:c2:54:17:30:5a:
68:a6:f0:ad:cc:9d:f3:bd:f4:52:47:56:36:62:bb:
fd:79:12:23:9d:8c:83:93:8d:21:e8:90:71:ec:7e:
0e:a0:f5:d0:44:e5:bf:17:69:7e:60:22:07:3a:85:
9b:78:a3:cd:b5:8b:7e:73:dc:80:06:2d:ad:eb:de:
ba:3d:ca:ff:55:85:87:eb:e4:25:0f:25:63:bb:04:
2f:2f:c8:31:4a:62:12:a3:c9:8c:66:25:91:16:63:
f9:4d:2e:d7:17:da:72:7a:1a:22:81:54:7e:06:21:
93:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:35:1D:08:13:73:DE:52:17:F8:77:49:4A:AD:EC:12:9C:44:7E:F9
X509v3 Authority Key Identifier:
keyid:27:A7:D1:F0:D7:3F:E4:81:C2:18:8D:28:DE:F0:E8:58:E7:15:69:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/aDUdCBNz3lIX-HdJSq3sEpxEfvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.204.79.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:ae:bd:86:84:b2:7d:b1:27:cd:de:e6:4e:3a:3f:7f:42:9b:
33:93:df:ca:cc:a8:23:2c:9d:f0:6e:37:12:2a:eb:16:1c:d6:
29:63:36:20:0a:87:42:bb:9b:51:31:ad:b6:a5:5a:27:b1:0d:
d8:b7:04:98:54:9e:a0:80:f6:9c:8e:a9:f1:c4:4f:d8:eb:55:
86:9e:ee:89:21:26:0b:7f:0e:91:05:0b:06:c6:06:73:fe:6c:
82:9d:1d:5c:f3:02:00:fc:36:c8:f3:13:a2:40:45:85:84:79:
cd:61:30:e0:6f:e3:45:b0:86:38:c2:01:e0:95:bb:d1:8d:e7:
00:0c:95:06:4f:0a:4d:9c:c1:f8:ff:30:83:1b:f3:e6:01:11:
f7:3e:95:ad:31:4b:df:92:f1:3b:14:9d:fe:6f:2d:66:cc:c1:
25:52:eb:9f:86:2c:9a:44:f5:76:5e:44:65:b5:e6:1b:01:87:
ba:13:fe:71:56:ef:12:37:83:bc:6c:ef:78:b5:57:e0:55:66:
1a:a0:1f:6c:74:35:27:89:90:5b:e4:2a:48:9c:bd:bb:2b:1d:
bf:b2:96:59:83:3e:ae:3d:c1:25:6b:f1:19:74:97:06:db:35:
3e:89:d9:ab:a9:3b:9f:b0:a8:7b:fe:94:91:b5:b9:61:f0:83:
3b:be:9d:d2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYl37eYUSCPsRmhValmmz6nhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI3YTdkMWYwZDczZmU0ODFjMjE4OGQyOGRlZjBlODU4ZTcx
NTY5N2UwHhcNMjMwNzIxMTAxMDI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ODM1MWQwODEzNzNkZTUyMTdmODc3NDk0YWFkZWMxMjljNDQ3ZWY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAowVoNlxrrEAncHENMRlgQo6SD0EE
a8cF0ggkhErYTLYMq15OAYXDHXY1dCI25Qn9fxMetSfWEisoRex+qnqc3pgkqdiA
rvgIM4b4XMzKWsPrN9UXu1kLr6F1WzO01gH545PXxCdc5z11VxtJz2mB0VMKbn10
X8AyZxIRYDJecLCeZjE5cqjfBUQ4aEFcUMkAwlQXMFpopvCtzJ3zvfRSR1Y2Yrv9
eRIjnYyDk40h6JBx7H4OoPXQROW/F2l+YCIHOoWbeKPNtYt+c9yABi2t6966Pcr/
VYWH6+QlDyVjuwQvL8gxSmISo8mMZiWRFmP5TS7XF9pyehoigVR+BiGTiQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGg1HQgTc95SF/h3SUqt7BKcRH75MB8GA1UdIwQY
MBaAFCen0fDXP+SBwhiNKN7w6FjnFWl+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSjZmUjhOY181SUhDR0kwbzN2RG9XT2NWYVg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9kODJlZjYtODM2YS00N2M3LWE2YzEt
ZDZlYWFmYzZiNGY1LzEvYURVZENCTnozbElYLUhkSlNxM3NFcHhFZnZrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS9kODJlZjYtODM2YS00N2M3LWE2YzEtZDZlYWFmYzZiNGY1
LzEvSjZmUjhOY181SUhDR0kwbzN2RG9XT2NWYVg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8xPMA0G
CSqGSIb3DQEBCwUAA4IBAQCOrr2GhLJ9sSfN3uZOOj9/Qpszk9/KzKgjLJ3wbjcS
KusWHNYpYzYgCodCu5tRMa22pVonsQ3YtwSYVJ6ggPacjqnxxE/Y61WGnu6JISYL
fw6RBQsGxgZz/myCnR1c8wIA/DbI8xOiQEWFhHnNYTDgb+NFsIY4wgHglbvRjecA
DJUGTwpNnMH4/zCDG/PmARH3PpWtMUvfkvE7FJ3+by1mzMElUuufhiyaRPV2XkRl
teYbAYe6E/5xVu8SN4O8bO94tVfgVWYaoB9sdDUniZBb5CpInL27Kx2/spZZgz6u
PcEla/EZdJcG2zU+idmrqTufsKh7/pSRtblh8IM7vp3S
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:22 2024 by rpki-client on console-fra.rpki-client.org