Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/x3YuGc4wnzOOLInurXbIpoBGwQ8.roa
File: x3YuGc4wnzOOLInurXbIpoBGwQ8.roa (raw, json)
Hash identifier: i8nCU3lqDuVAI1eSyXn7GqU5rfH9SbAb+TJw8x7hw/w=
Subject key identifier: C7:76:2E:19:CE:30:9F:33:8E:2C:89:EE:AD:76:C8:A6:80:46:C1:0F
Certificate issuer: /CN=27a7d1f0d73fe481c2188d28def0e858e715697e
Certificate serial: 018B5D2A5086BF64ED308519C6AFB432F406
Authority key identifier: 27:A7:D1:F0:D7:3F:E4:81:C2:18:8D:28:DE:F0:E8:58:E7:15:69:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/x3YuGc4wnzOOLInurXbIpoBGwQ8.roa
Signing time: Mon 23 Oct 2023 15:32:16 +0000
ROA not before: Mon 23 Oct 2023 15:32:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216314
IP address blocks: 91.204.77.0/24 maxlen: 24
91.204.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5d:2a:50:86:bf:64:ed:30:85:19:c6:af:b4:32:f4:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a7d1f0d73fe481c2188d28def0e858e715697e
Validity
Not Before: Oct 23 15:32:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c7762e19ce309f338e2c89eead76c8a68046c10f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d9:e8:10:ce:7a:21:4b:e8:8d:12:0a:ea:fd:
24:c8:52:57:08:00:c8:69:4b:af:82:6f:3a:79:96:
89:d7:62:35:82:a5:77:35:b7:94:89:6e:87:ee:d3:
1a:bb:31:14:5f:4e:3c:ad:34:c9:5d:56:c6:a7:49:
d3:8d:ac:7f:45:a3:4e:27:0c:5d:48:e3:48:9f:c3:
6f:be:98:97:7f:47:1b:dc:e4:34:5f:b2:d5:8e:b4:
2f:6d:a1:df:7c:db:d3:79:32:03:a9:62:66:51:1c:
d5:d9:da:51:5e:3d:f8:c8:36:fa:e5:08:79:fa:73:
4b:84:49:0c:57:55:6e:5b:ae:c6:c3:73:c8:3e:0b:
91:10:39:c8:2e:9a:ab:1f:af:7b:39:d8:8f:8f:db:
9a:09:f3:56:35:33:99:1c:8c:d3:ec:33:cd:92:59:
30:63:00:4e:eb:f2:cc:f1:79:f5:5b:e3:91:77:87:
1d:ae:00:dc:20:4c:72:d1:74:f2:9b:48:ea:a6:bf:
4e:56:d8:d2:be:31:73:fd:df:88:b2:5e:bd:28:3c:
54:1e:46:22:f4:d5:b2:38:d9:d7:cf:9e:8e:1f:5c:
0c:9f:b9:69:dc:56:da:89:da:06:a0:2f:ea:20:bd:
58:c4:0a:49:ad:fd:78:c2:6a:35:78:23:ff:67:09:
68:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:76:2E:19:CE:30:9F:33:8E:2C:89:EE:AD:76:C8:A6:80:46:C1:0F
X509v3 Authority Key Identifier:
keyid:27:A7:D1:F0:D7:3F:E4:81:C2:18:8D:28:DE:F0:E8:58:E7:15:69:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/x3YuGc4wnzOOLInurXbIpoBGwQ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.204.77.0/24
91.204.79.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:5e:11:29:10:9b:10:94:15:39:ce:2d:23:ed:8e:6a:d0:24:
a5:b2:4a:ce:fa:85:14:bb:ce:60:9d:33:0e:eb:13:d9:1d:77:
30:4c:37:54:61:b2:04:19:2b:8e:56:bb:3d:85:79:dd:b1:18:
35:e0:29:f9:77:74:7d:88:41:13:8c:b9:66:01:7b:75:05:b4:
27:8e:7d:0f:27:a1:0d:fc:ea:f0:c6:3c:70:6c:9f:44:7b:40:
02:64:66:59:6e:d9:7e:f5:98:bb:79:63:53:7b:2a:58:8f:b2:
e8:8c:ed:73:14:3f:8f:3f:d3:e5:a1:72:f1:64:e5:a4:9a:ac:
1e:75:14:1e:64:54:b3:77:57:58:0d:63:90:5a:38:c1:79:00:
3f:6d:a8:f1:90:3b:3f:a1:e1:bb:4c:72:97:05:0a:97:6a:9b:
71:12:d5:6e:12:ca:06:46:33:1f:2b:34:31:53:5e:8b:a2:8e:
8e:68:2c:0b:6f:af:1a:93:8c:7c:3a:81:42:0d:94:0c:27:6f:
05:70:e8:9e:09:2c:78:3c:6b:23:b4:94:76:8e:fa:b7:69:ec:
0d:89:8a:12:8f:87:93:4c:07:b2:71:9d:66:23:98:c1:0a:fd:
b6:9e:4c:4c:b2:2f:a6:40:14:ae:a5:f0:7f:d4:37:65:22:ff:
ba:33:01:87
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYtdKlCGv2TtMIUZxq+0MvQGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI3YTdkMWYwZDczZmU0ODFjMjE4OGQyOGRlZjBlODU4ZTcx
NTY5N2UwHhcNMjMxMDIzMTUzMjE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNzc2MmUxOWNlMzA5ZjMzOGUyYzg5ZWVhZDc2YzhhNjgwNDZjMTBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArNnoEM56IUvojRIK6v0kyFJXCADI
aUuvgm86eZaJ12I1gqV3NbeUiW6H7tMauzEUX048rTTJXVbGp0nTjax/RaNOJwxd
SONIn8NvvpiXf0cb3OQ0X7LVjrQvbaHffNvTeTIDqWJmURzV2dpRXj34yDb65Qh5
+nNLhEkMV1VuW67Gw3PIPguREDnILpqrH697OdiPj9uaCfNWNTOZHIzT7DPNklkw
YwBO6/LM8Xn1W+ORd4cdrgDcIExy0XTym0jqpr9OVtjSvjFz/d+Isl69KDxUHkYi
9NWyONnXz56OH1wMn7lp3FbaidoGoC/qIL1YxApJrf14wmo1eCP/ZwlohQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFMd2LhnOMJ8zjiyJ7q12yKaARsEPMB8GA1UdIwQY
MBaAFCen0fDXP+SBwhiNKN7w6FjnFWl+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSjZmUjhOY181SUhDR0kwbzN2RG9XT2NWYVg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9kODJlZjYtODM2YS00N2M3LWE2YzEt
ZDZlYWFmYzZiNGY1LzEveDNZdUdjNHduek9PTEludXJYYklwb0JHd1E4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS9kODJlZjYtODM2YS00N2M3LWE2YzEtZDZlYWFmYzZiNGY1
LzEvSjZmUjhOY181SUhDR0kwbzN2RG9XT2NWYVg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW8xNAwQA
W8xPMA0GCSqGSIb3DQEBCwUAA4IBAQC/XhEpEJsQlBU5zi0j7Y5q0CSlskrO+oUU
u85gnTMO6xPZHXcwTDdUYbIEGSuOVrs9hXndsRg14Cn5d3R9iEETjLlmAXt1BbQn
jn0PJ6EN/OrwxjxwbJ9Ee0ACZGZZbtl+9Zi7eWNTeypYj7LojO1zFD+PP9PloXLx
ZOWkmqwedRQeZFSzd1dYDWOQWjjBeQA/bajxkDs/oeG7THKXBQqXaptxEtVuEsoG
RjMfKzQxU16Loo6OaCwLb68ak4x8OoFCDZQMJ28FcOieCSx4PGsjtJR2jvq3aewN
iYoSj4eTTAeycZ1mI5jBCv22nkxMsi+mQBSupfB/1DdlIv+6MwGH
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:38 2024 by rpki-client on console-ams.rpki-client.org