Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/p4JPTUTqylw4i95hnIdl40Ne-t8.roa
File: p4JPTUTqylw4i95hnIdl40Ne-t8.roa (raw, json)
Hash identifier: V2d8+5jbzR5z3v5JO/g7JHwbco4608i0ToMZHoVtEzw=
Subject key identifier: A7:82:4F:4D:44:EA:CA:5C:38:8B:DE:61:9C:87:65:E3:43:5E:FA:DF
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 018570306AA7A0BD771F3901746F2B229E65
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/p4JPTUTqylw4i95hnIdl40Ne-t8.roa
Signing time: Mon 02 Jan 2023 01:54:59 +0000
ROA not before: Mon 02 Jan 2023 01:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47979
IP address blocks: 91.120.44.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:6a:a7:a0:bd:77:1f:39:01:74:6f:2b:22:9e:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 2 01:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a7824f4d44eaca5c388bde619c8765e3435efadf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f6:bf:94:18:78:8d:6d:32:ac:fb:b3:32:c9:
92:91:b8:2f:df:f6:8c:b4:4d:dc:fe:78:bd:51:a4:
52:16:32:90:ad:07:81:fc:7f:11:ea:f2:c4:80:fc:
2d:6d:0b:25:ed:66:2e:74:86:e5:f4:26:41:c6:d0:
53:1b:cf:03:3b:c6:67:c7:31:64:15:47:92:08:04:
ed:92:91:75:16:99:e4:f7:2f:74:74:56:ba:e6:0c:
ca:5a:61:79:74:07:63:b1:8a:7a:f8:1b:55:ea:f4:
17:e1:4f:48:e5:bb:7f:40:0c:94:3e:17:de:c1:41:
db:c2:f6:c7:87:15:e6:9d:c1:93:49:6c:d8:84:c6:
e7:42:93:53:b4:7a:57:ff:f0:d7:e6:5c:7e:b0:5a:
97:a9:4d:2b:99:e8:0e:6d:59:65:1b:6b:5f:c9:2d:
ce:fc:5a:cf:fc:d8:4b:44:79:5e:47:44:18:fd:93:
30:0e:87:95:fc:e3:55:b2:c4:5a:db:8c:69:f2:81:
98:84:44:c4:4e:ae:9b:c4:7c:6f:4a:67:6f:89:6b:
4e:37:1a:7f:eb:ed:c5:04:7d:0e:f2:0d:fa:d7:e4:
97:c1:0f:b3:b0:2e:20:6b:e5:02:17:7f:1f:38:39:
a1:74:26:2b:df:c2:6f:43:1f:f8:3a:a6:4f:ed:9f:
e3:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:82:4F:4D:44:EA:CA:5C:38:8B:DE:61:9C:87:65:E3:43:5E:FA:DF
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/p4JPTUTqylw4i95hnIdl40Ne-t8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.120.44.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:fc:55:8b:28:f9:7c:ca:39:bf:0d:77:45:43:d1:a2:93:aa:
f6:1b:41:f8:a8:50:62:67:b4:4f:68:e5:41:fc:87:d4:3a:b3:
2a:a6:66:18:83:85:6b:84:52:73:99:b2:79:d8:1c:be:f9:d8:
61:c1:a7:48:6f:54:ee:84:9a:fa:a9:c3:8d:aa:1a:f9:2f:44:
b2:3b:6c:87:2f:f9:aa:91:6c:0e:c2:ef:63:0c:77:c4:79:11:
4f:26:bc:eb:a8:db:de:19:5b:c0:d0:ad:cc:e5:f1:a5:77:e3:
77:ed:52:3f:1e:58:43:9b:71:70:c4:be:d7:41:f0:d9:3b:76:
50:f6:1d:d9:a4:ce:f7:a4:fe:c0:11:6d:6e:1a:7c:d7:87:f2:
af:2a:07:75:c9:a4:a3:14:b3:66:00:c7:38:20:24:a4:77:43:
02:d5:7e:2a:5b:80:21:3e:e2:e3:9a:ff:06:58:40:f6:1f:a8:
b1:b9:be:8e:20:10:fb:3e:c9:bd:2d:ef:0b:6e:18:d7:4c:dc:
9f:a9:51:eb:26:01:de:45:a6:a3:00:02:52:59:29:f7:ab:71:
b8:62:62:36:3e:26:27:54:19:5c:c0:10:23:04:fc:ff:ab:64:
d7:60:21:31:29:5f:5f:13:0c:1d:f5:6c:f7:eb:c8:45:13:91:
c0:87:4a:cf
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwMGqnoL13HzkBdG8rIp5lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwMmRhYzYwNWY0NjU5NzE4YzBhMTVlMWY3MzJjYmQ0ZjQ4
YWFlN2IwHhcNMjMwMTAyMDE1NDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNzgyNGY0ZDQ0ZWFjYTVjMzg4YmRlNjE5Yzg3NjVlMzQzNWVmYWRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyva/lBh4jW0yrPuzMsmSkbgv3/aM
tE3c/ni9UaRSFjKQrQeB/H8R6vLEgPwtbQsl7WYudIbl9CZBxtBTG88DO8ZnxzFk
FUeSCATtkpF1Fpnk9y90dFa65gzKWmF5dAdjsYp6+BtV6vQX4U9I5bt/QAyUPhfe
wUHbwvbHhxXmncGTSWzYhMbnQpNTtHpX//DX5lx+sFqXqU0rmegObVllG2tfyS3O
/FrP/NhLRHleR0QY/ZMwDoeV/ONVssRa24xp8oGYhETETq6bxHxvSmdviWtONxp/
6+3FBH0O8g361+SXwQ+zsC4ga+UCF38fODmhdCYr38JvQx/4OqZP7Z/jSQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKeCT01E6spcOIveYZyHZeNDXvrfMB8GA1UdIwQY
MBaAFPAtrGBfRllxjAoV4fcyy9T0iq57MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOEMyc1lGOUdXWEdNQ2hYaDl6TEwxUFNLcm5zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC9lOTA5NzYtM2RkMS00NzE2LWJiZjYt
MjkyYWU0NmU2MzAyLzEvcDRKUFRVVHF5bHc0aTk1aG5JZGw0ME5lLXQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZC9lOTA5NzYtM2RkMS00NzE2LWJiZjYtMjkyYWU0NmU2MzAy
LzEvOEMyc1lGOUdXWEdNQ2hYaDl6TEwxUFNLcm5zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW3gsMA0G
CSqGSIb3DQEBCwUAA4IBAQAK/FWLKPl8yjm/DXdFQ9Gik6r2G0H4qFBiZ7RPaOVB
/IfUOrMqpmYYg4VrhFJzmbJ52By++dhhwadIb1TuhJr6qcONqhr5L0SyO2yHL/mq
kWwOwu9jDHfEeRFPJrzrqNveGVvA0K3M5fGld+N37VI/HlhDm3FwxL7XQfDZO3ZQ
9h3ZpM73pP7AEW1uGnzXh/KvKgd1yaSjFLNmAMc4ICSkd0MC1X4qW4AhPuLjmv8G
WED2H6ixub6OIBD7Psm9Le8LbhjXTNyfqVHrJgHeRaajAAJSWSn3q3G4YmI2PiYn
VBlcwBAjBPz/q2TXYCExKV9fEwwd9Wz368hFE5HAh0rP
-----END CERTIFICATE-----
Generated at Tue Jan 2 14:37:04 2024 by rpki-client on console-fra.rpki-client.org