Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/wy0QEzn3OZ0OUmX93mtUoq7VV0w.roa
File: wy0QEzn3OZ0OUmX93mtUoq7VV0w.roa (raw, json)
Hash identifier: nG4077hck3+kTHhSCg8onUmYgleVgekPMbinR61NdhM=
Subject key identifier: C3:2D:10:13:39:F7:39:9D:0E:52:65:FD:DE:6B:54:A2:AE:D5:57:4C
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 0185703065615528B0D0E31B00039916639E
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/wy0QEzn3OZ0OUmX93mtUoq7VV0w.roa
Signing time: Mon 02 Jan 2023 01:54:57 +0000
ROA not before: Mon 02 Jan 2023 01:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 33973
IP address blocks: 91.120.43.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:65:61:55:28:b0:d0:e3:1b:00:03:99:16:63:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 2 01:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c32d101339f7399d0e5265fdde6b54a2aed5574c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:af:19:a7:32:ab:ba:88:4e:2f:30:fa:f4:a5:
83:e4:47:4d:2b:f0:dc:de:ee:f1:1d:c5:af:77:ac:
3c:0f:c4:12:9b:95:79:d4:9c:ca:b4:22:87:d4:31:
3c:5d:27:45:05:ca:b7:f2:18:26:44:d8:9c:f1:0a:
2b:45:40:7a:10:a1:74:e0:eb:d8:2c:16:b6:fb:95:
f3:38:ae:5f:48:dd:ed:4a:5e:48:d4:4f:16:be:0a:
35:56:87:c2:89:d5:24:52:47:ee:8a:14:c5:2a:09:
61:8c:33:02:07:12:e1:5b:39:f2:bd:84:ae:b1:d8:
df:73:24:4c:c0:1d:5b:4c:9f:f5:04:bc:b4:dc:e4:
22:60:cb:ef:d6:c2:33:18:63:e3:26:51:11:8d:d5:
52:78:a7:6e:10:4d:69:99:c2:99:7e:3d:00:d9:31:
5c:9e:75:5a:ba:16:3c:2d:84:22:0e:75:14:c6:d9:
13:f4:18:1a:49:f9:8f:8c:73:36:76:ca:2a:a3:3e:
64:1c:f6:7b:35:41:12:a3:fb:b8:c8:5c:9d:5b:53:
61:9f:0a:c9:b2:42:dc:ae:93:58:2f:ae:10:36:3d:
dd:77:10:94:d0:a9:db:1f:e8:51:a5:a9:42:df:32:
c3:81:08:4e:75:08:b7:2a:00:ad:7b:7a:c0:2d:77:
8a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:2D:10:13:39:F7:39:9D:0E:52:65:FD:DE:6B:54:A2:AE:D5:57:4C
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/wy0QEzn3OZ0OUmX93mtUoq7VV0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.120.43.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:3d:d2:9e:70:4b:55:6e:31:b2:d8:e1:42:c6:3a:5b:e0:97:
ed:8f:3b:60:94:b2:9e:8f:ec:5d:3d:76:c8:c6:f5:28:9d:56:
78:43:8d:4a:26:c4:79:36:41:ae:8b:f8:b1:5b:0a:95:7c:b4:
f9:4f:7f:03:34:59:21:aa:54:50:6a:24:bb:c4:47:a9:cf:59:
17:f9:c2:8d:58:48:df:88:d3:0b:f4:43:63:24:3d:f8:36:83:
4a:0c:60:60:0f:e5:22:3c:c4:d8:3f:2f:7a:37:76:03:9e:a0:
11:1b:16:fe:a0:b4:bd:b4:64:f7:50:cd:87:e1:19:35:91:a9:
02:e3:7d:bd:eb:5a:f8:80:9d:b5:6c:fe:dd:43:1f:7a:47:db:
15:ff:ea:53:f9:5f:21:0a:c9:97:45:f9:38:3e:28:d5:4c:2d:
75:9b:02:5e:c3:03:7e:4c:4d:5f:d2:2f:a0:b2:c0:d1:24:ee:
ab:f9:42:7e:1d:25:5e:14:a7:f9:09:99:8c:2b:60:66:d4:59:
8f:51:46:79:c3:10:b0:64:f7:dd:cf:03:93:94:a7:38:a0:73:
a4:76:c1:7f:6a:a3:88:f9:b8:f0:a6:e4:06:93:fd:d6:77:75:
a3:cc:e2:67:ca:10:b9:35:6f:e5:36:3c:e3:79:44:d9:a9:ef:
24:4a:cc:df
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwMGVhVSiw0OMbAAOZFmOeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwMmRhYzYwNWY0NjU5NzE4YzBhMTVlMWY3MzJjYmQ0ZjQ4
YWFlN2IwHhcNMjMwMTAyMDE1NDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMzJkMTAxMzM5ZjczOTlkMGU1MjY1ZmRkZTZiNTRhMmFlZDU1NzRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuq8ZpzKruohOLzD69KWD5EdNK/Dc
3u7xHcWvd6w8D8QSm5V51JzKtCKH1DE8XSdFBcq38hgmRNic8QorRUB6EKF04OvY
LBa2+5XzOK5fSN3tSl5I1E8Wvgo1VofCidUkUkfuihTFKglhjDMCBxLhWznyvYSu
sdjfcyRMwB1bTJ/1BLy03OQiYMvv1sIzGGPjJlERjdVSeKduEE1pmcKZfj0A2TFc
nnVauhY8LYQiDnUUxtkT9BgaSfmPjHM2dsoqoz5kHPZ7NUESo/u4yFydW1NhnwrJ
skLcrpNYL64QNj3ddxCU0KnbH+hRpalC3zLDgQhOdQi3KgCte3rALXeK/QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMMtEBM59zmdDlJl/d5rVKKu1VdMMB8GA1UdIwQY
MBaAFPAtrGBfRllxjAoV4fcyy9T0iq57MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOEMyc1lGOUdXWEdNQ2hYaDl6TEwxUFNLcm5zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC9lOTA5NzYtM2RkMS00NzE2LWJiZjYt
MjkyYWU0NmU2MzAyLzEvd3kwUUV6bjNPWjBPVW1YOTNtdFVvcTdWVjB3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZC9lOTA5NzYtM2RkMS00NzE2LWJiZjYtMjkyYWU0NmU2MzAy
LzEvOEMyc1lGOUdXWEdNQ2hYaDl6TEwxUFNLcm5zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW3grMA0G
CSqGSIb3DQEBCwUAA4IBAQB9PdKecEtVbjGy2OFCxjpb4JftjztglLKej+xdPXbI
xvUonVZ4Q41KJsR5NkGui/ixWwqVfLT5T38DNFkhqlRQaiS7xEepz1kX+cKNWEjf
iNML9ENjJD34NoNKDGBgD+UiPMTYPy96N3YDnqARGxb+oLS9tGT3UM2H4Rk1kakC
432961r4gJ21bP7dQx96R9sV/+pT+V8hCsmXRfk4PijVTC11mwJewwN+TE1f0i+g
ssDRJO6r+UJ+HSVeFKf5CZmMK2Bm1FmPUUZ5wxCwZPfdzwOTlKc4oHOkdsF/aqOI
+bjwpuQGk/3Wd3WjzOJnyhC5NW/lNjzjeUTZqe8kSszf
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:47 2024 by rpki-client on console-fra.rpki-client.org