Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/591600-8b26-4286-9ec2-77002f70fb4a/1/TaD-p64vg5_Q-aBIFcNtKvb5Gq4.roa
File: TaD-p64vg5_Q-aBIFcNtKvb5Gq4.roa (raw, json)
Hash identifier: X55DN/HJ8egEj+edNLWPEh1u49HxYuQn6hY71M/ut1g=
Subject key identifier: 4D:A0:FE:A7:AE:2F:83:9F:D0:F9:A0:48:15:C3:6D:2A:F6:F9:1A:AE
Certificate issuer: /CN=d41f8efdcf6e266a82c61302526f6bcfc465e571
Certificate serial: 01856DD3FF42A1E1EA3D54DA3E2EBB5FF451
Authority key identifier: D4:1F:8E:FD:CF:6E:26:6A:82:C6:13:02:52:6F:6B:CF:C4:65:E5:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1B-O_c9uJmqCxhMCUm9rz8Rl5XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/591600-8b26-4286-9ec2-77002f70fb4a/1/TaD-p64vg5_Q-aBIFcNtKvb5Gq4.roa
Signing time: Sun 01 Jan 2023 14:54:47 +0000
ROA not before: Sun 01 Jan 2023 14:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51143
IP address blocks: 91.216.172.0/24 maxlen: 24
2001:678:29c::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:d3:ff:42:a1:e1:ea:3d:54:da:3e:2e:bb:5f:f4:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d41f8efdcf6e266a82c61302526f6bcfc465e571
Validity
Not Before: Jan 1 14:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4da0fea7ae2f839fd0f9a04815c36d2af6f91aae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:f8:f0:a0:b4:0b:32:bc:bb:b5:20:93:3f:0e:
b7:d3:90:f3:22:17:de:ee:3b:49:25:fb:91:ed:2e:
79:8d:80:65:65:90:99:f7:bf:ad:ca:4e:2f:18:2d:
72:96:cc:f3:25:8a:4d:96:90:fc:ca:6b:48:52:f1:
6c:d3:22:77:3e:ac:d3:c9:ef:92:87:6f:18:50:00:
47:65:e5:1a:50:a8:0e:59:a5:3b:5d:8c:a0:64:76:
ba:b7:60:a5:df:54:0e:7a:5c:86:41:a4:7b:44:fc:
86:29:ac:39:11:18:fa:c6:6f:90:92:cf:33:b9:b0:
93:f6:cf:01:9e:ef:3b:89:99:2b:bb:b5:a4:f8:30:
1d:e2:19:b8:8d:5b:cb:8f:ff:3b:37:b4:a6:b7:96:
98:d3:2f:77:e7:00:a6:35:a2:29:aa:35:f2:ff:85:
9e:35:1a:27:88:33:07:7f:d3:ec:7e:61:e1:ca:be:
a8:b4:e8:85:4c:42:fc:e7:ef:85:6a:e9:2e:98:6a:
02:9e:51:fc:9c:ae:aa:0f:d5:44:92:e0:a6:e6:cb:
4e:5d:ef:ab:2c:8c:dc:09:af:87:df:c0:5e:bb:1f:
2b:04:bc:cd:6c:5a:5e:15:28:42:e7:cc:4c:cb:f2:
41:59:b4:c3:a7:50:82:09:b3:ac:f3:a6:ba:c2:11:
2b:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:A0:FE:A7:AE:2F:83:9F:D0:F9:A0:48:15:C3:6D:2A:F6:F9:1A:AE
X509v3 Authority Key Identifier:
keyid:D4:1F:8E:FD:CF:6E:26:6A:82:C6:13:02:52:6F:6B:CF:C4:65:E5:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1B-O_c9uJmqCxhMCUm9rz8Rl5XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/591600-8b26-4286-9ec2-77002f70fb4a/1/TaD-p64vg5_Q-aBIFcNtKvb5Gq4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/591600-8b26-4286-9ec2-77002f70fb4a/1/1B-O_c9uJmqCxhMCUm9rz8Rl5XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.172.0/24
IPv6:
2001:678:29c::/48
Signature Algorithm: sha256WithRSAEncryption
c7:b4:83:80:15:7a:0f:b7:36:a2:19:e9:31:a6:ba:33:66:89:
38:3e:63:b7:70:bb:95:f2:34:11:6a:ea:29:57:84:83:6d:7c:
e8:a3:5c:68:12:6c:08:35:4c:19:ff:60:ea:98:7f:7e:4d:f0:
b9:fb:d0:5f:80:9e:d7:ed:f5:3d:16:7a:f9:7a:42:5b:33:1c:
87:12:be:61:43:39:ee:a0:7f:c9:99:1d:55:58:13:54:e8:67:
9d:9d:12:8f:dc:c6:f5:4e:28:f5:77:32:3c:7b:fc:14:28:4f:
c8:1f:9e:30:f8:bc:51:8c:53:e9:e1:18:3e:5d:88:df:23:30:
2e:82:84:9b:f0:71:b6:c7:01:8c:06:a8:24:e6:c3:d2:6b:a5:
1a:54:05:52:32:88:84:df:42:a5:6e:5e:3d:9e:29:a6:a4:b4:
06:04:e4:7d:46:1f:f2:41:29:85:59:be:5a:39:11:7a:bb:87:
f7:91:ad:35:1c:11:a3:03:08:e3:97:1d:e1:e9:94:d3:f3:37:
46:e5:63:47:31:ba:23:9b:97:79:d9:79:18:93:a0:68:1f:b0:
0f:85:46:59:a3:16:70:48:0d:b7:a5:89:6e:be:54:14:2b:07:
ce:cd:86:09:9d:66:5d:ad:f2:fc:28:f6:e9:25:2a:e9:f8:7f:
56:5c:e6:b9
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYVt0/9CoeHqPVTaPi67X/RRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0MWY4ZWZkY2Y2ZTI2NmE4MmM2MTMwMjUyNmY2YmNmYzQ2
NWU1NzEwHhcNMjMwMTAxMTQ1NDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZGEwZmVhN2FlMmY4MzlmZDBmOWEwNDgxNWMzNmQyYWY2ZjkxYWFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi/jwoLQLMry7tSCTPw6305DzIhfe
7jtJJfuR7S55jYBlZZCZ97+tyk4vGC1ylszzJYpNlpD8ymtIUvFs0yJ3PqzTye+S
h28YUABHZeUaUKgOWaU7XYygZHa6t2Cl31QOelyGQaR7RPyGKaw5ERj6xm+Qks8z
ubCT9s8Bnu87iZkru7Wk+DAd4hm4jVvLj/87N7Smt5aY0y935wCmNaIpqjXy/4We
NRoniDMHf9PsfmHhyr6otOiFTEL85++FaukumGoCnlH8nK6qD9VEkuCm5stOXe+r
LIzcCa+H38Beux8rBLzNbFpeFShC58xMy/JBWbTDp1CCCbOs86a6whErtwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFE2g/qeuL4Of0PmgSBXDbSr2+RquMB8GA1UdIwQY
MBaAFNQfjv3PbiZqgsYTAlJva8/EZeVxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUItT19jOXVKbXFDeGhNQ1VtOXJ6OFJsNVhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi81OTE2MDAtOGIyNi00Mjg2LTllYzIt
NzcwMDJmNzBmYjRhLzEvVGFELXA2NHZnNV9RLWFCSUZjTnRLdmI1R3E0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Zi81OTE2MDAtOGIyNi00Mjg2LTllYzItNzcwMDJmNzBmYjRh
LzEvMUItT19jOXVKbXFDeGhNQ1VtOXJ6OFJsNVhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAW9isMA8E
AgACMAkDBwAgAQZ4ApwwDQYJKoZIhvcNAQELBQADggEBAMe0g4AVeg+3NqIZ6TGm
ujNmiTg+Y7dwu5XyNBFq6ilXhINtfOijXGgSbAg1TBn/YOqYf35N8Ln70F+Antft
9T0Wevl6QlszHIcSvmFDOe6gf8mZHVVYE1ToZ52dEo/cxvVOKPV3Mjx7/BQoT8gf
njD4vFGMU+nhGD5diN8jMC6ChJvwcbbHAYwGqCTmw9JrpRpUBVIyiITfQqVuXj2e
KaaktAYE5H1GH/JBKYVZvlo5EXq7h/eRrTUcEaMDCOOXHeHplNPzN0blY0cxuiOb
l3nZeRiToGgfsA+FRlmjFnBIDbeliW6+VBQrB87NhgmdZl2t8vwo9uklKun4f1Zc
5rk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:02 2024 by rpki-client on console-fra.rpki-client.org