Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/Q02b0guBLzjRLJOVh0-ZljOEiBg.roa
File: Q02b0guBLzjRLJOVh0-ZljOEiBg.roa (raw, json)
Hash identifier: RxibGL4kuJXBXxcv5k0jQTRUGGhUFiGmMTqV6bzEePQ=
Subject key identifier: 43:4D:9B:D2:0B:81:2F:38:D1:2C:93:95:87:4F:99:96:33:84:88:18
Certificate issuer: /CN=b2d0a0c68a2039ff0ca514024115271c8a046608
Certificate serial: 01856FA6ED22811921DD0BBFBE37E02DDC7F
Authority key identifier: B2:D0:A0:C6:8A:20:39:FF:0C:A5:14:02:41:15:27:1C:8A:04:66:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/Q02b0guBLzjRLJOVh0-ZljOEiBg.roa
Signing time: Sun 01 Jan 2023 23:24:48 +0000
ROA not before: Sun 01 Jan 2023 23:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20900
IP address blocks: 91.240.78.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 26 Apr 2023 13:22:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a6:ed:22:81:19:21:dd:0b:bf:be:37:e0:2d:dc:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d0a0c68a2039ff0ca514024115271c8a046608
Validity
Not Before: Jan 1 23:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=434d9bd20b812f38d12c9395874f999633848818
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1f:c1:06:94:f4:7a:86:72:f7:6a:3f:fc:49:
b0:de:c5:1a:15:95:57:d4:c5:01:f1:4a:98:25:38:
1a:30:24:3c:41:7d:0a:f1:89:4f:ee:ec:2f:3c:48:
60:ea:02:da:03:42:a7:31:bb:48:5a:16:f3:02:a2:
a7:7d:d8:65:01:9e:d3:32:3e:03:08:68:53:df:c7:
e7:40:27:0e:f7:e9:72:b5:cd:a7:b0:55:cf:b7:cf:
8e:3b:a3:1c:ea:be:73:92:a2:cf:e0:58:9f:9e:54:
99:0b:f2:56:8c:87:d6:0c:16:6e:2e:02:47:44:19:
65:bf:3c:af:a9:da:ab:a4:b4:1f:4d:51:8d:5f:80:
51:bb:b7:d5:b0:96:3e:8c:53:c8:03:b7:ca:fe:c0:
cb:0d:f3:0f:f1:bc:ee:4f:98:28:db:37:fa:76:d3:
c5:f5:17:11:4f:4b:3c:bf:e9:e2:e0:bf:71:eb:94:
0d:6c:d8:36:b8:c6:93:9c:2a:e8:bf:96:ab:02:1f:
e9:72:84:81:8f:4a:e8:4a:9e:3f:fd:e9:51:dc:4b:
fa:64:c1:83:1c:15:f8:e8:d6:c1:6a:6b:38:26:60:
1f:f0:33:b1:3e:c4:ad:d8:35:a8:c8:68:59:61:f2:
1b:9f:9c:b3:8b:d6:e5:58:2d:a1:c3:15:ed:a1:ff:
03:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:4D:9B:D2:0B:81:2F:38:D1:2C:93:95:87:4F:99:96:33:84:88:18
X509v3 Authority Key Identifier:
keyid:B2:D0:A0:C6:8A:20:39:FF:0C:A5:14:02:41:15:27:1C:8A:04:66:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/Q02b0guBLzjRLJOVh0-ZljOEiBg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.78.0/23
Signature Algorithm: sha256WithRSAEncryption
d9:97:f5:6c:80:fa:5c:65:6b:9a:7e:ca:46:6c:66:cd:9b:aa:
97:95:a6:a9:be:71:a7:8b:56:5d:a8:90:8a:df:65:33:e5:6b:
b6:6b:9a:e4:72:4c:77:21:b9:1a:c1:77:64:f1:d1:b4:48:a4:
52:e0:f3:b6:64:1f:f8:c7:50:39:6e:cf:8f:4f:c4:50:80:3d:
bd:7c:51:95:9a:4e:11:21:66:60:54:a3:d3:8a:3e:63:04:5f:
d8:c3:44:4f:42:61:89:00:93:63:41:37:e1:a3:03:39:9f:6c:
67:e8:4a:4b:5a:31:6f:d9:02:29:c0:b3:68:13:ae:bc:6f:92:
4e:a6:e0:ca:b9:6a:60:3a:94:db:2d:32:d5:ce:d5:82:51:5c:
bc:59:a6:e4:ce:14:4c:37:b8:6a:8c:07:b9:1e:41:fb:1b:9a:
2b:e7:c3:b8:d2:af:51:1e:73:45:09:07:bc:7f:3b:60:60:a1:
c4:62:32:48:36:c0:64:f8:ce:f5:f2:09:6f:77:3d:f5:08:07:
bb:c0:3a:57:5c:cd:70:7b:a9:87:0b:9f:cf:2c:ea:e7:b3:d3:
35:d5:bf:97:19:15:0e:43:0d:61:75:2c:b7:c4:41:3c:3b:e0:
90:cd:9c:5a:db:2a:ed:a5:f5:83:fd:4c:2c:60:97:28:cd:f3:
02:b1:55:c8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvpu0igRkh3Qu/vjfgLdx/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyZDBhMGM2OGEyMDM5ZmYwY2E1MTQwMjQxMTUyNzFjOGEw
NDY2MDgwHhcNMjMwMTAxMjMyNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MzRkOWJkMjBiODEyZjM4ZDEyYzkzOTU4NzRmOTk5NjMzODQ4ODE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuR/BBpT0eoZy92o//Emw3sUaFZVX
1MUB8UqYJTgaMCQ8QX0K8YlP7uwvPEhg6gLaA0KnMbtIWhbzAqKnfdhlAZ7TMj4D
CGhT38fnQCcO9+lytc2nsFXPt8+OO6Mc6r5zkqLP4FifnlSZC/JWjIfWDBZuLgJH
RBllvzyvqdqrpLQfTVGNX4BRu7fVsJY+jFPIA7fK/sDLDfMP8bzuT5go2zf6dtPF
9RcRT0s8v+ni4L9x65QNbNg2uMaTnCrov5arAh/pcoSBj0roSp4//elR3Ev6ZMGD
HBX46NbBams4JmAf8DOxPsSt2DWoyGhZYfIbn5yzi9blWC2hwxXtof8D3QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFENNm9ILgS840SyTlYdPmZYzhIgYMB8GA1UdIwQY
MBaAFLLQoMaKIDn/DKUUAkEVJxyKBGYIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3RDZ3hvb2dPZjhNcFJRQ1FSVW5ISW9FWmdnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ny9iM2QwZDctZTEwYS00ODZmLTg4NWQt
NDFhYjdjODcyZmVhLzEvUTAyYjBndUJMempSTEpPVmgwLVpsak9FaUJnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ny9iM2QwZDctZTEwYS00ODZmLTg4NWQtNDFhYjdjODcyZmVh
LzEvc3RDZ3hvb2dPZjhNcFJRQ1FSVW5ISW9FWmdnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW/BOMA0G
CSqGSIb3DQEBCwUAA4IBAQDZl/VsgPpcZWuafspGbGbNm6qXlaapvnGni1ZdqJCK
32Uz5Wu2a5rkckx3IbkawXdk8dG0SKRS4PO2ZB/4x1A5bs+PT8RQgD29fFGVmk4R
IWZgVKPTij5jBF/Yw0RPQmGJAJNjQTfhowM5n2xn6EpLWjFv2QIpwLNoE668b5JO
puDKuWpgOpTbLTLVztWCUVy8WabkzhRMN7hqjAe5HkH7G5or58O40q9RHnNFCQe8
fztgYKHEYjJINsBk+M718glvdz31CAe7wDpXXM1we6mHC5/PLOrns9M11b+XGRUO
Qw1hdSy3xEE8O+CQzZxa2yrtpfWD/UwsYJcozfMCsVXI
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:56 2024 by rpki-client on console-ams.rpki-client.org