Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/b378a1-5b1b-4c89-8bc5-1c19949b96b6/1/69Ia4-QNBAYGN7Z01a0hmldG0bw.roa
File: 69Ia4-QNBAYGN7Z01a0hmldG0bw.roa (raw, json)
Hash identifier: lvvUtfEmY7C9brWVgZrCrk1rBr/DzcIfoQa2VQVYXo8=
Subject key identifier: EB:D2:1A:E3:E4:0D:04:06:06:37:B6:74:D5:AD:21:9A:57:46:D1:BC
Certificate issuer: /CN=fff604dc7892ba99f535296b9102d8d7a1844388
Certificate serial: 01856F14DE272654C9CC76621A97045C7528
Authority key identifier: FF:F6:04:DC:78:92:BA:99:F5:35:29:6B:91:02:D8:D7:A1:84:43:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/__YE3HiSupn1NSlrkQLY16GEQ4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/b378a1-5b1b-4c89-8bc5-1c19949b96b6/1/69Ia4-QNBAYGN7Z01a0hmldG0bw.roa
Signing time: Sun 01 Jan 2023 20:45:16 +0000
ROA not before: Sun 01 Jan 2023 20:45:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49435
IP address blocks: 91.220.34.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:de:27:26:54:c9:cc:76:62:1a:97:04:5c:75:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fff604dc7892ba99f535296b9102d8d7a1844388
Validity
Not Before: Jan 1 20:45:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ebd21ae3e40d04060637b674d5ad219a5746d1bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:28:1b:06:79:46:2f:fe:95:89:6d:02:16:68:
d6:93:10:57:33:f6:dd:b1:6e:ce:f7:45:17:b2:2e:
33:eb:c4:cb:57:f5:79:95:c1:ff:df:59:a0:f0:e1:
43:3a:7d:60:f8:97:1c:fd:7a:94:24:d0:a7:fc:0f:
10:84:7b:21:93:49:54:d6:7e:6f:3f:d0:70:5f:1b:
90:8c:0b:41:a0:bb:a6:0a:7a:2a:27:78:50:58:45:
4e:fe:26:cd:76:b7:5d:42:1d:82:ba:10:8d:5a:d3:
71:c4:ec:4b:42:e8:8f:a0:32:f1:8e:c2:82:0b:c3:
cb:f9:8e:a3:fa:d8:d4:28:ed:b1:b9:50:f4:24:18:
08:19:1c:1e:bc:af:72:1a:fc:ef:06:00:74:94:f2:
12:7c:8a:23:67:b2:bc:6e:ae:52:ba:e7:90:e2:5e:
84:11:88:ae:bb:1f:49:79:af:5f:a0:7f:df:e5:42:
5f:bd:68:cf:a3:1b:26:70:d5:38:e4:ec:9d:9b:6b:
8d:d7:de:46:ba:0b:19:fa:ef:cd:ec:f2:ae:e6:d2:
e9:91:99:c9:31:ff:dc:d3:f6:11:8f:97:91:7b:d5:
3e:20:4d:7f:79:f8:d1:b5:8c:3f:b2:2b:ff:bc:b8:
13:77:c8:e0:91:39:4d:e9:94:74:9b:47:be:fc:ee:
f0:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:D2:1A:E3:E4:0D:04:06:06:37:B6:74:D5:AD:21:9A:57:46:D1:BC
X509v3 Authority Key Identifier:
keyid:FF:F6:04:DC:78:92:BA:99:F5:35:29:6B:91:02:D8:D7:A1:84:43:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/__YE3HiSupn1NSlrkQLY16GEQ4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b378a1-5b1b-4c89-8bc5-1c19949b96b6/1/69Ia4-QNBAYGN7Z01a0hmldG0bw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/b378a1-5b1b-4c89-8bc5-1c19949b96b6/1/__YE3HiSupn1NSlrkQLY16GEQ4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.34.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:54:5a:f7:db:34:e0:c1:77:8e:67:5d:9d:f8:69:59:82:29:
45:12:b7:97:76:9b:95:8a:57:33:b3:7b:ac:a4:3c:44:34:e3:
41:bc:89:91:52:b6:5b:7c:28:db:ad:a6:36:92:09:f8:81:ec:
dd:1c:75:ba:00:4d:5a:13:d4:ea:27:bb:3f:93:f4:5b:e4:ce:
86:01:3d:9c:85:45:19:db:10:60:42:94:ec:ca:d9:d0:92:c1:
f8:e7:ba:51:f5:0e:d2:c9:21:26:1b:20:70:a7:71:a7:4a:11:
b9:61:05:c4:e3:8d:de:a1:97:3e:fd:a8:86:51:34:49:aa:95:
c4:6a:2c:20:97:84:60:5f:4a:f6:f2:52:d3:e0:a7:0e:ec:bf:
57:e6:d9:c4:5b:65:e7:2b:98:bf:69:66:33:7c:42:30:a1:51:
2a:c9:84:b5:34:54:8f:47:74:3c:3f:51:96:50:b3:cc:30:f2:
ee:6d:18:a8:e3:1e:fd:b1:cb:48:a0:69:95:09:ab:77:39:f8:
b7:85:8e:40:35:85:1c:36:54:a5:ce:8e:30:40:90:e6:fc:da:
f8:09:61:4c:c4:44:18:fa:69:d9:f0:e1:67:35:35:15:b7:5d:
a2:9c:49:88:12:4c:5a:aa:4d:d7:1e:27:67:7d:30:ce:47:6f:
94:3f:88:13
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvFN4nJlTJzHZiGpcEXHUoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZmZjYwNGRjNzg5MmJhOTlmNTM1Mjk2YjkxMDJkOGQ3YTE4
NDQzODgwHhcNMjMwMTAxMjA0NTE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYmQyMWFlM2U0MGQwNDA2MDYzN2I2NzRkNWFkMjE5YTU3NDZkMWJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiigbBnlGL/6ViW0CFmjWkxBXM/bd
sW7O90UXsi4z68TLV/V5lcH/31mg8OFDOn1g+Jcc/XqUJNCn/A8QhHshk0lU1n5v
P9BwXxuQjAtBoLumCnoqJ3hQWEVO/ibNdrddQh2CuhCNWtNxxOxLQuiPoDLxjsKC
C8PL+Y6j+tjUKO2xuVD0JBgIGRwevK9yGvzvBgB0lPISfIojZ7K8bq5SuueQ4l6E
EYiuux9Jea9foH/f5UJfvWjPoxsmcNU45Oydm2uN195GugsZ+u/N7PKu5tLpkZnJ
Mf/c0/YRj5eRe9U+IE1/efjRtYw/siv/vLgTd8jgkTlN6ZR0m0e+/O7wIQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOvSGuPkDQQGBje2dNWtIZpXRtG8MB8GA1UdIwQY
MBaAFP/2BNx4krqZ9TUpa5EC2NehhEOIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX19ZRTNIaVN1cG4xTlNscmtRTFkxNkdFUTRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9iMzc4YTEtNWIxYi00Yzg5LThiYzUt
MWMxOTk0OWI5NmI2LzEvNjlJYTQtUU5CQVlHTjdaMDFhMGhtbGRHMGJ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS9iMzc4YTEtNWIxYi00Yzg5LThiYzUtMWMxOTk0OWI5NmI2
LzEvX19ZRTNIaVN1cG4xTlNscmtRTFkxNkdFUTRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9wiMA0G
CSqGSIb3DQEBCwUAA4IBAQBfVFr32zTgwXeOZ12d+GlZgilFEreXdpuVilczs3us
pDxENONBvImRUrZbfCjbraY2kgn4gezdHHW6AE1aE9TqJ7s/k/Rb5M6GAT2chUUZ
2xBgQpTsytnQksH457pR9Q7SySEmGyBwp3GnShG5YQXE443eoZc+/aiGUTRJqpXE
aiwgl4RgX0r28lLT4KcO7L9X5tnEW2XnK5i/aWYzfEIwoVEqyYS1NFSPR3Q8P1GW
ULPMMPLubRio4x79sctIoGmVCat3Ofi3hY5ANYUcNlSlzo4wQJDm/Nr4CWFMxEQY
+mnZ8OFnNTUVt12inEmIEkxaqk3XHidnfTDOR2+UP4gT
-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:40 2024 by rpki-client on console-ams.rpki-client.org