Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/3I6PgXh7x94G7nv1c9ZdQll0FZ8.roa
File: 3I6PgXh7x94G7nv1c9ZdQll0FZ8.roa (raw, json)
Hash identifier: ruLXq+Glh602wecoYd4P4tSyfLBh/1fTx4wLWYS9Ujc=
Subject key identifier: DC:8E:8F:81:78:7B:C7:DE:06:EE:7B:F5:73:D6:5D:42:59:74:15:9F
Certificate issuer: /CN=e316318247d211841f9620a9a1130010ddb486f2
Certificate serial: 01856F8B750D4629169F3C09BF4654BE5B38
Authority key identifier: E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/3I6PgXh7x94G7nv1c9ZdQll0FZ8.roa
Signing time: Sun 01 Jan 2023 22:54:48 +0000
ROA not before: Sun 01 Jan 2023 22:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61138
IP address blocks: 91.232.103.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:8b:75:0d:46:29:16:9f:3c:09:bf:46:54:be:5b:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e316318247d211841f9620a9a1130010ddb486f2
Validity
Not Before: Jan 1 22:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dc8e8f81787bc7de06ee7bf573d65d425974159f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ff:e0:9e:12:ac:a0:c0:a1:1d:2f:f0:75:ea:
8e:e3:72:13:c6:ab:4a:8c:88:90:ba:92:c4:c5:28:
77:53:28:d3:80:07:35:b9:16:de:e7:f8:52:80:66:
ce:2a:9c:01:e5:23:52:41:cb:b8:c4:c9:85:f4:2c:
fa:72:be:f2:f5:17:5a:21:de:cf:db:93:80:de:c7:
2a:bf:68:bf:6e:80:f9:d7:0f:8b:bc:52:b1:b8:09:
19:25:e7:25:d4:f9:50:44:38:75:47:cd:db:e8:1d:
0b:e0:61:11:10:42:cb:28:d0:4d:16:7b:16:3c:fd:
66:45:21:9d:8e:f8:25:61:e9:8c:3a:d9:c2:a5:18:
09:62:62:21:9e:59:f4:57:00:49:3b:15:cb:e1:64:
d3:b1:c2:08:ab:8b:5c:ac:b7:61:3e:cb:f1:ae:46:
b3:f0:85:d6:ad:6d:9a:e1:ab:1b:59:2c:66:88:11:
52:e8:da:8e:7c:94:3d:a7:d2:07:9b:d1:0c:3e:4b:
62:c5:b0:cf:50:bb:07:9c:72:7d:aa:a1:cd:fb:78:
09:a7:40:4b:11:b2:de:48:46:db:48:d6:c5:a8:33:
56:a5:61:d0:53:3f:28:a1:1d:7a:5b:4e:7c:a9:76:
5d:17:04:70:2a:89:14:44:f1:f8:43:0e:f8:f6:73:
8d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:8E:8F:81:78:7B:C7:DE:06:EE:7B:F5:73:D6:5D:42:59:74:15:9F
X509v3 Authority Key Identifier:
keyid:E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/3I6PgXh7x94G7nv1c9ZdQll0FZ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/4xYxgkfSEYQfliCpoRMAEN20hvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.103.0/24
Signature Algorithm: sha256WithRSAEncryption
21:ae:93:54:d6:80:92:c4:bf:92:3b:17:92:26:6f:20:eb:e3:
6e:00:23:ee:9a:28:ba:00:98:2d:c9:68:ca:7d:40:7e:87:d7:
ec:f7:9c:f5:fa:87:cb:23:a9:77:2d:c0:30:e0:b7:da:95:a3:
75:79:40:e3:e6:b9:54:78:09:61:0c:9f:2a:fe:8a:db:52:af:
31:80:3c:d8:fe:55:e5:81:2a:b6:9f:c1:df:14:8d:f3:c9:72:
93:c9:5e:f5:8a:38:44:24:a2:69:c2:ed:e8:1e:7a:89:ce:e7:
16:53:1b:17:35:d6:d1:20:52:b2:d4:df:2f:7d:9b:89:d7:a9:
ef:ca:dd:2b:ca:4e:53:df:27:61:7e:17:8a:e0:44:e7:be:ca:
e5:3c:21:e3:d3:fd:9e:2b:5c:c9:66:1b:1f:2b:d4:31:13:5d:
d3:ea:2b:d2:f7:f7:21:69:9e:2a:1f:d0:25:9c:ec:d6:d0:ce:
09:92:0a:1e:cc:89:fb:45:9c:19:ba:f7:1e:3b:ba:fa:c4:6e:
06:88:dc:83:9f:44:f5:5b:05:d5:62:a7:8b:ad:18:d6:e5:eb:
c5:1f:c4:8d:ff:49:af:8f:47:20:c2:8a:b8:9a:da:dd:a1:68:
62:4a:4a:10:c9:32:f5:03:22:80:4e:aa:e3:74:7e:79:f8:f7:
76:59:d2:f9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvi3UNRikWnzwJv0ZUvls4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUzMTYzMTgyNDdkMjExODQxZjk2MjBhOWExMTMwMDEwZGRi
NDg2ZjIwHhcNMjMwMTAxMjI1NDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYzhlOGY4MTc4N2JjN2RlMDZlZTdiZjU3M2Q2NWQ0MjU5NzQxNTlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlf/gnhKsoMChHS/wdeqO43ITxqtK
jIiQupLExSh3UyjTgAc1uRbe5/hSgGbOKpwB5SNSQcu4xMmF9Cz6cr7y9RdaId7P
25OA3scqv2i/boD51w+LvFKxuAkZJecl1PlQRDh1R83b6B0L4GEREELLKNBNFnsW
PP1mRSGdjvglYemMOtnCpRgJYmIhnln0VwBJOxXL4WTTscIIq4tcrLdhPsvxrkaz
8IXWrW2a4asbWSxmiBFS6NqOfJQ9p9IHm9EMPktixbDPULsHnHJ9qqHN+3gJp0BL
EbLeSEbbSNbFqDNWpWHQUz8ooR16W058qXZdFwRwKokURPH4Qw749nONAwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNyOj4F4e8feBu579XPWXUJZdBWfMB8GA1UdIwQY
MBaAFOMWMYJH0hGEH5YgqaETABDdtIbyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHhZeGdrZlNFWVFmbGlDcG9STUFFTjIwaHZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS9lZTQyYmItMWU0OS00YzIxLWE0ZDYt
ZWMyODdlMWQzN2U1LzEvM0k2UGdYaDd4OTRHN252MWM5WmRRbGwwRlo4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS9lZTQyYmItMWU0OS00YzIxLWE0ZDYtZWMyODdlMWQzN2U1
LzEvNHhZeGdrZlNFWVFmbGlDcG9STUFFTjIwaHZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+hnMA0G
CSqGSIb3DQEBCwUAA4IBAQAhrpNU1oCSxL+SOxeSJm8g6+NuACPumii6AJgtyWjK
fUB+h9fs95z1+ofLI6l3LcAw4LfalaN1eUDj5rlUeAlhDJ8q/orbUq8xgDzY/lXl
gSq2n8HfFI3zyXKTyV71ijhEJKJpwu3oHnqJzucWUxsXNdbRIFKy1N8vfZuJ16nv
yt0ryk5T3ydhfheK4ETnvsrlPCHj0/2eK1zJZhsfK9QxE13T6ivS9/chaZ4qH9Al
nOzW0M4JkgoezIn7RZwZuvceO7r6xG4GiNyDn0T1WwXVYqeLrRjW5evFH8SN/0mv
j0cgwoq4mtrdoWhiSkoQyTL1AyKATqrjdH55+Pd2WdL5
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:51 2023 by rpki-client on console-fra.rpki-client.org