Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/775190-cb94-4063-8c1a-ad147d915791/1/JWeBkSwK7-eNBhns0RMOcjkHNVQ.roa
File: JWeBkSwK7-eNBhns0RMOcjkHNVQ.roa (raw, json)
Hash identifier: fC5/xdjdiSs0To2kqP2GW04BN2dDKcn1sBRlGvwY1jw=
Subject key identifier: 25:67:81:91:2C:0A:EF:E7:8D:06:19:EC:D1:13:0E:72:39:07:35:54
Certificate issuer: /CN=4f8477e569d1d7d60f0469a7cc8a7f4746039bb7
Certificate serial: 018572CC9411F47B7AFC7D3DD8AAC946B058
Authority key identifier: 4F:84:77:E5:69:D1:D7:D6:0F:04:69:A7:CC:8A:7F:47:46:03:9B:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4R35WnR19YPBGmnzIp_R0YDm7c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/775190-cb94-4063-8c1a-ad147d915791/1/JWeBkSwK7-eNBhns0RMOcjkHNVQ.roa
Signing time: Mon 02 Jan 2023 14:04:47 +0000
ROA not before: Mon 02 Jan 2023 14:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197386
IP address blocks: 91.220.50.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:cc:94:11:f4:7b:7a:fc:7d:3d:d8:aa:c9:46:b0:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8477e569d1d7d60f0469a7cc8a7f4746039bb7
Validity
Not Before: Jan 2 14:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=256781912c0aefe78d0619ecd1130e7239073554
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:4a:9d:35:30:63:20:d7:bf:88:a6:10:ff:46:
2d:ce:09:20:44:cf:26:35:65:19:bc:a0:fa:58:51:
56:77:96:b6:4d:07:84:33:8f:34:14:91:af:dc:3c:
7e:a7:19:54:ec:d5:41:b5:6b:05:fd:e0:d6:73:df:
50:fe:84:39:d2:24:18:2c:53:c4:b7:a4:32:5d:09:
f4:85:a6:b0:15:a1:cf:76:99:f9:aa:94:78:58:f9:
9e:75:44:9c:ab:d2:a8:c2:6c:6e:8d:a8:e5:11:bc:
86:d7:02:d8:d6:f7:0c:b3:6e:c8:b1:5e:de:9f:45:
16:96:42:ab:f4:ef:45:bf:08:38:bd:f7:d9:c3:f0:
da:db:c2:1d:89:59:c4:f0:d4:88:63:a0:8f:29:9a:
ad:b4:f3:b5:af:ba:c9:a1:30:9e:78:5d:a9:4c:9a:
91:44:a2:52:96:78:44:27:e3:24:97:75:1d:2c:bd:
72:be:04:6d:fd:17:97:5c:ac:a1:3f:a6:fb:94:52:
27:5f:5d:94:36:d2:ff:3f:9a:c1:b8:c1:1e:9a:46:
93:ef:65:8d:02:9a:2b:30:da:9d:3b:13:49:be:e6:
cf:e9:27:43:08:48:2f:cd:27:34:b6:a5:1c:14:72:
a9:f5:0b:00:8a:52:8c:3f:9d:45:30:11:3d:7e:e0:
d1:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:67:81:91:2C:0A:EF:E7:8D:06:19:EC:D1:13:0E:72:39:07:35:54
X509v3 Authority Key Identifier:
keyid:4F:84:77:E5:69:D1:D7:D6:0F:04:69:A7:CC:8A:7F:47:46:03:9B:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4R35WnR19YPBGmnzIp_R0YDm7c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/775190-cb94-4063-8c1a-ad147d915791/1/JWeBkSwK7-eNBhns0RMOcjkHNVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/775190-cb94-4063-8c1a-ad147d915791/1/T4R35WnR19YPBGmnzIp_R0YDm7c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.50.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:d9:ae:38:6a:78:69:79:54:8f:02:3c:d6:df:ca:48:c6:ca:
e0:7d:ab:37:2a:1d:32:eb:80:98:b9:3b:d9:47:95:e1:0c:4e:
7f:2b:51:3f:60:36:19:45:02:6b:0d:a8:b7:38:c5:49:c1:d9:
fb:86:8e:a0:b2:85:c7:e9:0d:9e:6c:4e:83:1d:29:7d:dd:83:
3b:cc:b1:30:22:27:2a:ee:b0:11:3b:b0:60:71:0f:cd:17:b4:
78:24:30:4b:2c:65:5f:39:b0:17:17:44:d5:3c:da:03:a8:78:
ea:6e:99:c3:d9:a5:98:66:26:c8:2c:f2:be:5b:ca:b7:b2:95:
50:21:d8:f3:15:8c:21:07:0f:a4:c6:7b:69:b9:84:1a:b2:68:
e8:2f:85:21:68:56:6a:2a:cb:c6:75:23:7e:2a:24:26:88:d1:
31:3b:43:9f:3b:62:33:a3:e4:5d:cb:08:e3:3c:60:88:16:a5:
4f:b2:4d:57:76:71:39:0d:b9:c4:de:50:19:39:ae:8f:ce:8b:
39:02:a7:5e:6f:20:bd:48:f6:bc:72:8d:13:c6:52:24:0d:20:
30:a6:15:eb:82:b3:d9:4f:b3:f1:e2:e1:56:cc:a3:f6:df:f1:
ba:a6:a7:e0:9c:69:53:1f:56:66:81:96:49:b8:be:b5:71:34:
4a:a0:3c:2e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyzJQR9Ht6/H092KrJRrBYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmODQ3N2U1NjlkMWQ3ZDYwZjA0NjlhN2NjOGE3ZjQ3NDYw
MzliYjcwHhcNMjMwMTAyMTQwNDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNTY3ODE5MTJjMGFlZmU3OGQwNjE5ZWNkMTEzMGU3MjM5MDczNTU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq0qdNTBjINe/iKYQ/0YtzgkgRM8m
NWUZvKD6WFFWd5a2TQeEM480FJGv3Dx+pxlU7NVBtWsF/eDWc99Q/oQ50iQYLFPE
t6QyXQn0haawFaHPdpn5qpR4WPmedUScq9KowmxujajlEbyG1wLY1vcMs27IsV7e
n0UWlkKr9O9Fvwg4vffZw/Da28IdiVnE8NSIY6CPKZqttPO1r7rJoTCeeF2pTJqR
RKJSlnhEJ+Mkl3UdLL1yvgRt/ReXXKyhP6b7lFInX12UNtL/P5rBuMEemkaT72WN
AporMNqdOxNJvubP6SdDCEgvzSc0tqUcFHKp9QsAilKMP51FMBE9fuDR0QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCVngZEsCu/njQYZ7NETDnI5BzVUMB8GA1UdIwQY
MBaAFE+Ed+Vp0dfWDwRpp8yKf0dGA5u3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDRSMzVXblIxOVlQQkdtbnpJcF9SMFlEbTdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZC83NzUxOTAtY2I5NC00MDYzLThjMWEt
YWQxNDdkOTE1NzkxLzEvSldlQmtTd0s3LWVOQmhuczBSTU9jamtITlZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85ZC83NzUxOTAtY2I5NC00MDYzLThjMWEtYWQxNDdkOTE1Nzkx
LzEvVDRSMzVXblIxOVlQQkdtbnpJcF9SMFlEbTdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9wyMA0G
CSqGSIb3DQEBCwUAA4IBAQBK2a44anhpeVSPAjzW38pIxsrgfas3Kh0y64CYuTvZ
R5XhDE5/K1E/YDYZRQJrDai3OMVJwdn7ho6gsoXH6Q2ebE6DHSl93YM7zLEwIicq
7rARO7BgcQ/NF7R4JDBLLGVfObAXF0TVPNoDqHjqbpnD2aWYZibILPK+W8q3spVQ
IdjzFYwhBw+kxntpuYQasmjoL4UhaFZqKsvGdSN+KiQmiNExO0OfO2Izo+Rdywjj
PGCIFqVPsk1XdnE5DbnE3lAZOa6Pzos5AqdebyC9SPa8co0TxlIkDSAwphXrgrPZ
T7Px4uFWzKP23/G6pqfgnGlTH1ZmgZZJuL61cTRKoDwu
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:15 2024 by rpki-client on console-ams.rpki-client.org