Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/CqGm_E5zEHAyHJQ8G7ky24FwxW0.roa
File: CqGm_E5zEHAyHJQ8G7ky24FwxW0.roa (raw, json)
Hash identifier: tMgVFY+lKzY+LuBDWJViMX4us87CHuHo9pJk1fPi7uw=
Subject key identifier: 0A:A1:A6:FC:4E:73:10:70:32:1C:94:3C:1B:B9:32:DB:81:70:C5:6D
Certificate issuer: /CN=2793bde946ae936d3cacc136a5f3239edf2431f4
Certificate serial: 018FAC384FEE816D056DCCFA5F706140145C
Authority key identifier: 27:93:BD:E9:46:AE:93:6D:3C:AC:C1:36:A5:F3:23:9E:DF:24:31:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J5O96Uauk208rME2pfMjnt8kMfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/CqGm_E5zEHAyHJQ8G7ky24FwxW0.roa
Signing time: Fri 24 May 2024 20:08:42 +0000
ROA not before: Fri 24 May 2024 20:08:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211975
IP address blocks: 91.188.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 24 Jun 2024 08:47:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ac:38:4f:ee:81:6d:05:6d:cc:fa:5f:70:61:40:14:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2793bde946ae936d3cacc136a5f3239edf2431f4
Validity
Not Before: May 24 20:08:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0aa1a6fc4e731070321c943c1bb932db8170c56d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:88:50:7d:ab:a8:b8:c7:6f:5f:cf:a3:14:a0:
9e:20:61:03:9f:5f:e7:66:1a:18:7e:88:ea:e6:1b:
35:a4:29:69:02:42:d6:47:43:74:77:0b:e6:90:ba:
8b:b4:8b:f1:de:4f:70:c9:0c:d5:87:d9:70:01:1e:
27:29:fa:85:7e:ce:72:b1:25:f0:b5:cd:d2:af:64:
df:dd:14:4a:7b:21:6d:99:20:81:c4:87:9a:10:1f:
02:b7:9e:68:28:a6:fa:3e:60:55:4f:d2:69:fb:64:
a6:44:e7:3b:10:b0:5a:fe:ce:c2:15:01:f8:d9:a4:
19:92:c1:18:f9:13:6c:14:11:02:c1:1c:55:5d:c4:
89:72:71:db:dc:ec:fb:9f:12:c3:fa:78:d6:fb:ac:
fe:ec:ad:36:8a:d8:eb:b6:37:31:a4:85:25:79:54:
bd:87:a3:c1:88:bd:07:7a:83:5d:d1:09:27:a0:77:
28:6a:1b:41:0a:74:a5:45:40:5d:0b:f2:46:86:40:
f5:d6:b1:8d:67:06:85:30:52:a2:c7:0a:58:71:75:
29:42:05:a9:f0:b4:b9:89:25:4e:23:e9:bf:00:48:
5a:e6:06:42:49:1d:87:32:ab:37:f9:77:74:45:27:
f0:bf:53:8c:4c:cf:30:a5:06:53:16:23:8e:23:de:
f9:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:A1:A6:FC:4E:73:10:70:32:1C:94:3C:1B:B9:32:DB:81:70:C5:6D
X509v3 Authority Key Identifier:
keyid:27:93:BD:E9:46:AE:93:6D:3C:AC:C1:36:A5:F3:23:9E:DF:24:31:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J5O96Uauk208rME2pfMjnt8kMfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/CqGm_E5zEHAyHJQ8G7ky24FwxW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/J5O96Uauk208rME2pfMjnt8kMfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.188.252.0/24
Signature Algorithm: sha256WithRSAEncryption
17:4b:4d:9f:1c:1f:59:a8:96:94:ba:c5:b3:e3:17:c9:93:09:
d9:4b:92:78:21:2a:b6:cd:70:68:71:47:9c:b0:88:59:93:1d:
33:38:7b:c8:ef:bd:40:8b:93:d0:b0:5e:48:be:66:9e:31:56:
93:d0:ac:7d:e1:79:84:95:6e:d8:22:ea:a7:99:c3:a4:f1:33:
1d:19:ae:bb:ed:d2:a4:07:2e:06:3a:2d:74:28:7d:bb:3c:6f:
75:91:3b:81:f7:65:dd:e1:46:3f:a9:ac:7b:c7:03:c0:7d:81:
35:5d:d9:b5:98:89:82:ff:2f:ea:fd:08:2d:fe:f8:13:53:2f:
0f:d8:f3:5f:64:03:1c:fc:23:80:10:c7:5a:1b:af:a6:30:9e:
cf:b8:67:93:6a:69:88:48:04:91:10:e4:c2:4a:64:02:73:6c:
13:d2:ce:78:cb:74:29:bd:95:f0:e3:9f:16:aa:9d:82:d1:9e:
aa:1d:98:c5:ec:40:b0:6c:7c:1a:90:e3:38:78:11:d5:f7:a0:
f3:7f:fb:d9:05:cf:59:45:54:0f:08:f2:5f:81:b6:db:77:ff:
30:cc:8a:39:12:0f:4f:04:34:fe:62:09:8d:2f:09:fa:16:aa:
86:07:5b:d0:6e:d5:25:c5:51:df:93:2e:d2:49:5d:38:8c:80:
3c:3c:df:bb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY+sOE/ugW0Fbcz6X3BhQBRcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI3OTNiZGU5NDZhZTkzNmQzY2FjYzEzNmE1ZjMyMzllZGYy
NDMxZjQwHhcNMjQwNTI0MjAwODQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYWExYTZmYzRlNzMxMDcwMzIxYzk0M2MxYmI5MzJkYjgxNzBjNTZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuIhQfauouMdvX8+jFKCeIGEDn1/n
ZhoYfojq5hs1pClpAkLWR0N0dwvmkLqLtIvx3k9wyQzVh9lwAR4nKfqFfs5ysSXw
tc3Sr2Tf3RRKeyFtmSCBxIeaEB8Ct55oKKb6PmBVT9Jp+2SmROc7ELBa/s7CFQH4
2aQZksEY+RNsFBECwRxVXcSJcnHb3Oz7nxLD+njW+6z+7K02itjrtjcxpIUleVS9
h6PBiL0HeoNd0QknoHcoahtBCnSlRUBdC/JGhkD11rGNZwaFMFKixwpYcXUpQgWp
8LS5iSVOI+m/AEha5gZCSR2HMqs3+Xd0RSfwv1OMTM8wpQZTFiOOI975eQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAqhpvxOcxBwMhyUPBu5MtuBcMVtMB8GA1UdIwQY
MBaAFCeTvelGrpNtPKzBNqXzI57fJDH0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSjVPOTZVYXVrMjA4ck1FMnBmTWpudDhrTWZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi9iZjU4ZGEtYTlkMi00MjFhLWI0M2Et
OTJjM2JmNzRhOTdiLzEvQ3FHbV9FNXpFSEF5SEpROEc3a3kyNEZ3eFcwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Zi9iZjU4ZGEtYTlkMi00MjFhLWI0M2EtOTJjM2JmNzRhOTdi
LzEvSjVPOTZVYXVrMjA4ck1FMnBmTWpudDhrTWZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW7z8MA0G
CSqGSIb3DQEBCwUAA4IBAQAXS02fHB9ZqJaUusWz4xfJkwnZS5J4ISq2zXBocUec
sIhZkx0zOHvI771Ai5PQsF5IvmaeMVaT0Kx94XmElW7YIuqnmcOk8TMdGa677dKk
By4GOi10KH27PG91kTuB92Xd4UY/qax7xwPAfYE1Xdm1mImC/y/q/Qgt/vgTUy8P
2PNfZAMc/COAEMdaG6+mMJ7PuGeTammISASREOTCSmQCc2wT0s54y3QpvZXw458W
qp2C0Z6qHZjF7ECwbHwakOM4eBHV96Dzf/vZBc9ZRVQPCPJfgbbbd/8wzIo5Eg9P
BDT+YgmNLwn6FqqGB1vQbtUlxVHfky7SSV04jIA8PN+7
-----END CERTIFICATE-----
Generated at Mon Jun 24 13:02:53 2024 by rpki-client on console-fra.rpki-client.org