Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/seycy0bobk5B9TvNE3WH3tzCdgE.roa
File: seycy0bobk5B9TvNE3WH3tzCdgE.roa (raw, json)
Hash identifier: z5ny7f8lCG0j9SXoNMfVcwaK72QAwPDNATezCg2rdtc=
Subject key identifier: B1:EC:9C:CB:46:E8:6E:4E:41:F5:3B:CD:13:75:87:DE:DC:C2:76:01
Certificate issuer: /CN=f970049cba7f39aeed31d65313c7b953f3fda135
Certificate serial: 018826120D8BBDA8F85AEE00C917C21D4853
Authority key identifier: F9:70:04:9C:BA:7F:39:AE:ED:31:D6:53:13:C7:B9:53:F3:FD:A1:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/seycy0bobk5B9TvNE3WH3tzCdgE.roa
Signing time: Tue 16 May 2023 19:38:17 +0000
ROA not before: Tue 16 May 2023 19:38:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197317
IP address blocks: 91.219.152.0/22 maxlen: 24
2a07:ae40::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:26:12:0d:8b:bd:a8:f8:5a:ee:00:c9:17:c2:1d:48:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f970049cba7f39aeed31d65313c7b953f3fda135
Validity
Not Before: May 16 19:38:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1ec9ccb46e86e4e41f53bcd137587dedcc27601
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:0e:b9:10:2b:41:ec:9c:95:46:94:16:fa:76:
d2:bd:df:6a:0f:57:73:3c:1c:a3:bc:c3:27:47:3f:
a0:8a:f5:9a:ea:82:6f:3f:44:55:85:fe:ca:ba:bc:
3d:80:05:de:48:1f:ad:60:66:3d:bf:40:38:89:27:
74:d4:96:b6:f4:38:b1:34:0e:ff:ec:e8:4c:b1:fa:
24:f9:4d:27:bf:e4:4d:07:af:a4:f6:e8:18:78:8c:
88:6b:b0:0c:76:61:b5:bb:7e:c3:7d:3d:43:d4:09:
32:28:02:81:d2:34:fc:8f:c0:04:9f:b6:47:84:5e:
09:95:22:b0:09:b8:73:2a:11:74:43:b3:33:29:60:
b6:f9:20:d2:1f:a9:bd:ce:c5:ed:a9:45:2e:46:e1:
39:40:ff:55:49:3c:71:8f:53:29:be:e9:7b:6c:34:
8d:a0:f5:8c:43:e0:e9:9b:cf:c3:7b:1a:43:df:ce:
1b:b1:fa:ee:17:d4:a8:13:90:89:de:87:9d:21:b5:
c1:73:d6:93:ac:e1:02:93:bb:cc:9c:fa:4f:16:85:
2f:f2:84:5b:19:3c:c0:f9:ee:6c:6c:21:69:a7:e9:
86:24:94:52:72:21:21:0c:29:bf:2a:bd:b4:39:9e:
c5:18:df:0f:4d:bf:73:83:54:73:94:43:b5:34:fe:
20:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:EC:9C:CB:46:E8:6E:4E:41:F5:3B:CD:13:75:87:DE:DC:C2:76:01
X509v3 Authority Key Identifier:
keyid:F9:70:04:9C:BA:7F:39:AE:ED:31:D6:53:13:C7:B9:53:F3:FD:A1:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/seycy0bobk5B9TvNE3WH3tzCdgE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/13f5f1-45b6-4bc1-b5a5-521fa41dfc96/1/1-XAEnLp_Oa7tMdZTE8e5U_P9oTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.219.152.0/22
IPv6:
2a07:ae40::/29
Signature Algorithm: sha256WithRSAEncryption
44:f9:ca:2d:f7:1e:36:9c:5e:d9:8d:bd:22:85:99:35:f4:18:
4b:8c:e3:9d:e8:4c:9d:a2:de:c8:92:6f:45:28:13:ee:9e:e4:
89:6f:98:e4:b4:94:b8:ab:7a:dd:18:21:e3:cf:f5:cf:e8:92:
00:34:9e:21:c3:4d:85:c3:24:f5:a5:7c:58:28:45:2f:54:e3:
88:9c:47:40:2c:9e:05:5c:f8:8c:3b:c4:a9:76:e2:70:20:17:
e3:21:0d:07:48:66:e6:58:da:ef:0b:90:b4:84:36:06:99:a8:
74:b4:ee:a9:a3:cb:39:d1:89:75:32:ae:66:4c:12:f7:ac:2c:
8f:6a:87:81:d4:be:49:aa:28:80:91:c5:0c:70:9c:de:9c:5a:
c6:a3:5d:e6:0b:b6:bd:ae:fc:77:57:81:03:cf:2f:c8:9b:f6:
11:1b:a6:48:d3:f9:6b:5b:c0:c5:6d:6f:34:bd:ed:9c:25:4e:
c6:d3:db:3b:f4:1d:cd:ac:d3:5a:8e:4a:2d:5b:0b:56:8d:60:
b7:b4:c3:69:6c:39:a6:76:c4:0f:de:81:dd:d4:9d:e6:3d:c8:
68:ea:38:f2:d6:98:1d:5f:75:74:de:30:af:6f:7c:d0:74:1d:
8b:bd:78:e8:97:1b:e5:73:64:d7:3a:35:2d:de:46:f4:85:cc:
13:68:67:59
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYgmEg2Lvaj4Wu4AyRfCHUhTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY5NzAwNDljYmE3ZjM5YWVlZDMxZDY1MzEzYzdiOTUzZjNm
ZGExMzUwHhcNMjMwNTE2MTkzODE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMWVjOWNjYjQ2ZTg2ZTRlNDFmNTNiY2QxMzc1ODdkZWRjYzI3NjAxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlw65ECtB7JyVRpQW+nbSvd9qD1dz
PByjvMMnRz+givWa6oJvP0RVhf7Kurw9gAXeSB+tYGY9v0A4iSd01Ja29DixNA7/
7OhMsfok+U0nv+RNB6+k9ugYeIyIa7AMdmG1u37DfT1D1AkyKAKB0jT8j8AEn7ZH
hF4JlSKwCbhzKhF0Q7MzKWC2+SDSH6m9zsXtqUUuRuE5QP9VSTxxj1Mpvul7bDSN
oPWMQ+Dpm8/DexpD384bsfruF9SoE5CJ3oedIbXBc9aTrOECk7vMnPpPFoUv8oRb
GTzA+e5sbCFpp+mGJJRSciEhDCm/Kr20OZ7FGN8PTb9zg1RzlEO1NP4gKQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFLHsnMtG6G5OQfU7zRN1h97cwnYBMB8GA1UdIwQY
MBaAFPlwBJy6fzmu7THWUxPHuVPz/aE1MA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1YQUVuTHBfT2E3dE1kWlRFOGU1VV9QOW9UVS5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTIvMTNmNWYxLTQ1YjYtNGJjMS1iNWE1
LTUyMWZhNDFkZmM5Ni8xL3NleWN5MGJvYms1QjlUdk5FM1dIM3R6Q2RnRS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvYTIvMTNmNWYxLTQ1YjYtNGJjMS1iNWE1LTUyMWZhNDFkZmM5
Ni8xLzEtWEFFbkxwX09hN3RNZFpURThlNVVfUDlvVFUuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAJb25gw
DQQCAAIwBwMFAyoHrkAwDQYJKoZIhvcNAQELBQADggEBAET5yi33HjacXtmNvSKF
mTX0GEuM453oTJ2i3siSb0UoE+6e5IlvmOS0lLiret0YIePP9c/okgA0niHDTYXD
JPWlfFgoRS9U44icR0AsngVc+Iw7xKl24nAgF+MhDQdIZuZY2u8LkLSENgaZqHS0
7qmjyznRiXUyrmZMEvesLI9qh4HUvkmqKICRxQxwnN6cWsajXeYLtr2u/HdXgQPP
L8ib9hEbpkjT+WtbwMVtbzS97ZwlTsbT2zv0Hc2s01qOSi1bC1aNYLe0w2lsOaZ2
xA/egd3UneY9yGjqOPLWmB1fdXTeMK9vfNB0HYu9eOiXG+VzZNc6NS3eRvSFzBNo
Z1k=
-----END CERTIFICATE-----
Generated at Tue Jan 2 17:35:23 2024 by rpki-client on console-fra.rpki-client.org