Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/af3da0-af92-41b8-87bf-d58b094df06c/1/E42ghAWuEy4egJOJw7MeAeXMSbc.roa
File: E42ghAWuEy4egJOJw7MeAeXMSbc.roa (raw, json)
Hash identifier: jkoL+oojL4c/Wcfx70lXe3NRQndopZZC+4+DplkU1C0=
Subject key identifier: 13:8D:A0:84:05:AE:13:2E:1E:80:93:89:C3:B3:1E:01:E5:CC:49:B7
Certificate issuer: /CN=34e4f60b0e508726dde68c1c255d04bd21a3a183
Certificate serial: 0185C5104CF0332C5CC500EEE3328F039AB2
Authority key identifier: 34:E4:F6:0B:0E:50:87:26:DD:E6:8C:1C:25:5D:04:BD:21:A3:A1:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NOT2Cw5Qhybd5owcJV0EvSGjoYM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/af3da0-af92-41b8-87bf-d58b094df06c/1/E42ghAWuEy4egJOJw7MeAeXMSbc.roa
Signing time: Wed 18 Jan 2023 13:27:37 +0000
ROA not before: Wed 18 Jan 2023 13:27:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62053
IP address blocks: 91.233.32.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c5:10:4c:f0:33:2c:5c:c5:00:ee:e3:32:8f:03:9a:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34e4f60b0e508726dde68c1c255d04bd21a3a183
Validity
Not Before: Jan 18 13:27:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=138da08405ae132e1e809389c3b31e01e5cc49b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:23:f2:62:31:38:7e:e9:da:22:a9:19:58:cc:
cc:06:c7:cb:3a:60:79:b2:3c:bc:c5:b4:35:9a:95:
85:fa:66:4e:80:56:cb:26:04:2e:f8:7f:c2:fa:44:
83:e0:38:7a:ce:86:eb:3b:b7:d9:68:ea:ee:19:4d:
37:a2:77:4a:79:34:31:1a:d5:52:e2:5c:72:02:fd:
6e:3f:f5:b0:c0:d6:70:38:6d:3e:1f:c9:1c:8f:78:
c8:87:24:ff:a5:1a:f2:e5:a1:66:9a:ba:77:44:e9:
47:30:fc:79:7b:b1:0f:32:2f:04:2a:91:ec:c8:e9:
14:f7:c6:ab:1a:ea:6c:60:2d:16:fb:3c:ce:17:66:
6a:a4:29:7e:84:04:1a:55:67:29:a8:0e:b7:1e:88:
20:18:bb:0d:73:3f:14:9b:21:aa:d3:68:a8:c7:48:
ae:f2:dc:90:5b:75:bc:1b:33:52:40:05:89:5a:6c:
17:d3:59:e7:e3:c1:58:40:a0:e9:2c:c2:15:c0:66:
91:d2:cc:54:d5:79:dc:57:da:f9:a6:3f:f9:3e:15:
c4:c6:b6:82:01:2b:30:35:e9:3a:7c:10:fd:72:7a:
ad:7e:14:55:3d:ad:f1:e5:06:9e:0a:eb:78:5c:43:
48:14:4e:2b:73:ed:c7:8b:88:f1:75:0d:d0:4a:d8:
99:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:8D:A0:84:05:AE:13:2E:1E:80:93:89:C3:B3:1E:01:E5:CC:49:B7
X509v3 Authority Key Identifier:
keyid:34:E4:F6:0B:0E:50:87:26:DD:E6:8C:1C:25:5D:04:BD:21:A3:A1:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NOT2Cw5Qhybd5owcJV0EvSGjoYM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/af3da0-af92-41b8-87bf-d58b094df06c/1/E42ghAWuEy4egJOJw7MeAeXMSbc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/af3da0-af92-41b8-87bf-d58b094df06c/1/NOT2Cw5Qhybd5owcJV0EvSGjoYM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.233.32.0/24
Signature Algorithm: sha256WithRSAEncryption
12:60:0a:b9:2c:bb:90:9c:c0:f5:bb:9b:7a:e3:a3:07:af:19:
b1:6e:35:a7:9c:7b:fa:1d:f6:a4:75:52:40:c0:7e:c5:9d:13:
7d:de:78:68:7a:42:37:85:8f:f8:14:c5:71:06:90:fd:c5:0b:
07:41:ce:7e:77:ce:44:df:f0:ca:00:b9:fa:81:d6:9b:ed:91:
98:a6:80:b5:16:a7:12:49:d5:5e:cd:7a:0d:6a:7b:3d:5e:74:
39:9b:ba:06:3f:ca:62:66:3a:be:42:98:bc:d5:1e:3e:9a:2c:
ec:97:e6:fd:31:c0:a7:4a:83:ca:b4:72:9d:ad:82:70:3b:ac:
32:ff:89:4f:3b:e4:bc:83:e8:f2:04:fd:ef:3a:07:f9:d8:5e:
af:70:03:85:0b:1b:bf:74:46:d6:47:fc:4c:9c:25:47:b2:f7:
42:08:7a:ba:51:5b:d8:49:4f:71:a1:2a:72:99:2d:ff:a8:ff:
af:32:9b:30:15:15:1d:85:f1:27:67:6f:c6:25:88:ec:6a:1f:
8a:18:a0:d8:2d:00:cc:5a:4b:04:85:00:f7:e9:2c:2b:68:bd:
30:6d:67:27:8b:c3:c7:cf:43:ab:51:4a:af:1a:15:5b:5f:1d:
81:11:a2:32:36:94:54:c3:92:9b:5c:9d:ca:01:a6:d0:fd:f3:
d4:ba:39:97
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYXFEEzwMyxcxQDu4zKPA5qyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0ZTRmNjBiMGU1MDg3MjZkZGU2OGMxYzI1NWQwNGJkMjFh
M2ExODMwHhcNMjMwMTE4MTMyNzM3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMzhkYTA4NDA1YWUxMzJlMWU4MDkzODljM2IzMWUwMWU1Y2M0OWI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApCPyYjE4funaIqkZWMzMBsfLOmB5
sjy8xbQ1mpWF+mZOgFbLJgQu+H/C+kSD4Dh6zobrO7fZaOruGU03ondKeTQxGtVS
4lxyAv1uP/WwwNZwOG0+H8kcj3jIhyT/pRry5aFmmrp3ROlHMPx5e7EPMi8EKpHs
yOkU98arGupsYC0W+zzOF2ZqpCl+hAQaVWcpqA63HoggGLsNcz8UmyGq02iox0iu
8tyQW3W8GzNSQAWJWmwX01nn48FYQKDpLMIVwGaR0sxU1XncV9r5pj/5PhXExraC
ASswNek6fBD9cnqtfhRVPa3x5QaeCut4XENIFE4rc+3Hi4jxdQ3QStiZJwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBONoIQFrhMuHoCTicOzHgHlzEm3MB8GA1UdIwQY
MBaAFDTk9gsOUIcm3eaMHCVdBL0ho6GDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTk9UMkN3NVFoeWJkNW93Y0pWMEV2U0dqb1lNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy9hZjNkYTAtYWY5Mi00MWI4LTg3YmYt
ZDU4YjA5NGRmMDZjLzEvRTQyZ2hBV3VFeTRlZ0pPSnc3TWVBZVhNU2JjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy9hZjNkYTAtYWY5Mi00MWI4LTg3YmYtZDU4YjA5NGRmMDZj
LzEvTk9UMkN3NVFoeWJkNW93Y0pWMEV2U0dqb1lNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+kgMA0G
CSqGSIb3DQEBCwUAA4IBAQASYAq5LLuQnMD1u5t646MHrxmxbjWnnHv6HfakdVJA
wH7FnRN93nhoekI3hY/4FMVxBpD9xQsHQc5+d85E3/DKALn6gdab7ZGYpoC1FqcS
SdVezXoNans9XnQ5m7oGP8piZjq+Qpi81R4+mizsl+b9McCnSoPKtHKdrYJwO6wy
/4lPO+S8g+jyBP3vOgf52F6vcAOFCxu/dEbWR/xMnCVHsvdCCHq6UVvYSU9xoSpy
mS3/qP+vMpswFRUdhfEnZ2/GJYjsah+KGKDYLQDMWksEhQD36SwraL0wbWcni8PH
z0OrUUqvGhVbXx2BEaIyNpRUw5KbXJ3KAabQ/fPUujmX
-----END CERTIFICATE-----
Generated at Mon Jan 1 19:27:31 2024 by rpki-client on console-fra.rpki-client.org