Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/erFNrcgw6f0vW8r5I8ytX3Md4Sc.roa
File: erFNrcgw6f0vW8r5I8ytX3Md4Sc.roa (raw, json)
Hash identifier: 7Dd0KjfX4TgdgqmpZrN9M3PwpN9DKLHuL3VXWo8ZE8w=
Subject key identifier: 7A:B1:4D:AD:C8:30:E9:FD:2F:5B:CA:F9:23:CC:AD:5F:73:1D:E1:27
Certificate issuer: /CN=2bc8695772f0e64f3b9a1621733cc02506f74702
Certificate serial: 018CC56E44574F1E58064EA0755C94C5C463
Authority key identifier: 2B:C8:69:57:72:F0:E6:4F:3B:9A:16:21:73:3C:C0:25:06:F7:47:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/erFNrcgw6f0vW8r5I8ytX3Md4Sc.roa
Signing time: Mon 01 Jan 2024 14:29:47 +0000
ROA not before: Mon 01 Jan 2024 14:29:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13044
IP address blocks: 91.188.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Jan 2024 10:36:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:44:57:4f:1e:58:06:4e:a0:75:5c:94:c5:c4:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bc8695772f0e64f3b9a1621733cc02506f74702
Validity
Not Before: Jan 1 14:29:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7ab14dadc830e9fd2f5bcaf923ccad5f731de127
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:f9:2f:01:c1:89:c6:b4:21:81:62:f4:c3:2d:
40:a9:c8:c0:16:f5:4c:c2:66:03:fd:ca:ed:68:b5:
16:2b:7c:61:7a:5a:9e:87:7a:1f:ee:1e:ff:66:8c:
09:69:5b:91:42:4f:2c:bf:f4:ef:cc:ca:ed:1f:bd:
78:0b:6a:fa:3e:92:97:c1:e7:9e:d9:21:8f:33:4d:
12:9d:8c:01:0e:3d:ff:fb:d5:4f:e9:82:2c:ec:1b:
c1:38:ea:3c:c7:5c:f5:c9:33:e4:9f:4d:96:16:0c:
07:83:f2:70:5a:5c:27:24:f6:d5:c2:02:28:6f:16:
77:35:7d:47:09:b0:24:05:8b:55:dd:98:ea:63:9f:
78:44:65:9f:1d:10:40:61:af:2b:e9:b9:8c:90:31:
37:62:a9:be:2b:e1:92:65:e9:ed:be:f7:07:e0:81:
9d:36:ee:aa:f6:3c:59:49:8d:ab:52:91:48:4c:3e:
f5:0c:06:ad:0f:1e:ca:1b:03:96:08:50:d3:19:00:
04:19:33:1a:71:48:72:f0:68:4a:05:54:d1:d9:45:
43:a7:c9:59:bc:90:8e:71:17:a9:2f:6b:82:64:5d:
3c:84:58:ba:e6:6f:73:21:4f:24:d3:72:b4:9f:66:
e7:6c:3a:27:1b:4d:bc:21:9d:65:4c:72:bc:dd:0b:
5b:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:B1:4D:AD:C8:30:E9:FD:2F:5B:CA:F9:23:CC:AD:5F:73:1D:E1:27
X509v3 Authority Key Identifier:
keyid:2B:C8:69:57:72:F0:E6:4F:3B:9A:16:21:73:3C:C0:25:06:F7:47:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/erFNrcgw6f0vW8r5I8ytX3Md4Sc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.188.211.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:11:f7:05:20:14:4a:d9:13:bd:5d:4e:82:d3:fc:16:6c:1c:
06:7a:32:5c:73:56:f7:6b:d6:bf:c0:4e:1b:59:3f:28:1a:88:
22:8d:4a:77:f0:96:45:67:3a:ed:0c:3f:f0:d2:2a:3b:91:a8:
03:3f:cb:b3:bd:9d:51:b3:4b:58:ff:d7:a0:9e:ee:6b:59:56:
85:e7:dc:98:40:d7:55:98:0f:dc:44:79:5f:b4:f9:22:e2:21:
62:4f:bd:95:41:dc:85:19:b6:ad:4a:4e:2b:2e:d9:cb:d6:bb:
bb:cd:8a:fa:6e:71:44:93:21:72:32:a4:fe:db:45:3e:76:ef:
ff:36:e9:59:7a:87:40:c5:59:de:3f:f1:8c:f3:94:d8:23:ff:
19:66:18:df:dd:5d:6d:2d:29:33:25:92:ae:df:50:18:68:02:
8f:0d:ff:38:87:fb:7a:00:df:0b:fe:a5:0a:5c:af:b6:91:99:
23:32:a3:f3:9f:a0:8b:dd:b6:f5:2c:be:74:f6:60:b6:ee:e7:
34:cd:d9:33:f4:46:73:11:3f:d0:44:97:32:ad:ae:7a:d7:1f:
33:20:39:63:ef:20:03:12:f8:e1:a8:ee:fd:ed:8d:86:77:f7:
82:df:49:f0:e3:bc:41:98:82:bb:1b:96:72:f8:78:63:8c:7f:
ce:aa:52:5b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzFbkRXTx5YBk6gdVyUxcRjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiYzg2OTU3NzJmMGU2NGYzYjlhMTYyMTczM2NjMDI1MDZm
NzQ3MDIwHhcNMjQwMTAxMTQyOTQ3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YWIxNGRhZGM4MzBlOWZkMmY1YmNhZjkyM2NjYWQ1ZjczMWRlMTI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6vkvAcGJxrQhgWL0wy1AqcjAFvVM
wmYD/crtaLUWK3xhelqeh3of7h7/ZowJaVuRQk8sv/TvzMrtH714C2r6PpKXweee
2SGPM00SnYwBDj3/+9VP6YIs7BvBOOo8x1z1yTPkn02WFgwHg/JwWlwnJPbVwgIo
bxZ3NX1HCbAkBYtV3ZjqY594RGWfHRBAYa8r6bmMkDE3Yqm+K+GSZentvvcH4IGd
Nu6q9jxZSY2rUpFITD71DAatDx7KGwOWCFDTGQAEGTMacUhy8GhKBVTR2UVDp8lZ
vJCOcRepL2uCZF08hFi65m9zIU8k03K0n2bnbDonG028IZ1lTHK83QtbeQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHqxTa3IMOn9L1vK+SPMrV9zHeEnMB8GA1UdIwQY
MBaAFCvIaVdy8OZPO5oWIXM8wCUG90cCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSzhocFYzTHc1azg3bWhZaGN6ekFKUWIzUndJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS9jYmZhOWItMDI5MS00OGUzLTgwNWMt
NDNkNjZhMDMzMWVjLzEvZXJGTnJjZ3c2ZjB2VzhyNUk4eXRYM01kNFNjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS9jYmZhOWItMDI5MS00OGUzLTgwNWMtNDNkNjZhMDMzMWVj
LzEvSzhocFYzTHc1azg3bWhZaGN6ekFKUWIzUndJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW7zTMA0G
CSqGSIb3DQEBCwUAA4IBAQA8EfcFIBRK2RO9XU6C0/wWbBwGejJcc1b3a9a/wE4b
WT8oGogijUp38JZFZzrtDD/w0io7kagDP8uzvZ1Rs0tY/9egnu5rWVaF59yYQNdV
mA/cRHlftPki4iFiT72VQdyFGbatSk4rLtnL1ru7zYr6bnFEkyFyMqT+20U+du//
NulZeodAxVneP/GM85TYI/8ZZhjf3V1tLSkzJZKu31AYaAKPDf84h/t6AN8L/qUK
XK+2kZkjMqPzn6CL3bb1LL509mC27uc0zdkz9EZzET/QRJcyra561x8zIDlj7yAD
EvjhqO797Y2Gd/eC30nw47xBmIK7G5Zy+HhjjH/OqlJb
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:25 2024 by rpki-client on console-ams.rpki-client.org