Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/483241-3dba-4392-aab0-39765a3f9dbc/1/ag7iWhqJQmYwPx8_bc-d6f23jew.roa
File: ag7iWhqJQmYwPx8_bc-d6f23jew.roa (raw, json)
Hash identifier: baP+cNyGnD8UEjs+s1bdX6CxK+s7A3HRYHafAi2+Css=
Subject key identifier: 6A:0E:E2:5A:1A:89:42:66:30:3F:1F:3F:6D:CF:9D:E9:FD:B7:8D:EC
Certificate issuer: /CN=75d0ebd8f566e3fab7e2354b714060c6fa47e254
Certificate serial: 018572C36912B08344A7502645F521D3E3C1
Authority key identifier: 75:D0:EB:D8:F5:66:E3:FA:B7:E2:35:4B:71:40:60:C6:FA:47:E2:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ddDr2PVm4_q34jVLcUBgxvpH4lQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/483241-3dba-4392-aab0-39765a3f9dbc/1/ag7iWhqJQmYwPx8_bc-d6f23jew.roa
Signing time: Mon 02 Jan 2023 13:54:47 +0000
ROA not before: Mon 02 Jan 2023 13:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60510
IP address blocks: 91.238.34.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:c3:69:12:b0:83:44:a7:50:26:45:f5:21:d3:e3:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75d0ebd8f566e3fab7e2354b714060c6fa47e254
Validity
Not Before: Jan 2 13:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a0ee25a1a894266303f1f3f6dcf9de9fdb78dec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:61:35:45:11:d4:0a:08:35:3d:dd:aa:61:e5:
5d:81:c9:33:3a:72:51:1b:a3:01:ea:68:08:2e:99:
b0:75:41:d7:51:c2:60:56:f1:cf:5e:6f:92:f1:8c:
c6:16:da:ef:2a:52:f2:12:64:fc:de:be:bf:e9:01:
3e:65:24:3c:06:30:31:7e:f3:ab:82:aa:1a:95:7f:
c7:7b:c1:54:cf:23:83:26:89:4e:65:7e:f9:13:d8:
4e:86:ad:05:53:9e:f9:37:0d:69:49:8f:e0:f8:eb:
01:b5:0f:d5:2f:4c:c1:c6:42:80:86:81:3f:91:a5:
91:36:10:aa:66:62:46:0b:bd:74:43:70:0a:20:dc:
37:8d:1c:38:2a:18:12:5e:64:66:90:9f:48:8a:ea:
67:d5:ee:fd:67:6f:dc:3f:1c:9b:26:00:90:2c:65:
d8:87:e3:8a:4d:3b:bf:88:cc:05:cb:a5:3e:df:1f:
2c:61:ce:73:c3:68:6a:53:52:e0:c9:a8:e4:32:b7:
01:a0:94:5a:1a:a3:3b:4d:e1:59:eb:fd:30:5b:6d:
6b:1c:0a:b7:1e:84:af:e3:20:a6:9b:c9:d4:bf:2f:
6c:e0:0a:2e:70:5b:66:32:35:cd:91:82:1b:76:21:
67:58:df:c4:ff:af:f5:85:19:c0:d1:8a:53:23:96:
4f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:0E:E2:5A:1A:89:42:66:30:3F:1F:3F:6D:CF:9D:E9:FD:B7:8D:EC
X509v3 Authority Key Identifier:
keyid:75:D0:EB:D8:F5:66:E3:FA:B7:E2:35:4B:71:40:60:C6:FA:47:E2:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ddDr2PVm4_q34jVLcUBgxvpH4lQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/483241-3dba-4392-aab0-39765a3f9dbc/1/ag7iWhqJQmYwPx8_bc-d6f23jew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/483241-3dba-4392-aab0-39765a3f9dbc/1/ddDr2PVm4_q34jVLcUBgxvpH4lQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.238.34.0/23
Signature Algorithm: sha256WithRSAEncryption
a4:59:e7:25:3b:62:c3:0d:36:c3:53:1f:60:6d:82:4b:0d:e6:
43:c1:c1:4b:5a:1e:74:c8:ca:fd:46:3a:00:67:9a:9b:5b:41:
62:be:10:04:24:f8:74:5d:c7:26:3d:ba:90:a4:a6:5a:e3:03:
d9:f8:e8:49:d2:53:a0:dc:e5:ba:2d:f8:d7:07:b0:7b:c1:88:
df:11:d1:5a:34:73:f3:3e:54:59:95:76:98:5b:12:6d:5c:f5:
a0:84:51:23:70:7b:b6:f2:b4:b9:73:49:57:a8:3e:f2:46:84:
36:04:5d:62:02:35:23:0c:0f:f3:72:65:05:63:2a:f7:57:33:
cb:fb:54:7e:a1:a8:44:9c:53:0e:d7:45:c7:a5:f3:e6:fa:b5:
af:8c:f3:7c:e7:d3:f9:19:f8:f5:0f:40:69:3c:b1:93:35:d3:
a5:8f:0b:f1:2b:4d:d2:d9:67:40:15:82:6c:02:e7:e5:91:d9:
ed:2a:03:3a:6f:b7:a1:6e:3f:13:46:5f:3b:b0:46:98:41:90:
23:08:52:90:22:f5:64:45:62:63:4b:64:3d:0b:1d:b7:8c:5a:
8f:b6:a9:ef:24:3d:42:67:a6:92:ac:77:62:b0:25:f4:e1:37:
16:80:35:e5:28:e6:9a:8d:d9:dc:1d:6d:89:06:54:1f:84:99:
88:87:07:fb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyw2kSsINEp1AmRfUh0+PBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1ZDBlYmQ4ZjU2NmUzZmFiN2UyMzU0YjcxNDA2MGM2ZmE0
N2UyNTQwHhcNMjMwMTAyMTM1NDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YTBlZTI1YTFhODk0MjY2MzAzZjFmM2Y2ZGNmOWRlOWZkYjc4ZGVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7GE1RRHUCgg1Pd2qYeVdgckzOnJR
G6MB6mgILpmwdUHXUcJgVvHPXm+S8YzGFtrvKlLyEmT83r6/6QE+ZSQ8BjAxfvOr
gqoalX/He8FUzyODJolOZX75E9hOhq0FU575Nw1pSY/g+OsBtQ/VL0zBxkKAhoE/
kaWRNhCqZmJGC710Q3AKINw3jRw4KhgSXmRmkJ9Iiupn1e79Z2/cPxybJgCQLGXY
h+OKTTu/iMwFy6U+3x8sYc5zw2hqU1LgyajkMrcBoJRaGqM7TeFZ6/0wW21rHAq3
HoSv4yCmm8nUvy9s4AoucFtmMjXNkYIbdiFnWN/E/6/1hRnA0YpTI5ZP8QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGoO4loaiUJmMD8fP23Pnen9t43sMB8GA1UdIwQY
MBaAFHXQ69j1ZuP6t+I1S3FAYMb6R+JUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZGREcjJQVm00X3EzNGpWTGNVQmd4dnBINGxRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy80ODMyNDEtM2RiYS00MzkyLWFhYjAt
Mzk3NjVhM2Y5ZGJjLzEvYWc3aVdocUpRbVl3UHg4X2JjLWQ2ZjIzamV3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYy80ODMyNDEtM2RiYS00MzkyLWFhYjAtMzk3NjVhM2Y5ZGJj
LzEvZGREcjJQVm00X3EzNGpWTGNVQmd4dnBINGxRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW+4iMA0G
CSqGSIb3DQEBCwUAA4IBAQCkWeclO2LDDTbDUx9gbYJLDeZDwcFLWh50yMr9RjoA
Z5qbW0FivhAEJPh0XccmPbqQpKZa4wPZ+OhJ0lOg3OW6LfjXB7B7wYjfEdFaNHPz
PlRZlXaYWxJtXPWghFEjcHu28rS5c0lXqD7yRoQ2BF1iAjUjDA/zcmUFYyr3VzPL
+1R+oahEnFMO10XHpfPm+rWvjPN859P5Gfj1D0BpPLGTNdOljwvxK03S2WdAFYJs
AuflkdntKgM6b7ehbj8TRl87sEaYQZAjCFKQIvVkRWJjS2Q9Cx23jFqPtqnvJD1C
Z6aSrHdisCX04TcWgDXlKOaajdncHW2JBlQfhJmIhwf7
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:01 2024 by rpki-client on console-ams.rpki-client.org