Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/52daab-6829-45fa-967e-01f4606c65ec/1/OWRIQqk0THWTeWZTEk6Ue2mHR6M.roa
File: OWRIQqk0THWTeWZTEk6Ue2mHR6M.roa (raw, json)
Hash identifier: +sCngmpiXTwq6WAl9LaLbJIdLtxuLO4pVBnaAbo4roA=
Subject key identifier: 39:64:48:42:A9:34:4C:75:93:79:66:53:12:4E:94:7B:69:87:47:A3
Certificate issuer: /CN=0011400d548fa21af819a0c6e23e77a6012eb5e9
Certificate serial: 01856F14C1DB5ADDCB97FBB1233529F57B69
Authority key identifier: 00:11:40:0D:54:8F:A2:1A:F8:19:A0:C6:E2:3E:77:A6:01:2E:B5:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ABFADVSPohr4GaDG4j53pgEutek.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/52daab-6829-45fa-967e-01f4606c65ec/1/OWRIQqk0THWTeWZTEk6Ue2mHR6M.roa
Signing time: Sun 01 Jan 2023 20:45:09 +0000
ROA not before: Sun 01 Jan 2023 20:45:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6798
IP address blocks: 91.199.70.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:c1:db:5a:dd:cb:97:fb:b1:23:35:29:f5:7b:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0011400d548fa21af819a0c6e23e77a6012eb5e9
Validity
Not Before: Jan 1 20:45:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=39644842a9344c7593796653124e947b698747a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:84:72:81:4f:95:86:42:31:71:d7:78:7a:12:
be:b5:f4:74:2e:4f:c0:c5:2c:4c:74:d0:1e:e2:b3:
2e:68:68:d8:3e:a0:1a:2c:c2:70:4c:58:0c:23:de:
3a:a8:c2:fa:eb:ce:13:42:ff:26:43:0b:d0:f5:fe:
73:ef:9b:b8:d9:cf:bd:86:b7:c2:56:24:5f:62:4b:
24:a7:17:a7:9d:c2:5f:38:39:92:21:67:5a:a8:fd:
97:9a:e2:04:44:20:0e:f2:c5:45:cd:5a:d9:d3:55:
34:11:0e:cb:82:2a:eb:f0:5f:bd:3c:94:07:28:7a:
80:a6:0c:69:53:4d:4b:c9:73:ff:17:f9:50:88:25:
95:90:2f:ba:6d:81:11:32:90:65:70:97:9b:90:67:
6a:bc:5d:a3:d3:cf:48:f2:00:d9:26:3a:ed:87:35:
17:53:13:0d:ef:31:70:be:2b:03:28:42:a9:23:52:
58:47:3a:51:7b:a2:ee:a3:34:e7:2b:09:df:0a:5e:
47:7f:5c:d8:b5:7d:69:22:7c:f8:db:23:9f:fd:0e:
b2:4c:d4:aa:44:18:f2:ba:4d:06:22:08:cc:5c:29:
d9:fe:30:c6:77:e6:b4:cb:b9:8a:b2:2f:fe:ba:a1:
22:84:53:7e:b3:dd:ae:d8:71:29:7f:1e:60:b9:e8:
f2:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:64:48:42:A9:34:4C:75:93:79:66:53:12:4E:94:7B:69:87:47:A3
X509v3 Authority Key Identifier:
keyid:00:11:40:0D:54:8F:A2:1A:F8:19:A0:C6:E2:3E:77:A6:01:2E:B5:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ABFADVSPohr4GaDG4j53pgEutek.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/52daab-6829-45fa-967e-01f4606c65ec/1/OWRIQqk0THWTeWZTEk6Ue2mHR6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/52daab-6829-45fa-967e-01f4606c65ec/1/ABFADVSPohr4GaDG4j53pgEutek.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.70.0/24
Signature Algorithm: sha256WithRSAEncryption
60:a6:d8:66:1b:2c:2c:ed:44:2e:43:26:a4:48:fd:28:3e:1c:
fe:18:00:c0:d9:96:c9:02:f9:b7:14:58:1c:73:15:d6:61:dd:
d9:0b:ac:92:8f:81:6e:9c:79:ac:2f:63:b9:35:1b:e6:ba:24:
de:18:6e:9a:ff:51:21:1c:1f:95:6a:0a:2d:34:58:0b:90:c3:
bd:79:02:51:54:9f:da:3e:1c:0c:1b:1f:75:4a:c5:22:47:81:
84:b8:f2:0b:a5:84:a6:54:3a:6d:2b:bc:47:7e:fd:00:1b:61:
a1:65:3e:00:d8:f3:4b:7f:c0:b1:1d:af:73:fc:d6:a8:f5:68:
ed:5b:c6:48:f0:53:92:75:fa:40:c5:58:5c:1e:a1:9c:86:21:
00:6d:39:a1:2b:35:f4:ac:56:08:b3:0e:e3:83:15:ae:01:ac:
ee:dd:40:1d:3e:ed:ab:42:84:7a:0d:4c:85:23:a6:a1:df:c6:
b2:f0:f9:19:d2:ec:50:e7:c1:98:24:2c:e0:12:e7:39:64:66:
71:35:a3:5c:95:0e:16:c9:be:0a:c0:f2:86:51:64:4e:fe:84:
8b:cf:28:ae:a0:b5:16:5d:8f:d1:c9:7f:aa:bd:9d:51:53:5b:
c5:98:14:30:11:e4:89:ef:e2:c6:13:3e:fd:52:a9:09:8a:f4:
b1:f6:e1:4a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvFMHbWt3Ll/uxIzUp9XtpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwMTE0MDBkNTQ4ZmEyMWFmODE5YTBjNmUyM2U3N2E2MDEy
ZWI1ZTkwHhcNMjMwMTAxMjA0NTA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzOTY0NDg0MmE5MzQ0Yzc1OTM3OTY2NTMxMjRlOTQ3YjY5ODc0N2EzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmIRygU+VhkIxcdd4ehK+tfR0Lk/A
xSxMdNAe4rMuaGjYPqAaLMJwTFgMI946qML6684TQv8mQwvQ9f5z75u42c+9hrfC
ViRfYkskpxenncJfODmSIWdaqP2XmuIERCAO8sVFzVrZ01U0EQ7Lgirr8F+9PJQH
KHqApgxpU01LyXP/F/lQiCWVkC+6bYERMpBlcJebkGdqvF2j089I8gDZJjrthzUX
UxMN7zFwvisDKEKpI1JYRzpRe6LuozTnKwnfCl5Hf1zYtX1pInz42yOf/Q6yTNSq
RBjyuk0GIgjMXCnZ/jDGd+a0y7mKsi/+uqEihFN+s92u2HEpfx5guejyBQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDlkSEKpNEx1k3lmUxJOlHtph0ejMB8GA1UdIwQY
MBaAFAARQA1Uj6Ia+BmgxuI+d6YBLrXpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUJGQURWU1BvaHI0R2FERzRqNTNwZ0V1dGVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy81MmRhYWItNjgyOS00NWZhLTk2N2Ut
MDFmNDYwNmM2NWVjLzEvT1dSSVFxazBUSFdUZVdaVEVrNlVlMm1IUjZNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYy81MmRhYWItNjgyOS00NWZhLTk2N2UtMDFmNDYwNmM2NWVj
LzEvQUJGQURWU1BvaHI0R2FERzRqNTNwZ0V1dGVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8dGMA0G
CSqGSIb3DQEBCwUAA4IBAQBgpthmGyws7UQuQyakSP0oPhz+GADA2ZbJAvm3FFgc
cxXWYd3ZC6ySj4FunHmsL2O5NRvmuiTeGG6a/1EhHB+VagotNFgLkMO9eQJRVJ/a
PhwMGx91SsUiR4GEuPILpYSmVDptK7xHfv0AG2GhZT4A2PNLf8CxHa9z/Nao9Wjt
W8ZI8FOSdfpAxVhcHqGchiEAbTmhKzX0rFYIsw7jgxWuAazu3UAdPu2rQoR6DUyF
I6ah38ay8PkZ0uxQ58GYJCzgEuc5ZGZxNaNclQ4Wyb4KwPKGUWRO/oSLzyiuoLUW
XY/RyX+qvZ1RU1vFmBQwEeSJ7+LGEz79UqkJivSx9uFK
-----END CERTIFICATE-----
Generated at Mon Jan 1 21:28:05 2024 by rpki-client on console-fra.rpki-client.org