Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/25daa4-f7fa-40fa-9250-996326ca7dd6/1/M1XiqjFqthBSpuGsZBFIZ0fYwtE.roa
File: M1XiqjFqthBSpuGsZBFIZ0fYwtE.roa (raw, json)
Hash identifier: Ln0JG1JUMSmnM0nOFakNpt/U6tQ6RRNQuhqNIJjJIA0=
Subject key identifier: 33:55:E2:AA:31:6A:B6:10:52:A6:E1:AC:64:11:48:67:47:D8:C2:D1
Certificate issuer: /CN=46f3f9b41f45a0f97b2a6a811ca67a0402a0477f
Certificate serial: 0185737162001880BD84B1761FEA87257A40
Authority key identifier: 46:F3:F9:B4:1F:45:A0:F9:7B:2A:6A:81:1C:A6:7A:04:02:A0:47:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RvP5tB9FoPl7KmqBHKZ6BAKgR38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/25daa4-f7fa-40fa-9250-996326ca7dd6/1/M1XiqjFqthBSpuGsZBFIZ0fYwtE.roa
Signing time: Mon 02 Jan 2023 17:04:48 +0000
ROA not before: Mon 02 Jan 2023 17:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43663
IP address blocks: 91.198.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:71:62:00:18:80:bd:84:b1:76:1f:ea:87:25:7a:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46f3f9b41f45a0f97b2a6a811ca67a0402a0477f
Validity
Not Before: Jan 2 17:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3355e2aa316ab61052a6e1ac6411486747d8c2d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:af:73:ec:18:7b:26:fb:71:0a:a6:80:7a:07:
ee:1d:e5:69:93:bc:44:45:7b:ed:5b:2d:33:5b:11:
24:80:ff:b5:61:d0:c1:1b:f2:75:cc:85:b3:70:1b:
79:bd:b4:3a:3d:91:38:14:d6:2a:ef:76:6f:ca:80:
0e:c6:b0:7e:05:3c:d8:bd:63:46:34:93:d2:6b:99:
1a:64:8d:9b:f3:12:f8:44:be:ed:02:ba:28:61:e6:
46:79:9c:63:76:4d:53:38:ba:a7:76:a6:6f:98:f8:
52:50:c0:19:67:7c:38:75:8e:98:6f:f2:c3:c9:c2:
2f:21:39:2c:18:62:77:1f:9e:67:5d:c8:d1:13:89:
41:e6:5c:d2:30:ff:e9:77:1a:e7:b1:56:6f:ce:11:
35:78:aa:72:1a:70:f2:d8:8b:8e:c8:0e:63:f4:f0:
87:85:e3:80:83:91:cb:35:c8:b5:bc:e6:49:75:d1:
6f:7d:2d:63:1c:88:39:5d:c9:f5:3d:b6:e3:e2:22:
1b:67:fb:08:03:a5:0d:8b:21:55:e1:af:8e:1c:6d:
a1:1a:0f:03:8b:95:4a:ea:1a:2d:4c:6b:a3:46:b9:
13:36:9e:75:15:32:9d:1d:78:ef:80:78:f8:0c:6d:
95:e2:ae:07:33:27:53:96:36:52:ec:8e:b3:6b:87:
74:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:55:E2:AA:31:6A:B6:10:52:A6:E1:AC:64:11:48:67:47:D8:C2:D1
X509v3 Authority Key Identifier:
keyid:46:F3:F9:B4:1F:45:A0:F9:7B:2A:6A:81:1C:A6:7A:04:02:A0:47:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RvP5tB9FoPl7KmqBHKZ6BAKgR38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/25daa4-f7fa-40fa-9250-996326ca7dd6/1/M1XiqjFqthBSpuGsZBFIZ0fYwtE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/25daa4-f7fa-40fa-9250-996326ca7dd6/1/RvP5tB9FoPl7KmqBHKZ6BAKgR38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.96.0/24
Signature Algorithm: sha256WithRSAEncryption
10:e8:aa:8f:98:29:4c:62:75:34:5e:30:5b:0e:b2:01:c3:2b:
c2:e4:dd:ed:b7:b7:14:e0:7f:2a:81:7b:c7:cd:1d:40:a1:e8:
a1:62:63:a1:93:74:b7:29:d6:1d:20:93:02:f4:06:b0:f8:c0:
84:bc:1c:e7:0c:ef:11:52:7c:4a:ff:46:c2:b0:77:1b:d9:ee:
50:c6:96:8a:48:0f:49:92:aa:3a:cc:51:b7:e7:ae:b7:83:80:
6d:dc:b6:c8:b8:69:1d:59:32:09:c2:96:ab:8c:10:45:07:62:
43:6b:93:90:e9:35:ad:8a:c7:46:35:9c:c3:43:f0:ce:20:c1:
55:72:b6:d2:59:b3:13:6b:00:49:ee:1b:ed:3a:b0:54:56:b9:
10:66:38:54:de:c4:96:b4:6d:65:b6:b0:ac:f0:64:9b:04:b5:
1d:c3:94:fa:55:08:d3:20:c8:3b:12:35:91:ed:01:ad:65:61:
ea:9a:b0:2f:3a:69:c5:08:05:f4:72:b2:95:a2:bc:71:6d:44:
f2:59:fa:c8:c4:06:9e:e0:61:fc:93:7d:0b:53:ad:86:47:49:
7b:07:93:c7:3e:7c:26:3c:13:d3:b1:cf:2d:a9:1e:87:11:f6:
21:5b:96:cf:d9:6f:42:44:3f:a7:8c:c5:b2:41:02:8b:f1:ce:
dd:b5:dd:40
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzcWIAGIC9hLF2H+qHJXpAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ2ZjNmOWI0MWY0NWEwZjk3YjJhNmE4MTFjYTY3YTA0MDJh
MDQ3N2YwHhcNMjMwMTAyMTcwNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMzU1ZTJhYTMxNmFiNjEwNTJhNmUxYWM2NDExNDg2NzQ3ZDhjMmQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo69z7Bh7JvtxCqaAegfuHeVpk7xE
RXvtWy0zWxEkgP+1YdDBG/J1zIWzcBt5vbQ6PZE4FNYq73ZvyoAOxrB+BTzYvWNG
NJPSa5kaZI2b8xL4RL7tArooYeZGeZxjdk1TOLqndqZvmPhSUMAZZ3w4dY6Yb/LD
ycIvITksGGJ3H55nXcjRE4lB5lzSMP/pdxrnsVZvzhE1eKpyGnDy2IuOyA5j9PCH
heOAg5HLNci1vOZJddFvfS1jHIg5Xcn1Pbbj4iIbZ/sIA6UNiyFV4a+OHG2hGg8D
i5VK6hotTGujRrkTNp51FTKdHXjvgHj4DG2V4q4HMydTljZS7I6za4d0SQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDNV4qoxarYQUqbhrGQRSGdH2MLRMB8GA1UdIwQY
MBaAFEbz+bQfRaD5eypqgRymegQCoEd/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUnZQNXRCOUZvUGw3S21xQkhLWjZCQUtnUjM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS8yNWRhYTQtZjdmYS00MGZhLTkyNTAt
OTk2MzI2Y2E3ZGQ2LzEvTTFYaXFqRnF0aEJTcHVHc1pCRklaMGZZd3RFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZS8yNWRhYTQtZjdmYS00MGZhLTkyNTAtOTk2MzI2Y2E3ZGQ2
LzEvUnZQNXRCOUZvUGw3S21xQkhLWjZCQUtnUjM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8ZgMA0G
CSqGSIb3DQEBCwUAA4IBAQAQ6KqPmClMYnU0XjBbDrIBwyvC5N3tt7cU4H8qgXvH
zR1AoeihYmOhk3S3KdYdIJMC9Aaw+MCEvBznDO8RUnxK/0bCsHcb2e5QxpaKSA9J
kqo6zFG35663g4Bt3LbIuGkdWTIJwparjBBFB2JDa5OQ6TWtisdGNZzDQ/DOIMFV
crbSWbMTawBJ7hvtOrBUVrkQZjhU3sSWtG1ltrCs8GSbBLUdw5T6VQjTIMg7EjWR
7QGtZWHqmrAvOmnFCAX0crKVorxxbUTyWfrIxAae4GH8k30LU62GR0l7B5PHPnwm
PBPTsc8tqR6HEfYhW5bP2W9CRD+njMWyQQKL8c7dtd1A
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:18 2024 by rpki-client on console-ams.rpki-client.org