Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/sD1cqWmlTl79AfljGzpCHxuhcsE.roa
File: sD1cqWmlTl79AfljGzpCHxuhcsE.roa (raw, json)
Hash identifier: Hqxf/ZX6XMA4o/TStO3GmFXWzs1ubRoj93UdGvHWkMI=
Subject key identifier: B0:3D:5C:A9:69:A5:4E:5E:FD:01:F9:63:1B:3A:42:1F:1B:A1:72:C1
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 01856CE65C19702348E195BA9B169971743F
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/sD1cqWmlTl79AfljGzpCHxuhcsE.roa
Signing time: Sun 01 Jan 2023 10:35:14 +0000
ROA not before: Sun 01 Jan 2023 10:35:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49850
IP address blocks: 213.91.174.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:5c:19:70:23:48:e1:95:ba:9b:16:99:71:74:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 10:35:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b03d5ca969a54e5efd01f9631b3a421f1ba172c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:b3:a9:74:cc:ff:be:50:d3:0e:50:b3:a3:c1:
51:c9:94:19:7b:2e:29:1e:e8:0d:d3:ca:b9:2d:6d:
d1:80:a5:85:09:cc:a7:57:9c:1c:94:73:3d:60:36:
4a:9a:2e:14:3b:8a:11:cd:29:f5:3d:29:bf:e8:55:
c7:b4:99:0d:6b:c8:6d:35:b6:5b:d5:72:06:6e:5e:
1f:3d:3c:0b:8d:93:52:25:dc:bb:0b:86:2e:e8:bc:
18:8e:d1:98:4e:cc:20:cd:7a:5c:fb:81:08:6f:a7:
d9:04:ed:47:25:37:e9:a2:fe:32:21:08:e6:a6:01:
f9:eb:2f:2a:ac:93:8f:5c:82:ad:56:2d:aa:5a:93:
e6:10:3f:30:bd:91:81:9b:b6:fd:79:65:a3:1f:c2:
d6:c0:df:c4:43:1e:97:43:44:89:4b:be:8d:52:1b:
65:b3:d7:b9:b4:96:f4:a3:2a:bd:ed:9b:45:e9:0d:
a3:f9:5c:67:4e:42:6c:6f:ba:a9:f6:6f:8e:4e:1c:
1c:6d:12:c9:3d:93:ec:ed:38:ff:d7:68:94:15:68:
8b:44:35:80:cf:5a:7b:06:d0:13:4c:b6:b3:0c:af:
93:b3:b2:3a:c1:4a:a9:c9:29:0e:87:02:31:79:59:
02:f3:14:8c:67:ea:63:ef:63:a1:42:a7:f9:72:50:
d3:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:3D:5C:A9:69:A5:4E:5E:FD:01:F9:63:1B:3A:42:1F:1B:A1:72:C1
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/sD1cqWmlTl79AfljGzpCHxuhcsE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.91.174.0/24
Signature Algorithm: sha256WithRSAEncryption
83:46:3c:90:3b:5d:f2:c1:50:83:aa:46:5d:0b:09:3f:94:cc:
09:c3:17:d7:b3:70:52:e9:83:e2:52:0f:73:a6:5c:af:5d:7a:
43:03:27:83:67:60:e4:64:97:7a:0a:9b:35:4a:ea:00:7e:bd:
f4:f3:47:e9:51:e8:cb:7c:c6:1c:f1:c2:5b:49:fa:6f:7f:18:
84:c0:86:26:71:70:0e:1c:34:09:e7:a8:bf:cc:b4:cd:59:d3:
cb:b3:d5:f7:94:cb:2e:e7:19:4e:df:b0:96:8c:3a:c1:9d:96:
f3:b7:a0:5c:9e:f0:aa:2e:7f:8c:d2:26:9b:c1:d4:13:98:d1:
b6:56:d1:02:7a:30:ba:02:0b:e2:ae:28:4a:0b:6a:fc:05:d0:
2f:5e:54:ee:bf:a4:f4:70:14:09:a1:49:6a:9f:df:b9:9a:53:
f2:ca:b2:88:6a:93:84:d6:b6:67:ae:44:9c:65:c9:70:a7:d3:
c8:ce:85:7f:d9:1f:b9:fd:1f:71:08:60:a2:49:88:74:d1:f8:
4d:36:8b:ac:65:11:6d:cc:23:92:b2:83:53:ef:11:a0:bd:62:
1b:8c:f3:84:7b:a6:de:47:8a:04:07:7b:85:74:ad:e4:df:9c:
ac:2d:4b:24:38:4a:51:09:d5:29:99:8e:a7:ca:e1:6b:e5:32:
40:9d:5f:cf
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVs5lwZcCNI4ZW6mxaZcXQ/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0YjJmNGZhNTE2M2FmOTYxNjhlODhmYmY5Y2I0ZWQxZWQ4
ZmI0YzQwHhcNMjMwMTAxMTAzNTE0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMDNkNWNhOTY5YTU0ZTVlZmQwMWY5NjMxYjNhNDIxZjFiYTE3MmMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkbOpdMz/vlDTDlCzo8FRyZQZey4p
HugN08q5LW3RgKWFCcynV5wclHM9YDZKmi4UO4oRzSn1PSm/6FXHtJkNa8htNbZb
1XIGbl4fPTwLjZNSJdy7C4Yu6LwYjtGYTswgzXpc+4EIb6fZBO1HJTfpov4yIQjm
pgH56y8qrJOPXIKtVi2qWpPmED8wvZGBm7b9eWWjH8LWwN/EQx6XQ0SJS76NUhtl
s9e5tJb0oyq97ZtF6Q2j+VxnTkJsb7qp9m+OThwcbRLJPZPs7Tj/12iUFWiLRDWA
z1p7BtATTLazDK+Ts7I6wUqpySkOhwIxeVkC8xSMZ+pj72OhQqf5clDTQwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLA9XKlppU5e/QH5Yxs6Qh8boXLBMB8GA1UdIwQY
MBaAFISy9PpRY6+WFo6I+/nLTtHtj7TEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDct
ODcyYmEyZDlmNDRjLzEvc0QxY3FXbWxUbDc5QWZsakd6cENIeHVoY3NFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC80YWE3ODktODc4Yi00NzJiLWI4NDctODcyYmEyZDlmNDRj
LzEvaExMMC1sRmpyNVlXam9qNy1jdE8wZTJQdE1RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1VuuMA0G
CSqGSIb3DQEBCwUAA4IBAQCDRjyQO13ywVCDqkZdCwk/lMwJwxfXs3BS6YPiUg9z
plyvXXpDAyeDZ2DkZJd6Cps1SuoAfr3080fpUejLfMYc8cJbSfpvfxiEwIYmcXAO
HDQJ56i/zLTNWdPLs9X3lMsu5xlO37CWjDrBnZbzt6BcnvCqLn+M0iabwdQTmNG2
VtECejC6AgvirihKC2r8BdAvXlTuv6T0cBQJoUlqn9+5mlPyyrKIapOE1rZnrkSc
Zclwp9PIzoV/2R+5/R9xCGCiSYh00fhNNousZRFtzCOSsoNT7xGgvWIbjPOEe6be
R4oEB3uFdK3k35ysLUskOEpRCdUpmY6nyuFr5TJAnV/P
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:05 2024 by rpki-client on console-fra.rpki-client.org