Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/39db4d-e93f-4139-aad8-6c28bb40d52e/1/dLhNVSNnEShnoVRD5eDs9wk7xj4.roa
File: dLhNVSNnEShnoVRD5eDs9wk7xj4.roa (raw, json)
Hash identifier: xiJCRc1tFBOnxuMZ8dUc2z7dBJmV/2NiLJe1AzWEAd8=
Subject key identifier: 74:B8:4D:55:23:67:11:28:67:A1:54:43:E5:E0:EC:F7:09:3B:C6:3E
Certificate issuer: /CN=86623a8458eff347d424348588829ee137b45a3f
Certificate serial: 018A45A744DB1B40A959433E6B9E763970FE
Authority key identifier: 86:62:3A:84:58:EF:F3:47:D4:24:34:85:88:82:9E:E1:37:B4:5A:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hmI6hFjv80fUJDSFiIKe4Te0Wj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/39db4d-e93f-4139-aad8-6c28bb40d52e/1/dLhNVSNnEShnoVRD5eDs9wk7xj4.roa
Signing time: Wed 30 Aug 2023 08:55:04 +0000
ROA not before: Wed 30 Aug 2023 08:55:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43754
IP address blocks: 91.207.205.0/24 maxlen: 26
Validation: Failed, certificate revoked on Mon 11 Dec 2023 12:07:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:45:a7:44:db:1b:40:a9:59:43:3e:6b:9e:76:39:70:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86623a8458eff347d424348588829ee137b45a3f
Validity
Not Before: Aug 30 08:55:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=74b84d552367112867a15443e5e0ecf7093bc63e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:dd:51:9a:44:72:f3:43:ac:43:3c:f3:e7:87:
94:7e:9e:4f:b0:86:50:54:c4:75:a7:d5:c0:2c:c9:
61:2a:06:b0:fc:d4:02:f6:38:14:e3:ca:24:a4:db:
a2:5e:ff:39:dc:09:68:a8:43:b8:89:f6:a6:dd:89:
34:a5:ea:cb:4d:59:b6:f7:1e:81:01:cc:d8:d9:ce:
85:aa:8f:0b:ef:e3:cf:4e:85:3d:4b:82:1b:2e:6f:
84:05:f5:1f:d5:56:32:01:f2:32:fe:b8:f9:46:ec:
8d:59:c3:10:ab:a9:0d:35:39:3d:ad:12:59:48:f0:
c4:0d:f5:88:1a:36:55:da:6e:47:a9:5a:03:a7:a2:
bb:62:28:c1:26:d0:d0:47:9d:7e:96:cc:9c:5a:cb:
84:3d:21:10:55:a6:05:92:a1:31:d9:94:4d:22:c1:
28:f8:41:7e:5d:29:99:33:82:78:6c:21:4c:10:fa:
c2:d5:01:a3:71:e4:0b:c1:69:90:65:a5:c3:ca:b0:
01:5f:de:cf:4c:3a:93:9b:9b:46:87:4b:a0:83:cd:
76:82:7c:76:68:4f:61:0c:ba:5f:ee:14:f7:0e:7e:
8c:50:af:ea:23:2c:37:c6:ab:07:e9:d0:2d:e7:ba:
a8:9c:7c:cf:3f:31:9f:66:0e:29:15:c1:d2:b5:34:
10:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:B8:4D:55:23:67:11:28:67:A1:54:43:E5:E0:EC:F7:09:3B:C6:3E
X509v3 Authority Key Identifier:
keyid:86:62:3A:84:58:EF:F3:47:D4:24:34:85:88:82:9E:E1:37:B4:5A:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hmI6hFjv80fUJDSFiIKe4Te0Wj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/39db4d-e93f-4139-aad8-6c28bb40d52e/1/dLhNVSNnEShnoVRD5eDs9wk7xj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/39db4d-e93f-4139-aad8-6c28bb40d52e/1/hmI6hFjv80fUJDSFiIKe4Te0Wj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.205.0/24
Signature Algorithm: sha256WithRSAEncryption
04:b6:ee:56:e1:f5:87:ce:23:1c:56:2b:1e:a4:91:e3:1b:c5:
18:f8:de:69:11:4a:5e:f3:2c:cc:1b:1c:de:f1:ca:57:70:37:
dd:df:08:a0:9a:ce:0c:d0:f9:c6:ab:4e:a7:75:bb:74:39:4f:
51:4b:ab:2d:c0:fc:5d:68:67:67:61:2f:b1:a3:2b:fb:cc:f0:
10:73:3b:2e:30:ca:9e:22:85:8b:24:c2:b2:a5:1a:5d:e4:4d:
2d:b5:2a:ba:33:ab:59:1a:7b:2e:a9:77:8d:00:0c:47:f7:22:
22:7e:57:44:de:4c:0c:0d:4b:39:c1:53:93:19:79:7f:a6:46:
89:a6:37:67:22:26:01:13:42:e8:72:61:91:4e:40:74:1b:5e:
18:22:c3:70:aa:c2:e8:dc:8e:24:6d:84:91:0c:f4:29:c1:1f:
cd:97:4e:a2:6f:46:5f:77:8f:e8:35:85:0c:b1:81:4c:ee:87:
8b:95:10:33:5a:bb:1c:ca:19:74:a2:35:73:c6:21:da:91:68:
30:00:bc:52:77:2a:56:13:dc:1e:3a:0e:f3:91:6c:f9:56:87:
f1:a2:eb:2e:01:86:2a:12:c8:0f:87:a4:9e:dd:79:83:4e:bc:
12:ca:59:22:b6:a3:01:30:e6:05:0b:81:98:89:85:02:1a:e3:
50:f2:53:a2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYpFp0TbG0CpWUM+a552OXD+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2NjIzYTg0NThlZmYzNDdkNDI0MzQ4NTg4ODI5ZWUxMzdi
NDVhM2YwHhcNMjMwODMwMDg1NTA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NGI4NGQ1NTIzNjcxMTI4NjdhMTU0NDNlNWUwZWNmNzA5M2JjNjNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA491RmkRy80OsQzzz54eUfp5PsIZQ
VMR1p9XALMlhKgaw/NQC9jgU48okpNuiXv853AloqEO4ifam3Yk0perLTVm29x6B
AczY2c6Fqo8L7+PPToU9S4IbLm+EBfUf1VYyAfIy/rj5RuyNWcMQq6kNNTk9rRJZ
SPDEDfWIGjZV2m5HqVoDp6K7YijBJtDQR51+lsycWsuEPSEQVaYFkqEx2ZRNIsEo
+EF+XSmZM4J4bCFMEPrC1QGjceQLwWmQZaXDyrABX97PTDqTm5tGh0ugg812gnx2
aE9hDLpf7hT3Dn6MUK/qIyw3xqsH6dAt57qonHzPPzGfZg4pFcHStTQQIwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHS4TVUjZxEoZ6FUQ+Xg7PcJO8Y+MB8GA1UdIwQY
MBaAFIZiOoRY7/NH1CQ0hYiCnuE3tFo/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaG1JNmhGanY4MGZVSkRTRmlJS2U0VGUwV2o4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi8zOWRiNGQtZTkzZi00MTM5LWFhZDgt
NmMyOGJiNDBkNTJlLzEvZExoTlZTTm5FU2hub1ZSRDVlRHM5d2s3eGo0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi8zOWRiNGQtZTkzZi00MTM5LWFhZDgtNmMyOGJiNDBkNTJl
LzEvaG1JNmhGanY4MGZVSkRTRmlJS2U0VGUwV2o4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8/NMA0G
CSqGSIb3DQEBCwUAA4IBAQAEtu5W4fWHziMcVisepJHjG8UY+N5pEUpe8yzMGxze
8cpXcDfd3wigms4M0PnGq06ndbt0OU9RS6stwPxdaGdnYS+xoyv7zPAQczsuMMqe
IoWLJMKypRpd5E0ttSq6M6tZGnsuqXeNAAxH9yIifldE3kwMDUs5wVOTGXl/pkaJ
pjdnIiYBE0LocmGRTkB0G14YIsNwqsLo3I4kbYSRDPQpwR/Nl06ib0Zfd4/oNYUM
sYFM7oeLlRAzWrscyhl0ojVzxiHakWgwALxSdypWE9weOg7zkWz5VofxousuAYYq
EsgPh6Se3XmDTrwSylkitqMBMOYFC4GYiYUCGuNQ8lOi
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:16 2024 by rpki-client on console-ams.rpki-client.org