Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/fhNaPxAXwOZcIbt4yPU3XlKaphI.roa
File: fhNaPxAXwOZcIbt4yPU3XlKaphI.roa (raw, json)
Hash identifier: HN739h6jbkW7TlwNKHsjK2U+JNorOMK4sAgDpfcVO3k=
Subject key identifier: 7E:13:5A:3F:10:17:C0:E6:5C:21:BB:78:C8:F5:37:5E:52:9A:A6:12
Certificate issuer: /CN=d8eeb20a880cdb494e9e62d43b2ef28c90cb9eef
Certificate serial: 0192326F9DC5A543717A7AA62265892D238F
Authority key identifier: D8:EE:B2:0A:88:0C:DB:49:4E:9E:62:D4:3B:2E:F2:8C:90:CB:9E:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2O6yCogM20lOnmLUOy7yjJDLnu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/fhNaPxAXwOZcIbt4yPU3XlKaphI.roa
Signing time: Fri 27 Sep 2024 07:43:48 +0000
ROA not before: Fri 27 Sep 2024 07:43:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51741
IP address blocks: 91.217.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 07 Oct 2024 17:02:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:32:6f:9d:c5:a5:43:71:7a:7a:a6:22:65:89:2d:23:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8eeb20a880cdb494e9e62d43b2ef28c90cb9eef
Validity
Not Before: Sep 27 07:43:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7e135a3f1017c0e65c21bb78c8f5375e529aa612
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:77:08:8b:72:b7:a0:60:86:bb:61:3e:e4:3f:
41:35:1f:dd:97:81:c5:45:a3:bf:8c:50:75:76:46:
e6:27:f4:fb:75:d1:be:f1:6e:d3:d3:3a:69:34:44:
73:33:b7:28:96:8d:25:ea:55:f1:ff:79:dc:95:fb:
2b:a3:e2:fe:b4:91:37:04:14:63:d7:5c:a8:98:39:
0c:e7:8d:62:9f:08:e1:41:73:49:34:d6:0d:21:86:
e2:4d:2d:a7:b9:88:02:85:e8:6b:d6:88:7c:ae:df:
af:cc:ec:df:52:ac:1b:f7:e9:b8:28:16:c3:36:0f:
44:60:14:5d:fd:3c:ca:c7:ed:40:31:50:f4:c5:9a:
37:6e:fb:d7:9f:24:39:72:45:8c:3b:d9:0b:6c:a3:
37:6d:67:3c:cb:fd:62:85:61:12:cb:e6:9a:d9:81:
97:f8:ef:90:73:56:b2:8a:2f:6a:a5:6d:5a:33:c1:
5e:90:6e:52:b3:f5:b7:44:32:72:77:89:30:7e:88:
f5:53:4b:4b:5b:b4:d4:40:da:62:99:ab:ee:5b:59:
03:09:2e:e1:44:ff:22:ae:80:e3:4a:0a:93:f0:f7:
d2:c4:2d:fc:fb:d3:21:77:66:b4:80:13:e4:8c:90:
5f:69:8d:97:16:03:c0:86:e6:3d:87:46:98:37:97:
04:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:13:5A:3F:10:17:C0:E6:5C:21:BB:78:C8:F5:37:5E:52:9A:A6:12
X509v3 Authority Key Identifier:
keyid:D8:EE:B2:0A:88:0C:DB:49:4E:9E:62:D4:3B:2E:F2:8C:90:CB:9E:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2O6yCogM20lOnmLUOy7yjJDLnu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/fhNaPxAXwOZcIbt4yPU3XlKaphI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/2O6yCogM20lOnmLUOy7yjJDLnu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.219.0/24
Signature Algorithm: sha256WithRSAEncryption
83:20:20:7b:ee:3e:4a:a2:1d:da:06:c6:13:a0:c2:b8:31:01:
f7:47:c0:61:8b:de:05:ba:8c:c8:03:24:a6:0a:d8:ae:ec:5f:
fa:8a:31:73:dc:cf:12:b6:46:ff:05:3b:f8:8b:b7:e5:d0:13:
08:50:8e:4f:32:cc:3e:5e:90:fe:92:89:0a:f1:5f:c8:2a:c7:
33:82:80:18:ab:7d:c7:48:ab:f8:b0:7e:cf:11:bb:51:5b:26:
dc:5e:5c:f1:86:7f:f1:6c:01:12:05:89:89:f1:dd:1b:7c:33:
60:bd:97:0d:fc:7a:11:5b:aa:03:49:56:49:01:7e:27:6c:2c:
e0:59:57:e3:cf:34:05:ab:27:e9:64:1a:86:4e:9f:7a:ad:92:
f2:4b:93:a2:be:58:b3:6a:c3:a7:fd:cc:a5:aa:77:9a:f3:29:
9e:ea:b0:07:69:12:c6:2e:7b:37:0c:93:ca:2d:8a:af:36:de:
70:68:84:26:ac:9b:99:f8:30:a7:78:fd:7f:d4:8d:f2:75:c6:
8b:3f:4d:89:80:b7:da:bf:4b:5e:1f:52:2e:de:34:d3:63:19:
23:46:52:c0:cd:0c:0e:59:f8:dc:e6:a7:f1:18:b1:c6:4a:da:
66:d6:eb:e5:39:f3:5a:ce:a5:8a:4a:ca:b0:50:d4:31:4a:af:
22:aa:7d:0d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZIyb53FpUNxenqmImWJLSOPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4ZWViMjBhODgwY2RiNDk0ZTllNjJkNDNiMmVmMjhjOTBj
YjllZWYwHhcNMjQwOTI3MDc0MzQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZTEzNWEzZjEwMTdjMGU2NWMyMWJiNzhjOGY1Mzc1ZTUyOWFhNjEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxXcIi3K3oGCGu2E+5D9BNR/dl4HF
RaO/jFB1dkbmJ/T7ddG+8W7T0zppNERzM7colo0l6lXx/3nclfsro+L+tJE3BBRj
11yomDkM541inwjhQXNJNNYNIYbiTS2nuYgChehr1oh8rt+vzOzfUqwb9+m4KBbD
Ng9EYBRd/TzKx+1AMVD0xZo3bvvXnyQ5ckWMO9kLbKM3bWc8y/1ihWESy+aa2YGX
+O+Qc1ayii9qpW1aM8FekG5Ss/W3RDJyd4kwfoj1U0tLW7TUQNpimavuW1kDCS7h
RP8iroDjSgqT8PfSxC38+9Mhd2a0gBPkjJBfaY2XFgPAhuY9h0aYN5cEYwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFH4TWj8QF8DmXCG7eMj1N15SmqYSMB8GA1UdIwQY
MBaAFNjusgqIDNtJTp5i1Dsu8oyQy57vMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMk82eUNvZ00yMGxPbm1MVU95N3lqSkRMbnU4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi9mZTNkYmUtOTcwOC00MjQyLTkyNzct
OTZiNTBiY2M3YTA4LzEvZmhOYVB4QVh3T1pjSWJ0NHlQVTNYbEthcGhJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi9mZTNkYmUtOTcwOC00MjQyLTkyNzctOTZiNTBiY2M3YTA4
LzEvMk82eUNvZ00yMGxPbm1MVU95N3lqSkRMbnU4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9nbMA0G
CSqGSIb3DQEBCwUAA4IBAQCDICB77j5Koh3aBsYToMK4MQH3R8Bhi94FuozIAySm
Ctiu7F/6ijFz3M8Stkb/BTv4i7fl0BMIUI5PMsw+XpD+kokK8V/IKsczgoAYq33H
SKv4sH7PEbtRWybcXlzxhn/xbAESBYmJ8d0bfDNgvZcN/HoRW6oDSVZJAX4nbCzg
WVfjzzQFqyfpZBqGTp96rZLyS5OivlizasOn/cylqnea8yme6rAHaRLGLns3DJPK
LYqvNt5waIQmrJuZ+DCneP1/1I3ydcaLP02JgLfav0teH1Iu3jTTYxkjRlLAzQwO
Wfjc5qfxGLHGStpm1uvlOfNazqWKSsqwUNQxSq8iqn0N
-----END CERTIFICATE-----
Generated at Mon Oct 7 23:07:56 2024 by rpki-client on console-ams.rpki-client.org