Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/2I58Pp91SKccF5R8J_ym5Xy06sk.roa
File: 2I58Pp91SKccF5R8J_ym5Xy06sk.roa (raw, json)
Hash identifier: NiOQ9G/Z0L7DGCPdbL1MUuhKWsSTXUrwVDkBDnq1jRA=
Subject key identifier: D8:8E:7C:3E:9F:75:48:A7:1C:17:94:7C:27:FC:A6:E5:7C:B4:EA:C9
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018D0BC86E8F76BCE31775968AA4DE1D2623
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/2I58Pp91SKccF5R8J_ym5Xy06sk.roa
Signing time: Mon 15 Jan 2024 06:21:41 +0000
ROA not before: Mon 15 Jan 2024 06:21:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396856
IP address blocks: 91.186.200.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 Apr 2024 09:10:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:0b:c8:6e:8f:76:bc:e3:17:75:96:8a:a4:de:1d:26:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jan 15 06:21:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d88e7c3e9f7548a71c17947c27fca6e57cb4eac9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:ac:81:2f:f2:ef:2b:9f:ce:f4:71:1f:a5:1e:
18:a2:4a:d2:d3:20:49:0d:13:5d:24:e4:0a:cc:a4:
9d:60:1c:80:92:97:d3:e6:71:11:e6:8c:ed:9f:b5:
35:61:b2:ad:f7:72:e7:1a:a4:2f:5e:e4:34:30:30:
60:f0:ca:46:d4:d2:63:91:1f:64:f8:c8:a6:a6:eb:
1b:e7:41:09:e5:fd:b4:b3:44:b4:b0:f5:26:00:3f:
bc:98:c4:41:c8:6f:67:dd:23:5e:12:ca:2e:c1:80:
fb:47:e6:dc:86:ff:22:ef:d9:ff:ea:8c:fc:be:03:
59:0e:d0:9f:03:08:39:be:48:53:f7:cf:f0:a5:6a:
4c:ae:5d:de:4f:e7:4c:62:55:63:4d:d4:00:54:d2:
a6:d8:b3:85:e4:36:9b:4d:45:bf:fd:dc:2d:16:0a:
97:54:e1:23:b2:b4:b4:05:9b:c2:8d:ba:f1:6a:77:
49:48:dc:a9:26:3b:dd:02:d6:95:e5:b4:00:39:55:
67:58:17:38:a8:3c:f7:0b:43:96:68:20:54:d2:20:
79:bc:44:c0:1f:4a:5a:11:f1:e9:a3:db:9d:ac:eb:
52:53:22:de:47:2e:6c:64:9c:9c:20:8b:44:e4:83:
ba:f9:da:a9:76:48:ec:e0:17:06:e2:9f:0c:bf:30:
dc:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:8E:7C:3E:9F:75:48:A7:1C:17:94:7C:27:FC:A6:E5:7C:B4:EA:C9
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/2I58Pp91SKccF5R8J_ym5Xy06sk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.186.200.0/22
Signature Algorithm: sha256WithRSAEncryption
87:77:d0:22:da:8f:2c:6a:1a:7f:bf:63:68:5a:4a:95:fe:93:
f8:9d:82:25:4f:11:74:d8:47:df:e4:4c:94:bb:9d:c4:4f:71:
74:c4:bb:96:c2:0a:f7:83:8d:ab:3d:47:1b:04:b9:31:7a:95:
0e:b1:ed:9c:5b:a1:5d:82:ac:bc:ef:be:75:b5:56:4c:62:0e:
7f:7b:b8:d7:ed:c4:6e:55:c1:c4:46:3b:78:b4:ec:c1:44:d2:
90:76:c7:bf:72:d0:67:20:8a:be:76:61:70:20:cc:9b:e6:c9:
90:c7:12:8a:31:37:0f:de:51:e5:03:5e:fe:9d:ab:55:cd:18:
58:17:a7:5c:6d:be:26:df:fc:b5:23:d7:9d:fd:e0:95:ce:b4:
02:6f:16:33:27:d9:5f:e7:48:78:15:66:ae:13:3e:86:6d:be:
94:9b:15:76:03:73:56:24:26:ea:bf:21:96:fe:e4:71:1d:e6:
bc:10:da:8b:d3:16:12:61:c6:eb:bf:15:f8:7b:2f:c8:af:5c:
3c:e9:0a:b9:cc:7b:69:ff:70:65:c2:a4:24:8b:21:e6:f1:3c:
3c:0b:e5:98:50:e5:09:36:7e:b6:ef:da:22:44:0f:dd:fa:aa:
f1:11:44:48:eb:c6:78:8a:e3:c2:1a:76:ce:87:d4:87:a5:a0:
0f:b4:c2:85
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY0LyG6PdrzjF3WWiqTeHSYjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyNzc4ZGUyYTliZTk4MDIxMjAzODJlNzUwZDE1OWU5NTg3
MmMyYWUwHhcNMjQwMTE1MDYyMTQxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkODhlN2MzZTlmNzU0OGE3MWMxNzk0N2MyN2ZjYTZlNTdjYjRlYWM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhayBL/LvK5/O9HEfpR4YokrS0yBJ
DRNdJOQKzKSdYByAkpfT5nER5oztn7U1YbKt93LnGqQvXuQ0MDBg8MpG1NJjkR9k
+Mimpusb50EJ5f20s0S0sPUmAD+8mMRByG9n3SNeEsouwYD7R+bchv8i79n/6oz8
vgNZDtCfAwg5vkhT98/wpWpMrl3eT+dMYlVjTdQAVNKm2LOF5DabTUW//dwtFgqX
VOEjsrS0BZvCjbrxandJSNypJjvdAtaV5bQAOVVnWBc4qDz3C0OWaCBU0iB5vETA
H0paEfHpo9udrOtSUyLeRy5sZJycIItE5IO6+dqpdkjs4BcG4p8MvzDc6wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNiOfD6fdUinHBeUfCf8puV8tOrJMB8GA1UdIwQY
MBaAFMJ3jeKpvpgCEgOC51DRWelYcsKuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEt
Zjk4ZGE1NGFmNDM0LzEvMkk1OFBwOTFTS2NjRjVSOEpfeW01WHkwNnNrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEtZjk4ZGE1NGFmNDM0
LzEvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCW7rIMA0G
CSqGSIb3DQEBCwUAA4IBAQCHd9Ai2o8sahp/v2NoWkqV/pP4nYIlTxF02Eff5EyU
u53ET3F0xLuWwgr3g42rPUcbBLkxepUOse2cW6Fdgqy87751tVZMYg5/e7jX7cRu
VcHERjt4tOzBRNKQdse/ctBnIIq+dmFwIMyb5smQxxKKMTcP3lHlA17+natVzRhY
F6dcbb4m3/y1I9ed/eCVzrQCbxYzJ9lf50h4FWauEz6Gbb6UmxV2A3NWJCbqvyGW
/uRxHea8ENqL0xYSYcbrvxX4ey/Ir1w86Qq5zHtp/3BlwqQkiyHm8Tw8C+WYUOUJ
Nn6279oiRA/d+qrxEURI68Z4iuPCGnbOh9SHpaAPtMKF
-----END CERTIFICATE-----
Generated at Mon Apr 15 11:50:12 2024 by rpki-client on console-ams.rpki-client.org