Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/eGF39IL37JHgAzzKVUPNCbC5AUo.roa
File: eGF39IL37JHgAzzKVUPNCbC5AUo.roa (raw, json)
Hash identifier: IuaLWE4cIRVwS5P/S+zM4gms7YhbgPDSV+QkqU16yrQ=
Subject key identifier: 78:61:77:F4:82:F7:EC:91:E0:03:3C:CA:55:43:CD:09:B0:B9:01:4A
Certificate issuer: /CN=04a2ae2cd094333018c41daafb474c6cfa80d07d
Certificate serial: 01856EAFDC1784E03CE08C80A5364C7B5999
Authority key identifier: 04:A2:AE:2C:D0:94:33:30:18:C4:1D:AA:FB:47:4C:6C:FA:80:D0:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BKKuLNCUMzAYxB2q-0dMbPqA0H0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/eGF39IL37JHgAzzKVUPNCbC5AUo.roa
Signing time: Sun 01 Jan 2023 18:54:56 +0000
ROA not before: Sun 01 Jan 2023 18:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52139
IP address blocks: 91.222.104.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:af:dc:17:84:e0:3c:e0:8c:80:a5:36:4c:7b:59:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04a2ae2cd094333018c41daafb474c6cfa80d07d
Validity
Not Before: Jan 1 18:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=786177f482f7ec91e0033cca5543cd09b0b9014a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:7b:9f:68:70:2b:c5:be:79:8e:7a:f9:07:b4:
72:bd:fe:53:6b:27:00:a2:2b:64:ee:29:dd:9e:17:
cc:28:43:e8:d2:02:cd:55:ae:fe:7b:28:0e:60:cb:
3a:54:ec:df:57:03:98:eb:ad:a8:69:79:ed:73:d0:
f9:b6:67:4f:71:6f:d9:55:d6:b8:98:5f:4b:8f:ad:
a7:25:a0:63:56:2d:99:f7:97:b0:ed:b1:24:e0:cf:
85:8a:24:9a:55:ba:d0:d5:29:7a:9c:4e:33:02:10:
03:1e:79:eb:60:4e:18:66:69:87:f9:99:ab:58:10:
19:54:88:b1:82:4f:6e:f5:3d:97:da:4f:4a:e5:3c:
c7:fe:04:9a:79:0c:43:b2:dc:c4:97:96:0e:bf:71:
d0:71:9d:c7:e4:d3:a2:9c:9c:a2:2a:24:c0:a6:fa:
29:da:16:38:bb:ad:3d:95:98:51:79:ec:6e:56:82:
8e:34:90:0a:fa:83:78:38:d9:d2:bf:d4:c9:21:bf:
27:5f:53:17:24:63:8d:c0:04:db:19:07:fa:af:c3:
ad:9e:de:90:48:14:9b:e0:f0:43:7c:49:b1:56:b2:
24:62:b8:e5:60:c4:71:43:44:e0:8e:97:75:92:ba:
22:8c:b9:dc:68:cf:0e:1f:b8:b3:c8:cd:07:fc:04:
61:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:61:77:F4:82:F7:EC:91:E0:03:3C:CA:55:43:CD:09:B0:B9:01:4A
X509v3 Authority Key Identifier:
keyid:04:A2:AE:2C:D0:94:33:30:18:C4:1D:AA:FB:47:4C:6C:FA:80:D0:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BKKuLNCUMzAYxB2q-0dMbPqA0H0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/eGF39IL37JHgAzzKVUPNCbC5AUo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/634a12-e58c-455c-8933-6e6e8d9303e9/1/BKKuLNCUMzAYxB2q-0dMbPqA0H0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.222.104.0/22
Signature Algorithm: sha256WithRSAEncryption
68:9e:ad:b4:b8:d2:56:28:f6:03:ed:0d:1e:1a:e6:c8:9d:30:
b7:f6:f3:4c:ec:3e:86:fd:ce:e3:37:9b:8e:7a:e4:d6:aa:7a:
50:9f:64:77:a5:d1:90:6a:05:94:0e:8b:19:ba:b4:cf:32:17:
a1:32:94:fa:cb:b4:61:aa:e5:cc:4a:21:96:ad:a3:a4:92:2d:
2f:4b:d6:ec:ff:a3:5d:d7:28:66:35:02:7d:09:5b:04:2c:d8:
3e:55:48:12:75:59:7e:38:1d:e3:0e:cd:93:a3:ff:8f:f3:88:
e9:4d:89:fa:1a:af:b4:c3:49:d1:88:15:93:ce:67:2d:c2:f3:
18:50:1c:ff:de:6e:74:41:16:d6:1e:ce:5f:33:16:56:a5:6a:
58:c1:e1:7c:96:a3:c8:2e:0d:ed:66:8b:2b:ed:b1:5a:d4:95:
19:ba:fc:51:b6:ef:f2:74:61:15:04:03:be:15:82:3c:c2:2d:
27:e1:de:25:83:65:10:a7:ae:57:89:a6:42:d1:10:85:4c:96:
48:d3:18:90:be:57:50:90:dd:1c:10:4e:7e:c8:2e:53:8d:38:
83:2b:f3:8a:c1:37:38:15:04:ab:00:69:57:d2:68:66:e6:8d:
c3:83:5f:8b:3f:1b:f0:73:c1:dd:79:40:e3:3e:07:f4:ce:fd:
cb:b5:f5:c1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVur9wXhOA84IyApTZMe1mZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA0YTJhZTJjZDA5NDMzMzAxOGM0MWRhYWZiNDc0YzZjZmE4
MGQwN2QwHhcNMjMwMTAxMTg1NDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ODYxNzdmNDgyZjdlYzkxZTAwMzNjY2E1NTQzY2QwOWIwYjkwMTRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA03ufaHArxb55jnr5B7Ryvf5TaycA
oitk7indnhfMKEPo0gLNVa7+eygOYMs6VOzfVwOY662oaXntc9D5tmdPcW/ZVda4
mF9Lj62nJaBjVi2Z95ew7bEk4M+FiiSaVbrQ1Sl6nE4zAhADHnnrYE4YZmmH+Zmr
WBAZVIixgk9u9T2X2k9K5TzH/gSaeQxDstzEl5YOv3HQcZ3H5NOinJyiKiTApvop
2hY4u609lZhReexuVoKONJAK+oN4ONnSv9TJIb8nX1MXJGONwATbGQf6r8Otnt6Q
SBSb4PBDfEmxVrIkYrjlYMRxQ0Tgjpd1kroijLncaM8OH7izyM0H/ARhCwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHhhd/SC9+yR4AM8ylVDzQmwuQFKMB8GA1UdIwQY
MBaAFASirizQlDMwGMQdqvtHTGz6gNB9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQktLdUxOQ1VNekFZeEIycS0wZE1iUHFBMEgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS82MzRhMTItZTU4Yy00NTVjLTg5MzMt
NmU2ZThkOTMwM2U5LzEvZUdGMzlJTDM3SkhnQXp6S1ZVUE5DYkM1QVVvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS82MzRhMTItZTU4Yy00NTVjLTg5MzMtNmU2ZThkOTMwM2U5
LzEvQktLdUxOQ1VNekFZeEIycS0wZE1iUHFBMEgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCW95oMA0G
CSqGSIb3DQEBCwUAA4IBAQBonq20uNJWKPYD7Q0eGubInTC39vNM7D6G/c7jN5uO
euTWqnpQn2R3pdGQagWUDosZurTPMhehMpT6y7RhquXMSiGWraOkki0vS9bs/6Nd
1yhmNQJ9CVsELNg+VUgSdVl+OB3jDs2To/+P84jpTYn6Gq+0w0nRiBWTzmctwvMY
UBz/3m50QRbWHs5fMxZWpWpYweF8lqPILg3tZosr7bFa1JUZuvxRtu/ydGEVBAO+
FYI8wi0n4d4lg2UQp65XiaZC0RCFTJZI0xiQvldQkN0cEE5+yC5TjTiDK/OKwTc4
FQSrAGlX0mhm5o3Dg1+LPxvwc8HdeUDjPgf0zv3LtfXB
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:28 2024 by rpki-client on console-fra.rpki-client.org