Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/1c6704-510a-4800-a890-32352f96a621/1/46wjbE0pP4nWq8l9obQvxVt0eGU.roa
File: 46wjbE0pP4nWq8l9obQvxVt0eGU.roa (raw, json)
Hash identifier: /mP+v473MvEg00isATDEXfa4s8a5bUwgd9eN9gWxlKE=
Subject key identifier: E3:AC:23:6C:4D:29:3F:89:D6:AB:C9:7D:A1:B4:2F:C5:5B:74:78:65
Certificate issuer: /CN=fae01464a695b0f6f52f511bcc1240fa284d3dcf
Certificate serial: 01857371824000A390570277E16043886851
Authority key identifier: FA:E0:14:64:A6:95:B0:F6:F5:2F:51:1B:CC:12:40:FA:28:4D:3D:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-uAUZKaVsPb1L1EbzBJA-ihNPc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/1c6704-510a-4800-a890-32352f96a621/1/46wjbE0pP4nWq8l9obQvxVt0eGU.roa
Signing time: Mon 02 Jan 2023 17:04:56 +0000
ROA not before: Mon 02 Jan 2023 17:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8412
IP address blocks: 91.220.2.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:71:82:40:00:a3:90:57:02:77:e1:60:43:88:68:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fae01464a695b0f6f52f511bcc1240fa284d3dcf
Validity
Not Before: Jan 2 17:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3ac236c4d293f89d6abc97da1b42fc55b747865
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:1f:d5:4d:1e:99:28:a6:09:bf:17:6a:b1:0d:
cd:43:70:c2:c1:8f:f4:ea:20:e9:a6:d7:09:aa:a4:
ba:dd:fd:86:ea:1d:16:41:e8:eb:b9:b0:b7:1b:f3:
80:44:4e:d3:3a:a6:6f:58:f8:98:96:67:01:91:09:
da:41:0b:39:ca:02:48:fe:e9:93:e7:b1:8d:c9:e9:
4b:c3:22:85:6c:e1:3b:98:50:7b:c8:24:4c:59:78:
29:4b:85:af:b8:b3:33:f7:f0:54:1c:2c:8f:c9:d8:
9a:e8:8b:93:43:22:e6:67:a4:f0:47:cf:fb:cf:ca:
a8:e4:5d:3d:e6:e2:19:e9:fe:1d:9d:ff:e9:b9:05:
25:74:d0:17:2a:f4:69:06:b3:0c:cc:f6:71:02:34:
78:8c:22:f3:c4:59:52:b4:9d:5e:1f:b2:58:e6:90:
6c:0b:8c:15:22:07:3a:58:55:c0:99:7b:74:09:ff:
8e:ea:5c:40:37:7c:82:7e:0a:1c:f6:07:8b:c7:bb:
d2:a2:f6:7c:59:74:c6:26:fa:ac:c8:77:91:c0:19:
52:43:5a:72:ce:00:95:a2:20:bd:a5:e0:01:5f:fc:
1c:e1:25:8a:57:d6:8b:33:d9:69:bb:58:8e:72:c1:
5c:e6:71:a1:6d:5a:87:bd:21:8b:f5:47:5a:70:ab:
d8:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:AC:23:6C:4D:29:3F:89:D6:AB:C9:7D:A1:B4:2F:C5:5B:74:78:65
X509v3 Authority Key Identifier:
keyid:FA:E0:14:64:A6:95:B0:F6:F5:2F:51:1B:CC:12:40:FA:28:4D:3D:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-uAUZKaVsPb1L1EbzBJA-ihNPc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/1c6704-510a-4800-a890-32352f96a621/1/46wjbE0pP4nWq8l9obQvxVt0eGU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/1c6704-510a-4800-a890-32352f96a621/1/1-uAUZKaVsPb1L1EbzBJA-ihNPc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.2.0/24
Signature Algorithm: sha256WithRSAEncryption
18:44:d4:44:22:90:0b:a3:49:bd:56:bc:8c:2b:bb:4e:7b:96:
34:2a:6b:5a:23:9c:04:d5:f6:f0:2a:60:df:4f:61:92:77:ab:
5c:40:6d:6b:59:02:55:8d:2f:00:5b:e8:a8:a6:bb:3f:5e:c0:
7e:84:c2:44:2b:12:21:1b:eb:f2:a1:25:cf:ce:ae:90:3e:57:
20:ce:36:4c:f7:d1:24:38:e4:d2:ad:94:c3:29:69:41:2d:d2:
26:64:64:d9:cf:87:c8:0c:be:4d:af:16:48:3b:ea:55:03:51:
ba:97:86:71:5b:4b:1a:2c:33:a1:e7:d9:a9:ff:56:d2:ff:8e:
c2:e0:bf:58:d3:5c:75:a8:e4:f1:07:56:c0:19:2f:6d:4b:74:
18:67:00:9d:8e:be:36:0f:83:85:c3:00:1f:13:fa:a7:dc:8e:
73:ba:c6:6d:f9:bf:a4:46:d4:12:55:3e:16:4a:09:0c:a2:0c:
60:09:79:0d:19:88:5a:5c:97:42:f6:fa:cf:91:96:0f:27:c7:
16:35:84:90:78:8d:0b:da:fc:34:30:6e:1d:6f:a5:32:ee:5e:
fa:57:16:2f:0f:90:54:37:f4:8b:0b:8b:e6:7e:0d:a3:77:a4:
ba:b5:34:1c:6d:71:ae:ce:93:23:b0:18:64:0a:97:d2:30:9f:
30:ba:30:e8
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYVzcYJAAKOQVwJ34WBDiGhRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZhZTAxNDY0YTY5NWIwZjZmNTJmNTExYmNjMTI0MGZhMjg0
ZDNkY2YwHhcNMjMwMTAyMTcwNDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlM2FjMjM2YzRkMjkzZjg5ZDZhYmM5N2RhMWI0MmZjNTViNzQ3ODY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkR/VTR6ZKKYJvxdqsQ3NQ3DCwY/0
6iDpptcJqqS63f2G6h0WQejrubC3G/OARE7TOqZvWPiYlmcBkQnaQQs5ygJI/umT
57GNyelLwyKFbOE7mFB7yCRMWXgpS4WvuLMz9/BUHCyPydia6IuTQyLmZ6TwR8/7
z8qo5F095uIZ6f4dnf/puQUldNAXKvRpBrMMzPZxAjR4jCLzxFlStJ1eH7JY5pBs
C4wVIgc6WFXAmXt0Cf+O6lxAN3yCfgoc9geLx7vSovZ8WXTGJvqsyHeRwBlSQ1py
zgCVoiC9peABX/wc4SWKV9aLM9lpu1iOcsFc5nGhbVqHvSGL9UdacKvYMQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFOOsI2xNKT+J1qvJfaG0L8VbdHhlMB8GA1UdIwQY
MBaAFPrgFGSmlbD29S9RG8wSQPooTT3PMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS11QVVaS2FWc1BiMUwxRWJ6QkpBLWloTlBjOC5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmMvMWM2NzA0LTUxMGEtNDgwMC1hODkw
LTMyMzUyZjk2YTYyMS8xLzQ2d2piRTBwUDRuV3E4bDlvYlF2eFZ0MGVHVS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvYmMvMWM2NzA0LTUxMGEtNDgwMC1hODkwLTMyMzUyZjk2YTYy
MS8xLzEtdUFVWkthVnNQYjFMMUViekJKQS1paE5QYzguY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABb3AIw
DQYJKoZIhvcNAQELBQADggEBABhE1EQikAujSb1WvIwru057ljQqa1ojnATV9vAq
YN9PYZJ3q1xAbWtZAlWNLwBb6Kimuz9ewH6EwkQrEiEb6/KhJc/OrpA+VyDONkz3
0SQ45NKtlMMpaUEt0iZkZNnPh8gMvk2vFkg76lUDUbqXhnFbSxosM6Hn2an/VtL/
jsLgv1jTXHWo5PEHVsAZL21LdBhnAJ2OvjYPg4XDAB8T+qfcjnO6xm35v6RG1BJV
PhZKCQyiDGAJeQ0ZiFpcl0L2+s+Rlg8nxxY1hJB4jQva/DQwbh1vpTLuXvpXFi8P
kFQ39IsLi+Z+DaN3pLq1NBxtca7OkyOwGGQKl9IwnzC6MOg=
-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:57 2024 by rpki-client on console-fra.rpki-client.org