Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/9d4bef-8ebd-4fdb-aaf0-e09bc4eae189/1/drsrA8s1qCl1VfvvjU98OppkqoI.roa
File: drsrA8s1qCl1VfvvjU98OppkqoI.roa (raw, json)
Hash identifier: TDGYbzQZfGmn/u9XxRY1uxRV67eEcnzjU4uTVpHTk88=
Subject key identifier: 76:BB:2B:03:CB:35:A8:29:75:55:FB:EF:8D:4F:7C:3A:9A:64:AA:82
Certificate issuer: /CN=0f34477aa0f0123138c0472f5b3528e4d2193e68
Certificate serial: 01856EEFED115A87B933C5C1F3B4C78EDB0A
Authority key identifier: 0F:34:47:7A:A0:F0:12:31:38:C0:47:2F:5B:35:28:E4:D2:19:3E:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DzRHeqDwEjE4wEcvWzUo5NIZPmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/9d4bef-8ebd-4fdb-aaf0-e09bc4eae189/1/drsrA8s1qCl1VfvvjU98OppkqoI.roa
Signing time: Sun 01 Jan 2023 20:04:55 +0000
ROA not before: Sun 01 Jan 2023 20:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198108
IP address blocks: 91.216.232.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:ef:ed:11:5a:87:b9:33:c5:c1:f3:b4:c7:8e:db:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f34477aa0f0123138c0472f5b3528e4d2193e68
Validity
Not Before: Jan 1 20:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=76bb2b03cb35a8297555fbef8d4f7c3a9a64aa82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:e3:be:78:0a:ec:40:88:d7:72:81:7c:c7:a9:
08:66:8a:cc:18:2c:a4:30:2b:c4:69:e2:ed:61:77:
b9:fc:93:7c:a0:23:dd:58:5b:7b:dc:c6:3b:32:14:
56:60:11:fb:41:27:84:24:16:67:66:90:f7:43:22:
af:a8:09:ad:31:cd:32:60:c7:b9:c4:46:30:60:48:
1a:76:9f:3a:af:5d:b7:2b:7b:5a:ec:13:45:21:e6:
dc:ed:13:a2:ab:c5:10:9f:5f:da:e7:57:33:29:a2:
b9:80:d4:d6:75:25:c7:af:38:c6:d1:f8:15:c2:dc:
b3:d7:33:d4:46:c6:78:16:9c:8c:5a:32:e7:fc:c1:
12:20:7d:da:e4:12:3e:01:60:a2:86:43:18:f4:dd:
09:b6:2e:32:72:b0:34:52:91:50:87:ec:29:c0:5b:
6f:07:84:b8:86:5e:47:08:33:d8:db:2a:8a:21:bd:
df:0f:ba:c0:53:e6:97:67:4a:bc:5a:9c:a6:bf:44:
5a:fd:06:6e:53:68:8c:89:9b:9c:0c:83:4e:7b:89:
a7:23:8e:15:b9:40:bd:79:33:e5:aa:94:25:f2:93:
b9:bc:30:fc:56:c8:5c:e4:9e:c3:56:2b:35:70:80:
d4:9b:17:54:c6:73:89:f1:17:61:5c:ba:c6:ce:1c:
7e:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:BB:2B:03:CB:35:A8:29:75:55:FB:EF:8D:4F:7C:3A:9A:64:AA:82
X509v3 Authority Key Identifier:
keyid:0F:34:47:7A:A0:F0:12:31:38:C0:47:2F:5B:35:28:E4:D2:19:3E:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DzRHeqDwEjE4wEcvWzUo5NIZPmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/9d4bef-8ebd-4fdb-aaf0-e09bc4eae189/1/drsrA8s1qCl1VfvvjU98OppkqoI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/9d4bef-8ebd-4fdb-aaf0-e09bc4eae189/1/DzRHeqDwEjE4wEcvWzUo5NIZPmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.232.0/24
Signature Algorithm: sha256WithRSAEncryption
86:d7:bc:de:77:59:7d:f5:5a:02:5a:14:5b:a5:4f:98:b3:36:
b4:6e:54:1f:8e:31:93:d2:fe:6a:6d:67:f5:d8:e8:cf:90:20:
7b:c1:7a:d3:33:aa:6a:ca:0f:60:a7:5a:75:82:9e:4b:e4:ef:
0d:ca:40:48:96:ba:ff:0b:e5:70:34:af:d0:c0:19:6c:78:22:
40:e3:51:e1:55:97:7d:63:14:10:18:1a:0e:8e:b8:83:8c:19:
10:91:1a:83:18:c6:80:ae:02:d9:b6:70:74:4f:d2:60:ba:2b:
21:06:5e:ca:b2:bd:59:86:fa:23:3a:de:a1:cc:12:8f:35:e8:
89:8e:a6:a4:94:f3:f4:1f:fa:fb:e5:f8:f8:dc:cf:a3:1c:98:
10:99:1c:5d:9b:52:99:20:90:2c:cb:2c:ea:9f:7c:e1:be:0b:
9b:32:77:b6:b0:ff:99:b8:0e:f3:c9:69:c6:57:62:eb:18:29:
73:45:fa:cc:43:df:a9:18:30:ed:b4:f1:6a:f9:d4:eb:08:b1:
96:8c:6b:66:fd:e9:c3:e5:b7:32:fa:32:73:6e:12:ba:bc:51:
b3:8b:7a:f1:dd:d2:15:b8:be:6a:51:20:39:08:a5:59:a6:b6:
66:65:13:9f:8e:04:c6:72:63:1d:5a:5e:31:82:4c:b3:49:59:
9c:95:0e:c9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVu7+0RWoe5M8XB87THjtsKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmMzQ0NzdhYTBmMDEyMzEzOGMwNDcyZjViMzUyOGU0ZDIx
OTNlNjgwHhcNMjMwMTAxMjAwNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NmJiMmIwM2NiMzVhODI5NzU1NWZiZWY4ZDRmN2MzYTlhNjRhYTgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6uO+eArsQIjXcoF8x6kIZorMGCyk
MCvEaeLtYXe5/JN8oCPdWFt73MY7MhRWYBH7QSeEJBZnZpD3QyKvqAmtMc0yYMe5
xEYwYEgadp86r123K3ta7BNFIebc7ROiq8UQn1/a51czKaK5gNTWdSXHrzjG0fgV
wtyz1zPURsZ4FpyMWjLn/MESIH3a5BI+AWCihkMY9N0Jti4ycrA0UpFQh+wpwFtv
B4S4hl5HCDPY2yqKIb3fD7rAU+aXZ0q8Wpymv0Ra/QZuU2iMiZucDINOe4mnI44V
uUC9eTPlqpQl8pO5vDD8Vshc5J7DVis1cIDUmxdUxnOJ8RdhXLrGzhx+UwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHa7KwPLNagpdVX7741PfDqaZKqCMB8GA1UdIwQY
MBaAFA80R3qg8BIxOMBHL1s1KOTSGT5oMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRHpSSGVxRHdFakU0d0Vjdld6VW81TklaUG1nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi85ZDRiZWYtOGViZC00ZmRiLWFhZjAt
ZTA5YmM0ZWFlMTg5LzEvZHJzckE4czFxQ2wxVmZ2dmpVOThPcHBrcW9JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMi85ZDRiZWYtOGViZC00ZmRiLWFhZjAtZTA5YmM0ZWFlMTg5
LzEvRHpSSGVxRHdFakU0d0Vjdld6VW81TklaUG1nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9joMA0G
CSqGSIb3DQEBCwUAA4IBAQCG17zed1l99VoCWhRbpU+Ysza0blQfjjGT0v5qbWf1
2OjPkCB7wXrTM6pqyg9gp1p1gp5L5O8NykBIlrr/C+VwNK/QwBlseCJA41HhVZd9
YxQQGBoOjriDjBkQkRqDGMaArgLZtnB0T9JguishBl7Ksr1ZhvojOt6hzBKPNeiJ
jqaklPP0H/r75fj43M+jHJgQmRxdm1KZIJAsyyzqn3zhvgubMne2sP+ZuA7zyWnG
V2LrGClzRfrMQ9+pGDDttPFq+dTrCLGWjGtm/enD5bcy+jJzbhK6vFGzi3rx3dIV
uL5qUSA5CKVZprZmZROfjgTGcmMdWl4xgkyzSVmclQ7J
-----END CERTIFICATE-----
Generated at Tue Jan 2 11:35:46 2024 by rpki-client on console-ams.rpki-client.org