Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/6kPynuqBIKNt5dgMrxD8wqmoHUo.roa
File: 6kPynuqBIKNt5dgMrxD8wqmoHUo.roa (raw, json)
Hash identifier: J/x9mvcbRHZvYukgVeIpM6R5/awx/6IkqhF/1tLzfUw=
Subject key identifier: EA:43:F2:9E:EA:81:20:A3:6D:E5:D8:0C:AF:10:FC:C2:A9:A8:1D:4A
Certificate issuer: /CN=e2d0c49a0e97e0d5f3ced3b7b6b9f72ca0cb53d6
Certificate serial: 018913D07BD52E7380ABA961592A58E9A20B
Authority key identifier: E2:D0:C4:9A:0E:97:E0:D5:F3:CE:D3:B7:B6:B9:F7:2C:A0:CB:53:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tDEmg6X4NXzztO3trn3LKDLU9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/6kPynuqBIKNt5dgMrxD8wqmoHUo.roa
Signing time: Sat 01 Jul 2023 23:36:17 +0000
ROA not before: Sat 01 Jul 2023 23:36:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50495
IP address blocks: 91.223.99.0/24 maxlen: 24
91.223.102.0/24 maxlen: 24
91.223.126.0/24 maxlen: 24
194.39.32.0/22 maxlen: 22
77.83.232.0/22 maxlen: 22
2a06:ef40::/32 maxlen: 36
Validation: Failed, certificate revoked on Mon 04 Sep 2023 08:47:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:13:d0:7b:d5:2e:73:80:ab:a9:61:59:2a:58:e9:a2:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d0c49a0e97e0d5f3ced3b7b6b9f72ca0cb53d6
Validity
Not Before: Jul 1 23:36:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ea43f29eea8120a36de5d80caf10fcc2a9a81d4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e8:34:95:6f:66:1f:78:56:d8:57:07:7f:07:
82:cc:5c:72:a1:ab:16:a4:23:47:34:ec:e9:80:5b:
df:b6:35:d4:0b:31:7d:4f:5e:94:0f:3c:3d:85:47:
61:ab:05:74:25:27:27:f5:06:ca:e1:2b:e2:ca:3c:
aa:b4:29:0a:c8:1d:84:8c:58:d6:09:b5:87:24:a1:
dd:ab:52:ef:ec:49:6c:5a:4e:92:dd:c5:50:c9:ed:
c3:fc:8d:c4:01:8d:94:7a:d2:57:8b:68:c4:fc:5d:
19:8c:dc:16:24:c1:4d:86:7b:5b:e6:d3:d6:af:60:
af:5f:5c:f6:f2:1d:9b:80:98:08:a6:3c:2a:96:27:
fd:56:5f:4d:b3:2a:d4:c6:67:73:b0:3f:c6:8e:f7:
84:b0:c7:d1:f7:6c:27:ba:26:e0:74:7b:1a:67:c7:
1a:a7:f1:ce:77:3c:08:18:c8:b4:45:0b:51:13:8d:
10:0f:57:d9:62:d1:65:e2:7a:29:fa:f4:0f:2e:6a:
4b:ed:c5:23:5c:df:cb:d2:bf:8c:0d:ce:ff:7b:8c:
20:66:5f:4f:f3:ea:e1:85:cf:85:67:0d:4a:41:37:
52:bd:39:9d:cb:c7:5f:38:0f:d1:d8:1d:01:db:a1:
38:e7:be:d9:da:06:e8:61:a6:43:79:76:81:92:bc:
59:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:43:F2:9E:EA:81:20:A3:6D:E5:D8:0C:AF:10:FC:C2:A9:A8:1D:4A
X509v3 Authority Key Identifier:
keyid:E2:D0:C4:9A:0E:97:E0:D5:F3:CE:D3:B7:B6:B9:F7:2C:A0:CB:53:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tDEmg6X4NXzztO3trn3LKDLU9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/6kPynuqBIKNt5dgMrxD8wqmoHUo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/4tDEmg6X4NXzztO3trn3LKDLU9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.83.232.0/22
91.223.99.0/24
91.223.102.0/24
91.223.126.0/24
194.39.32.0/22
IPv6:
2a06:ef40::/32
Signature Algorithm: sha256WithRSAEncryption
00:7e:c5:58:80:7d:3d:e9:ff:f9:5c:11:7a:ed:c8:88:d1:e7:
a1:23:89:22:70:4c:fa:f7:ac:1b:0e:de:73:26:bc:2d:c2:57:
79:02:0e:78:36:59:1d:3c:77:e6:b8:3d:14:9f:0d:6e:c9:a4:
a1:90:8a:23:c4:5c:f6:60:9f:61:6e:4c:8b:39:e1:f6:bf:1e:
2f:20:c8:84:13:fd:68:7e:89:23:96:19:fc:c1:ec:a1:39:72:
ce:39:30:3f:68:06:aa:89:0e:e3:69:2b:75:ea:f2:9b:07:89:
4d:26:65:d4:3d:74:30:96:4c:49:7d:69:83:fb:dc:e0:9c:23:
a1:a1:b3:f6:84:2a:ec:eb:a7:cd:2d:6d:7a:3a:90:d0:dd:21:
60:72:f8:6b:3e:ae:9b:ce:75:b1:30:06:21:d4:6c:a0:21:00:
8a:ba:cc:ef:77:6e:10:20:37:5a:99:4d:6f:af:ff:ed:3f:4c:
54:32:5c:8f:78:17:23:30:d0:79:0c:9e:4d:af:07:ab:f9:96:
63:af:11:33:c4:dd:86:e6:f8:76:c7:be:ef:35:6d:34:e4:9c:
6b:a4:11:2d:36:ec:c7:98:0e:69:70:88:c5:95:0e:d9:56:fa:
3b:94:e3:b0:c4:38:6c:8e:31:59:9b:60:a1:ce:1b:e4:02:1e:
6d:ba:6d:b8
-----BEGIN CERTIFICATE-----
MIIFJDCCBAygAwIBAgISAYkT0HvVLnOAq6lhWSpY6aILMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyZDBjNDlhMGU5N2UwZDVmM2NlZDNiN2I2YjlmNzJjYTBj
YjUzZDYwHhcNMjMwNzAxMjMzNjE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYTQzZjI5ZWVhODEyMGEzNmRlNWQ4MGNhZjEwZmNjMmE5YTgxZDRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm+g0lW9mH3hW2FcHfweCzFxyoasW
pCNHNOzpgFvftjXUCzF9T16UDzw9hUdhqwV0JScn9QbK4SviyjyqtCkKyB2EjFjW
CbWHJKHdq1Lv7ElsWk6S3cVQye3D/I3EAY2UetJXi2jE/F0ZjNwWJMFNhntb5tPW
r2CvX1z28h2bgJgIpjwqlif9Vl9NsyrUxmdzsD/GjveEsMfR92wnuibgdHsaZ8ca
p/HOdzwIGMi0RQtRE40QD1fZYtFl4nop+vQPLmpL7cUjXN/L0r+MDc7/e4wgZl9P
8+rhhc+FZw1KQTdSvTmdy8dfOA/R2B0B26E4577Z2gboYaZDeXaBkrxZgwIDAQAB
o4ICMDCCAiwwHQYDVR0OBBYEFOpD8p7qgSCjbeXYDK8Q/MKpqB1KMB8GA1UdIwQY
MBaAFOLQxJoOl+DV887Tt7a59yygy1PWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHRERW1nNlg0Tlh6enRPM3RybjNMS0RMVTlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC85ZjBmN2EtMTFlYi00MzgzLWJjNmEt
NDY5MGEwMDcxNDFmLzEvNmtQeW51cUJJS050NWRnTXJ4RDh3cW1vSFVvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC85ZjBmN2EtMTFlYi00MzgzLWJjNmEtNDY5MGEwMDcxNDFm
LzEvNHRERW1nNlg0Tlh6enRPM3RybjNMS0RMVTlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQCTVPoAwQA
W99jAwQAW99mAwQAW99+AwQCwicgMA0EAgACMAcDBQAqBu9AMA0GCSqGSIb3DQEB
CwUAA4IBAQAAfsVYgH096f/5XBF67ciI0eehI4kicEz696wbDt5zJrwtwld5Ag54
NlkdPHfmuD0Unw1uyaShkIojxFz2YJ9hbkyLOeH2vx4vIMiEE/1ofokjlhn8weyh
OXLOOTA/aAaqiQ7jaSt16vKbB4lNJmXUPXQwlkxJfWmD+9zgnCOhobP2hCrs66fN
LW16OpDQ3SFgcvhrPq6bznWxMAYh1GygIQCKuszvd24QIDdamU1vr//tP0xUMlyP
eBcjMNB5DJ5Nrwer+ZZjrxEzxN2G5vh2x77vNW005JxrpBEtNuzHmA5pcIjFlQ7Z
Vvo7lOOwxDhsjjFZm2ChzhvkAh5tum24
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:48 2024 by rpki-client on console-fra.rpki-client.org