Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/EBtMrvGe0SH9IptIkenRJ6jMFnI.roa
File: EBtMrvGe0SH9IptIkenRJ6jMFnI.roa (raw, json)
Hash identifier: 2irtyr108/wBuzTKjhOfMRRI1e8dhx4bgfK/al/gGsw=
Subject key identifier: 10:1B:4C:AE:F1:9E:D1:21:FD:22:9B:48:91:E9:D1:27:A8:CC:16:72
Certificate issuer: /CN=f4b762950eb7916668bbfa8d1b870560b1ca7739
Certificate serial: 018570D52F1A5B06007FE008524EAC59FAF8
Authority key identifier: F4:B7:62:95:0E:B7:91:66:68:BB:FA:8D:1B:87:05:60:B1:CA:77:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9LdilQ63kWZou_qNG4cFYLHKdzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/EBtMrvGe0SH9IptIkenRJ6jMFnI.roa
Signing time: Mon 02 Jan 2023 04:54:57 +0000
ROA not before: Mon 02 Jan 2023 04:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41933
IP address blocks: 84.17.91.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:d5:2f:1a:5b:06:00:7f:e0:08:52:4e:ac:59:fa:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4b762950eb7916668bbfa8d1b870560b1ca7739
Validity
Not Before: Jan 2 04:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=101b4caef19ed121fd229b4891e9d127a8cc1672
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:1e:41:b4:74:5f:d8:db:6a:34:0e:d0:3f:33:
4f:2c:7c:a3:41:35:22:c2:95:12:43:5f:2b:bb:ce:
9a:9f:3d:bb:fb:a8:b7:43:a7:df:64:87:41:61:81:
9d:e1:9f:48:d5:63:76:6e:d7:44:f0:75:95:7a:75:
04:0e:9b:6f:66:1c:f1:31:c2:14:d6:78:02:39:c9:
95:51:f3:c5:c4:8c:6d:ad:03:18:78:97:48:b9:ba:
14:a4:0b:a8:19:c6:56:bf:82:8e:3e:6f:de:77:51:
c0:44:97:3a:c9:54:f1:48:4d:32:29:8e:b4:aa:d9:
48:9e:ed:d8:ea:21:d8:99:dc:d6:d1:35:31:99:7d:
9e:23:b9:f6:8b:ee:b7:f3:ae:a6:19:98:d5:03:ec:
74:b3:03:de:b5:d1:7f:57:b0:ef:e4:48:d4:12:24:
cf:8c:fb:39:58:dc:02:a5:04:06:d9:b9:c2:3e:e8:
88:d7:ce:26:87:6d:ac:db:60:b0:d9:80:cd:cb:29:
83:29:93:e6:20:70:d4:4c:75:60:54:94:ad:09:ea:
61:ca:53:34:5b:1e:a1:b5:60:c8:13:10:32:63:e8:
2e:53:c1:3b:b5:2e:62:83:5f:0a:fc:96:5c:4c:d8:
69:3f:13:04:a8:b3:8f:63:8f:99:cc:c5:7c:21:f7:
fe:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:1B:4C:AE:F1:9E:D1:21:FD:22:9B:48:91:E9:D1:27:A8:CC:16:72
X509v3 Authority Key Identifier:
keyid:F4:B7:62:95:0E:B7:91:66:68:BB:FA:8D:1B:87:05:60:B1:CA:77:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9LdilQ63kWZou_qNG4cFYLHKdzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/EBtMrvGe0SH9IptIkenRJ6jMFnI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.17.91.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:c0:f9:95:30:b9:92:fb:28:3e:4f:7c:16:a8:c6:1f:4a:40:
1f:3b:c2:b9:33:de:c3:c4:df:d2:45:16:b4:98:08:0a:be:d2:
97:39:fb:1c:c1:2b:22:9d:21:8c:77:32:e7:e7:1f:92:36:67:
06:86:fa:9d:03:9c:9a:ad:08:8a:17:51:b3:c0:7a:4e:7e:58:
37:83:3c:c8:7a:44:27:f9:fe:54:85:04:c3:0a:5a:f8:e8:b1:
2e:8f:a8:c6:2b:9b:97:ca:8c:5d:ba:f8:f5:61:4f:dd:61:26:
70:6b:aa:ce:89:8f:c3:3f:1a:12:23:5c:09:59:eb:f3:49:92:
fd:f2:c8:3a:19:9a:a5:9c:da:4b:0a:03:e0:b9:3b:47:6e:d9:
ec:59:d1:9b:51:4e:e5:02:f1:c8:2a:94:72:3a:c7:f6:16:14:
75:1e:bd:86:66:02:26:aa:32:90:6e:a3:05:5e:6f:c3:da:1a:
43:50:eb:76:fe:56:3c:f5:eb:c6:c4:ca:13:e2:47:ee:94:f4:
35:a3:72:f2:7c:a0:e0:a3:a2:0c:fc:d1:05:50:82:9d:94:a6:
37:2d:fa:4a:b3:b0:9f:5f:c8:bb:83:fa:90:41:85:77:e2:75:
4c:82:0e:09:2b:b7:37:03:42:5d:bf:cb:21:36:2b:c3:ed:5a:
a4:fd:05:93
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVw1S8aWwYAf+AIUk6sWfr4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY0Yjc2Mjk1MGViNzkxNjY2OGJiZmE4ZDFiODcwNTYwYjFj
YTc3MzkwHhcNMjMwMTAyMDQ1NDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMDFiNGNhZWYxOWVkMTIxZmQyMjliNDg5MWU5ZDEyN2E4Y2MxNjcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzx5BtHRf2NtqNA7QPzNPLHyjQTUi
wpUSQ18ru86anz27+6i3Q6ffZIdBYYGd4Z9I1WN2btdE8HWVenUEDptvZhzxMcIU
1ngCOcmVUfPFxIxtrQMYeJdIuboUpAuoGcZWv4KOPm/ed1HARJc6yVTxSE0yKY60
qtlInu3Y6iHYmdzW0TUxmX2eI7n2i+63866mGZjVA+x0swPetdF/V7Dv5EjUEiTP
jPs5WNwCpQQG2bnCPuiI184mh22s22Cw2YDNyymDKZPmIHDUTHVgVJStCephylM0
Wx6htWDIExAyY+guU8E7tS5ig18K/JZcTNhpPxMEqLOPY4+ZzMV8Iff+KQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBAbTK7xntEh/SKbSJHp0SeozBZyMB8GA1UdIwQY
MBaAFPS3YpUOt5FmaLv6jRuHBWCxync5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOUxkaWxRNjNrV1pvdV9xTkc0Y0ZZTEhLZHprLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi8wYjIzYzUtMjFiNS00YWIzLTk3YTAt
MmY4ZGYxODdmOThiLzEvRUJ0TXJ2R2UwU0g5SXB0SWtlblJKNmpNRm5JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi8wYjIzYzUtMjFiNS00YWIzLTk3YTAtMmY4ZGYxODdmOThi
LzEvOUxkaWxRNjNrV1pvdV9xTkc0Y0ZZTEhLZHprLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVBFbMA0G
CSqGSIb3DQEBCwUAA4IBAQAMwPmVMLmS+yg+T3wWqMYfSkAfO8K5M97DxN/SRRa0
mAgKvtKXOfscwSsinSGMdzLn5x+SNmcGhvqdA5yarQiKF1GzwHpOflg3gzzIekQn
+f5UhQTDClr46LEuj6jGK5uXyoxduvj1YU/dYSZwa6rOiY/DPxoSI1wJWevzSZL9
8sg6GZqlnNpLCgPguTtHbtnsWdGbUU7lAvHIKpRyOsf2FhR1Hr2GZgImqjKQbqMF
Xm/D2hpDUOt2/lY89evGxMoT4kfulPQ1o3LyfKDgo6IM/NEFUIKdlKY3LfpKs7Cf
X8i7g/qQQYV34nVMgg4JK7c3A0Jdv8shNivD7Vqk/QWT
-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:45 2024 by rpki-client on console-ams.rpki-client.org