Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/7RdUDs9nX9kJETR5_swpn680nCw.roa
File: 7RdUDs9nX9kJETR5_swpn680nCw.roa (raw, json)
Hash identifier: GOwemjRhHwKWmfQEF+/yquOjMIbGLnvL2l1cMKdMvdA=
Subject key identifier: ED:17:54:0E:CF:67:5F:D9:09:11:34:79:FE:CC:29:9F:AF:34:9C:2C
Certificate issuer: /CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Certificate serial: 018E720EEEE627A73C26177AACDBB0ADFEF3
Authority key identifier: 64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/7RdUDs9nX9kJETR5_swpn680nCw.roa
Signing time: Sun 24 Mar 2024 20:02:44 +0000
ROA not before: Sun 24 Mar 2024 20:02:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56322
IP address blocks: 91.190.188.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 23 May 2024 08:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:72:0e:ee:e6:27:a7:3c:26:17:7a:ac:db:b0:ad:fe:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Validity
Not Before: Mar 24 20:02:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ed17540ecf675fd909113479fecc299faf349c2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:00:cb:59:3e:86:17:84:52:65:2b:12:91:85:
fa:7b:30:da:ea:8e:57:b6:ec:61:f3:7f:5e:70:21:
94:2f:7a:65:5f:b9:20:9a:62:d7:4b:79:d4:f7:ec:
d4:d0:3f:fd:47:d4:f5:00:92:07:da:8c:32:2b:67:
4d:a5:00:58:dd:d7:05:36:7a:e3:ec:d9:7d:76:b8:
96:c1:fe:9d:69:14:ad:2b:e2:7d:f1:86:81:57:fd:
fa:d6:52:a9:70:86:dc:41:a7:28:72:c3:93:08:23:
a3:c6:70:0c:d9:63:4f:83:3d:d8:ad:94:95:cb:a0:
04:7c:9a:46:a9:f9:1f:65:62:7a:dd:8d:1e:2b:4f:
56:a4:4f:96:ab:ee:76:e6:55:d2:4b:43:2b:a4:de:
21:17:a6:a8:c0:9a:f3:ed:27:5e:9b:2a:5c:aa:2c:
73:f9:b7:0d:3f:8f:f6:76:69:d3:f8:e4:52:b0:b2:
05:b4:25:80:60:69:8e:00:c4:6e:51:a4:9d:5d:ed:
35:73:fa:ba:7e:ec:c9:2a:e2:62:b6:21:2f:24:b1:
5d:81:7a:e6:00:48:a1:39:d1:f1:a0:d4:2c:35:5c:
d2:98:84:61:ec:08:5a:59:b7:2d:87:86:af:e3:da:
58:e0:ca:8f:25:e1:85:46:54:f7:71:46:bf:c3:1a:
57:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:17:54:0E:CF:67:5F:D9:09:11:34:79:FE:CC:29:9F:AF:34:9C:2C
X509v3 Authority Key Identifier:
keyid:64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/7RdUDs9nX9kJETR5_swpn680nCw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.190.188.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:59:8e:af:a3:a3:17:58:d6:27:b2:84:75:7f:64:4f:4f:e1:
06:e7:56:ef:ce:6c:7e:06:0d:44:6c:d8:8e:81:10:ea:a9:d0:
ca:2e:cf:5d:fe:0a:94:a0:80:c6:13:16:7d:8a:5b:83:33:23:
20:12:6b:88:6e:f0:9f:42:17:a5:ff:b0:13:07:6f:be:33:d0:
1f:ce:f3:37:d9:04:9a:32:cd:3f:70:93:ec:c0:73:9e:92:ec:
33:68:47:dd:ab:28:35:80:2a:80:12:12:ca:84:d5:0f:48:fd:
82:a1:23:03:00:ba:14:a9:5e:6f:5d:94:38:ba:00:ec:fb:ad:
d9:55:84:62:fd:86:2f:ac:e0:73:3b:cf:fd:e4:81:2c:0e:19:
d9:9b:68:55:32:5f:ed:fc:31:7b:47:d9:cc:57:24:85:5e:e9:
49:d1:48:8c:33:8c:af:e9:f2:76:27:d7:6b:90:cc:ab:da:e4:
e2:2d:a1:f7:74:13:74:26:8e:06:0a:c0:7a:d0:3a:73:f7:88:
8d:47:65:f9:b4:c3:6a:8a:30:d9:e4:a1:95:07:de:25:9e:e0:
68:70:74:e1:cd:ee:37:d3:7d:0f:15:bb:2c:5b:c5:4b:f0:0c:
cb:84:c8:56:ef:02:50:fc:61:bd:f1:73:4a:b2:06:6b:cb:fa:
2f:23:7c:44
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY5yDu7mJ6c8Jhd6rNuwrf7zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0MTk3NTU4M2IyNTAzNjJjODE1MGY2M2FkYjMwYTBmNmEw
YzZmYzMwHhcNMjQwMzI0MjAwMjQ0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZDE3NTQwZWNmNjc1ZmQ5MDkxMTM0NzlmZWNjMjk5ZmFmMzQ5YzJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1QDLWT6GF4RSZSsSkYX6ezDa6o5X
tuxh839ecCGUL3plX7kgmmLXS3nU9+zU0D/9R9T1AJIH2owyK2dNpQBY3dcFNnrj
7Nl9driWwf6daRStK+J98YaBV/361lKpcIbcQacocsOTCCOjxnAM2WNPgz3YrZSV
y6AEfJpGqfkfZWJ63Y0eK09WpE+Wq+525lXSS0MrpN4hF6aowJrz7Sdemypcqixz
+bcNP4/2dmnT+ORSsLIFtCWAYGmOAMRuUaSdXe01c/q6fuzJKuJitiEvJLFdgXrm
AEihOdHxoNQsNVzSmIRh7AhaWbcth4av49pY4MqPJeGFRlT3cUa/wxpXpQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFO0XVA7PZ1/ZCRE0ef7MKZ+vNJwsMB8GA1UdIwQY
MBaAFGQZdVg7JQNiyBUPY62zCg9qDG/DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWkJsMVdEc2xBMkxJRlE5anJiTUtEMm9NYjhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC85OGE1ZWQtOTA1ZS00YmZhLTkxNTQt
ZjFjMzNhYTJmZDUwLzEvN1JkVURzOW5YOWtKRVRSNV9zd3BuNjgwbkN3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC85OGE1ZWQtOTA1ZS00YmZhLTkxNTQtZjFjMzNhYTJmZDUw
LzEvWkJsMVdEc2xBMkxJRlE5anJiTUtEMm9NYjhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW768MA0G
CSqGSIb3DQEBCwUAA4IBAQA8WY6vo6MXWNYnsoR1f2RPT+EG51bvzmx+Bg1EbNiO
gRDqqdDKLs9d/gqUoIDGExZ9iluDMyMgEmuIbvCfQhel/7ATB2++M9AfzvM32QSa
Ms0/cJPswHOekuwzaEfdqyg1gCqAEhLKhNUPSP2CoSMDALoUqV5vXZQ4ugDs+63Z
VYRi/YYvrOBzO8/95IEsDhnZm2hVMl/t/DF7R9nMVySFXulJ0UiMM4yv6fJ2J9dr
kMyr2uTiLaH3dBN0Jo4GCsB60Dpz94iNR2X5tMNqijDZ5KGVB94lnuBocHThze43
030PFbssW8VL8AzLhMhW7wJQ/GG98XNKsgZry/ovI3xE
-----END CERTIFICATE-----
Generated at Thu May 23 10:55:47 2024 by rpki-client on console-fra.rpki-client.org