Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/xEPa6bUuc2tmtsWNSwHJKm11Vu8.roa
File: xEPa6bUuc2tmtsWNSwHJKm11Vu8.roa (raw, json)
Hash identifier: wITH8d090RELa9fN/JqGBSV429w5RgAkwRaN5GvuVZc=
Subject key identifier: C4:43:DA:E9:B5:2E:73:6B:66:B6:C5:8D:4B:01:C9:2A:6D:75:56:EF
Certificate issuer: /CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Certificate serial: 018B1833E53726D7C410B880FDD043D92C0B
Authority key identifier: 64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/xEPa6bUuc2tmtsWNSwHJKm11Vu8.roa
Signing time: Tue 10 Oct 2023 06:08:55 +0000
ROA not before: Tue 10 Oct 2023 06:08:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2914
IP address blocks: 91.190.186.0/24 maxlen: 24
91.190.191.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Nov 2023 09:58:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:18:33:e5:37:26:d7:c4:10:b8:80:fd:d0:43:d9:2c:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Validity
Not Before: Oct 10 06:08:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c443dae9b52e736b66b6c58d4b01c92a6d7556ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:8c:98:ec:45:bc:e9:e3:ad:b5:43:ec:ab:5d:
73:10:c6:f8:b3:7a:20:cf:ea:7a:62:28:b4:17:dd:
be:45:19:44:7a:b3:3a:c2:34:25:8c:c9:46:68:eb:
13:2c:f6:7e:bd:ec:c0:16:61:69:8a:a0:3e:c5:2a:
55:a6:b3:fe:c7:2c:28:e9:d7:7e:ed:4e:ce:85:37:
e4:14:05:94:7b:70:e8:3a:f8:e2:e4:14:6e:18:ab:
fd:ff:eb:eb:18:15:fc:1a:8e:e8:69:31:2d:4e:b3:
25:fe:62:53:33:45:54:76:dd:c2:0a:a4:b0:13:13:
96:d3:48:85:db:62:d7:c8:e3:51:cc:35:99:6a:fd:
3f:d5:0d:46:dd:b2:bd:c2:f3:59:a8:5f:43:2c:59:
ea:78:7b:e0:2a:a7:9b:b7:95:4d:70:f0:27:2e:43:
34:2a:34:38:73:5b:39:4e:bf:6f:71:20:e5:1c:8e:
fd:90:20:27:9d:87:96:b4:c5:b4:fe:97:be:da:c5:
6b:32:4b:8b:2c:6c:bc:6c:29:66:9f:b0:32:81:e0:
f0:63:89:9f:af:4c:65:02:fc:72:1c:25:10:8e:60:
95:a0:43:3b:4a:1e:9e:47:0a:e8:5f:03:9e:aa:04:
1d:f5:da:ad:aa:a5:f3:0e:32:ec:91:63:1d:90:2d:
22:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:43:DA:E9:B5:2E:73:6B:66:B6:C5:8D:4B:01:C9:2A:6D:75:56:EF
X509v3 Authority Key Identifier:
keyid:64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/xEPa6bUuc2tmtsWNSwHJKm11Vu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.190.186.0/24
91.190.191.0/24
Signature Algorithm: sha256WithRSAEncryption
26:2f:99:90:21:fa:ad:93:c7:fa:e1:7b:60:0a:53:22:0d:44:
cb:7b:69:6e:f5:76:c6:b3:f6:48:49:d8:68:cb:58:00:bd:c8:
09:96:be:63:87:d6:c5:cd:d0:fb:a2:e3:c1:9c:b1:ba:94:d9:
e3:b2:2a:f9:68:52:b1:78:1f:1c:90:9a:89:4e:88:0d:d2:f2:
f1:81:38:f6:12:9b:6c:52:60:39:b0:8d:18:10:ac:fc:d5:65:
4d:65:f1:e6:3c:bc:cc:03:f0:f4:f5:01:b6:e1:ea:c8:f9:cf:
70:56:8e:0f:e7:e3:bc:9e:30:59:ec:51:d3:83:68:0e:3a:2e:
9c:84:29:e9:29:8c:77:18:56:d0:6a:33:a6:8e:39:99:18:65:
90:bd:66:84:0d:c6:3a:02:ae:5e:74:9f:50:56:bd:b6:8c:30:
ed:40:98:53:d0:be:69:c7:82:46:79:2d:e3:7b:26:84:e2:57:
d5:d2:cc:bd:6c:b1:52:a2:26:3d:ba:1e:8d:19:e0:3a:53:68:
b2:73:1a:af:18:8d:18:b3:0c:00:e5:f9:bc:77:8e:bc:8a:9e:
f6:c5:6f:c1:10:87:13:d7:dc:64:d0:5e:b2:e5:80:fd:b1:ee:
90:92:c5:56:f0:22:9d:ed:24:5b:53:cb:62:ea:61:b5:0b:21:
8a:af:23:77
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYsYM+U3JtfEELiA/dBD2SwLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0MTk3NTU4M2IyNTAzNjJjODE1MGY2M2FkYjMwYTBmNmEw
YzZmYzMwHhcNMjMxMDEwMDYwODU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNDQzZGFlOWI1MmU3MzZiNjZiNmM1OGQ0YjAxYzkyYTZkNzU1NmVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmoyY7EW86eOttUPsq11zEMb4s3og
z+p6Yii0F92+RRlEerM6wjQljMlGaOsTLPZ+vezAFmFpiqA+xSpVprP+xywo6dd+
7U7OhTfkFAWUe3DoOvji5BRuGKv9/+vrGBX8Go7oaTEtTrMl/mJTM0VUdt3CCqSw
ExOW00iF22LXyONRzDWZav0/1Q1G3bK9wvNZqF9DLFnqeHvgKqebt5VNcPAnLkM0
KjQ4c1s5Tr9vcSDlHI79kCAnnYeWtMW0/pe+2sVrMkuLLGy8bClmn7AygeDwY4mf
r0xlAvxyHCUQjmCVoEM7Sh6eRwroXwOeqgQd9dqtqqXzDjLskWMdkC0ilQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFMRD2um1LnNrZrbFjUsBySptdVbvMB8GA1UdIwQY
MBaAFGQZdVg7JQNiyBUPY62zCg9qDG/DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWkJsMVdEc2xBMkxJRlE5anJiTUtEMm9NYjhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC85OGE1ZWQtOTA1ZS00YmZhLTkxNTQt
ZjFjMzNhYTJmZDUwLzEveEVQYTZiVXVjMnRtdHNXTlN3SEpLbTExVnU4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC85OGE1ZWQtOTA1ZS00YmZhLTkxNTQtZjFjMzNhYTJmZDUw
LzEvWkJsMVdEc2xBMkxJRlE5anJiTUtEMm9NYjhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAW766AwQA
W76/MA0GCSqGSIb3DQEBCwUAA4IBAQAmL5mQIfqtk8f64XtgClMiDUTLe2lu9XbG
s/ZISdhoy1gAvcgJlr5jh9bFzdD7ouPBnLG6lNnjsir5aFKxeB8ckJqJTogN0vLx
gTj2EptsUmA5sI0YEKz81WVNZfHmPLzMA/D09QG24erI+c9wVo4P5+O8njBZ7FHT
g2gOOi6chCnpKYx3GFbQajOmjjmZGGWQvWaEDcY6Aq5edJ9QVr22jDDtQJhT0L5p
x4JGeS3jeyaE4lfV0sy9bLFSoiY9uh6NGeA6U2iycxqvGI0YswwA5fm8d468ip72
xW/BEIcT19xk0F6y5YD9se6QksVW8CKd7SRbU8ti6mG1CyGKryN3
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:21 2024 by rpki-client on console-fra.rpki-client.org