Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/a4cca1-6512-4660-8735-787aaa444cda/1/tMvpPU-P1XEc32JxsP65porb3Ws.roa
File: tMvpPU-P1XEc32JxsP65porb3Ws.roa (raw, json)
Hash identifier: xWDBuMrJPqHdi3CewWv/1PX4aBqCttguhwH3jj9lmpw=
Subject key identifier: B4:CB:E9:3D:4F:8F:D5:71:1C:DF:62:71:B0:FE:B9:A6:8A:DB:DD:6B
Certificate issuer: /CN=25f3fb2b1cb50a3fcc642608633f512375226d1f
Certificate serial: 018C97010F1DC0F41F5D8852178AF6F8AB76
Authority key identifier: 25:F3:FB:2B:1C:B5:0A:3F:CC:64:26:08:63:3F:51:23:75:22:6D:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JfP7Kxy1Cj_MZCYIYz9RI3UibR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/a4cca1-6512-4660-8735-787aaa444cda/1/tMvpPU-P1XEc32JxsP65porb3Ws.roa
Signing time: Sat 23 Dec 2023 14:07:58 +0000
ROA not before: Sat 23 Dec 2023 14:07:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197730
IP address blocks: 91.193.25.0/24 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:97:01:0f:1d:c0:f4:1f:5d:88:52:17:8a:f6:f8:ab:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25f3fb2b1cb50a3fcc642608633f512375226d1f
Validity
Not Before: Dec 23 14:07:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b4cbe93d4f8fd5711cdf6271b0feb9a68adbdd6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:df:e8:ae:f0:23:13:3d:d9:dc:60:36:3b:68:
d8:a0:44:cb:07:21:32:66:86:fd:14:4d:10:2f:8d:
a8:21:6e:da:e0:62:40:d5:08:89:c2:50:d9:52:ca:
37:31:34:47:c4:38:a8:9e:f3:41:16:88:be:55:eb:
d5:1f:6e:4a:cf:8c:99:41:ee:40:9f:d8:a8:c4:d5:
d5:0c:b2:fc:a1:bd:67:b5:8c:54:0b:b8:43:c9:d2:
b3:03:6a:a3:68:ff:54:26:81:a3:0e:d0:02:9b:cb:
15:c5:49:bb:d1:b6:10:f0:69:94:67:21:39:b3:5f:
45:42:31:e9:e4:e6:0d:ae:bf:bc:4c:d9:07:19:33:
cd:55:e6:1c:3a:a0:6a:77:ff:17:12:f7:92:68:9a:
f0:b1:45:fb:1e:74:5b:97:0a:d6:b2:3c:51:5b:17:
81:db:c4:19:2c:02:47:bc:c1:8c:d9:04:e7:90:6f:
42:96:fe:e0:89:81:9b:26:c8:8a:41:62:d1:1b:a5:
69:d5:fa:29:3a:b0:6d:46:8c:8c:93:18:94:78:99:
86:13:af:55:9d:25:17:c8:6f:68:fb:69:95:af:29:
52:04:38:a9:56:b9:b7:6d:3e:bc:5d:a2:76:f4:8e:
2a:aa:63:81:ff:dc:cd:d6:1b:42:af:b4:b0:30:a2:
e4:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:CB:E9:3D:4F:8F:D5:71:1C:DF:62:71:B0:FE:B9:A6:8A:DB:DD:6B
X509v3 Authority Key Identifier:
keyid:25:F3:FB:2B:1C:B5:0A:3F:CC:64:26:08:63:3F:51:23:75:22:6D:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JfP7Kxy1Cj_MZCYIYz9RI3UibR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/a4cca1-6512-4660-8735-787aaa444cda/1/tMvpPU-P1XEc32JxsP65porb3Ws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/a4cca1-6512-4660-8735-787aaa444cda/1/JfP7Kxy1Cj_MZCYIYz9RI3UibR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.193.25.0/24
Signature Algorithm: sha256WithRSAEncryption
14:88:92:4b:98:c0:91:3d:6e:cf:59:f6:3d:1a:b9:80:c5:d4:
90:fa:b3:1f:bd:39:e0:10:8d:29:8f:65:59:00:38:8f:1d:e9:
4e:c3:05:cd:2e:c8:bf:8e:b6:0d:13:64:e1:94:b0:ec:2f:e8:
68:a2:2d:05:a5:34:dc:de:4d:58:75:0b:c2:5e:aa:8b:5e:11:
a0:58:3a:f6:ef:4f:38:40:46:d9:1b:35:6e:ce:eb:50:55:bd:
2b:19:c2:b7:88:1d:f3:57:75:61:0d:b9:f6:e8:57:4a:68:25:
32:23:b1:03:7e:fe:ce:f3:13:9a:b9:4a:d2:29:3a:c3:8d:1c:
de:92:9a:b5:a0:2c:a1:11:86:a8:46:71:be:0d:0b:60:4a:78:
d9:fe:2b:a7:2e:93:81:d3:20:ac:82:19:31:33:f1:54:18:62:
f0:dd:f6:3c:c2:0f:f1:7a:2d:3f:b6:07:d4:97:d6:d5:e4:83:
8d:8d:40:1a:2c:21:86:1c:cd:2a:f2:25:e5:85:af:c4:76:0d:
a2:dc:c1:fa:6f:44:01:e4:0b:87:88:99:43:14:82:c6:c8:b3:
10:6b:2d:e2:ff:c1:44:5b:9e:28:eb:3f:d4:91:a7:d2:a7:b6:
36:4a:b3:29:31:c8:4d:f0:b2:ea:1b:0b:c5:cc:cf:52:4c:72:
02:d7:f8:5e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYyXAQ8dwPQfXYhSF4r2+Kt2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1ZjNmYjJiMWNiNTBhM2ZjYzY0MjYwODYzM2Y1MTIzNzUy
MjZkMWYwHhcNMjMxMjIzMTQwNzU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNGNiZTkzZDRmOGZkNTcxMWNkZjYyNzFiMGZlYjlhNjhhZGJkZDZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm9/orvAjEz3Z3GA2O2jYoETLByEy
Zob9FE0QL42oIW7a4GJA1QiJwlDZUso3MTRHxDionvNBFoi+VevVH25Kz4yZQe5A
n9ioxNXVDLL8ob1ntYxUC7hDydKzA2qjaP9UJoGjDtACm8sVxUm70bYQ8GmUZyE5
s19FQjHp5OYNrr+8TNkHGTPNVeYcOqBqd/8XEveSaJrwsUX7HnRblwrWsjxRWxeB
28QZLAJHvMGM2QTnkG9Clv7giYGbJsiKQWLRG6Vp1fopOrBtRoyMkxiUeJmGE69V
nSUXyG9o+2mVrylSBDipVrm3bT68XaJ29I4qqmOB/9zN1htCr7SwMKLkpwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLTL6T1Pj9VxHN9icbD+uaaK291rMB8GA1UdIwQY
MBaAFCXz+ysctQo/zGQmCGM/USN1Im0fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSmZQN0t4eTFDal9NWkNZSVl6OVJJM1VpYlI4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC9hNGNjYTEtNjUxMi00NjYwLTg3MzUt
Nzg3YWFhNDQ0Y2RhLzEvdE12cFBVLVAxWEVjMzJKeHNQNjVwb3JiM1dzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC9hNGNjYTEtNjUxMi00NjYwLTg3MzUtNzg3YWFhNDQ0Y2Rh
LzEvSmZQN0t4eTFDal9NWkNZSVl6OVJJM1VpYlI4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8EZMA0G
CSqGSIb3DQEBCwUAA4IBAQAUiJJLmMCRPW7PWfY9GrmAxdSQ+rMfvTngEI0pj2VZ
ADiPHelOwwXNLsi/jrYNE2ThlLDsL+hooi0FpTTc3k1YdQvCXqqLXhGgWDr27084
QEbZGzVuzutQVb0rGcK3iB3zV3VhDbn26FdKaCUyI7EDfv7O8xOauUrSKTrDjRze
kpq1oCyhEYaoRnG+DQtgSnjZ/iunLpOB0yCsghkxM/FUGGLw3fY8wg/xei0/tgfU
l9bV5IONjUAaLCGGHM0q8iXlha/Edg2i3MH6b0QB5AuHiJlDFILGyLMQay3i/8FE
W54o6z/UkafSp7Y2SrMpMchN8LLqGwvFzM9STHIC1/he
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:47 2024 by rpki-client on console-fra.rpki-client.org