Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/e1c7c9-cc80-45d7-a6d8-af334a0a1e93/1/3LgS6qQ7r6B--hWwxiRe7CyiSc4.roa
File: 3LgS6qQ7r6B--hWwxiRe7CyiSc4.roa (raw, json)
Hash identifier: KORj2Mgtb0u6QSQEUn+2N55OnoCqtqh/XNBDeO/IKmg=
Subject key identifier: DC:B8:12:EA:A4:3B:AF:A0:7E:FA:15:B0:C6:24:5E:EC:2C:A2:49:CE
Certificate issuer: /CN=8e57b1447642c14f11c04b641cf1d8de8adac784
Certificate serial: 018572CCCE3CA04B98FBBA95F6BB56A37E1F
Authority key identifier: 8E:57:B1:44:76:42:C1:4F:11:C0:4B:64:1C:F1:D8:DE:8A:DA:C7:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jlexRHZCwU8RwEtkHPHY3orax4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/e1c7c9-cc80-45d7-a6d8-af334a0a1e93/1/3LgS6qQ7r6B--hWwxiRe7CyiSc4.roa
Signing time: Mon 02 Jan 2023 14:05:02 +0000
ROA not before: Mon 02 Jan 2023 14:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205239
IP address blocks: 91.229.101.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:cc:ce:3c:a0:4b:98:fb:ba:95:f6:bb:56:a3:7e:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e57b1447642c14f11c04b641cf1d8de8adac784
Validity
Not Before: Jan 2 14:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dcb812eaa43bafa07efa15b0c6245eec2ca249ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:39:26:b7:e9:02:29:95:70:0d:9b:b5:0e:13:
2f:68:ea:64:fb:08:8a:02:b1:ac:3d:7c:cc:dd:74:
fc:64:41:2b:ef:1f:a3:5d:43:a5:33:18:df:c0:e2:
31:21:b4:a6:d7:27:cd:99:6c:57:33:f0:b6:21:80:
ff:c9:1a:ca:a8:3a:f6:b1:d0:d1:f3:29:49:24:0e:
58:f2:ab:12:cd:cb:fc:4e:09:8d:93:1c:8f:6c:8c:
50:42:13:a4:f7:60:6f:22:2e:da:99:ee:e0:59:96:
9a:a8:ee:39:c3:b8:d4:f0:47:82:00:2e:a7:ff:0c:
5e:bf:84:c8:5d:c4:c0:0e:9b:78:cd:7d:47:85:26:
75:d7:e5:bd:6d:1b:a2:9e:0b:20:ea:33:bb:ae:be:
b2:2e:5e:f9:7d:c8:b1:4f:23:6a:45:df:f0:99:72:
f3:c3:7c:38:91:ed:94:22:1d:b6:84:ae:06:56:ec:
65:b0:5b:d5:4c:37:8a:6f:2e:31:ca:6d:52:54:cd:
bb:5b:88:e9:94:45:d1:f2:f7:01:20:a1:83:72:26:
3c:10:f9:bf:ed:94:7b:ef:55:bb:0c:d3:7e:39:70:
a9:ee:8a:1b:39:0b:4e:26:b0:61:d2:22:bb:86:16:
b8:26:11:7a:de:e2:b8:d5:8c:9b:2a:38:43:46:65:
a8:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:B8:12:EA:A4:3B:AF:A0:7E:FA:15:B0:C6:24:5E:EC:2C:A2:49:CE
X509v3 Authority Key Identifier:
keyid:8E:57:B1:44:76:42:C1:4F:11:C0:4B:64:1C:F1:D8:DE:8A:DA:C7:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jlexRHZCwU8RwEtkHPHY3orax4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e1c7c9-cc80-45d7-a6d8-af334a0a1e93/1/3LgS6qQ7r6B--hWwxiRe7CyiSc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e1c7c9-cc80-45d7-a6d8-af334a0a1e93/1/jlexRHZCwU8RwEtkHPHY3orax4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.101.0/24
Signature Algorithm: sha256WithRSAEncryption
70:1e:05:96:12:19:a2:fe:77:f5:a5:ee:35:12:ca:71:1f:a8:
ac:42:33:aa:0b:fe:b3:88:91:d3:af:04:2a:17:92:7e:b2:55:
46:aa:ed:5d:91:9e:73:83:31:a7:53:eb:a8:9e:c2:09:21:52:
4d:76:22:e5:62:da:ab:be:df:4e:a0:0e:3e:8e:ec:7a:4a:a4:
c1:0e:c9:0e:1c:43:6f:2a:26:12:75:43:9a:30:16:e8:92:a6:
3f:6a:cc:c7:f9:9e:0f:6d:2e:69:e0:33:f1:6c:93:77:4a:d6:
53:e9:ef:c6:16:08:a2:94:f6:85:05:4e:4b:34:67:c1:2d:f6:
15:19:6d:91:c0:09:45:33:a1:7b:f4:81:54:68:bd:84:24:b1:
00:84:38:98:a5:43:92:57:58:22:c1:00:f5:61:d6:51:ab:18:
75:08:e2:9d:8d:68:d1:45:cd:ab:cf:c0:54:e5:61:9a:c3:ea:
7e:ff:3b:c0:3b:45:5e:ba:2d:17:00:80:41:2e:ce:8b:32:d0:
c2:61:45:7d:a7:b5:4e:32:56:6c:6c:b3:d6:d0:f2:1d:ab:13:
9e:f4:54:77:7c:bd:10:57:d7:b7:93:dd:3e:74:f5:23:7f:67:
fc:1a:91:08:7b:52:3f:5c:01:4a:03:c9:15:6f:59:a8:92:1b:
d5:1c:47:ef
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyzM48oEuY+7qV9rtWo34fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhlNTdiMTQ0NzY0MmMxNGYxMWMwNGI2NDFjZjFkOGRlOGFk
YWM3ODQwHhcNMjMwMTAyMTQwNTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkY2I4MTJlYWE0M2JhZmEwN2VmYTE1YjBjNjI0NWVlYzJjYTI0OWNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArjkmt+kCKZVwDZu1DhMvaOpk+wiK
ArGsPXzM3XT8ZEEr7x+jXUOlMxjfwOIxIbSm1yfNmWxXM/C2IYD/yRrKqDr2sdDR
8ylJJA5Y8qsSzcv8TgmNkxyPbIxQQhOk92BvIi7ame7gWZaaqO45w7jU8EeCAC6n
/wxev4TIXcTADpt4zX1HhSZ11+W9bRuingsg6jO7rr6yLl75fcixTyNqRd/wmXLz
w3w4ke2UIh22hK4GVuxlsFvVTDeKby4xym1SVM27W4jplEXR8vcBIKGDciY8EPm/
7ZR771W7DNN+OXCp7oobOQtOJrBh0iK7hha4JhF63uK41YybKjhDRmWo+wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNy4EuqkO6+gfvoVsMYkXuwsoknOMB8GA1UdIwQY
MBaAFI5XsUR2QsFPEcBLZBzx2N6K2seEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvamxleFJIWkN3VThSd0V0a0hQSFkzb3JheDRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC9lMWM3YzktY2M4MC00NWQ3LWE2ZDgt
YWYzMzRhMGExZTkzLzEvM0xnUzZxUTdyNkItLWhXd3hpUmU3Q3lpU2M0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC9lMWM3YzktY2M4MC00NWQ3LWE2ZDgtYWYzMzRhMGExZTkz
LzEvamxleFJIWkN3VThSd0V0a0hQSFkzb3JheDRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+VlMA0G
CSqGSIb3DQEBCwUAA4IBAQBwHgWWEhmi/nf1pe41EspxH6isQjOqC/6ziJHTrwQq
F5J+slVGqu1dkZ5zgzGnU+uonsIJIVJNdiLlYtqrvt9OoA4+jux6SqTBDskOHENv
KiYSdUOaMBbokqY/aszH+Z4PbS5p4DPxbJN3StZT6e/GFgiilPaFBU5LNGfBLfYV
GW2RwAlFM6F79IFUaL2EJLEAhDiYpUOSV1giwQD1YdZRqxh1COKdjWjRRc2rz8BU
5WGaw+p+/zvAO0Veui0XAIBBLs6LMtDCYUV9p7VOMlZsbLPW0PIdqxOe9FR3fL0Q
V9e3k90+dPUjf2f8GpEIe1I/XAFKA8kVb1mokhvVHEfv
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:03 2024 by rpki-client on console-ams.rpki-client.org