Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/AFV9K0a744ReXGehZvhQ1_cC45U.roa
File: AFV9K0a744ReXGehZvhQ1_cC45U.roa (raw, json)
Hash identifier: vHIf10/QMa1FqBwW2YiGpC4f5OiW8XhOdr1vfjjjZxM=
Subject key identifier: 00:55:7D:2B:46:BB:E3:84:5E:5C:67:A1:66:F8:50:D7:F7:02:E3:95
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 01933EBACEE6983930042F9A405116635862
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/AFV9K0a744ReXGehZvhQ1_cC45U.roa
Signing time: Mon 18 Nov 2024 10:04:10 +0000
ROA not before: Mon 18 Nov 2024 10:04:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 91.235.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Nov 2024 02:17:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:3e:ba:ce:e6:98:39:30:04:2f:9a:40:51:16:63:58:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: Nov 18 10:04:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=00557d2b46bbe3845e5c67a166f850d7f702e395
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:27:cf:1c:3b:5f:18:88:a4:e8:60:78:0d:52:
9f:d8:3d:e5:80:10:cd:50:07:9d:d6:92:24:b7:bd:
73:ca:db:3f:2b:ee:da:5e:af:b7:51:35:07:ed:8c:
1a:4b:a1:a5:e8:8c:27:55:1b:ab:0e:98:a0:58:cc:
fe:0f:b7:f6:c1:32:48:50:b4:95:50:47:c4:a4:29:
2e:07:ec:88:6f:92:62:b1:c8:86:68:9e:50:b2:bf:
a3:d7:2f:53:ec:a7:24:d1:74:2d:eb:7c:a1:ad:66:
b4:83:06:78:87:fe:17:84:01:8b:f2:17:ac:ae:cb:
aa:3f:b8:be:f0:63:a0:d0:0d:ea:7d:f1:22:a4:df:
16:34:85:3d:d9:7e:b4:92:b3:65:4a:b0:63:de:4e:
44:c7:9c:66:db:e9:1b:35:b9:c6:16:01:66:ba:89:
8c:90:c0:31:cc:1e:81:d5:7f:65:38:08:be:9b:ca:
cc:7e:29:6b:55:61:b5:98:83:6d:44:de:12:d0:ed:
8c:0f:37:b6:a1:67:15:f9:17:b8:f1:ba:b1:5f:a8:
6e:7a:62:ba:15:0d:ab:46:6e:94:f5:ce:e6:e4:82:
4e:3c:a9:71:3f:0e:4c:1b:ab:cf:f3:ad:3e:f9:5a:
fe:af:d5:db:d2:60:66:2d:17:d9:de:7e:31:95:2b:
d7:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:55:7D:2B:46:BB:E3:84:5E:5C:67:A1:66:F8:50:D7:F7:02:E3:95
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/AFV9K0a744ReXGehZvhQ1_cC45U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.2.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:37:ea:4c:3d:9a:3e:34:a5:17:d8:84:b6:d8:18:b1:fc:d0:
d6:e4:1b:6d:bd:26:b3:37:69:ad:94:5f:54:64:dd:de:e1:d5:
ed:37:65:e2:f0:39:0e:61:16:2b:b2:49:77:20:db:53:96:c1:
0b:b3:a0:87:ce:63:84:fe:d7:5f:7c:d2:b8:b9:f4:92:c4:30:
1e:f3:97:32:0a:a3:78:75:68:ae:58:a5:dd:dd:53:ce:33:51:
5b:b2:29:a5:a8:1a:9c:fe:eb:a7:ef:85:ac:2e:47:d5:65:1c:
3a:e2:a2:68:c6:c3:18:50:fa:8a:bf:41:68:29:89:ee:e8:6f:
ef:f2:99:d1:9d:16:d0:6b:57:4e:24:be:63:4e:ab:e5:9c:1e:
db:0b:56:8f:11:c9:50:b5:41:ea:40:a3:15:3d:31:84:60:29:
44:32:f9:60:60:29:03:71:bf:d9:80:68:6c:81:52:85:b1:1e:
2a:ce:ba:90:06:e8:cd:08:6f:c0:9f:0f:0c:4a:d8:3e:23:d9:
c5:16:70:b2:b2:f1:15:b6:d5:66:e2:fc:a3:3e:90:7c:43:de:
c4:2a:1e:84:30:a7:37:48:de:46:03:fd:01:cf:32:82:7f:8b:
fd:fe:02:85:98:20:ba:a4:6d:5f:5e:dd:65:c8:71:b2:bd:15:
b6:f7:e7:03
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZM+us7mmDkwBC+aQFEWY1hiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjZDk4YzJjNTRiMGNiZWExMzRlMjdhOTgxY2ZkZGU3MzIz
NmUwNTUwHhcNMjQxMTE4MTAwNDEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMDU1N2QyYjQ2YmJlMzg0NWU1YzY3YTE2NmY4NTBkN2Y3MDJlMzk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+yfPHDtfGIik6GB4DVKf2D3lgBDN
UAed1pIkt71zyts/K+7aXq+3UTUH7YwaS6Gl6IwnVRurDpigWMz+D7f2wTJIULSV
UEfEpCkuB+yIb5JisciGaJ5Qsr+j1y9T7Kck0XQt63yhrWa0gwZ4h/4XhAGL8hes
rsuqP7i+8GOg0A3qffEipN8WNIU92X60krNlSrBj3k5Ex5xm2+kbNbnGFgFmuomM
kMAxzB6B1X9lOAi+m8rMfilrVWG1mINtRN4S0O2MDze2oWcV+Re48bqxX6huemK6
FQ2rRm6U9c7m5IJOPKlxPw5MG6vP860++Vr+r9Xb0mBmLRfZ3n4xlSvX9QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFABVfStGu+OEXlxnoWb4UNf3AuOVMB8GA1UdIwQY
MBaAFGzZjCxUsMvqE04nqYHP3ecyNuBVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYk5tTUxGU3d5LW9UVGllcGdjX2Q1ekkyNEZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS8wMTYzOGMtNmNiOS00NTg5LTkwOWIt
ZDM3ZGY2MzRhOTI5LzEvQUZWOUswYTc0NFJlWEdlaFp2aFExX2NDNDVVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS8wMTYzOGMtNmNiOS00NTg5LTkwOWItZDM3ZGY2MzRhOTI5
LzEvYk5tTUxGU3d5LW9UVGllcGdjX2Q1ekkyNEZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+sCMA0G
CSqGSIb3DQEBCwUAA4IBAQCKN+pMPZo+NKUX2IS22Bix/NDW5BttvSazN2mtlF9U
ZN3e4dXtN2Xi8DkOYRYrskl3INtTlsELs6CHzmOE/tdffNK4ufSSxDAe85cyCqN4
dWiuWKXd3VPOM1FbsimlqBqc/uun74WsLkfVZRw64qJoxsMYUPqKv0FoKYnu6G/v
8pnRnRbQa1dOJL5jTqvlnB7bC1aPEclQtUHqQKMVPTGEYClEMvlgYCkDcb/ZgGhs
gVKFsR4qzrqQBujNCG/Anw8MStg+I9nFFnCysvEVttVm4vyjPpB8Q97EKh6EMKc3
SN5GA/0BzzKCf4v9/gKFmCC6pG1fXt1lyHGyvRW29+cD
-----END CERTIFICATE-----
Generated at Tue Nov 19 05:22:23 2024 by rpki-client on console-ams.rpki-client.org