Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/c61fa2-bb3e-4955-ab5f-5e3b6ea5a7ee/1/noG9d_seh5PrEbkz4dTE2pw53HI.roa
File: noG9d_seh5PrEbkz4dTE2pw53HI.roa (raw, json)
Hash identifier: hvT9tx10Xwi8mh6cqtO+f1DTjSCBzwEsw4J6UBoGC24=
Subject key identifier: 9E:81:BD:77:FB:1E:87:93:EB:11:B9:33:E1:D4:C4:DA:9C:39:DC:72
Certificate issuer: /CN=d33d6b559d36c41307692a7b0fb3ef77aa6017ce
Certificate serial: 018CC5013A115D710EC9DD7DFCA701D56BF3
Authority key identifier: D3:3D:6B:55:9D:36:C4:13:07:69:2A:7B:0F:B3:EF:77:AA:60:17:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0z1rVZ02xBMHaSp7D7Pvd6pgF84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/c61fa2-bb3e-4955-ab5f-5e3b6ea5a7ee/1/noG9d_seh5PrEbkz4dTE2pw53HI.roa
Signing time: Mon 01 Jan 2024 12:30:41 +0000
ROA not before: Mon 01 Jan 2024 12:30:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43061
IP address blocks: 91.223.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:47:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:3a:11:5d:71:0e:c9:dd:7d:fc:a7:01:d5:6b:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d33d6b559d36c41307692a7b0fb3ef77aa6017ce
Validity
Not Before: Jan 1 12:30:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9e81bd77fb1e8793eb11b933e1d4c4da9c39dc72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:cb:57:f8:84:88:b6:b0:ec:e5:06:ea:ad:68:
33:ba:48:85:99:08:bb:f3:f8:9c:0b:cd:c4:85:fe:
b3:84:7e:ea:b4:77:11:5b:af:83:c9:ca:8e:25:bf:
b3:56:cc:52:9f:4f:c0:4c:94:36:fc:e6:f5:1c:fc:
a8:bb:13:70:04:16:a9:55:83:e4:06:b5:8c:66:00:
28:13:f9:f2:81:7f:e5:90:58:33:c1:40:34:6c:d0:
c8:4f:81:ac:d8:77:d5:44:fd:f1:c3:1f:71:11:91:
d3:21:42:62:1e:25:d5:59:32:9a:fa:65:cc:50:97:
50:8e:0c:07:7d:a8:02:fd:e2:fc:a5:e7:21:19:40:
c5:0a:8b:64:47:68:08:4d:a1:53:3a:53:85:3e:9d:
18:e0:87:2e:fd:e4:4e:11:a4:bb:f9:6e:4a:f1:21:
73:d9:fd:dd:93:87:b0:11:be:3d:b7:a7:c2:13:79:
90:61:78:1d:82:4b:64:f5:3f:41:af:b1:22:a6:58:
29:fd:d3:82:41:b2:a0:58:42:ca:81:e1:a0:5c:27:
46:a1:89:3c:c0:35:ff:86:44:79:db:47:ad:57:cf:
de:08:c2:9e:37:33:77:0f:66:b1:e7:cc:fc:a7:0c:
b0:5f:a9:65:0c:37:10:8b:d2:cf:d5:8b:8f:a3:a9:
10:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:81:BD:77:FB:1E:87:93:EB:11:B9:33:E1:D4:C4:DA:9C:39:DC:72
X509v3 Authority Key Identifier:
keyid:D3:3D:6B:55:9D:36:C4:13:07:69:2A:7B:0F:B3:EF:77:AA:60:17:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0z1rVZ02xBMHaSp7D7Pvd6pgF84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/c61fa2-bb3e-4955-ab5f-5e3b6ea5a7ee/1/noG9d_seh5PrEbkz4dTE2pw53HI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/c61fa2-bb3e-4955-ab5f-5e3b6ea5a7ee/1/0z1rVZ02xBMHaSp7D7Pvd6pgF84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.26.0/24
Signature Algorithm: sha256WithRSAEncryption
96:ed:04:d8:d0:a3:84:32:8f:4d:fe:18:1a:25:e1:93:2e:cc:
52:95:db:96:b9:4e:fb:3e:f0:5d:ab:21:aa:c5:95:ad:5b:f1:
ed:cb:83:04:f3:e1:e5:a9:42:66:a2:fb:86:6a:80:e5:5c:09:
a8:3f:68:fb:5e:7c:a6:68:78:fb:e6:7e:ea:3a:62:0d:42:0a:
95:03:e3:d8:82:d7:c3:f8:98:84:69:b2:8e:9a:74:2e:98:04:
0a:a7:2e:f4:eb:c4:b8:74:59:af:73:5d:37:db:d8:8c:60:0b:
a2:a0:56:9c:73:7d:53:f6:7d:d4:9a:ac:7d:9f:bd:13:30:ce:
e1:2a:3f:44:6a:ee:27:63:8e:e9:2a:df:4a:d6:de:7b:9e:bc:
66:be:7a:53:c3:88:d7:45:8d:71:78:2f:ff:25:a0:a5:2d:5a:
58:19:21:07:a9:bc:1b:91:67:09:e7:5f:cd:01:55:4b:94:f7:
5d:02:56:62:6d:3d:03:cf:b8:20:30:e6:01:f5:ee:08:a2:39:
b4:26:90:44:c8:1b:44:4c:87:49:3c:76:63:b5:3b:83:37:c6:
cf:66:74:94:46:cb:71:23:3f:80:08:eb:27:08:57:00:6e:8d:
0e:d6:42:77:bd:c1:6a:ff:4e:40:65:5c:e2:1d:c2:2b:90:c3:
40:5d:23:4d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzFAToRXXEOyd19/KcB1WvzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzM2Q2YjU1OWQzNmM0MTMwNzY5MmE3YjBmYjNlZjc3YWE2
MDE3Y2UwHhcNMjQwMTAxMTIzMDQxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZTgxYmQ3N2ZiMWU4NzkzZWIxMWI5MzNlMWQ0YzRkYTljMzlkYzcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsstX+ISItrDs5QbqrWgzukiFmQi7
8/icC83Ehf6zhH7qtHcRW6+DycqOJb+zVsxSn0/ATJQ2/Ob1HPyouxNwBBapVYPk
BrWMZgAoE/nygX/lkFgzwUA0bNDIT4Gs2HfVRP3xwx9xEZHTIUJiHiXVWTKa+mXM
UJdQjgwHfagC/eL8pechGUDFCotkR2gITaFTOlOFPp0Y4Icu/eROEaS7+W5K8SFz
2f3dk4ewEb49t6fCE3mQYXgdgktk9T9Br7Eiplgp/dOCQbKgWELKgeGgXCdGoYk8
wDX/hkR520etV8/eCMKeNzN3D2ax58z8pwywX6llDDcQi9LP1YuPo6kQawIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJ6BvXf7HoeT6xG5M+HUxNqcOdxyMB8GA1UdIwQY
MBaAFNM9a1WdNsQTB2kqew+z73eqYBfOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMHoxclZaMDJ4Qk1IYVNwN0Q3UHZkNnBnRjg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy9jNjFmYTItYmIzZS00OTU1LWFiNWYt
NWUzYjZlYTVhN2VlLzEvbm9HOWRfc2VoNVByRWJrejRkVEUycHc1M0hJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMy9jNjFmYTItYmIzZS00OTU1LWFiNWYtNWUzYjZlYTVhN2Vl
LzEvMHoxclZaMDJ4Qk1IYVNwN0Q3UHZkNnBnRjg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW98aMA0G
CSqGSIb3DQEBCwUAA4IBAQCW7QTY0KOEMo9N/hgaJeGTLsxSlduWuU77PvBdqyGq
xZWtW/Hty4ME8+HlqUJmovuGaoDlXAmoP2j7XnymaHj75n7qOmINQgqVA+PYgtfD
+JiEabKOmnQumAQKpy7068S4dFmvc10329iMYAuioFacc31T9n3Umqx9n70TMM7h
Kj9Eau4nY47pKt9K1t57nrxmvnpTw4jXRY1xeC//JaClLVpYGSEHqbwbkWcJ51/N
AVVLlPddAlZibT0Dz7ggMOYB9e4Iojm0JpBEyBtETIdJPHZjtTuDN8bPZnSURstx
Iz+ACOsnCFcAbo0O1kJ3vcFq/05AZVziHcIrkMNAXSNN
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:12:22 2025 by rpki-client