Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/sTTCRwiD2-DpTTUqInKw0R0xO9A.roa
File: sTTCRwiD2-DpTTUqInKw0R0xO9A.roa (raw, json)
Hash identifier: EWRc3E8Ivx3m+7A0g1J9U2nxSfLLTfHmbZ1gBzLEExg=
Subject key identifier: B1:34:C2:47:08:83:DB:E0:E9:4D:35:2A:22:72:B0:D1:1D:31:3B:D0
Certificate issuer: /CN=5dd6f6d299bcdec73d13f2d842fc1df4bc1ee2d3
Certificate serial: 0191A70AB5D7D3A19047DC533CF5D4C14DD3
Authority key identifier: 5D:D6:F6:D2:99:BC:DE:C7:3D:13:F2:D8:42:FC:1D:F4:BC:1E:E2:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xdb20pm83sc9E_LYQvwd9Lwe4tM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/sTTCRwiD2-DpTTUqInKw0R0xO9A.roa
Signing time: Sat 31 Aug 2024 06:06:22 +0000
ROA not before: Sat 31 Aug 2024 06:06:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212027
IP address blocks: 91.200.254.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 10 Sep 2024 06:22:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:a7:0a:b5:d7:d3:a1:90:47:dc:53:3c:f5:d4:c1:4d:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dd6f6d299bcdec73d13f2d842fc1df4bc1ee2d3
Validity
Not Before: Aug 31 06:06:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b134c2470883dbe0e94d352a2272b0d11d313bd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:98:1a:71:70:d4:82:52:bb:f7:b3:ec:40:6c:
4f:ba:5c:3c:6d:52:e4:22:e7:c3:65:ab:d7:58:31:
08:69:60:1b:f2:a3:0a:00:49:a5:d6:80:71:34:1a:
e0:ac:22:71:9a:c7:39:28:84:9d:26:62:28:7d:44:
57:29:20:26:40:d9:02:2e:fc:72:96:c8:a1:7c:8f:
9a:96:4e:2b:9d:f1:ba:fd:34:ba:5d:14:22:9a:23:
80:2d:28:e7:e5:53:8d:08:1b:5b:04:c0:b1:8c:d0:
f8:bf:6a:f1:65:b3:a7:8a:5f:0e:1a:01:93:7a:56:
df:d8:77:b5:3d:28:dd:7e:c1:23:63:9d:4a:d6:5b:
e9:0c:05:1a:32:55:e8:06:01:23:ab:0b:69:3c:a8:
71:f4:51:7d:1d:53:14:6b:5b:bd:a1:f3:d1:08:b3:
65:68:af:65:d8:6d:1b:ee:98:1c:bf:f1:71:34:5d:
57:6a:4a:d1:57:ed:de:b3:69:f1:81:26:ac:6d:d2:
d6:0d:b1:c4:bb:77:a8:83:ca:a7:1b:c2:03:be:5b:
2b:7c:47:9d:22:fb:4f:36:98:93:f3:e3:51:fa:4e:
de:30:16:9e:ef:7e:af:f6:2c:e0:11:98:be:76:20:
c5:36:7d:15:bf:4a:5b:d2:6d:9a:88:46:7a:dd:88:
a0:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:34:C2:47:08:83:DB:E0:E9:4D:35:2A:22:72:B0:D1:1D:31:3B:D0
X509v3 Authority Key Identifier:
keyid:5D:D6:F6:D2:99:BC:DE:C7:3D:13:F2:D8:42:FC:1D:F4:BC:1E:E2:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xdb20pm83sc9E_LYQvwd9Lwe4tM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/sTTCRwiD2-DpTTUqInKw0R0xO9A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/Xdb20pm83sc9E_LYQvwd9Lwe4tM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.254.0/24
Signature Algorithm: sha256WithRSAEncryption
46:1b:86:6b:50:c9:78:d2:50:b1:06:c0:39:f0:97:41:a7:10:
0b:1b:c2:e4:b9:3c:53:b9:42:a7:46:40:0a:98:06:8a:ac:65:
e5:60:46:87:3f:9c:b6:b4:b3:b8:af:74:af:61:fb:0b:b6:b3:
81:41:0f:5a:ff:2f:33:d0:46:27:00:20:b9:e2:2e:ad:a6:89:
d0:a6:1c:c6:c8:0d:b5:1b:aa:6c:a7:40:b9:d3:65:00:5e:26:
3d:f7:cd:af:20:38:b6:44:6d:64:64:23:fa:d9:eb:87:c5:64:
68:13:8a:67:ce:dd:c3:12:11:32:ed:08:96:6f:5d:3c:4d:df:
05:89:2c:ee:6b:7c:3b:46:1b:47:f5:99:96:ed:13:7b:9b:97:
47:3c:47:7b:08:ba:3f:aa:4c:bc:86:c5:b4:20:fc:43:bf:58:
8c:1f:b2:59:cf:14:48:d1:42:cc:92:91:1e:13:e0:de:2a:dc:
4a:5c:1e:81:1a:30:fa:a4:99:b2:d1:d7:15:49:5f:14:e8:71:
88:d2:b3:da:e1:66:0e:2c:ca:16:8e:6b:1d:50:9f:df:f8:e7:
fd:21:7a:17:c7:9c:c9:44:66:b5:b4:6a:c6:cb:8a:a8:8d:72:
b7:88:a1:1e:68:7f:38:4b:08:d4:7a:74:27:d7:3f:b3:9b:3c:
76:45:88:c3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZGnCrXX06GQR9xTPPXUwU3TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkZDZmNmQyOTliY2RlYzczZDEzZjJkODQyZmMxZGY0YmMx
ZWUyZDMwHhcNMjQwODMxMDYwNjIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMTM0YzI0NzA4ODNkYmUwZTk0ZDM1MmEyMjcyYjBkMTFkMzEzYmQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwJgacXDUglK797PsQGxPulw8bVLk
IufDZavXWDEIaWAb8qMKAEml1oBxNBrgrCJxmsc5KISdJmIofURXKSAmQNkCLvxy
lsihfI+alk4rnfG6/TS6XRQimiOALSjn5VONCBtbBMCxjND4v2rxZbOnil8OGgGT
elbf2He1PSjdfsEjY51K1lvpDAUaMlXoBgEjqwtpPKhx9FF9HVMUa1u9ofPRCLNl
aK9l2G0b7pgcv/FxNF1XakrRV+3es2nxgSasbdLWDbHEu3eog8qnG8IDvlsrfEed
IvtPNpiT8+NR+k7eMBae736v9izgEZi+diDFNn0Vv0pb0m2aiEZ63YigNQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLE0wkcIg9vg6U01KiJysNEdMTvQMB8GA1UdIwQY
MBaAFF3W9tKZvN7HPRPy2EL8HfS8HuLTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGRiMjBwbTgzc2M5RV9MWVF2d2Q5THdlNHRNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC9hNGI0NDYtYmI3Mi00NWJlLWJjNDYt
NTFmNWZmODFjMTE3LzEvc1RUQ1J3aUQyLURwVFRVcUluS3cwUjB4TzlBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC9hNGI0NDYtYmI3Mi00NWJlLWJjNDYtNTFmNWZmODFjMTE3
LzEvWGRiMjBwbTgzc2M5RV9MWVF2d2Q5THdlNHRNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8j+MA0G
CSqGSIb3DQEBCwUAA4IBAQBGG4ZrUMl40lCxBsA58JdBpxALG8LkuTxTuUKnRkAK
mAaKrGXlYEaHP5y2tLO4r3SvYfsLtrOBQQ9a/y8z0EYnACC54i6tponQphzGyA21
G6psp0C502UAXiY9982vIDi2RG1kZCP62euHxWRoE4pnzt3DEhEy7QiWb108Td8F
iSzua3w7RhtH9ZmW7RN7m5dHPEd7CLo/qky8hsW0IPxDv1iMH7JZzxRI0ULMkpEe
E+DeKtxKXB6BGjD6pJmy0dcVSV8U6HGI0rPa4WYOLMoWjmsdUJ/f+Of9IXoXx5zJ
RGa1tGrGy4qojXK3iKEeaH84SwjUenQn1z+zmzx2RYjD
-----END CERTIFICATE-----
Generated at Tue Sep 10 08:57:11 2024 by rpki-client on console-ams.rpki-client.org