Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/zMHnjtThyuDmmuIo7Ip-4cn_Uw0.roa
File: zMHnjtThyuDmmuIo7Ip-4cn_Uw0.roa (raw, json)
Hash identifier: QfQV0nilyJGZ735U1xpa+C71qf0yrSBImGtiTNHwIZs=
Subject key identifier: CC:C1:E7:8E:D4:E1:CA:E0:E6:9A:E2:28:EC:8A:7E:E1:C9:FF:53:0D
Certificate issuer: /CN=5dd6f6d299bcdec73d13f2d842fc1df4bc1ee2d3
Certificate serial: 01916E9AC634BDC881AD03541FC792BDD306
Authority key identifier: 5D:D6:F6:D2:99:BC:DE:C7:3D:13:F2:D8:42:FC:1D:F4:BC:1E:E2:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xdb20pm83sc9E_LYQvwd9Lwe4tM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/zMHnjtThyuDmmuIo7Ip-4cn_Uw0.roa
Signing time: Tue 20 Aug 2024 07:05:22 +0000
ROA not before: Tue 20 Aug 2024 07:05:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 54339
IP address blocks: 91.200.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 11 Oct 2024 06:05:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:6e:9a:c6:34:bd:c8:81:ad:03:54:1f:c7:92:bd:d3:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dd6f6d299bcdec73d13f2d842fc1df4bc1ee2d3
Validity
Not Before: Aug 20 07:05:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ccc1e78ed4e1cae0e69ae228ec8a7ee1c9ff530d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4c:8f:e4:d5:db:d0:df:47:50:2a:a1:07:0b:
7f:f1:af:27:08:04:2a:4c:a5:55:76:a3:9b:85:28:
ab:71:2b:ec:8a:79:69:e2:c9:c4:93:2e:2c:e8:3f:
91:ca:b2:f8:7c:8a:d3:82:84:dd:97:40:ab:fa:5c:
08:31:ee:4b:74:a8:a1:a4:8e:76:52:2a:59:d7:05:
e9:b2:3e:66:11:f2:e0:3c:dd:e8:d4:35:13:d8:33:
8a:01:e3:ac:f6:ec:7d:32:cc:31:15:80:85:50:45:
34:95:46:66:56:fc:47:9f:96:dc:34:cf:30:ce:0a:
2f:56:08:93:61:34:15:d8:a1:65:ed:fb:ac:62:ac:
c6:34:75:cc:22:a2:77:d1:c9:fe:45:8a:ff:4c:56:
43:99:31:39:88:89:35:a5:6e:f2:18:4b:0e:bb:d9:
e0:60:61:b6:be:93:d8:40:dd:04:09:8b:21:0b:8e:
36:69:a2:7f:8b:be:c8:6d:9c:e8:76:c2:a8:03:47:
9a:38:22:eb:f4:1a:ed:32:55:e6:c4:4a:d5:76:ea:
d3:59:d6:24:ed:47:e2:fd:17:90:98:b6:ed:56:25:
7b:7c:21:a9:16:42:b2:d1:ce:fc:6b:db:e3:af:a0:
d8:19:43:b7:88:3b:e9:eb:eb:56:48:d8:75:2d:f9:
07:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:C1:E7:8E:D4:E1:CA:E0:E6:9A:E2:28:EC:8A:7E:E1:C9:FF:53:0D
X509v3 Authority Key Identifier:
keyid:5D:D6:F6:D2:99:BC:DE:C7:3D:13:F2:D8:42:FC:1D:F4:BC:1E:E2:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xdb20pm83sc9E_LYQvwd9Lwe4tM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/zMHnjtThyuDmmuIo7Ip-4cn_Uw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/Xdb20pm83sc9E_LYQvwd9Lwe4tM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.255.0/24
Signature Algorithm: sha256WithRSAEncryption
14:bd:c9:b7:f3:a1:0e:ec:af:c7:fd:a0:21:26:a6:82:51:c1:
cd:4f:f9:91:cf:48:53:ec:99:b2:41:d8:a4:d6:9c:7c:3a:51:
7f:11:2d:f6:89:d5:a4:55:db:a3:29:eb:0a:5f:c9:71:7a:c3:
d1:85:b2:a2:64:6b:9f:b9:02:30:c4:29:1e:03:f2:2c:30:6d:
22:26:03:f1:54:33:b8:03:ae:9e:1b:b6:d7:da:f2:c4:71:b4:
67:ab:29:3e:95:d9:fd:e6:6b:08:1a:63:93:99:d8:c0:16:15:
72:98:da:29:7f:2d:ce:fd:44:c4:1c:ad:c3:ac:98:1c:c3:65:
09:bf:99:3c:78:40:d5:a0:a5:bc:52:e5:3b:6f:a9:a3:da:f9:
1a:4c:9f:51:ec:5b:a5:70:00:22:17:0f:90:05:0c:f5:9d:6e:
b6:c3:08:74:19:57:b1:39:4c:8b:2e:02:89:d3:18:54:4f:e3:
73:df:96:3d:76:7b:db:10:34:25:cb:3d:b0:af:d7:42:a9:fb:
7b:ed:b7:65:87:fe:e2:17:2c:45:ac:9d:81:e5:b0:b8:ca:a3:
a4:b1:6a:c9:4e:3c:8a:ce:d9:b2:74:fb:6f:71:d9:b5:a8:fc:
9d:b5:fd:b4:89:cb:38:e5:04:56:d1:f8:3e:0e:27:e4:75:bd:
a1:b9:b0:97
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZFumsY0vciBrQNUH8eSvdMGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkZDZmNmQyOTliY2RlYzczZDEzZjJkODQyZmMxZGY0YmMx
ZWUyZDMwHhcNMjQwODIwMDcwNTIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjY2MxZTc4ZWQ0ZTFjYWUwZTY5YWUyMjhlYzhhN2VlMWM5ZmY1MzBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxEyP5NXb0N9HUCqhBwt/8a8nCAQq
TKVVdqObhSircSvsinlp4snEky4s6D+RyrL4fIrTgoTdl0Cr+lwIMe5LdKihpI52
UipZ1wXpsj5mEfLgPN3o1DUT2DOKAeOs9ux9MswxFYCFUEU0lUZmVvxHn5bcNM8w
zgovVgiTYTQV2KFl7fusYqzGNHXMIqJ30cn+RYr/TFZDmTE5iIk1pW7yGEsOu9ng
YGG2vpPYQN0ECYshC442aaJ/i77IbZzodsKoA0eaOCLr9BrtMlXmxErVdurTWdYk
7Ufi/ReQmLbtViV7fCGpFkKy0c78a9vjr6DYGUO3iDvp6+tWSNh1LfkHMQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMzB547U4crg5priKOyKfuHJ/1MNMB8GA1UdIwQY
MBaAFF3W9tKZvN7HPRPy2EL8HfS8HuLTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGRiMjBwbTgzc2M5RV9MWVF2d2Q5THdlNHRNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC9hNGI0NDYtYmI3Mi00NWJlLWJjNDYt
NTFmNWZmODFjMTE3LzEvek1Ibmp0VGh5dURtbXVJbzdJcC00Y25fVXcwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC9hNGI0NDYtYmI3Mi00NWJlLWJjNDYtNTFmNWZmODFjMTE3
LzEvWGRiMjBwbTgzc2M5RV9MWVF2d2Q5THdlNHRNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8j/MA0G
CSqGSIb3DQEBCwUAA4IBAQAUvcm386EO7K/H/aAhJqaCUcHNT/mRz0hT7JmyQdik
1px8OlF/ES32idWkVdujKesKX8lxesPRhbKiZGufuQIwxCkeA/IsMG0iJgPxVDO4
A66eG7bX2vLEcbRnqyk+ldn95msIGmOTmdjAFhVymNopfy3O/UTEHK3DrJgcw2UJ
v5k8eEDVoKW8UuU7b6mj2vkaTJ9R7FulcAAiFw+QBQz1nW62wwh0GVexOUyLLgKJ
0xhUT+Nz35Y9dnvbEDQlyz2wr9dCqft77bdlh/7iFyxFrJ2B5bC4yqOksWrJTjyK
ztmydPtvcdm1qPydtf20ics45QRW0fg+Difkdb2hubCX
-----END CERTIFICATE-----
Generated at Fri Oct 11 07:28:40 2024 by rpki-client on console-fra.rpki-client.org