Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/4xCweRwE3R6Xf19jLGvqlKCJuGU.roa
File: 4xCweRwE3R6Xf19jLGvqlKCJuGU.roa (raw, json)
Hash identifier: EEkofgzmJeyTvbNy6X8u5awUOufe5G80muDVqfCEQh0=
Subject key identifier: E3:10:B0:79:1C:04:DD:1E:97:7F:5F:63:2C:6B:EA:94:A0:89:B8:65
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 018CA6C10B64B84C1D7FF137BC3A13911F4B
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/4xCweRwE3R6Xf19jLGvqlKCJuGU.roa
Signing time: Tue 26 Dec 2023 15:31:58 +0000
ROA not before: Tue 26 Dec 2023 15:31:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396948
IP address blocks: 91.202.170.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:a6:c1:0b:64:b8:4c:1d:7f:f1:37:bc:3a:13:91:1f:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Dec 26 15:31:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e310b0791c04dd1e977f5f632c6bea94a089b865
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:99:c9:21:54:8e:87:4a:39:7f:b5:4c:ef:34:
6c:cd:cb:93:94:fb:52:d8:5c:e6:6f:a7:64:c8:d7:
dc:fe:a4:2b:df:f1:a3:d2:c2:34:33:72:ab:71:79:
af:f6:17:d6:68:61:c4:44:08:16:a8:ec:4e:6c:0b:
4e:a4:ff:1e:8c:e8:2f:87:b0:5a:f5:9d:8a:76:22:
2c:aa:1a:d5:98:27:d7:2b:3b:0a:75:92:d7:db:a5:
42:a6:89:b2:62:e3:3c:8f:a6:bb:7e:0b:5f:4b:58:
8c:c9:4f:60:e6:bd:c1:d3:18:65:21:3b:89:25:3e:
9a:56:ce:3a:6b:43:13:4e:cc:1d:85:b8:d6:59:84:
1c:8c:72:de:97:85:03:28:c4:10:17:db:11:05:c9:
d9:0b:3b:a5:c9:3b:cd:aa:74:0b:80:05:1f:8b:bc:
77:13:e5:76:1c:7e:8b:33:b9:4d:92:0c:54:5d:b9:
f4:73:f0:c8:5a:dd:9f:e8:2a:dc:66:b3:59:7c:24:
d8:19:2e:65:66:79:4f:5e:5c:c5:b8:13:81:4b:d3:
0a:16:7c:94:9c:bb:5e:68:3b:1a:99:92:82:c4:d7:
b6:54:34:58:b4:80:6c:a8:d6:10:99:be:92:16:e2:
80:05:63:f0:89:72:f8:63:5f:2a:20:25:b2:00:25:
89:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:10:B0:79:1C:04:DD:1E:97:7F:5F:63:2C:6B:EA:94:A0:89:B8:65
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/4xCweRwE3R6Xf19jLGvqlKCJuGU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.202.170.0/24
Signature Algorithm: sha256WithRSAEncryption
53:bb:c1:26:c8:df:2e:89:d9:59:25:dd:25:75:f4:78:80:85:
45:bb:f7:75:88:10:29:dc:7e:a5:5d:f5:df:af:26:09:5a:3f:
50:3d:4f:b2:0c:77:f6:3c:f4:38:1e:e7:87:f5:f0:6c:d0:4d:
58:76:e8:fe:9b:9c:9b:5a:4c:3d:71:e5:75:03:2c:f6:63:e4:
f1:4f:72:75:d1:8d:cd:91:c7:1a:64:32:35:91:f1:1c:c0:22:
9b:22:9a:57:06:8e:9c:1c:25:44:b7:33:1a:18:7f:4b:f2:37:
0f:8c:01:66:db:0f:33:0b:18:92:77:26:12:4d:3a:8c:c9:5a:
42:fc:db:80:de:d6:a1:25:61:08:d1:81:5b:58:2c:41:f5:e9:
eb:bb:c7:e9:16:c6:b2:25:c3:82:de:93:8b:5f:4d:59:96:e2:
a7:83:16:c7:91:f1:64:fb:25:fc:ca:ec:08:7a:99:01:03:e8:
86:fb:52:9a:4e:9a:c1:8c:42:7d:38:e5:76:70:34:55:4e:17:
42:ca:13:80:1a:c1:32:49:5c:76:9d:92:4b:64:d4:a5:14:88:
5d:07:57:6c:e2:1b:c7:be:13:19:53:cf:57:3e:ad:91:d3:f1:
93:71:99:0f:ba:83:47:71:75:b4:d2:03:1a:b2:8e:13:8e:6c:
7c:20:12:69
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYymwQtkuEwdf/E3vDoTkR9LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1YmQ3OTIzYWZkYmFlODdkMDdiMjMwOGRkMzg5ZDljZjA4
MmVkNmQwHhcNMjMxMjI2MTUzMTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMzEwYjA3OTFjMDRkZDFlOTc3ZjVmNjMyYzZiZWE5NGEwODliODY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgpnJIVSOh0o5f7VM7zRszcuTlPtS
2Fzmb6dkyNfc/qQr3/Gj0sI0M3KrcXmv9hfWaGHERAgWqOxObAtOpP8ejOgvh7Ba
9Z2KdiIsqhrVmCfXKzsKdZLX26VCpomyYuM8j6a7fgtfS1iMyU9g5r3B0xhlITuJ
JT6aVs46a0MTTswdhbjWWYQcjHLel4UDKMQQF9sRBcnZCzulyTvNqnQLgAUfi7x3
E+V2HH6LM7lNkgxUXbn0c/DIWt2f6CrcZrNZfCTYGS5lZnlPXlzFuBOBS9MKFnyU
nLteaDsamZKCxNe2VDRYtIBsqNYQmb6SFuKABWPwiXL4Y18qICWyACWJJQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOMQsHkcBN0el39fYyxr6pSgibhlMB8GA1UdIwQY
MBaAFOW9eSOv266H0HsjCN04nZzwgu1tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNWIxNUk2X2Jyb2ZRZXlNSTNUaWRuUENDN1cwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS8yNjkyMjktMjBlYi00ZjFjLWExM2Ut
MjZkMWU1NDU3OGYxLzEvNHhDd2VSd0UzUjZYZjE5akxHdnFsS0NKdUdVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS8yNjkyMjktMjBlYi00ZjFjLWExM2UtMjZkMWU1NDU3OGYx
LzEvNWIxNUk2X2Jyb2ZRZXlNSTNUaWRuUENDN1cwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8qqMA0G
CSqGSIb3DQEBCwUAA4IBAQBTu8EmyN8uidlZJd0ldfR4gIVFu/d1iBAp3H6lXfXf
ryYJWj9QPU+yDHf2PPQ4HueH9fBs0E1Yduj+m5ybWkw9ceV1Ayz2Y+TxT3J10Y3N
kccaZDI1kfEcwCKbIppXBo6cHCVEtzMaGH9L8jcPjAFm2w8zCxiSdyYSTTqMyVpC
/NuA3tahJWEI0YFbWCxB9enru8fpFsayJcOC3pOLX01ZluKngxbHkfFk+yX8yuwI
epkBA+iG+1KaTprBjEJ9OOV2cDRVThdCyhOAGsEySVx2nZJLZNSlFIhdB1ds4hvH
vhMZU89XPq2R0/GTcZkPuoNHcXW00gMaso4Tjmx8IBJp
-----END CERTIFICATE-----
Generated at Tue Jan 2 15:23:21 2024 by rpki-client on console-ams.rpki-client.org