Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/d7f2d8-46cd-41fd-8008-a4296ad98635/1/CWYycI9zSdEHV7csLX8mvFwOrfg.roa
File: CWYycI9zSdEHV7csLX8mvFwOrfg.roa (raw, json)
Hash identifier: 7OKUqZTVFGgTCbeELZXeJFLBOVVK48/hL4EWNsr/NYw=
Subject key identifier: 09:66:32:70:8F:73:49:D1:07:57:B7:2C:2D:7F:26:BC:5C:0E:AD:F8
Certificate issuer: /CN=13d8042a28015d27f35b1f1ab73611e8511b6923
Certificate serial: 0185723A53E749B4328B638854875BBA0160
Authority key identifier: 13:D8:04:2A:28:01:5D:27:F3:5B:1F:1A:B7:36:11:E8:51:1B:69:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E9gEKigBXSfzWx8atzYR6FEbaSM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/d7f2d8-46cd-41fd-8008-a4296ad98635/1/CWYycI9zSdEHV7csLX8mvFwOrfg.roa
Signing time: Mon 02 Jan 2023 11:25:03 +0000
ROA not before: Mon 02 Jan 2023 11:25:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52074
IP address blocks: 91.221.219.0/24 maxlen: 24
91.221.218.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:3a:53:e7:49:b4:32:8b:63:88:54:87:5b:ba:01:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13d8042a28015d27f35b1f1ab73611e8511b6923
Validity
Not Before: Jan 2 11:25:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=096632708f7349d10757b72c2d7f26bc5c0eadf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:e9:4d:45:db:2d:91:ca:a0:83:3a:57:a4:80:
bc:18:24:b9:77:7e:52:87:56:0e:9d:ed:62:70:b4:
4f:c3:d8:ed:62:8a:ab:76:6d:48:91:f9:1b:86:63:
62:ad:83:d2:1a:f2:f5:9b:a0:a8:d5:52:57:66:e3:
32:a2:06:88:86:20:c0:7c:b6:a7:e7:79:7d:cd:d2:
c3:b4:78:c0:ee:51:ef:99:92:c3:64:e3:21:57:43:
29:9d:95:c3:a6:28:cd:e8:f4:d6:b3:5c:44:ee:4a:
2d:c8:89:fd:a6:6a:6d:30:d7:d1:42:f7:63:38:c1:
d0:9c:b6:0b:15:48:1f:90:23:84:51:1d:29:db:f4:
39:d8:1c:5c:51:66:b5:be:f2:c3:51:b5:a0:9b:0e:
24:b0:d7:5d:f3:b2:04:50:b2:7d:3d:0c:92:17:67:
11:b4:c4:29:0a:14:76:49:81:26:ea:16:c5:f8:a5:
ea:a3:a9:88:3e:01:32:13:15:5f:bb:ab:fd:4c:3d:
96:58:85:3f:6d:ff:9a:ec:af:fd:43:39:0a:36:c2:
e7:2b:37:3e:14:2d:2c:90:24:90:54:62:59:c1:47:
7f:eb:33:0c:4a:00:4e:a8:d8:34:94:58:8c:52:c6:
c0:be:30:17:f8:86:83:fe:6a:67:0a:d3:d6:44:dd:
ce:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:66:32:70:8F:73:49:D1:07:57:B7:2C:2D:7F:26:BC:5C:0E:AD:F8
X509v3 Authority Key Identifier:
keyid:13:D8:04:2A:28:01:5D:27:F3:5B:1F:1A:B7:36:11:E8:51:1B:69:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E9gEKigBXSfzWx8atzYR6FEbaSM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/d7f2d8-46cd-41fd-8008-a4296ad98635/1/CWYycI9zSdEHV7csLX8mvFwOrfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/d7f2d8-46cd-41fd-8008-a4296ad98635/1/E9gEKigBXSfzWx8atzYR6FEbaSM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.221.218.0/23
Signature Algorithm: sha256WithRSAEncryption
3d:03:45:47:42:22:62:45:d2:04:92:35:2c:7e:52:62:2c:f9:
ea:0d:f8:9a:91:0d:00:c4:c3:43:f0:d3:a9:65:2a:6c:47:34:
9d:5c:a2:b8:35:9f:32:ea:ff:c4:13:68:9b:32:93:af:c3:40:
85:d4:5e:6b:93:3a:37:19:93:f0:4f:92:eb:9d:78:ff:f0:7e:
82:be:4c:7b:a3:68:56:09:19:bf:9e:1e:5f:d9:f2:bd:29:50:
f0:ce:99:f7:65:b0:a3:18:cd:5e:e7:c3:c5:c6:ea:f8:c2:8b:
31:94:87:5f:5f:a1:29:aa:8f:03:f0:a8:53:67:3d:2b:fd:9c:
dc:80:51:a1:a8:4f:18:b6:22:5e:35:30:af:d9:26:47:52:41:
cb:33:85:17:11:0c:53:ec:e9:62:e6:3d:61:63:66:5b:e9:58:
77:ea:74:cc:cf:ea:a5:3a:a2:72:4a:14:f7:05:bb:90:99:61:
6f:61:b5:ad:64:c0:de:7c:ae:31:29:ee:f0:2d:ed:35:dc:72:
0e:53:c7:f9:1b:cd:3a:c0:b0:2b:36:cf:92:b4:43:19:48:ff:
71:e6:1e:c4:88:ec:3c:87:2c:d0:48:ab:2f:88:5a:41:22:12:
ae:f5:1a:cf:b5:52:e3:ed:43:7f:46:4f:2d:33:76:99:ca:75:
d0:48:e7:8f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyOlPnSbQyi2OIVIdbugFgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEzZDgwNDJhMjgwMTVkMjdmMzViMWYxYWI3MzYxMWU4NTEx
YjY5MjMwHhcNMjMwMTAyMTEyNTAzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwOTY2MzI3MDhmNzM0OWQxMDc1N2I3MmMyZDdmMjZiYzVjMGVhZGY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnulNRdstkcqggzpXpIC8GCS5d35S
h1YOne1icLRPw9jtYoqrdm1IkfkbhmNirYPSGvL1m6Co1VJXZuMyogaIhiDAfLan
53l9zdLDtHjA7lHvmZLDZOMhV0MpnZXDpijN6PTWs1xE7kotyIn9pmptMNfRQvdj
OMHQnLYLFUgfkCOEUR0p2/Q52BxcUWa1vvLDUbWgmw4ksNdd87IEULJ9PQySF2cR
tMQpChR2SYEm6hbF+KXqo6mIPgEyExVfu6v9TD2WWIU/bf+a7K/9QzkKNsLnKzc+
FC0skCSQVGJZwUd/6zMMSgBOqNg0lFiMUsbAvjAX+IaD/mpnCtPWRN3O1wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAlmMnCPc0nRB1e3LC1/JrxcDq34MB8GA1UdIwQY
MBaAFBPYBCooAV0n81sfGrc2EehRG2kjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRTlnRUtpZ0JYU2Z6V3g4YXR6WVI2RkViYVNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC9kN2YyZDgtNDZjZC00MWZkLTgwMDgt
YTQyOTZhZDk4NjM1LzEvQ1dZeWNJOXpTZEVIVjdjc0xYOG12RndPcmZnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOC9kN2YyZDgtNDZjZC00MWZkLTgwMDgtYTQyOTZhZDk4NjM1
LzEvRTlnRUtpZ0JYU2Z6V3g4YXR6WVI2RkViYVNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW93aMA0G
CSqGSIb3DQEBCwUAA4IBAQA9A0VHQiJiRdIEkjUsflJiLPnqDfiakQ0AxMND8NOp
ZSpsRzSdXKK4NZ8y6v/EE2ibMpOvw0CF1F5rkzo3GZPwT5LrnXj/8H6Cvkx7o2hW
CRm/nh5f2fK9KVDwzpn3ZbCjGM1e58PFxur4wosxlIdfX6Epqo8D8KhTZz0r/Zzc
gFGhqE8YtiJeNTCv2SZHUkHLM4UXEQxT7Oli5j1hY2Zb6Vh36nTMz+qlOqJyShT3
BbuQmWFvYbWtZMDefK4xKe7wLe013HIOU8f5G806wLArNs+StEMZSP9x5h7EiOw8
hyzQSKsviFpBIhKu9RrPtVLj7UN/Rk8tM3aZynXQSOeP
-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:51 2024 by rpki-client on console-ams.rpki-client.org