Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/a0EzF3p3GmGpHuk9B4YZ1ZWjOR4.roa
File: a0EzF3p3GmGpHuk9B4YZ1ZWjOR4.roa (raw, json)
Hash identifier: meoyUWjRju63D56zUvpLraqQP/nyBQ+SJbhyXQjKgNM=
Subject key identifier: 6B:41:33:17:7A:77:1A:61:A9:1E:E9:3D:07:86:19:D5:95:A3:39:1E
Certificate issuer: /CN=ad7cfbce1d6d3a6a24f25652065d31575828edb5
Certificate serial: 01856E6FC632F518A6F7A08B81E307109246
Authority key identifier: AD:7C:FB:CE:1D:6D:3A:6A:24:F2:56:52:06:5D:31:57:58:28:ED:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/a0EzF3p3GmGpHuk9B4YZ1ZWjOR4.roa
Signing time: Sun 01 Jan 2023 17:44:57 +0000
ROA not before: Sun 01 Jan 2023 17:44:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48242
IP address blocks: 91.207.160.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:6f:c6:32:f5:18:a6:f7:a0:8b:81:e3:07:10:92:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad7cfbce1d6d3a6a24f25652065d31575828edb5
Validity
Not Before: Jan 1 17:44:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6b4133177a771a61a91ee93d078619d595a3391e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e3:6e:55:fa:62:0c:8b:52:9b:b1:c5:dc:4d:
53:32:59:0b:64:cf:da:52:80:37:eb:8d:5f:88:72:
34:ca:27:74:68:52:61:25:27:f4:b0:1b:06:be:3f:
ef:89:ab:ba:1b:ed:c1:67:5d:90:27:d8:73:b9:2f:
53:02:f2:f8:f8:3e:f7:e0:d3:68:51:ce:02:db:87:
99:45:94:a6:cc:ea:36:4f:0c:17:a4:fd:1e:18:4d:
5e:a7:d3:31:50:e7:a2:63:d7:24:06:0f:40:4c:3f:
50:d2:2b:d2:5d:ac:c9:9f:d4:e0:73:c8:13:c3:77:
03:df:f3:96:7b:33:f8:3c:cc:8b:9b:12:7d:ab:cb:
eb:57:9a:2d:31:c9:8b:be:ea:d9:24:75:76:e7:76:
b8:6a:e3:36:8a:40:15:4b:45:0c:cc:f2:7e:10:ea:
7a:1d:33:cb:25:97:51:cb:9f:66:3d:0d:2b:13:37:
4b:ba:01:e7:f3:79:2e:df:de:f7:54:9f:de:9d:c1:
af:d1:61:2f:f6:9a:73:b4:ef:51:f3:43:36:54:b9:
40:49:f6:5c:29:40:07:e0:66:77:81:b1:3b:8e:cc:
ab:1e:eb:80:0b:39:54:38:2a:0e:41:9d:89:fe:5e:
e4:99:e5:08:93:fe:8e:a5:45:51:f5:e9:93:ba:b1:
c6:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:41:33:17:7A:77:1A:61:A9:1E:E9:3D:07:86:19:D5:95:A3:39:1E
X509v3 Authority Key Identifier:
keyid:AD:7C:FB:CE:1D:6D:3A:6A:24:F2:56:52:06:5D:31:57:58:28:ED:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/a0EzF3p3GmGpHuk9B4YZ1ZWjOR4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.160.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:50:34:d7:05:5f:d7:86:c3:94:95:b2:0e:9c:ab:d8:48:cb:
4b:6f:41:dd:c5:2a:86:25:3c:17:3d:f5:d1:8f:45:59:1a:f2:
d4:ff:66:ff:88:84:2c:8e:d1:c6:f1:dc:25:09:bf:e9:a2:e4:
8d:2c:13:a7:f2:4b:d4:99:fa:56:d8:07:c9:2a:80:4b:9e:e1:
a4:8c:b7:be:7c:aa:3e:fe:a5:a7:5e:38:0e:f9:7c:dc:dd:34:
e5:3b:84:2b:60:e9:75:0a:aa:d3:c0:09:99:c5:a8:0c:ab:59:
cb:b4:a0:83:44:ba:7a:d4:7d:2a:43:9c:c6:de:81:f6:f4:b1:
ac:3b:00:c5:d9:37:80:18:aa:a4:57:1c:43:29:80:ea:d4:32:
f5:d2:f8:9b:34:14:fc:86:a3:57:91:b3:c8:94:97:f4:a0:df:
13:1a:27:f7:35:56:76:31:b0:9c:e8:7f:31:eb:db:17:11:53:
b8:7e:e7:fb:e8:05:94:3f:03:94:bf:a8:0a:be:c3:aa:64:22:
72:09:3a:e2:4d:74:39:f7:f4:a4:d7:1a:bb:e8:b4:cf:be:e1:
5d:b1:a8:41:e6:6c:a6:a7:07:1e:69:cd:55:ca:7b:22:9b:ef:
79:15:fa:3a:de:3a:3d:87:da:a4:c3:d9:22:b3:e3:65:ed:79:
55:dc:dd:4d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVub8Yy9Rim96CLgeMHEJJGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkN2NmYmNlMWQ2ZDNhNmEyNGYyNTY1MjA2NWQzMTU3NTgy
OGVkYjUwHhcNMjMwMTAxMTc0NDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YjQxMzMxNzdhNzcxYTYxYTkxZWU5M2QwNzg2MTlkNTk1YTMzOTFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr+NuVfpiDItSm7HF3E1TMlkLZM/a
UoA3641fiHI0yid0aFJhJSf0sBsGvj/viau6G+3BZ12QJ9hzuS9TAvL4+D734NNo
Uc4C24eZRZSmzOo2TwwXpP0eGE1ep9MxUOeiY9ckBg9ATD9Q0ivSXazJn9Tgc8gT
w3cD3/OWezP4PMyLmxJ9q8vrV5otMcmLvurZJHV253a4auM2ikAVS0UMzPJ+EOp6
HTPLJZdRy59mPQ0rEzdLugHn83ku3973VJ/encGv0WEv9ppztO9R80M2VLlASfZc
KUAH4GZ3gbE7jsyrHuuACzlUOCoOQZ2J/l7kmeUIk/6OpUVR9emTurHG1wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGtBMxd6dxphqR7pPQeGGdWVozkeMB8GA1UdIwQY
MBaAFK18+84dbTpqJPJWUgZdMVdYKO21MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvclh6N3poMXRPbW9rOGxaU0JsMHhWMWdvN2JVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS8xMTQzNDAtMmM3MC00MWZjLWFiZTct
MmZhN2M5YjExMWIxLzEvYTBFekYzcDNHbUdwSHVrOUI0WVoxWldqT1I0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS8xMTQzNDAtMmM3MC00MWZjLWFiZTctMmZhN2M5YjExMWIx
LzEvclh6N3poMXRPbW9rOGxaU0JsMHhWMWdvN2JVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW8+gMA0G
CSqGSIb3DQEBCwUAA4IBAQA+UDTXBV/XhsOUlbIOnKvYSMtLb0HdxSqGJTwXPfXR
j0VZGvLU/2b/iIQsjtHG8dwlCb/pouSNLBOn8kvUmfpW2AfJKoBLnuGkjLe+fKo+
/qWnXjgO+Xzc3TTlO4QrYOl1CqrTwAmZxagMq1nLtKCDRLp61H0qQ5zG3oH29LGs
OwDF2TeAGKqkVxxDKYDq1DL10vibNBT8hqNXkbPIlJf0oN8TGif3NVZ2MbCc6H8x
69sXEVO4fuf76AWUPwOUv6gKvsOqZCJyCTriTXQ59/Sk1xq76LTPvuFdsahB5mym
pwceac1Vynsim+95Ffo63jo9h9qkw9kis+Nl7XlV3N1N
-----END CERTIFICATE-----
Generated at Tue Jan 2 14:37:51 2024 by rpki-client on console-fra.rpki-client.org