Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/43c733-7519-42fd-ac5b-4e2da13594b8/1/kYiavFFM4visrVpScVbUw2MG0aU.roa
File: kYiavFFM4visrVpScVbUw2MG0aU.roa (raw, json)
Hash identifier: Z5h8FIyiwA1aduXMcXxE4nty9GSpYVjgeMwxrqAXO04=
Subject key identifier: 91:88:9A:BC:51:4C:E2:F8:AC:AD:5A:52:71:56:D4:C3:63:06:D1:A5
Certificate issuer: /CN=a28eb69cfb22325cf750ff563150dbd04491bebb
Certificate serial: 01857343C3F166CE85954E2D564FBC091CFB
Authority key identifier: A2:8E:B6:9C:FB:22:32:5C:F7:50:FF:56:31:50:DB:D0:44:91:BE:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oo62nPsiMlz3UP9WMVDb0ESRvrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/43c733-7519-42fd-ac5b-4e2da13594b8/1/kYiavFFM4visrVpScVbUw2MG0aU.roa
Signing time: Mon 02 Jan 2023 16:14:58 +0000
ROA not before: Mon 02 Jan 2023 16:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211071
IP address blocks: 91.213.202.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:43:c3:f1:66:ce:85:95:4e:2d:56:4f:bc:09:1c:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a28eb69cfb22325cf750ff563150dbd04491bebb
Validity
Not Before: Jan 2 16:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=91889abc514ce2f8acad5a527156d4c36306d1a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f2:7e:31:e1:f7:8d:25:73:07:06:8a:ff:ef:
28:97:5a:f7:73:f4:ed:e5:dc:48:3f:e6:90:52:c4:
03:cc:6c:73:e0:80:60:8d:7d:7f:de:b2:74:1d:32:
45:85:63:61:42:8a:28:d9:0d:1f:4e:cd:c2:3d:12:
16:79:1b:9f:4c:9a:ad:bb:36:95:7b:ff:a3:ac:73:
71:b0:db:f8:3c:7e:8e:87:c0:1f:c5:3d:b0:55:43:
af:d3:d6:21:b4:a4:3e:12:d3:17:b7:d2:2c:3f:c2:
ad:83:47:d8:be:f8:38:f1:23:2a:be:77:8a:7b:8a:
15:86:5a:78:40:2e:ec:58:75:0a:c7:2f:10:fa:3b:
60:19:8b:b3:ca:c8:57:ac:56:93:7c:01:16:60:a6:
ef:5c:ff:22:ce:fc:09:d2:33:1a:dc:35:18:45:da:
9b:80:65:76:13:d7:19:af:7f:12:69:fb:21:e8:7f:
e6:57:ed:e0:1f:50:c2:b6:2f:8c:36:06:93:b5:df:
e2:b7:a1:c9:d5:c5:2d:b1:12:48:d2:47:85:4b:88:
72:8c:a6:5b:a6:e7:78:a6:11:50:c2:1f:8a:06:27:
b1:68:c3:d1:6c:86:0f:45:b7:80:57:aa:26:b5:6d:
89:60:a4:f7:88:10:fb:02:72:e7:c7:df:a7:b8:e4:
3a:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:88:9A:BC:51:4C:E2:F8:AC:AD:5A:52:71:56:D4:C3:63:06:D1:A5
X509v3 Authority Key Identifier:
keyid:A2:8E:B6:9C:FB:22:32:5C:F7:50:FF:56:31:50:DB:D0:44:91:BE:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oo62nPsiMlz3UP9WMVDb0ESRvrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/43c733-7519-42fd-ac5b-4e2da13594b8/1/kYiavFFM4visrVpScVbUw2MG0aU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/43c733-7519-42fd-ac5b-4e2da13594b8/1/oo62nPsiMlz3UP9WMVDb0ESRvrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.202.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:c7:e5:87:76:3e:c4:b7:b7:b6:32:b3:b9:b4:c9:dc:57:45:
40:0f:92:63:88:2d:71:8e:e7:59:73:1c:1f:97:94:0a:93:e8:
81:78:d7:49:dd:b7:23:8e:c8:a9:e7:15:58:3c:28:7e:09:d6:
7b:25:83:5c:2b:fc:ac:3d:62:fa:7d:86:f0:2d:6d:40:18:f8:
a4:8f:b5:01:de:ea:2d:ee:20:83:56:66:49:34:1e:e3:e5:97:
a2:bb:5d:d1:5b:48:78:f9:8b:24:b7:81:1c:e5:65:c7:e5:85:
2d:3e:be:bd:22:80:1b:d0:23:db:65:43:53:81:3e:db:36:ab:
ce:e5:5c:ea:38:a6:bd:0b:11:40:fd:59:c6:53:6d:f9:84:82:
aa:1b:0c:e5:5e:92:39:89:6f:63:43:a5:da:b7:a7:e6:60:61:
fa:a3:1a:ad:9a:6a:89:e3:7d:bc:29:29:68:4e:1f:5f:f7:7c:
11:79:c8:97:07:f9:94:67:f6:72:db:ba:9a:ac:82:47:ae:6e:
ae:61:c0:dc:c8:c4:80:82:1b:0e:8b:98:9a:1f:96:f7:04:d7:
d6:99:a7:a1:f2:e4:17:a3:d3:54:d8:3a:33:9e:d8:61:d5:1e:
a8:e8:b6:5b:37:19:db:fe:b8:28:ce:9b:68:38:28:65:11:21:
e3:6c:65:eb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzQ8PxZs6FlU4tVk+8CRz7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyOGViNjljZmIyMjMyNWNmNzUwZmY1NjMxNTBkYmQwNDQ5
MWJlYmIwHhcNMjMwMTAyMTYxNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MTg4OWFiYzUxNGNlMmY4YWNhZDVhNTI3MTU2ZDRjMzYzMDZkMWE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoPJ+MeH3jSVzBwaK/+8ol1r3c/Tt
5dxIP+aQUsQDzGxz4IBgjX1/3rJ0HTJFhWNhQooo2Q0fTs3CPRIWeRufTJqtuzaV
e/+jrHNxsNv4PH6Oh8AfxT2wVUOv09YhtKQ+EtMXt9IsP8Ktg0fYvvg48SMqvneK
e4oVhlp4QC7sWHUKxy8Q+jtgGYuzyshXrFaTfAEWYKbvXP8izvwJ0jMa3DUYRdqb
gGV2E9cZr38Safsh6H/mV+3gH1DCti+MNgaTtd/it6HJ1cUtsRJI0keFS4hyjKZb
pud4phFQwh+KBiexaMPRbIYPRbeAV6omtW2JYKT3iBD7AnLnx9+nuOQ6kQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJGImrxRTOL4rK1aUnFW1MNjBtGlMB8GA1UdIwQY
MBaAFKKOtpz7IjJc91D/VjFQ29BEkb67MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb282Mm5Qc2lNbHozVVA5V01WRGIwRVNSdnJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS80M2M3MzMtNzUxOS00MmZkLWFjNWIt
NGUyZGExMzU5NGI4LzEva1lpYXZGRk00dmlzclZwU2NWYlV3Mk1HMGFVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS80M2M3MzMtNzUxOS00MmZkLWFjNWItNGUyZGExMzU5NGI4
LzEvb282Mm5Qc2lNbHozVVA5V01WRGIwRVNSdnJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9XKMA0G
CSqGSIb3DQEBCwUAA4IBAQAKx+WHdj7Et7e2MrO5tMncV0VAD5JjiC1xjudZcxwf
l5QKk+iBeNdJ3bcjjsip5xVYPCh+CdZ7JYNcK/ysPWL6fYbwLW1AGPikj7UB3uot
7iCDVmZJNB7j5Zeiu13RW0h4+Yskt4Ec5WXH5YUtPr69IoAb0CPbZUNTgT7bNqvO
5VzqOKa9CxFA/VnGU235hIKqGwzlXpI5iW9jQ6Xat6fmYGH6oxqtmmqJ4328KSlo
Th9f93wReciXB/mUZ/Zy27qarIJHrm6uYcDcyMSAghsOi5iaH5b3BNfWmaeh8uQX
o9NU2Doznthh1R6o6LZbNxnb/rgozptoOChlESHjbGXr
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:05 2024 by rpki-client on console-ams.rpki-client.org