Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/71897e-5f6f-449d-b82c-a25ef4420a2a/1/Mif0qLvjul4KyjStCBEab0UZHmU.roa
File: Mif0qLvjul4KyjStCBEab0UZHmU.roa (raw, json)
Hash identifier: HJt2P0Ks5/qLq0j9RHYIH9HkEUSEvHZNu1ElVjJ8rDQ=
Subject key identifier: 32:27:F4:A8:BB:E3:BA:5E:0A:CA:34:AD:08:11:1A:6F:45:19:1E:65
Certificate issuer: /CN=b7c558c42c43ad59406ea446c9eefed42a491eec
Certificate serial: 01856FCB99AD844C74816926E2316A25F5EF
Authority key identifier: B7:C5:58:C4:2C:43:AD:59:40:6E:A4:46:C9:EE:FE:D4:2A:49:1E:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t8VYxCxDrVlAbqRGye7-1CpJHuw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/71897e-5f6f-449d-b82c-a25ef4420a2a/1/Mif0qLvjul4KyjStCBEab0UZHmU.roa
Signing time: Mon 02 Jan 2023 00:04:52 +0000
ROA not before: Mon 02 Jan 2023 00:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43464
IP address blocks: 91.195.4.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:99:ad:84:4c:74:81:69:26:e2:31:6a:25:f5:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7c558c42c43ad59406ea446c9eefed42a491eec
Validity
Not Before: Jan 2 00:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3227f4a8bbe3ba5e0aca34ad08111a6f45191e65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:40:4a:22:1b:0b:b7:47:ec:03:ef:16:d2:91:
8e:d0:96:66:e5:82:a7:57:76:ee:0f:76:6d:5d:a9:
05:35:6e:67:e6:65:69:12:e6:ad:71:30:9f:43:26:
73:dc:f3:c3:e8:31:8b:13:3e:b2:46:5f:66:02:a9:
9d:2a:25:e6:c3:a6:78:b1:a8:61:fa:a8:c8:8b:36:
28:43:50:a4:ae:16:97:cc:97:0c:a2:58:58:91:d1:
9b:6d:e9:df:9b:37:94:8b:0c:5c:73:65:f1:d6:be:
b4:68:42:bd:bb:b7:48:b6:56:55:35:60:c3:5d:e7:
d8:b2:9b:29:45:2a:2c:6e:de:c1:86:f1:1a:fd:2e:
ed:1c:b2:82:0a:75:cf:40:dc:95:99:3d:de:95:bb:
42:1d:99:81:83:90:f3:5b:2a:cc:bc:2d:73:a6:fe:
53:d5:24:57:93:2f:df:e3:16:08:01:f5:e9:d2:75:
39:0f:31:ce:66:1c:85:31:2f:8a:bb:9e:ea:c0:21:
99:66:0a:45:3b:8e:c3:a5:50:86:3a:80:91:20:a9:
0d:95:4e:bc:8f:70:7e:c1:ff:13:62:9e:f8:a1:b7:
42:bf:5b:f1:e0:95:94:9a:54:aa:20:99:59:ff:c6:
a6:01:c8:c5:2f:b7:1e:8a:77:28:b3:b9:36:e4:05:
7b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:27:F4:A8:BB:E3:BA:5E:0A:CA:34:AD:08:11:1A:6F:45:19:1E:65
X509v3 Authority Key Identifier:
keyid:B7:C5:58:C4:2C:43:AD:59:40:6E:A4:46:C9:EE:FE:D4:2A:49:1E:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t8VYxCxDrVlAbqRGye7-1CpJHuw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/71897e-5f6f-449d-b82c-a25ef4420a2a/1/Mif0qLvjul4KyjStCBEab0UZHmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/71897e-5f6f-449d-b82c-a25ef4420a2a/1/t8VYxCxDrVlAbqRGye7-1CpJHuw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.195.4.0/23
Signature Algorithm: sha256WithRSAEncryption
20:7a:34:d5:85:73:9a:c5:d8:85:19:85:7b:a4:d5:eb:d2:a8:
2d:15:7a:68:19:f6:1d:9d:24:ce:f7:54:5a:12:9a:53:f8:49:
b7:e3:38:b5:2c:73:df:1f:3e:cf:e8:6d:50:64:07:67:f1:3d:
5b:7d:df:b5:a5:56:32:b9:75:8b:03:83:9c:00:5b:e1:84:27:
91:67:4d:d7:02:87:28:8f:09:45:da:0d:e2:6d:0b:35:72:60:
65:6d:e3:c3:68:8d:51:35:fd:45:20:be:a4:62:d4:8e:29:12:
77:1f:19:3c:65:02:ed:ae:88:45:f2:c8:68:2c:ff:3e:98:cb:
74:12:79:87:cd:69:2b:12:1e:b3:26:ec:b5:10:77:83:52:d4:
16:d0:cd:34:92:ec:05:35:7f:6f:6b:2f:20:9c:d8:3f:14:bb:
5a:7b:18:0f:cc:94:b2:f1:ac:f7:bb:a5:58:15:54:47:3c:4c:
26:6f:e8:7a:e1:ad:de:55:dc:00:69:c2:49:c1:f7:a6:7d:5b:
bb:5f:2f:5d:16:9c:09:ad:cd:a0:07:ae:9d:26:46:b5:57:de:
61:3f:d3:c4:7f:94:ab:dc:74:50:a0:1c:b3:90:82:f3:24:a1:
ea:3c:8a:5f:ec:6b:d7:ff:4a:a5:33:e9:c1:c3:c4:28:84:63:
54:de:48:30
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvy5mthEx0gWkm4jFqJfXvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3YzU1OGM0MmM0M2FkNTk0MDZlYTQ0NmM5ZWVmZWQ0MmE0
OTFlZWMwHhcNMjMwMTAyMDAwNDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMjI3ZjRhOGJiZTNiYTVlMGFjYTM0YWQwODExMWE2ZjQ1MTkxZTY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsEBKIhsLt0fsA+8W0pGO0JZm5YKn
V3buD3ZtXakFNW5n5mVpEuatcTCfQyZz3PPD6DGLEz6yRl9mAqmdKiXmw6Z4sahh
+qjIizYoQ1CkrhaXzJcMolhYkdGbbenfmzeUiwxcc2Xx1r60aEK9u7dItlZVNWDD
XefYspspRSosbt7BhvEa/S7tHLKCCnXPQNyVmT3elbtCHZmBg5DzWyrMvC1zpv5T
1SRXky/f4xYIAfXp0nU5DzHOZhyFMS+Ku57qwCGZZgpFO47DpVCGOoCRIKkNlU68
j3B+wf8TYp74obdCv1vx4JWUmlSqIJlZ/8amAcjFL7ceincos7k25AV7YwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDIn9Ki747peCso0rQgRGm9FGR5lMB8GA1UdIwQY
MBaAFLfFWMQsQ61ZQG6kRsnu/tQqSR7sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdDhWWXhDeERyVmxBYnFSR3llNy0xQ3BKSHV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi83MTg5N2UtNWY2Zi00NDlkLWI4MmMt
YTI1ZWY0NDIwYTJhLzEvTWlmMHFMdmp1bDRLeWpTdENCRWFiMFVaSG1VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi83MTg5N2UtNWY2Zi00NDlkLWI4MmMtYTI1ZWY0NDIwYTJh
LzEvdDhWWXhDeERyVmxBYnFSR3llNy0xQ3BKSHV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW8MEMA0G
CSqGSIb3DQEBCwUAA4IBAQAgejTVhXOaxdiFGYV7pNXr0qgtFXpoGfYdnSTO91Ra
EppT+Em34zi1LHPfHz7P6G1QZAdn8T1bfd+1pVYyuXWLA4OcAFvhhCeRZ03XAoco
jwlF2g3ibQs1cmBlbePDaI1RNf1FIL6kYtSOKRJ3Hxk8ZQLtrohF8shoLP8+mMt0
EnmHzWkrEh6zJuy1EHeDUtQW0M00kuwFNX9vay8gnNg/FLtaexgPzJSy8az3u6VY
FVRHPEwmb+h64a3eVdwAacJJwfemfVu7Xy9dFpwJrc2gB66dJka1V95hP9PEf5Sr
3HRQoByzkILzJKHqPIpf7GvX/0qlM+nBw8QohGNU3kgw
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:58 2024 by rpki-client on console-ams.rpki-client.org