Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/107266-ab51-462b-9fc2-a7c9898eecbc/1/yaXqiGdDFiB3n1p6rtyWFMRu9yY.roa
File: yaXqiGdDFiB3n1p6rtyWFMRu9yY.roa (raw, json)
Hash identifier: f38M1WitOAsCTgzDGiR4SelgHQoMcaFWyfl3exfQIyI=
Subject key identifier: C9:A5:EA:88:67:43:16:20:77:9F:5A:7A:AE:DC:96:14:C4:6E:F7:26
Certificate issuer: /CN=1f46f57735a4e63dbef848ee0d9d199e215f8304
Certificate serial: 01856F300B4C0B74A82D8D9939D132318988
Authority key identifier: 1F:46:F5:77:35:A4:E6:3D:BE:F8:48:EE:0D:9D:19:9E:21:5F:83:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0b1dzWk5j2--EjuDZ0ZniFfgwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/107266-ab51-462b-9fc2-a7c9898eecbc/1/yaXqiGdDFiB3n1p6rtyWFMRu9yY.roa
Signing time: Sun 01 Jan 2023 21:14:57 +0000
ROA not before: Sun 01 Jan 2023 21:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212317
IP address blocks: 5.78.0.0/16 maxlen: 24
2a01:4ff:100::/40 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:30:0b:4c:0b:74:a8:2d:8d:99:39:d1:32:31:89:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f46f57735a4e63dbef848ee0d9d199e215f8304
Validity
Not Before: Jan 1 21:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c9a5ea8867431620779f5a7aaedc9614c46ef726
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:16:cc:9c:db:a5:0f:4d:df:fb:31:4a:74:71:
68:28:3a:59:c0:34:71:70:4d:ba:43:72:6f:a1:58:
92:13:bc:60:77:04:6c:aa:2c:6d:39:d1:ff:f3:5e:
49:e9:45:da:db:76:3a:b0:1d:07:5d:84:e8:af:34:
2f:70:24:10:53:21:dc:2e:f5:75:a7:6f:fc:6b:43:
1e:99:dd:f6:82:6f:ba:70:90:37:45:b7:22:dc:73:
bf:70:5c:a2:41:9b:45:a9:9a:1f:ae:d7:4c:a9:cd:
93:3f:6c:5b:de:8c:70:85:6f:35:4c:eb:b3:79:84:
29:7b:5d:2f:d4:39:6a:55:4a:d1:06:68:33:81:fa:
e0:49:9d:e9:b7:94:76:10:84:23:f1:63:17:58:f4:
3d:53:4d:f0:fb:7b:ad:32:16:82:d1:11:eb:8b:f3:
81:f2:fb:36:68:ec:89:3c:ef:f0:69:6c:49:28:26:
b3:f6:c4:97:7d:77:3c:ed:f5:5d:f5:ff:b2:3c:f8:
93:4a:50:67:41:3f:09:81:35:54:af:b3:5a:a1:e1:
4b:07:b6:ed:82:cd:95:fd:71:ea:52:a2:b6:5c:e3:
79:d6:c9:ae:56:9b:59:94:aa:5b:64:4a:a9:e9:86:
3f:02:a8:72:cc:ef:20:ea:9a:52:ab:38:49:d0:72:
4a:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:A5:EA:88:67:43:16:20:77:9F:5A:7A:AE:DC:96:14:C4:6E:F7:26
X509v3 Authority Key Identifier:
keyid:1F:46:F5:77:35:A4:E6:3D:BE:F8:48:EE:0D:9D:19:9E:21:5F:83:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0b1dzWk5j2--EjuDZ0ZniFfgwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/107266-ab51-462b-9fc2-a7c9898eecbc/1/yaXqiGdDFiB3n1p6rtyWFMRu9yY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/107266-ab51-462b-9fc2-a7c9898eecbc/1/H0b1dzWk5j2--EjuDZ0ZniFfgwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.78.0.0/16
IPv6:
2a01:4ff:100::/40
Signature Algorithm: sha256WithRSAEncryption
0f:3a:ff:50:a4:16:18:e4:8f:2c:73:89:49:ab:5b:d4:de:97:
b3:70:5a:52:08:ad:65:d4:e4:35:65:06:85:1f:c7:dc:7a:05:
31:9c:da:2b:c8:6b:96:61:24:5b:d4:8f:e3:10:84:37:3e:fe:
6c:e5:f2:68:a2:64:b1:cb:ad:d0:21:52:55:1f:7e:09:23:84:
93:7c:6d:53:30:b3:7f:3e:d3:66:b0:6e:e3:18:00:8f:19:f2:
ae:5f:de:a3:03:c1:38:4a:e8:5c:9c:ff:38:ca:75:e0:3b:bb:
ed:9a:69:da:cc:50:23:0f:11:43:b4:4d:88:1a:89:bf:96:a2:
e6:31:8a:01:16:d9:92:44:88:90:64:b0:b9:24:08:95:65:c9:
f0:af:bc:e7:50:06:1a:b7:cc:f1:56:ef:74:38:a0:53:af:99:
10:dc:c2:b2:04:2f:75:b4:94:60:9b:f1:8c:a4:e9:51:8b:1d:
cf:4a:d4:0f:a7:a9:f1:70:ee:b6:40:63:66:53:45:89:d9:f6:
2a:bb:77:83:05:83:30:9b:e9:d8:62:22:f9:ad:d3:6a:03:25:
23:1e:00:2f:57:59:03:b9:f1:15:85:31:28:ef:98:a5:25:90:
d6:78:9f:bc:7c:8a:31:41:f4:96:6b:b4:53:9b:0b:16:d5:4d:
a0:0e:46:b7
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVvMAtMC3SoLY2ZOdEyMYmIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmNDZmNTc3MzVhNGU2M2RiZWY4NDhlZTBkOWQxOTllMjE1
ZjgzMDQwHhcNMjMwMTAxMjExNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjOWE1ZWE4ODY3NDMxNjIwNzc5ZjVhN2FhZWRjOTYxNGM0NmVmNzI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuBbMnNulD03f+zFKdHFoKDpZwDRx
cE26Q3JvoViSE7xgdwRsqixtOdH/815J6UXa23Y6sB0HXYTorzQvcCQQUyHcLvV1
p2/8a0Memd32gm+6cJA3Rbci3HO/cFyiQZtFqZofrtdMqc2TP2xb3oxwhW81TOuz
eYQpe10v1DlqVUrRBmgzgfrgSZ3pt5R2EIQj8WMXWPQ9U03w+3utMhaC0RHri/OB
8vs2aOyJPO/waWxJKCaz9sSXfXc87fVd9f+yPPiTSlBnQT8JgTVUr7NaoeFLB7bt
gs2V/XHqUqK2XON51smuVptZlKpbZEqp6YY/AqhyzO8g6ppSqzhJ0HJKMQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFMml6ohnQxYgd59aeq7clhTEbvcmMB8GA1UdIwQY
MBaAFB9G9Xc1pOY9vvhI7g2dGZ4hX4MEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDBiMWR6V2s1ajItLUVqdURaMFpuaUZmZ3dRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy8xMDcyNjYtYWI1MS00NjJiLTlmYzIt
YTdjOTg5OGVlY2JjLzEveWFYcWlHZERGaUIzbjFwNnJ0eVdGTVJ1OXlZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy8xMDcyNjYtYWI1MS00NjJiLTlmYzItYTdjOTg5OGVlY2Jj
LzEvSDBiMWR6V2s1ajItLUVqdURaMFpuaUZmZ3dRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTALBAIAATAFAwMABU4wDgQC
AAIwCAMGACoBBP8BMA0GCSqGSIb3DQEBCwUAA4IBAQAPOv9QpBYY5I8sc4lJq1vU
3pezcFpSCK1l1OQ1ZQaFH8fcegUxnNoryGuWYSRb1I/jEIQ3Pv5s5fJoomSxy63Q
IVJVH34JI4STfG1TMLN/PtNmsG7jGACPGfKuX96jA8E4SuhcnP84ynXgO7vtmmna
zFAjDxFDtE2IGom/lqLmMYoBFtmSRIiQZLC5JAiVZcnwr7znUAYat8zxVu90OKBT
r5kQ3MKyBC91tJRgm/GMpOlRix3PStQPp6nxcO62QGNmU0WJ2fYqu3eDBYMwm+nY
YiL5rdNqAyUjHgAvV1kDufEVhTEo75ilJZDWeJ+8fIoxQfSWa7RTmwsW1U2gDka3
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:56 2024 by rpki-client on console-fra.rpki-client.org