Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/89ec25-72dc-4f0f-8b2f-ad7890c2e752/1/yGMF2cCpv_LO2zXHOh7k8sz8SuQ.roa
File: yGMF2cCpv_LO2zXHOh7k8sz8SuQ.roa (raw, json)
Hash identifier: C1yNSb6LhInvTZk9LPgFhAJlGq16B3ci58nqskGkmgQ=
Subject key identifier: C8:63:05:D9:C0:A9:BF:F2:CE:DB:35:C7:3A:1E:E4:F2:CC:FC:4A:E4
Certificate issuer: /CN=5bd74e39dda400d136126e6c3efb1cf9344277ef
Certificate serial: 018EC424D6B27369B109EC2F192FEAEFB0D9
Authority key identifier: 5B:D7:4E:39:DD:A4:00:D1:36:12:6E:6C:3E:FB:1C:F9:34:42:77:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W9dOOd2kANE2Em5sPvsc-TRCd-8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/89ec25-72dc-4f0f-8b2f-ad7890c2e752/1/yGMF2cCpv_LO2zXHOh7k8sz8SuQ.roa
Signing time: Tue 09 Apr 2024 18:35:32 +0000
ROA not before: Tue 09 Apr 2024 18:35:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56769
IP address blocks: 5.42.213.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 27 Apr 2024 10:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:c4:24:d6:b2:73:69:b1:09:ec:2f:19:2f:ea:ef:b0:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bd74e39dda400d136126e6c3efb1cf9344277ef
Validity
Not Before: Apr 9 18:35:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c86305d9c0a9bff2cedb35c73a1ee4f2ccfc4ae4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:62:6e:3b:e9:69:1a:68:eb:d1:7b:4a:ad:25:
06:62:3e:63:94:8e:69:d2:1d:52:09:5d:06:c3:99:
c8:46:9b:ae:5d:ac:0c:e8:32:54:16:96:b9:9f:09:
7f:02:94:4f:96:92:c9:48:e4:59:71:b8:9d:87:a5:
93:ab:05:33:0d:9a:ce:9a:7a:9a:3c:6a:e5:6a:0f:
f4:e1:5a:ae:1c:ef:54:7b:d8:cc:85:d3:c0:0c:11:
7c:b1:52:4e:a5:4c:3b:d4:e1:9f:ec:cb:89:77:0b:
7c:24:83:83:1b:c1:2a:3c:6f:69:2e:7f:f7:7d:3c:
7d:c0:09:67:46:17:03:7e:3f:62:20:ec:2d:7c:82:
7f:67:c3:7c:80:c8:c4:89:3d:5d:17:25:0c:a7:47:
5c:7f:15:e6:f3:8b:1e:77:1c:91:99:7a:47:90:67:
e7:71:ba:de:55:19:88:db:51:6a:39:32:63:a5:19:
97:a7:35:45:3c:91:1e:ab:75:17:04:a6:3c:a4:b7:
f9:53:34:1c:ba:2a:e6:78:a2:55:89:f4:0f:ec:ed:
df:f4:ca:a7:e7:7d:55:35:0f:51:b6:1b:3c:87:7e:
06:44:b8:0d:b6:e3:df:fd:89:c3:01:f9:8c:f8:4d:
e2:92:96:ab:75:7d:5a:a5:6f:1e:22:13:69:76:50:
ba:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:63:05:D9:C0:A9:BF:F2:CE:DB:35:C7:3A:1E:E4:F2:CC:FC:4A:E4
X509v3 Authority Key Identifier:
keyid:5B:D7:4E:39:DD:A4:00:D1:36:12:6E:6C:3E:FB:1C:F9:34:42:77:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W9dOOd2kANE2Em5sPvsc-TRCd-8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/89ec25-72dc-4f0f-8b2f-ad7890c2e752/1/yGMF2cCpv_LO2zXHOh7k8sz8SuQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/89ec25-72dc-4f0f-8b2f-ad7890c2e752/1/W9dOOd2kANE2Em5sPvsc-TRCd-8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.213.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:71:88:58:a5:bc:88:6a:b0:d5:e0:ed:f7:53:56:86:e0:2c:
ca:20:19:0d:7a:9a:1b:5f:86:c2:ff:31:e4:d3:30:ff:3a:66:
75:74:17:b8:3f:70:33:57:4b:80:87:c8:e6:93:4b:6b:2d:f1:
da:a6:ec:f4:b5:dd:79:c3:0b:85:ad:e1:39:0b:b4:3a:ee:30:
fd:b5:26:53:7f:01:2a:7b:c4:24:45:3b:9c:ee:5f:a9:a4:7f:
76:51:bf:15:4d:04:6e:fb:38:ce:e2:70:44:ca:12:e2:8d:fe:
74:65:e9:ab:f2:8f:ce:ab:ba:16:8e:7e:d9:23:3b:5d:0c:ea:
8f:8e:2f:83:0d:a8:bb:ad:6d:ed:04:d2:7f:46:c4:5b:2c:15:
c0:d5:25:16:e4:fa:1e:6c:53:de:1e:95:de:f9:0a:81:c2:b5:
64:9c:cb:8e:fb:c9:4c:58:a6:3c:41:6d:74:12:59:2d:5c:19:
2c:ea:21:b2:74:04:80:f9:cf:ad:8f:f5:8e:7a:3b:01:2e:29:
77:fe:23:b3:75:de:0e:db:8d:ca:13:45:d8:5a:8c:8b:cb:09:
dd:b6:e5:72:75:91:f9:16:5b:51:f8:a3:db:b1:ea:03:77:0d:
c8:a1:5c:a0:28:fa:a2:cf:b9:27:f7:e0:05:c8:76:3e:27:e6:
07:49:96:1a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY7EJNayc2mxCewvGS/q77DZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDViZDc0ZTM5ZGRhNDAwZDEzNjEyNmU2YzNlZmIxY2Y5MzQ0
Mjc3ZWYwHhcNMjQwNDA5MTgzNTMyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjODYzMDVkOWMwYTliZmYyY2VkYjM1YzczYTFlZTRmMmNjZmM0YWU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnWJuO+lpGmjr0XtKrSUGYj5jlI5p
0h1SCV0Gw5nIRpuuXawM6DJUFpa5nwl/ApRPlpLJSORZcbidh6WTqwUzDZrOmnqa
PGrlag/04VquHO9Ue9jMhdPADBF8sVJOpUw71OGf7MuJdwt8JIODG8EqPG9pLn/3
fTx9wAlnRhcDfj9iIOwtfIJ/Z8N8gMjEiT1dFyUMp0dcfxXm84sedxyRmXpHkGfn
cbreVRmI21FqOTJjpRmXpzVFPJEeq3UXBKY8pLf5UzQcuirmeKJVifQP7O3f9Mqn
531VNQ9Rths8h34GRLgNtuPf/YnDAfmM+E3ikpardX1apW8eIhNpdlC6fQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMhjBdnAqb/yzts1xzoe5PLM/ErkMB8GA1UdIwQY
MBaAFFvXTjndpADRNhJubD77HPk0QnfvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVzlkT09kMmtBTkUyRW01c1B2c2MtVFJDZC04LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC84OWVjMjUtNzJkYy00ZjBmLThiMmYt
YWQ3ODkwYzJlNzUyLzEveUdNRjJjQ3B2X0xPMnpYSE9oN2s4c3o4U3VRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC84OWVjMjUtNzJkYy00ZjBmLThiMmYtYWQ3ODkwYzJlNzUy
LzEvVzlkT09kMmtBTkUyRW01c1B2c2MtVFJDZC04LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABSrVMA0G
CSqGSIb3DQEBCwUAA4IBAQDBcYhYpbyIarDV4O33U1aG4CzKIBkNepobX4bC/zHk
0zD/OmZ1dBe4P3AzV0uAh8jmk0trLfHapuz0td15wwuFreE5C7Q67jD9tSZTfwEq
e8QkRTuc7l+ppH92Ub8VTQRu+zjO4nBEyhLijf50Zemr8o/Oq7oWjn7ZIztdDOqP
ji+DDai7rW3tBNJ/RsRbLBXA1SUW5PoebFPeHpXe+QqBwrVknMuO+8lMWKY8QW10
ElktXBks6iGydASA+c+tj/WOejsBLil3/iOzdd4O243KE0XYWoyLywndtuVydZH5
FltR+KPbseoDdw3IoVygKPqiz7kn9+AFyHY+J+YHSZYa
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:42 2024 by rpki-client on console-fra.rpki-client.org