Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/YIk-ZE4BBYPsDj7DuVLMrz4vbMc.roa
File: YIk-ZE4BBYPsDj7DuVLMrz4vbMc.roa (raw, json)
Hash identifier: 9J2uFj7b9Oh8LbEAmpvlGzzINjA15sDSdMNkoPSWhTk=
Subject key identifier: 60:89:3E:64:4E:01:05:83:EC:0E:3E:C3:B9:52:CC:AF:3E:2F:6C:C7
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 01856BEEE27C7529509CB6C260AC1E69C912
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/YIk-ZE4BBYPsDj7DuVLMrz4vbMc.roa
Signing time: Sun 01 Jan 2023 06:04:55 +0000
ROA not before: Sun 01 Jan 2023 06:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209563
IP address blocks: 85.202.53.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:e2:7c:75:29:50:9c:b6:c2:60:ac:1e:69:c9:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 06:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=60893e644e010583ec0e3ec3b952ccaf3e2f6cc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:02:75:01:31:f1:d5:a0:7e:26:9b:34:a9:a3:
b0:82:ed:a0:aa:20:2a:9f:4d:f6:c5:03:b5:15:6d:
1b:89:1c:85:47:b3:61:ad:89:8b:72:22:39:a4:7e:
f0:cf:26:96:bc:94:6c:ca:a5:b3:59:ce:8d:ee:87:
3e:5e:43:30:3c:da:fc:d2:6f:9a:85:00:d2:44:e2:
36:7a:d6:cb:8c:5d:f0:25:94:85:34:5b:8e:d1:70:
86:b7:72:91:42:dc:77:93:66:09:2e:bb:5a:26:e4:
ed:62:30:bd:9d:91:e9:67:9d:de:b4:92:e3:64:6b:
2b:bc:55:86:e2:f2:5f:3d:9c:26:70:7a:1d:49:d0:
0d:a6:91:e1:99:ba:2e:95:4e:d1:99:a4:94:ac:0d:
01:72:08:49:a6:9d:a6:ee:fd:22:5c:14:2c:77:34:
ce:ff:f6:1d:1c:98:0d:9f:17:cb:c2:b9:29:9a:ab:
3e:e7:74:a5:63:07:97:d4:4d:74:68:c8:72:bb:8c:
da:e8:bc:ab:c4:fb:24:69:ac:a6:7d:c8:e1:fc:8a:
94:d9:48:bd:fa:06:61:b5:10:0e:e9:96:4e:50:b6:
b4:0d:e2:45:c5:d8:eb:31:ea:97:4a:22:a0:8c:e2:
c5:0c:bc:fb:46:b6:fc:2b:0c:cb:6b:96:9b:39:ba:
51:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:89:3E:64:4E:01:05:83:EC:0E:3E:C3:B9:52:CC:AF:3E:2F:6C:C7
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/YIk-ZE4BBYPsDj7DuVLMrz4vbMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.202.53.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:6f:bd:38:8f:e5:1c:14:13:c8:96:c9:fc:f2:bb:9a:a7:32:
82:14:a4:06:92:e4:ec:64:bc:8a:73:c0:9f:26:81:2e:52:f8:
41:b4:72:a2:06:32:4f:b5:00:27:04:93:73:42:6d:41:4b:df:
52:c1:6e:3a:e2:b0:45:6b:ce:ff:2e:23:11:cd:35:17:33:ef:
16:48:82:dc:2a:13:3a:49:cb:26:ee:ed:7a:2e:ef:65:8c:07:
18:dc:19:14:6d:3a:8f:c9:d6:26:06:9f:21:fc:69:98:82:7a:
fa:60:5a:d7:1b:1f:c8:25:5a:d5:72:b5:fa:a9:6b:0b:da:ac:
fc:f1:af:5c:fb:8f:ad:df:dc:f5:ab:5a:bc:68:5b:0c:a8:6f:
e7:ca:28:00:fa:75:b6:d9:70:d3:20:2e:a7:f8:45:63:9b:81:
46:ce:82:fe:95:5c:47:85:49:f2:0b:2b:40:af:32:86:2d:6b:
6f:ab:15:b1:0b:3b:74:55:8d:88:db:a3:d4:df:92:3a:cb:0a:
41:55:67:69:cd:b3:e7:43:ec:76:ab:96:d5:00:47:a2:52:4e:
26:7c:a5:5f:10:de:2f:77:3a:be:f6:56:2e:8f:df:ef:15:cc:
2c:99:88:9c:4b:15:8d:97:ce:ad:0d:ac:b7:a3:c2:58:be:1a:
be:9b:73:e8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVr7uJ8dSlQnLbCYKweackSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5OTU0NDk5OTc3Mjc4YTc1NTcwYjM0MDNmNGQzYWEwMGIx
YjM2ZTgwHhcNMjMwMTAxMDYwNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MDg5M2U2NDRlMDEwNTgzZWMwZTNlYzNiOTUyY2NhZjNlMmY2Y2M3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhgJ1ATHx1aB+Jps0qaOwgu2gqiAq
n032xQO1FW0biRyFR7NhrYmLciI5pH7wzyaWvJRsyqWzWc6N7oc+XkMwPNr80m+a
hQDSROI2etbLjF3wJZSFNFuO0XCGt3KRQtx3k2YJLrtaJuTtYjC9nZHpZ53etJLj
ZGsrvFWG4vJfPZwmcHodSdANppHhmboulU7RmaSUrA0BcghJpp2m7v0iXBQsdzTO
//YdHJgNnxfLwrkpmqs+53SlYweX1E10aMhyu4za6LyrxPskaaymfcjh/IqU2Ui9
+gZhtRAO6ZZOULa0DeJFxdjrMeqXSiKgjOLFDLz7Rrb8KwzLa5abObpRsQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGCJPmROAQWD7A4+w7lSzK8+L2zHMB8GA1UdIwQY
MBaAFLmVRJmXcninVXCzQD9NOqALGzboMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAt
MDI0YjE2NTVjMjQ3LzEvWUlrLVpFNEJCWVBzRGo3RHVWTE1yejR2Yk1jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny83ODg4MDMtYmUxMi00MzNmLWE4ZDAtMDI0YjE2NTVjMjQ3
LzEvdVpWRW1aZHllS2RWY0xOQVAwMDZvQXNiTnVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVco1MA0G
CSqGSIb3DQEBCwUAA4IBAQBcb704j+UcFBPIlsn88ruapzKCFKQGkuTsZLyKc8Cf
JoEuUvhBtHKiBjJPtQAnBJNzQm1BS99SwW464rBFa87/LiMRzTUXM+8WSILcKhM6
Scsm7u16Lu9ljAcY3BkUbTqPydYmBp8h/GmYgnr6YFrXGx/IJVrVcrX6qWsL2qz8
8a9c+4+t39z1q1q8aFsMqG/nyigA+nW22XDTIC6n+EVjm4FGzoL+lVxHhUnyCytA
rzKGLWtvqxWxCzt0VY2I26PU35I6ywpBVWdpzbPnQ+x2q5bVAEeiUk4mfKVfEN4v
dzq+9lYuj9/vFcwsmYicSxWNl86tDay3o8JYvhq+m3Po
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:47 2024 by rpki-client on console-fra.rpki-client.org