Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/YoM4M5Y0urR3onRS7zqoWT7AIqY.roa
File: YoM4M5Y0urR3onRS7zqoWT7AIqY.roa (raw, json)
Hash identifier: p1/b00at39U4TAzVR460d/i2bg2beiRuUc+bnYVcVWQ=
Subject key identifier: 62:83:38:33:96:34:BA:B4:77:A2:74:52:EF:3A:A8:59:3E:C0:22:A6
Certificate issuer: /CN=9c542f5df3c1acb857fd50eeb016eed07385ff8c
Certificate serial: 018CC8DECE3353BF1440543BF3255F3E4090
Authority key identifier: 9C:54:2F:5D:F3:C1:AC:B8:57:FD:50:EE:B0:16:EE:D0:73:85:FF:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nFQvXfPBrLhX_VDusBbu0HOF_4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/YoM4M5Y0urR3onRS7zqoWT7AIqY.roa
Signing time: Tue 02 Jan 2024 06:31:34 +0000
ROA not before: Tue 02 Jan 2024 06:31:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48401
IP address blocks: 89.44.246.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Apr 2024 06:13:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:de:ce:33:53:bf:14:40:54:3b:f3:25:5f:3e:40:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c542f5df3c1acb857fd50eeb016eed07385ff8c
Validity
Not Before: Jan 2 06:31:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=628338339634bab477a27452ef3aa8593ec022a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:f0:32:a4:70:2c:40:d5:15:a4:19:05:ce:54:
7d:0a:c5:b7:7f:a2:be:89:92:8b:63:0e:30:41:e7:
11:b6:f6:6e:b7:20:b5:97:ad:f0:c1:e4:ba:ef:92:
6a:73:02:6b:fb:e5:89:c7:e3:05:bd:2e:c5:90:2e:
ff:0b:e6:71:98:fb:56:2f:22:30:8a:99:dc:fc:8f:
51:b9:ec:fe:e5:69:24:df:25:f2:3f:c5:03:b3:5c:
43:0c:e8:8c:6a:57:1d:32:6e:64:a1:53:51:78:9c:
e8:1a:d8:58:c0:aa:e9:1c:1a:4e:cb:7e:1e:4c:fa:
99:29:f2:27:a7:08:31:aa:be:65:5a:0d:94:ca:12:
11:a9:92:55:28:14:f0:b1:bf:44:67:40:a9:5a:93:
44:73:d3:46:74:8b:48:db:2e:2d:92:f4:f1:72:0c:
00:b3:d1:c3:9c:c8:bf:e8:a2:33:a4:2c:45:48:48:
b7:eb:70:ac:dc:7f:6e:44:f2:84:1a:01:ea:1b:e9:
ea:0e:dc:02:91:22:93:5d:4e:e3:fd:24:88:25:0b:
37:2b:f7:4d:44:b9:2e:e7:6d:70:35:fd:57:29:83:
d7:29:d6:2b:30:08:27:13:6b:6d:76:93:9b:09:0c:
da:ad:1b:48:ff:59:cd:29:6a:02:ef:2e:b1:ba:3d:
9c:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:83:38:33:96:34:BA:B4:77:A2:74:52:EF:3A:A8:59:3E:C0:22:A6
X509v3 Authority Key Identifier:
keyid:9C:54:2F:5D:F3:C1:AC:B8:57:FD:50:EE:B0:16:EE:D0:73:85:FF:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nFQvXfPBrLhX_VDusBbu0HOF_4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/YoM4M5Y0urR3onRS7zqoWT7AIqY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/nFQvXfPBrLhX_VDusBbu0HOF_4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.44.246.0/24
Signature Algorithm: sha256WithRSAEncryption
50:54:7e:8f:02:29:bb:55:b7:5f:27:e5:b2:0b:07:88:54:50:
94:25:43:83:1e:f4:05:8b:0d:69:b4:a8:f4:80:c1:dd:12:9a:
36:4d:0a:06:e9:d2:2b:00:93:37:59:3c:06:08:7d:8f:5c:1a:
82:7a:1a:57:9e:0e:75:9a:e3:f1:16:39:be:28:17:3c:fa:e7:
da:9f:30:ce:b4:39:1e:7e:c3:5b:27:90:dc:52:5b:74:89:eb:
78:00:dc:3f:06:2b:b7:a8:ff:fe:50:14:26:4e:52:16:a1:cb:
fd:11:54:ca:de:c1:44:ee:fa:78:a4:31:ed:97:43:59:a2:76:
76:4b:9d:b3:16:d9:2e:5e:67:c7:62:2b:ca:39:28:53:13:e2:
f4:a3:28:5a:60:01:bc:a3:27:4c:df:b2:97:dd:26:1c:98:ea:
70:39:21:47:78:0d:85:b2:aa:3a:1e:a5:33:be:ba:ed:85:1a:
3c:27:34:65:11:6c:f9:5f:54:dc:0a:9c:0d:8c:e1:fd:b6:67:
07:6a:dd:e1:98:3b:68:21:45:26:3c:64:03:0c:67:14:85:b5:
39:3a:f5:20:98:c4:36:b9:27:02:f4:6f:58:e2:16:1e:c6:de:
2e:7e:02:d4:35:66:79:aa:4d:be:62:7b:73:37:5a:59:8c:91:
ec:ee:b9:34
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzI3s4zU78UQFQ78yVfPkCQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDljNTQyZjVkZjNjMWFjYjg1N2ZkNTBlZWIwMTZlZWQwNzM4
NWZmOGMwHhcNMjQwMTAyMDYzMTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MjgzMzgzMzk2MzRiYWI0NzdhMjc0NTJlZjNhYTg1OTNlYzAyMmE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgPAypHAsQNUVpBkFzlR9CsW3f6K+
iZKLYw4wQecRtvZutyC1l63wweS675JqcwJr++WJx+MFvS7FkC7/C+ZxmPtWLyIw
ipnc/I9Ruez+5Wkk3yXyP8UDs1xDDOiMalcdMm5koVNReJzoGthYwKrpHBpOy34e
TPqZKfInpwgxqr5lWg2UyhIRqZJVKBTwsb9EZ0CpWpNEc9NGdItI2y4tkvTxcgwA
s9HDnMi/6KIzpCxFSEi363Cs3H9uRPKEGgHqG+nqDtwCkSKTXU7j/SSIJQs3K/dN
RLku521wNf1XKYPXKdYrMAgnE2ttdpObCQzarRtI/1nNKWoC7y6xuj2cUQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGKDODOWNLq0d6J0Uu86qFk+wCKmMB8GA1UdIwQY
MBaAFJxUL13zway4V/1Q7rAW7tBzhf+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbkZRdlhmUEJyTGhYX1ZEdXNCYnUwSE9GXzR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9mYjc5MWItODAxMy00NThhLTlhMWUt
MjVkYmY0MzgwNGM1LzEvWW9NNE01WTB1clIzb25SUzd6cW9XVDdBSXFZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS9mYjc5MWItODAxMy00NThhLTlhMWUtMjVkYmY0MzgwNGM1
LzEvbkZRdlhmUEJyTGhYX1ZEdXNCYnUwSE9GXzR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWSz2MA0G
CSqGSIb3DQEBCwUAA4IBAQBQVH6PAim7VbdfJ+WyCweIVFCUJUODHvQFiw1ptKj0
gMHdEpo2TQoG6dIrAJM3WTwGCH2PXBqCehpXng51muPxFjm+KBc8+ufanzDOtDke
fsNbJ5DcUlt0iet4ANw/Biu3qP/+UBQmTlIWocv9EVTK3sFE7vp4pDHtl0NZonZ2
S52zFtkuXmfHYivKOShTE+L0oyhaYAG8oydM37KX3SYcmOpwOSFHeA2Fsqo6HqUz
vrrthRo8JzRlEWz5X1TcCpwNjOH9tmcHat3hmDtoIUUmPGQDDGcUhbU5OvUgmMQ2
uScC9G9Y4hYext4ufgLUNWZ5qk2+YntzN1pZjJHs7rk0
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:24 2024 by rpki-client on console-fra.rpki-client.org