Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/4Yn2dVUUJof0cM_UZ7m9-uAzk7w.roa
File: 4Yn2dVUUJof0cM_UZ7m9-uAzk7w.roa (raw, json)
Hash identifier: lYqfPtcztrDhVUJX/cEFEVjsrHZCmBsTZkQ1ayxk0Wk=
Subject key identifier: E1:89:F6:75:55:14:26:87:F4:70:CF:D4:67:B9:BD:FA:E0:33:93:BC
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0189727090B55830521C2055129153D50453
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/4Yn2dVUUJof0cM_UZ7m9-uAzk7w.roa
Signing time: Thu 20 Jul 2023 08:35:26 +0000
ROA not before: Thu 20 Jul 2023 08:35:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50340
IP address blocks: 212.192.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Jul 2023 06:42:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:72:70:90:b5:58:30:52:1c:20:55:12:91:53:d5:04:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jul 20 08:35:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e189f67555142687f470cfd467b9bdfae03393bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:64:e5:9c:62:e0:e4:cf:87:5d:2f:80:fb:65:
89:8d:ab:1d:71:3c:69:92:71:37:44:29:90:29:f5:
25:5c:3c:b8:43:98:43:03:3c:7f:6b:8b:d7:60:82:
2f:25:f1:85:2e:f2:3a:33:36:f4:98:86:07:a4:b9:
88:f0:19:76:e4:cc:fd:d6:d7:17:45:62:8e:f3:e5:
cb:a8:79:b9:ba:b7:a4:f8:b1:bb:37:82:db:f1:f4:
49:2a:39:69:51:5e:77:37:1f:c2:0e:7e:17:b7:19:
56:aa:99:5e:34:0c:a6:ec:3c:8a:4c:10:42:55:a5:
db:88:87:d8:65:67:bf:09:bc:22:48:a8:0f:e8:77:
82:cd:59:77:17:24:44:a6:a0:21:c2:64:9f:27:ce:
20:a0:1f:9b:0e:b4:39:4a:b6:0b:bd:cd:b7:b3:10:
46:a8:75:d3:47:76:a8:79:2a:5a:3a:82:42:ed:15:
6f:7b:09:f9:92:97:75:87:85:45:3b:c4:f7:72:3a:
db:1e:79:e3:97:11:fd:c6:64:f3:e3:6d:61:29:94:
30:a5:ff:ee:c8:4a:99:bf:98:cd:d4:cd:5e:5c:0a:
cb:f2:30:87:43:98:23:96:a4:6f:8d:15:7a:ad:3a:
bd:be:ea:83:22:81:14:68:fc:d3:be:51:c7:d1:e9:
9e:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:89:F6:75:55:14:26:87:F4:70:CF:D4:67:B9:BD:FA:E0:33:93:BC
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/4Yn2dVUUJof0cM_UZ7m9-uAzk7w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.192.62.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:98:5f:21:54:b9:2b:a6:b4:da:6b:ce:0c:57:7c:e1:5a:65:
92:84:32:66:07:75:5a:1a:9d:24:3e:7a:df:2e:e0:2e:14:2b:
55:43:a7:95:c2:f6:fe:a5:1c:f4:f8:01:f1:88:40:6e:1e:82:
b2:b7:bd:48:c4:65:cb:f1:aa:cd:79:6c:ba:d3:ce:5b:be:51:
78:8e:60:17:63:5c:cf:88:92:4d:8c:d6:b7:1d:6c:c7:8b:eb:
15:a0:da:f4:05:fb:26:06:bb:cd:24:8b:40:bb:35:fb:69:66:
74:be:87:84:33:a5:52:6e:6d:3a:ff:d1:4d:78:35:28:32:7c:
a3:57:62:3f:ae:58:ce:02:de:00:29:a8:11:30:7d:e5:9b:f1:
bd:08:3f:67:65:75:7d:23:c6:b6:fd:4a:6e:7c:ec:a4:21:9d:
94:49:a3:a9:88:65:95:08:ea:2a:98:54:04:a2:8a:40:45:64:
7a:2c:0b:d1:a7:40:f5:a2:72:df:d1:36:5a:11:f0:0a:b0:09:
6e:83:28:e9:2d:fc:3b:d5:77:b1:ea:44:72:c5:25:c6:93:7e:
74:d5:79:b1:1b:20:7a:09:a8:9e:56:5b:ef:3a:6d:32:3b:97:
0a:1a:12:ce:7f:ac:6c:1a:e9:25:07:4a:a0:a6:95:41:a2:3a:
e1:ae:5e:b8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYlycJC1WDBSHCBVEpFT1QRTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1M2EzYjVmNTE4MDgxNjhjMjEyYzA5NGEyYmFhZmYzOGUx
NjQ2NGEwHhcNMjMwNzIwMDgzNTI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMTg5ZjY3NTU1MTQyNjg3ZjQ3MGNmZDQ2N2I5YmRmYWUwMzM5M2JjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkGTlnGLg5M+HXS+A+2WJjasdcTxp
knE3RCmQKfUlXDy4Q5hDAzx/a4vXYIIvJfGFLvI6Mzb0mIYHpLmI8Bl25Mz91tcX
RWKO8+XLqHm5urek+LG7N4Lb8fRJKjlpUV53Nx/CDn4XtxlWqpleNAym7DyKTBBC
VaXbiIfYZWe/CbwiSKgP6HeCzVl3FyREpqAhwmSfJ84goB+bDrQ5SrYLvc23sxBG
qHXTR3aoeSpaOoJC7RVvewn5kpd1h4VFO8T3cjrbHnnjlxH9xmTz421hKZQwpf/u
yEqZv5jN1M1eXArL8jCHQ5gjlqRvjRV6rTq9vuqDIoEUaPzTvlHH0emeTQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOGJ9nVVFCaH9HDP1Ge5vfrgM5O8MB8GA1UdIwQY
MBaAFCU6O19RgIFowhLAlKK6r/OOFkZKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQt
OWU5YTFlMDM3MzhlLzEvNFluMmRWVVVKb2YwY01fVVo3bTktdUF6azd3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS85NzQ3NGMtMWRjMi00NjJjLWFhZGQtOWU5YTFlMDM3Mzhl
LzEvSlRvN1gxR0FnV2pDRXNDVW9ycXY4NDRXUmtvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1MA+MA0G
CSqGSIb3DQEBCwUAA4IBAQCzmF8hVLkrprTaa84MV3zhWmWShDJmB3VaGp0kPnrf
LuAuFCtVQ6eVwvb+pRz0+AHxiEBuHoKyt71IxGXL8arNeWy6085bvlF4jmAXY1zP
iJJNjNa3HWzHi+sVoNr0BfsmBrvNJItAuzX7aWZ0voeEM6VSbm06/9FNeDUoMnyj
V2I/rljOAt4AKagRMH3lm/G9CD9nZXV9I8a2/UpufOykIZ2USaOpiGWVCOoqmFQE
oopARWR6LAvRp0D1onLf0TZaEfAKsAlugyjpLfw71Xex6kRyxSXGk3501XmxGyB6
CaieVlvvOm0yO5cKGhLOf6xsGuklB0qgppVBojrhrl64
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org