Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/50b18f-9a7d-452c-a6d5-9de7525ba712/1/YyLcomlGHWEjgTobCxPcH39mL-8.roa
File: YyLcomlGHWEjgTobCxPcH39mL-8.roa (raw, json)
Hash identifier: UHou/nPveLpNz+41JFmhqgym8okf9Dpo7jH0v22+wPc=
Subject key identifier: 63:22:DC:A2:69:46:1D:61:23:81:3A:1B:0B:13:DC:1F:7F:66:2F:EF
Certificate issuer: /CN=b814345affd1506af9af32ec0d77399b7664aa3f
Certificate serial: 0189880FD71AD5E514FEC0B006813DA2B40C
Authority key identifier: B8:14:34:5A:FF:D1:50:6A:F9:AF:32:EC:0D:77:39:9B:76:64:AA:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uBQ0Wv_RUGr5rzLsDXc5m3Zkqj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/50b18f-9a7d-452c-a6d5-9de7525ba712/1/YyLcomlGHWEjgTobCxPcH39mL-8.roa
Signing time: Mon 24 Jul 2023 13:21:26 +0000
ROA not before: Mon 24 Jul 2023 13:21:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197641
IP address blocks: 45.144.104.0/22 maxlen: 24
2a0e:ec40::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 29 Jul 2023 08:25:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:88:0f:d7:1a:d5:e5:14:fe:c0:b0:06:81:3d:a2:b4:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b814345affd1506af9af32ec0d77399b7664aa3f
Validity
Not Before: Jul 24 13:21:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6322dca269461d6123813a1b0b13dc1f7f662fef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:fb:42:3b:86:d0:5d:00:62:8f:40:28:cd:f8:
af:31:a0:78:77:62:06:15:f9:36:6c:2d:e3:0d:f7:
c6:89:1b:f2:b6:3c:ce:ec:f5:4d:d9:da:31:5e:f9:
50:05:92:7c:f4:d2:b5:91:dd:26:85:22:26:cc:ab:
49:a3:03:19:a7:23:59:21:e3:09:7b:52:76:8c:33:
29:e4:60:63:e2:d0:f0:53:df:4f:29:ec:e5:9a:ee:
f9:63:3f:18:34:29:94:81:06:79:63:1a:ce:33:69:
bc:27:b7:1f:e1:96:9b:b3:2b:76:37:9b:6e:73:71:
b3:ea:82:4c:a7:1f:95:1f:61:9b:89:15:93:f8:66:
23:a3:76:b6:4b:8e:2e:0a:ea:54:a9:dd:c8:19:a4:
7c:eb:80:20:d1:7c:53:4f:ce:52:88:8e:71:5e:ce:
54:39:1d:bb:25:31:88:df:87:6e:c4:f3:84:ae:bf:
cb:eb:f0:f6:07:ac:3e:a8:b5:7a:41:6d:38:ee:28:
5b:0a:a1:4b:f5:a9:1a:d3:83:d0:88:02:2d:dd:41:
87:51:54:37:cb:5a:37:cb:d1:c3:d1:23:a5:88:43:
ed:5e:3e:7e:5e:0b:12:13:04:f2:fd:fb:f0:1e:85:
b3:79:9b:78:4f:ca:3e:b0:b5:3c:66:d1:9b:13:a7:
b0:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:22:DC:A2:69:46:1D:61:23:81:3A:1B:0B:13:DC:1F:7F:66:2F:EF
X509v3 Authority Key Identifier:
keyid:B8:14:34:5A:FF:D1:50:6A:F9:AF:32:EC:0D:77:39:9B:76:64:AA:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uBQ0Wv_RUGr5rzLsDXc5m3Zkqj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/50b18f-9a7d-452c-a6d5-9de7525ba712/1/YyLcomlGHWEjgTobCxPcH39mL-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/50b18f-9a7d-452c-a6d5-9de7525ba712/1/uBQ0Wv_RUGr5rzLsDXc5m3Zkqj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.104.0/22
IPv6:
2a0e:ec40::/32
Signature Algorithm: sha256WithRSAEncryption
57:95:0b:82:68:7d:f5:2b:bd:d2:27:10:52:71:b9:17:5f:8d:
e6:06:30:56:27:7e:4f:f1:4b:1e:83:ca:71:01:9d:9a:78:7b:
15:58:4e:d2:9f:93:58:d3:5d:e2:ba:9f:68:ee:cc:98:53:44:
72:12:cd:a2:20:d5:c5:18:db:79:79:60:ee:84:a9:c0:89:2e:
87:06:60:a3:9b:32:de:05:d1:ac:ee:4f:9a:33:fa:30:73:5b:
8b:0f:9a:25:e1:29:84:19:30:67:92:c1:fb:bc:b2:b0:06:c4:
fe:9c:2f:1c:fa:30:05:02:80:60:ce:06:f5:f8:f0:02:7d:21:
67:99:dc:93:f3:f9:95:d3:ba:aa:ae:0b:9b:19:bb:6e:ba:ca:
1c:57:95:86:81:58:71:85:7c:3f:9a:f0:a4:64:bd:2b:18:d1:
33:1c:3f:1b:7b:84:01:21:8e:c5:ec:bc:09:de:ec:47:42:36:
bd:c3:f9:44:4f:24:4e:aa:13:61:cb:cc:d5:0a:2e:8e:91:31:
a0:71:c4:09:1f:78:a5:21:f1:88:f2:bd:6e:0a:c0:4e:b0:b9:
e7:64:e8:df:82:13:fb:01:4f:77:ef:02:f2:66:00:06:15:d0:
e5:ef:c0:f8:a7:81:6f:bb:1b:9e:ed:5b:62:23:21:00:d2:b5:
88:72:d9:e4
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYmID9ca1eUU/sCwBoE9orQMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4MTQzNDVhZmZkMTUwNmFmOWFmMzJlYzBkNzczOTliNzY2
NGFhM2YwHhcNMjMwNzI0MTMyMTI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MzIyZGNhMjY5NDYxZDYxMjM4MTNhMWIwYjEzZGMxZjdmNjYyZmVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq/tCO4bQXQBij0AozfivMaB4d2IG
Ffk2bC3jDffGiRvytjzO7PVN2doxXvlQBZJ89NK1kd0mhSImzKtJowMZpyNZIeMJ
e1J2jDMp5GBj4tDwU99PKezlmu75Yz8YNCmUgQZ5YxrOM2m8J7cf4Zabsyt2N5tu
c3Gz6oJMpx+VH2GbiRWT+GYjo3a2S44uCupUqd3IGaR864Ag0XxTT85SiI5xXs5U
OR27JTGI34duxPOErr/L6/D2B6w+qLV6QW047ihbCqFL9aka04PQiAIt3UGHUVQ3
y1o3y9HD0SOliEPtXj5+XgsSEwTy/fvwHoWzeZt4T8o+sLU8ZtGbE6ewowIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFGMi3KJpRh1hI4E6GwsT3B9/Zi/vMB8GA1UdIwQY
MBaAFLgUNFr/0VBq+a8y7A13OZt2ZKo/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdUJRMFd2X1JVR3I1cnpMc0RYYzVtM1prcWo4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC81MGIxOGYtOWE3ZC00NTJjLWE2ZDUt
OWRlNzUyNWJhNzEyLzEvWXlMY29tbEdIV0VqZ1RvYkN4UGNIMzltTC04LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC81MGIxOGYtOWE3ZC00NTJjLWE2ZDUtOWRlNzUyNWJhNzEy
LzEvdUJRMFd2X1JVR3I1cnpMc0RYYzVtM1prcWo4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCLZBoMA0E
AgACMAcDBQAqDuxAMA0GCSqGSIb3DQEBCwUAA4IBAQBXlQuCaH31K73SJxBScbkX
X43mBjBWJ35P8Useg8pxAZ2aeHsVWE7Sn5NY013iup9o7syYU0RyEs2iINXFGNt5
eWDuhKnAiS6HBmCjmzLeBdGs7k+aM/owc1uLD5ol4SmEGTBnksH7vLKwBsT+nC8c
+jAFAoBgzgb1+PACfSFnmdyT8/mV07qqrgubGbtuusocV5WGgVhxhXw/mvCkZL0r
GNEzHD8be4QBIY7F7LwJ3uxHQja9w/lETyROqhNhy8zVCi6OkTGgccQJH3ilIfGI
8r1uCsBOsLnnZOjfghP7AU937wLyZgAGFdDl78D4p4Fvuxue7VtiIyEA0rWIctnk
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:22 2024 by rpki-client on console-ams.rpki-client.org