Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/c04359-4ae4-4e47-91cb-d7d02e97e25d/1/Ywz1vJqeEfBe5nDDCDQt1hUpnvk.roa
File: Ywz1vJqeEfBe5nDDCDQt1hUpnvk.roa (raw, json)
Hash identifier: F+g2tTG/sYp8QRDXnKSb6X6HM6yGQK0irzwS979LtDo=
Subject key identifier: 63:0C:F5:BC:9A:9E:11:F0:5E:E6:70:C3:08:34:2D:D6:15:29:9E:F9
Certificate issuer: /CN=1a2474ce5b5e220b9f431afc86af4ec140f5f16c
Certificate serial: 01856CB8385292A0E8D825110F9F7651ABB9
Authority key identifier: 1A:24:74:CE:5B:5E:22:0B:9F:43:1A:FC:86:AF:4E:C1:40:F5:F1:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GiR0zlteIgufQxr8hq9OwUD18Ww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/c04359-4ae4-4e47-91cb-d7d02e97e25d/1/Ywz1vJqeEfBe5nDDCDQt1hUpnvk.roa
Signing time: Sun 01 Jan 2023 09:44:50 +0000
ROA not before: Sun 01 Jan 2023 09:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198930
IP address blocks: 85.202.88.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 16 Mar 2023 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:38:52:92:a0:e8:d8:25:11:0f:9f:76:51:ab:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a2474ce5b5e220b9f431afc86af4ec140f5f16c
Validity
Not Before: Jan 1 09:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=630cf5bc9a9e11f05ee670c308342dd615299ef9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c8:f0:1a:ee:ed:79:37:62:9f:0f:70:ac:a2:
f0:62:e8:56:61:08:ad:91:84:8f:ae:17:35:43:5a:
09:cb:b5:d1:6f:4d:bf:fe:28:c8:7f:20:c0:c1:a8:
95:11:3e:f3:1a:68:13:e7:2a:b0:53:04:fc:73:76:
ca:6f:8b:0d:38:3d:93:50:39:23:59:a9:99:71:31:
f6:a6:aa:d4:6d:a0:57:db:51:c6:66:2d:50:a0:05:
a6:e1:c2:25:b5:0d:04:77:ba:42:53:3a:fc:1c:f1:
e4:8e:9f:cd:fe:19:e1:0a:36:f2:5f:c2:11:a5:5f:
4e:42:37:3a:9e:dc:15:54:f5:68:46:b4:25:6f:00:
55:0d:55:8a:00:95:88:b8:ba:33:f3:e5:51:b2:03:
56:da:8a:78:ce:74:91:af:5d:fd:b7:b6:87:4c:a7:
b9:63:37:07:e8:00:5d:f9:cc:e1:66:52:40:6b:9c:
67:0d:0d:91:ea:7a:ec:81:9e:b7:18:58:50:32:33:
54:21:ae:26:b3:38:11:e5:0e:b0:bd:38:01:da:90:
e0:25:d5:e4:d7:7a:e2:7a:af:96:5a:08:bb:9c:f5:
42:fe:6c:b3:7d:f4:49:f9:7d:17:a4:22:1b:91:0a:
17:a2:37:8a:26:0d:21:32:f2:bc:88:88:69:08:87:
3e:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:0C:F5:BC:9A:9E:11:F0:5E:E6:70:C3:08:34:2D:D6:15:29:9E:F9
X509v3 Authority Key Identifier:
keyid:1A:24:74:CE:5B:5E:22:0B:9F:43:1A:FC:86:AF:4E:C1:40:F5:F1:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GiR0zlteIgufQxr8hq9OwUD18Ww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/c04359-4ae4-4e47-91cb-d7d02e97e25d/1/Ywz1vJqeEfBe5nDDCDQt1hUpnvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/c04359-4ae4-4e47-91cb-d7d02e97e25d/1/GiR0zlteIgufQxr8hq9OwUD18Ww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.202.88.0/22
Signature Algorithm: sha256WithRSAEncryption
53:08:5e:19:1b:e9:d4:2f:6a:0e:d0:a3:b6:6f:c9:d4:3d:73:
a5:51:8d:88:35:a5:51:e6:5b:2b:72:78:0b:5d:78:07:a7:8e:
c3:96:9d:cc:4a:6b:b1:e0:e4:60:59:a9:b5:e1:12:dd:46:8c:
64:c2:d0:26:44:14:ad:97:db:37:e9:43:82:ab:e2:ce:4d:c0:
5b:46:71:e3:ac:07:22:da:e9:01:bb:5b:1e:1c:c7:ac:ec:73:
b8:86:2d:d6:82:1a:94:96:8a:cc:6a:ac:76:11:cb:59:46:6c:
9b:4a:25:f6:96:61:84:81:c6:5d:ee:e8:86:8a:ff:a8:ef:81:
9f:55:68:ea:7b:87:8b:39:aa:45:2d:cf:bd:d2:8c:2e:c7:67:
9a:99:da:8c:60:24:0d:8a:e5:8e:52:46:da:1e:27:59:8d:90:
16:3a:8b:b8:fd:23:43:8e:d5:15:85:78:3b:9d:b0:54:42:e5:
a6:67:8a:7f:da:13:85:00:9e:fa:97:cd:29:ba:6b:36:68:7a:
c9:e6:cb:15:8d:6c:84:1d:93:80:39:4b:56:c4:a7:4e:d8:4a:
86:33:7f:94:a7:a3:07:68:5b:24:be:48:2b:48:73:32:0a:7f:
df:51:ae:00:64:11:e0:f4:22:55:f1:af:87:96:78:9d:97:c7:
ad:d3:09:7b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsuDhSkqDo2CURD592Uau5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFhMjQ3NGNlNWI1ZTIyMGI5ZjQzMWFmYzg2YWY0ZWMxNDBm
NWYxNmMwHhcNMjMwMTAxMDk0NDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MzBjZjViYzlhOWUxMWYwNWVlNjcwYzMwODM0MmRkNjE1Mjk5ZWY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn8jwGu7teTdinw9wrKLwYuhWYQit
kYSPrhc1Q1oJy7XRb02//ijIfyDAwaiVET7zGmgT5yqwUwT8c3bKb4sNOD2TUDkj
WamZcTH2pqrUbaBX21HGZi1QoAWm4cIltQ0Ed7pCUzr8HPHkjp/N/hnhCjbyX8IR
pV9OQjc6ntwVVPVoRrQlbwBVDVWKAJWIuLoz8+VRsgNW2op4znSRr139t7aHTKe5
YzcH6ABd+czhZlJAa5xnDQ2R6nrsgZ63GFhQMjNUIa4mszgR5Q6wvTgB2pDgJdXk
13rieq+WWgi7nPVC/myzffRJ+X0XpCIbkQoXojeKJg0hMvK8iIhpCIc+pwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGMM9byanhHwXuZwwwg0LdYVKZ75MB8GA1UdIwQY
MBaAFBokdM5bXiILn0Ma/IavTsFA9fFsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR2lSMHpsdGVJZ3VmUXhyOGhxOU93VUQxOFd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9jMDQzNTktNGFlNC00ZTQ3LTkxY2It
ZDdkMDJlOTdlMjVkLzEvWXd6MXZKcWVFZkJlNW5ERENEUXQxaFVwbnZrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC9jMDQzNTktNGFlNC00ZTQ3LTkxY2ItZDdkMDJlOTdlMjVk
LzEvR2lSMHpsdGVJZ3VmUXhyOGhxOU93VUQxOFd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCVcpYMA0G
CSqGSIb3DQEBCwUAA4IBAQBTCF4ZG+nUL2oO0KO2b8nUPXOlUY2INaVR5lsrcngL
XXgHp47Dlp3MSmux4ORgWam14RLdRoxkwtAmRBStl9s36UOCq+LOTcBbRnHjrAci
2ukBu1seHMes7HO4hi3WghqUlorMaqx2EctZRmybSiX2lmGEgcZd7uiGiv+o74Gf
VWjqe4eLOapFLc+90owux2eamdqMYCQNiuWOUkbaHidZjZAWOou4/SNDjtUVhXg7
nbBUQuWmZ4p/2hOFAJ76l80pums2aHrJ5ssVjWyEHZOAOUtWxKdO2EqGM3+Up6MH
aFskvkgrSHMyCn/fUa4AZBHg9CJV8a+Hlnidl8et0wl7
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:28 2024 by rpki-client on console-ams.rpki-client.org