Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/260e24-2040-4a5c-92cf-ec58a3125ee5/1/9YKDEGeB0rmwrIXCKtNc7e5o_Xk.roa
File: 9YKDEGeB0rmwrIXCKtNc7e5o_Xk.roa (raw, json)
Hash identifier: ONYvt1EbztCDxdPYK32eqPOCD0yDkfrcTI+6AbRYiU4=
Subject key identifier: F5:82:83:10:67:81:D2:B9:B0:AC:85:C2:2A:D3:5C:ED:EE:68:FD:79
Certificate issuer: /CN=c4b1b458abf797dedcc661e54a685f651834b5d1
Certificate serial: 0185727112CD35B9F4C0B1D40D1AEC3A6219
Authority key identifier: C4:B1:B4:58:AB:F7:97:DE:DC:C6:61:E5:4A:68:5F:65:18:34:B5:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xLG0WKv3l97cxmHlSmhfZRg0tdE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/260e24-2040-4a5c-92cf-ec58a3125ee5/1/9YKDEGeB0rmwrIXCKtNc7e5o_Xk.roa
Signing time: Mon 02 Jan 2023 12:24:51 +0000
ROA not before: Mon 02 Jan 2023 12:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 78.25.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 May 2023 12:46:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:12:cd:35:b9:f4:c0:b1:d4:0d:1a:ec:3a:62:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4b1b458abf797dedcc661e54a685f651834b5d1
Validity
Not Before: Jan 2 12:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f58283106781d2b9b0ac85c22ad35cedee68fd79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:08:3d:c3:d3:57:f6:33:6a:e3:05:ef:e7:6e:
1e:31:fe:76:46:e8:f9:c2:22:66:bc:25:42:31:63:
9b:73:65:46:ea:b6:e5:2d:94:05:31:25:6b:69:44:
a0:61:6c:fb:53:13:27:ef:c5:45:3e:b7:aa:e3:73:
df:36:74:b0:98:2f:ef:59:48:86:09:bd:f1:14:30:
1e:71:a8:8c:60:fb:e9:66:a0:1a:77:6d:78:0f:18:
fc:6f:f8:b4:7c:18:07:d0:84:56:cd:75:e8:ad:6a:
6f:d4:5e:40:9e:21:94:bd:ae:bb:b6:e2:12:b0:da:
5e:4b:cc:34:27:f8:b9:d2:6e:18:2d:98:e2:0d:32:
af:63:5b:1f:a8:48:a9:df:cc:11:8c:9a:fc:15:f4:
8c:fa:e9:6a:4a:11:04:2a:5c:25:cc:41:ca:9c:68:
a3:f9:65:46:e0:49:eb:9e:c0:4e:0d:51:58:c0:fc:
93:b4:12:b9:70:5b:1a:30:56:5a:6b:e8:f1:24:f9:
80:5f:4d:58:dc:10:5e:aa:3c:b0:19:60:0d:e3:03:
1e:94:19:22:ec:bb:27:1f:05:fd:50:0e:c5:10:54:
7a:fc:d2:50:20:00:87:cc:9e:bd:5a:d1:03:76:65:
4c:8a:87:11:f0:eb:e7:ab:ac:cb:08:a5:68:4a:37:
92:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:82:83:10:67:81:D2:B9:B0:AC:85:C2:2A:D3:5C:ED:EE:68:FD:79
X509v3 Authority Key Identifier:
keyid:C4:B1:B4:58:AB:F7:97:DE:DC:C6:61:E5:4A:68:5F:65:18:34:B5:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xLG0WKv3l97cxmHlSmhfZRg0tdE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/260e24-2040-4a5c-92cf-ec58a3125ee5/1/9YKDEGeB0rmwrIXCKtNc7e5o_Xk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/260e24-2040-4a5c-92cf-ec58a3125ee5/1/xLG0WKv3l97cxmHlSmhfZRg0tdE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.25.1.0/24
Signature Algorithm: sha256WithRSAEncryption
34:2a:ee:dc:cf:77:69:4f:93:7a:7a:92:cc:9f:f2:9a:fc:3f:
7f:3c:81:b7:ab:b3:b4:f8:9f:a9:4f:73:9c:1c:e7:65:4a:56:
e4:81:00:29:c1:bd:e6:e8:a1:1f:bf:07:29:33:2f:c8:ef:f0:
e0:82:35:7b:cb:77:6b:ac:38:98:54:c7:9e:02:8b:c1:05:2b:
19:da:ec:91:8b:0c:16:75:0d:69:dd:a1:1d:c5:81:7e:4c:e7:
6d:36:e5:39:b5:fa:e3:db:e6:54:80:db:38:d3:c0:d6:38:02:
19:71:8f:54:e7:2a:b5:fb:b5:4d:49:91:9f:4e:0d:eb:ff:37:
31:2e:ec:aa:b5:3b:1f:eb:86:e8:98:de:fd:66:f9:06:91:1f:
f6:48:8f:a8:aa:cd:07:cb:25:5e:2f:86:f4:e3:0b:80:a2:1d:
ea:6d:a9:59:42:ed:91:c3:05:b8:5f:d9:4e:e5:de:64:41:73:
14:a4:44:68:06:90:10:74:ab:51:b4:ef:94:d9:70:d2:fa:ea:
ca:e1:5f:80:d1:b9:e6:7a:ae:fe:c5:a8:d8:55:06:e7:36:1f:
96:51:7e:e2:f6:83:b5:65:b7:aa:c9:9e:55:63:a5:8f:83:07:
dc:9a:59:68:bc:1c:69:c0:96:5d:cd:4f:ba:e0:a0:92:57:c3:
88:18:9b:5b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVycRLNNbn0wLHUDRrsOmIZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0YjFiNDU4YWJmNzk3ZGVkY2M2NjFlNTRhNjg1ZjY1MTgz
NGI1ZDEwHhcNMjMwMTAyMTIyNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNTgyODMxMDY3ODFkMmI5YjBhYzg1YzIyYWQzNWNlZGVlNjhmZDc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwgg9w9NX9jNq4wXv524eMf52Ruj5
wiJmvCVCMWObc2VG6rblLZQFMSVraUSgYWz7UxMn78VFPreq43PfNnSwmC/vWUiG
Cb3xFDAecaiMYPvpZqAad214Dxj8b/i0fBgH0IRWzXXorWpv1F5AniGUva67tuIS
sNpeS8w0J/i50m4YLZjiDTKvY1sfqEip38wRjJr8FfSM+ulqShEEKlwlzEHKnGij
+WVG4EnrnsBODVFYwPyTtBK5cFsaMFZaa+jxJPmAX01Y3BBeqjywGWAN4wMelBki
7LsnHwX9UA7FEFR6/NJQIACHzJ69WtEDdmVMiocR8Ovnq6zLCKVoSjeS9wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPWCgxBngdK5sKyFwirTXO3uaP15MB8GA1UdIwQY
MBaAFMSxtFir95fe3MZh5UpoX2UYNLXRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveExHMFdLdjNsOTdjeG1IbFNtaGZaUmcwdGRFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS8yNjBlMjQtMjA0MC00YTVjLTkyY2Yt
ZWM1OGEzMTI1ZWU1LzEvOVlLREVHZUIwcm13cklYQ0t0TmM3ZTVvX1hrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS8yNjBlMjQtMjA0MC00YTVjLTkyY2YtZWM1OGEzMTI1ZWU1
LzEveExHMFdLdjNsOTdjeG1IbFNtaGZaUmcwdGRFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAThkBMA0G
CSqGSIb3DQEBCwUAA4IBAQA0Ku7cz3dpT5N6epLMn/Ka/D9/PIG3q7O0+J+pT3Oc
HOdlSlbkgQApwb3m6KEfvwcpMy/I7/DggjV7y3drrDiYVMeeAovBBSsZ2uyRiwwW
dQ1p3aEdxYF+TOdtNuU5tfrj2+ZUgNs408DWOAIZcY9U5yq1+7VNSZGfTg3r/zcx
LuyqtTsf64bomN79ZvkGkR/2SI+oqs0HyyVeL4b04wuAoh3qbalZQu2RwwW4X9lO
5d5kQXMUpERoBpAQdKtRtO+U2XDS+urK4V+A0bnmeq7+xajYVQbnNh+WUX7i9oO1
ZbeqyZ5VY6WPgwfcmllovBxpwJZdzU+64KCSV8OIGJtb
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:18 2024 by rpki-client on console-fra.rpki-client.org