Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/de31a6-aaa3-409d-8d4f-f61554c6c145/1/ySkf8Du6II50G47HqU1aZAYyOpU.roa
File: ySkf8Du6II50G47HqU1aZAYyOpU.roa (raw, json)
Hash identifier: lnP9wvwnG21gMoOVTD4/B05dvPbgLJ0klFMu7fCaEr0=
Subject key identifier: C9:29:1F:F0:3B:BA:20:8E:74:1B:8E:C7:A9:4D:5A:64:06:32:3A:95
Certificate issuer: /CN=815780532ed29a3f80e7ba414efcb379d9ec97c9
Certificate serial: 0187BD95761B1961527DFEBC0D6F7ABE4FF2
Authority key identifier: 81:57:80:53:2E:D2:9A:3F:80:E7:BA:41:4E:FC:B3:79:D9:EC:97:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gVeAUy7Smj-A57pBTvyzednsl8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/de31a6-aaa3-409d-8d4f-f61554c6c145/1/ySkf8Du6II50G47HqU1aZAYyOpU.roa
Signing time: Wed 26 Apr 2023 12:41:41 +0000
ROA not before: Wed 26 Apr 2023 12:41:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 17307
IP address blocks: 77.247.0.0/20 maxlen: 20
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:bd:95:76:1b:19:61:52:7d:fe:bc:0d:6f:7a:be:4f:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=815780532ed29a3f80e7ba414efcb379d9ec97c9
Validity
Not Before: Apr 26 12:41:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c9291ff03bba208e741b8ec7a94d5a6406323a95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:71:03:a3:00:a8:55:c9:c0:ce:1f:7e:d5:10:
36:14:69:31:60:8d:83:53:f1:18:4c:85:d4:f3:c3:
bf:f3:00:82:cd:7d:0d:50:74:a9:cb:5d:5c:b1:14:
82:0f:38:c6:82:44:04:c1:cb:f7:54:da:b6:80:d2:
9a:58:29:df:e9:cf:1e:f7:13:66:8f:cd:85:e3:30:
8a:cb:a9:dc:7f:32:dc:a2:08:36:9c:c5:61:0a:19:
d5:42:ff:fe:32:10:8a:ac:df:ed:33:12:aa:12:0c:
ee:fb:00:22:6e:77:32:f3:cd:18:ba:7d:79:fa:8a:
0a:b7:53:77:11:2f:47:6e:65:66:67:89:bd:83:7a:
b5:54:a8:0b:4c:87:d4:14:22:a4:2c:fc:d2:bd:03:
fd:9c:41:2e:62:9b:2f:c7:b2:90:ee:b2:f6:b2:a6:
13:9c:2f:5d:70:7b:8f:db:85:e6:70:96:18:a6:67:
b4:9f:12:c8:ac:5a:a6:0f:dc:6c:16:b7:53:3a:aa:
80:79:00:42:05:cb:68:c1:f3:74:2a:95:ee:0d:f7:
e6:d9:75:03:ce:08:03:8c:35:bd:f6:f4:c5:64:94:
bd:d8:94:b1:62:0c:04:10:7d:0d:e3:2f:33:ed:60:
10:ad:a3:b8:9b:4f:38:db:ff:28:8e:4c:b1:b0:ae:
a5:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:29:1F:F0:3B:BA:20:8E:74:1B:8E:C7:A9:4D:5A:64:06:32:3A:95
X509v3 Authority Key Identifier:
keyid:81:57:80:53:2E:D2:9A:3F:80:E7:BA:41:4E:FC:B3:79:D9:EC:97:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gVeAUy7Smj-A57pBTvyzednsl8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/de31a6-aaa3-409d-8d4f-f61554c6c145/1/ySkf8Du6II50G47HqU1aZAYyOpU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/de31a6-aaa3-409d-8d4f-f61554c6c145/1/gVeAUy7Smj-A57pBTvyzednsl8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.247.0.0/20
Signature Algorithm: sha256WithRSAEncryption
76:a8:99:f5:f2:c9:4a:2c:86:9f:fc:e6:92:b5:33:47:ff:1c:
23:a7:fa:95:fc:9b:6c:ca:6f:5e:ce:29:99:90:50:b2:37:37:
11:a8:8a:a5:94:ee:b8:55:ff:36:e4:91:6d:f5:0d:91:89:ec:
e9:8c:1f:71:bc:55:b6:2a:30:c5:49:0d:4f:69:da:1d:b1:e0:
3f:fd:f2:4f:9c:ff:97:42:7d:fd:ef:58:4f:ff:a3:35:c2:d8:
bd:69:24:a7:1b:71:76:4e:2d:6d:f1:6d:7b:bb:29:69:6a:54:
92:ac:87:ba:e1:72:b6:01:b4:39:5e:31:a8:13:ae:f6:cc:6e:
8b:0e:00:56:e5:2c:04:44:04:9f:74:a5:6b:f9:a0:66:c8:07:
97:4b:e8:19:0c:cd:52:aa:37:7b:17:8c:4c:e3:a8:f4:d6:3d:
dd:c0:74:f7:a2:f4:f2:17:a6:77:f5:a8:3c:0c:11:ac:42:c2:
24:9b:3e:3d:9f:60:c1:5b:1e:58:36:9e:aa:d8:65:36:64:d6:
e1:57:cd:20:7a:83:57:a0:a7:ad:cd:0f:e1:6d:72:15:9d:15:
c2:61:e3:64:b3:47:29:24:74:3e:e3:13:03:c7:0d:d9:90:64:
b4:68:b6:21:8c:91:b8:5b:bd:3d:0a:6e:e2:3d:68:42:6d:d4:
15:df:8e:a7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYe9lXYbGWFSff68DW96vk/yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxNTc4MDUzMmVkMjlhM2Y4MGU3YmE0MTRlZmNiMzc5ZDll
Yzk3YzkwHhcNMjMwNDI2MTI0MTQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjOTI5MWZmMDNiYmEyMDhlNzQxYjhlYzdhOTRkNWE2NDA2MzIzYTk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiXEDowCoVcnAzh9+1RA2FGkxYI2D
U/EYTIXU88O/8wCCzX0NUHSpy11csRSCDzjGgkQEwcv3VNq2gNKaWCnf6c8e9xNm
j82F4zCKy6ncfzLcogg2nMVhChnVQv/+MhCKrN/tMxKqEgzu+wAibncy880Yun15
+ooKt1N3ES9HbmVmZ4m9g3q1VKgLTIfUFCKkLPzSvQP9nEEuYpsvx7KQ7rL2sqYT
nC9dcHuP24XmcJYYpme0nxLIrFqmD9xsFrdTOqqAeQBCBctowfN0KpXuDffm2XUD
zggDjDW99vTFZJS92JSxYgwEEH0N4y8z7WAQraO4m0842/8ojkyxsK6l0QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMkpH/A7uiCOdBuOx6lNWmQGMjqVMB8GA1UdIwQY
MBaAFIFXgFMu0po/gOe6QU78s3nZ7JfJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ1ZlQVV5N1Ntai1BNTdwQlR2eXplZG5zbDhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9kZTMxYTYtYWFhMy00MDlkLThkNGYt
ZjYxNTU0YzZjMTQ1LzEveVNrZjhEdTZJSTUwRzQ3SHFVMWFaQVl5T3BVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi9kZTMxYTYtYWFhMy00MDlkLThkNGYtZjYxNTU0YzZjMTQ1
LzEvZ1ZlQVV5N1Ntai1BNTdwQlR2eXplZG5zbDhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQETfcAMA0G
CSqGSIb3DQEBCwUAA4IBAQB2qJn18slKLIaf/OaStTNH/xwjp/qV/Jtsym9ezimZ
kFCyNzcRqIqllO64Vf825JFt9Q2RiezpjB9xvFW2KjDFSQ1PadodseA//fJPnP+X
Qn3971hP/6M1wti9aSSnG3F2Ti1t8W17uylpalSSrIe64XK2AbQ5XjGoE672zG6L
DgBW5SwERASfdKVr+aBmyAeXS+gZDM1Sqjd7F4xM46j01j3dwHT3ovTyF6Z39ag8
DBGsQsIkmz49n2DBWx5YNp6q2GU2ZNbhV80geoNXoKetzQ/hbXIVnRXCYeNks0cp
JHQ+4xMDxw3ZkGS0aLYhjJG4W709Cm7iPWhCbdQV346n
-----END CERTIFICATE-----
Generated at Mon Jan 1 23:29:19 2024 by rpki-client on console-ams.rpki-client.org