Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/13a2cf-0f0d-4e44-aa92-8518ca4a5fca/1/y33_Sr6ploQKdlJ51dSAwMvvq8M.roa
File: y33_Sr6ploQKdlJ51dSAwMvvq8M.roa (raw, json)
Hash identifier: r3YnF1wEMDjO+ugBLDuUgAQU3+aUAGHlAPLh56phTmg=
Subject key identifier: CB:7D:FF:4A:BE:A9:96:84:0A:76:52:79:D5:D4:80:C0:CB:EF:AB:C3
Certificate issuer: /CN=248b8cd2bb744c5720570465de57b4ca35a372f0
Certificate serial: 018571A795A503B66D71C6DED4164F2DFADC
Authority key identifier: 24:8B:8C:D2:BB:74:4C:57:20:57:04:65:DE:57:B4:CA:35:A3:72:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JIuM0rt0TFcgVwRl3le0yjWjcvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/13a2cf-0f0d-4e44-aa92-8518ca4a5fca/1/y33_Sr6ploQKdlJ51dSAwMvvq8M.roa
Signing time: Mon 02 Jan 2023 08:44:46 +0000
ROA not before: Mon 02 Jan 2023 08:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21267
IP address blocks: 45.88.60.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:a7:95:a5:03:b6:6d:71:c6:de:d4:16:4f:2d:fa:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=248b8cd2bb744c5720570465de57b4ca35a372f0
Validity
Not Before: Jan 2 08:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb7dff4abea996840a765279d5d480c0cbefabc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:77:3d:a2:07:f8:02:0e:8d:38:c1:92:04:9d:
ad:09:86:1c:cc:bc:f6:50:07:80:af:02:21:44:8b:
e7:d0:9d:cc:56:7b:32:72:fc:6a:38:44:ef:43:f3:
d2:a5:0a:9a:0d:33:d5:ec:85:90:75:e5:53:e8:16:
1c:c9:ad:41:92:b3:c0:85:90:f1:81:33:8f:0b:c3:
03:ac:fb:b0:5e:bd:f3:f8:f9:ea:49:e2:e3:ba:4f:
d0:61:51:79:66:17:8c:cb:b6:d4:da:40:29:17:3f:
ef:ea:0f:a9:c3:a5:3b:11:e0:6b:30:e9:99:f5:9a:
e1:da:af:ac:bd:21:ee:ff:a5:c0:3e:c7:9a:ab:86:
ac:45:dc:a9:0f:2a:ed:aa:a4:f7:98:0b:6d:ab:55:
06:c2:81:ec:e1:3b:a0:23:93:bc:ae:9e:da:c2:b7:
d1:b7:00:26:31:50:8d:7c:1a:9c:84:bf:e7:88:c1:
b8:08:6a:d3:ec:74:6e:13:1b:bc:34:40:9c:b1:10:
40:75:07:b6:76:2e:c2:ea:3a:f2:1a:ea:53:14:2e:
58:a6:5d:28:6f:79:31:a7:a7:d0:f1:45:66:d0:28:
0f:9b:07:3d:a1:e7:d2:cc:ec:a3:54:80:ce:bf:7b:
32:75:d6:0c:b7:fe:f0:b6:e2:a8:42:3d:18:f0:36:
21:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:7D:FF:4A:BE:A9:96:84:0A:76:52:79:D5:D4:80:C0:CB:EF:AB:C3
X509v3 Authority Key Identifier:
keyid:24:8B:8C:D2:BB:74:4C:57:20:57:04:65:DE:57:B4:CA:35:A3:72:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JIuM0rt0TFcgVwRl3le0yjWjcvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/13a2cf-0f0d-4e44-aa92-8518ca4a5fca/1/y33_Sr6ploQKdlJ51dSAwMvvq8M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/13a2cf-0f0d-4e44-aa92-8518ca4a5fca/1/JIuM0rt0TFcgVwRl3le0yjWjcvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.60.0/22
Signature Algorithm: sha256WithRSAEncryption
24:50:d1:a6:8d:a7:6c:5e:31:84:d5:bb:2a:7c:8a:2d:4d:90:
b6:d0:d1:65:b5:d3:5d:3a:f0:b2:b2:93:09:23:8d:c0:b4:ee:
19:c9:8e:1f:82:2a:cd:d2:33:25:c3:49:8d:4a:2b:a0:ce:a1:
7a:dd:b0:0d:87:4b:c3:de:60:aa:92:4e:1d:1c:8b:3d:16:1b:
91:13:bd:24:af:17:6b:85:69:59:4f:35:a5:d7:a5:ab:74:f9:
c8:97:5f:77:3a:7c:68:a2:be:e9:7c:7e:d7:30:cd:5f:a3:9e:
c8:ef:d1:a5:9c:7b:61:08:a6:2b:d4:7a:fc:81:86:4a:e2:52:
57:84:b4:97:b5:f0:28:ef:df:79:48:98:94:66:64:3b:16:cf:
63:46:9a:d0:16:f9:cc:ee:2e:bc:44:ad:ff:bb:08:49:5e:f1:
b4:eb:0a:09:59:95:6d:3e:6e:fe:5f:96:88:37:d2:84:cc:f0:
7e:c6:b7:3d:21:a8:0e:bb:5d:cf:99:bb:94:91:14:17:c6:58:
73:13:e6:e0:62:d9:e3:d4:5d:83:07:99:db:d0:6e:6e:d8:c8:
d9:ad:3b:aa:88:6b:18:b4:81:b9:4c:16:ad:de:a1:b0:1c:51:
97:3c:27:83:d2:c4:3e:f3:90:6c:7b:45:2b:10:78:8f:a7:9c:
b6:8f:54:c5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxp5WlA7Ztccbe1BZPLfrcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI0OGI4Y2QyYmI3NDRjNTcyMDU3MDQ2NWRlNTdiNGNhMzVh
MzcyZjAwHhcNMjMwMTAyMDg0NDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYjdkZmY0YWJlYTk5Njg0MGE3NjUyNzlkNWQ0ODBjMGNiZWZhYmMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtHc9ogf4Ag6NOMGSBJ2tCYYczLz2
UAeArwIhRIvn0J3MVnsycvxqOETvQ/PSpQqaDTPV7IWQdeVT6BYcya1BkrPAhZDx
gTOPC8MDrPuwXr3z+PnqSeLjuk/QYVF5ZheMy7bU2kApFz/v6g+pw6U7EeBrMOmZ
9Zrh2q+svSHu/6XAPseaq4asRdypDyrtqqT3mAttq1UGwoHs4TugI5O8rp7awrfR
twAmMVCNfBqchL/niMG4CGrT7HRuExu8NECcsRBAdQe2di7C6jryGupTFC5Ypl0o
b3kxp6fQ8UVm0CgPmwc9oefSzOyjVIDOv3syddYMt/7wtuKoQj0Y8DYhwQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMt9/0q+qZaECnZSedXUgMDL76vDMB8GA1UdIwQY
MBaAFCSLjNK7dExXIFcEZd5XtMo1o3LwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSkl1TTBydDBURmNnVndSbDNsZTB5aldqY3ZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy8xM2EyY2YtMGYwZC00ZTQ0LWFhOTIt
ODUxOGNhNGE1ZmNhLzEveTMzX1NyNnBsb1FLZGxKNTFkU0F3TXZ2cThNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy8xM2EyY2YtMGYwZC00ZTQ0LWFhOTItODUxOGNhNGE1ZmNh
LzEvSkl1TTBydDBURmNnVndSbDNsZTB5aldqY3ZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLVg8MA0G
CSqGSIb3DQEBCwUAA4IBAQAkUNGmjadsXjGE1bsqfIotTZC20NFltdNdOvCyspMJ
I43AtO4ZyY4fgirN0jMlw0mNSiugzqF63bANh0vD3mCqkk4dHIs9FhuRE70krxdr
hWlZTzWl16WrdPnIl193Onxoor7pfH7XMM1fo57I79GlnHthCKYr1Hr8gYZK4lJX
hLSXtfAo7995SJiUZmQ7Fs9jRprQFvnM7i68RK3/uwhJXvG06woJWZVtPm7+X5aI
N9KEzPB+xrc9IagOu13PmbuUkRQXxlhzE+bgYtnj1F2DB5nb0G5u2MjZrTuqiGsY
tIG5TBat3qGwHFGXPCeD0sQ+85Bse0UrEHiPp5y2j1TF
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:51 2024 by rpki-client on console-fra.rpki-client.org