Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/7709e7-8372-4824-a81c-6ad0b69b208f/1/YwWBH7OKkDNWoKJOW2Z2-0D3MS8.roa
File: YwWBH7OKkDNWoKJOW2Z2-0D3MS8.roa (raw, json)
Hash identifier: goTgw68mdDLNVq5UZlse0ED7P2TLNdOyZxj/tIhhUHU=
Subject key identifier: 63:05:81:1F:B3:8A:90:33:56:A0:A2:4E:5B:66:76:FB:40:F7:31:2F
Certificate issuer: /CN=5bf63362fedee1c89135d5434d37b7375ed5a108
Certificate serial: 018CC5DC63FC9DEE71B1473DC6FCFC48BCA7
Authority key identifier: 5B:F6:33:62:FE:DE:E1:C8:91:35:D5:43:4D:37:B7:37:5E:D5:A1:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W_YzYv7e4ciRNdVDTTe3N17VoQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/7709e7-8372-4824-a81c-6ad0b69b208f/1/YwWBH7OKkDNWoKJOW2Z2-0D3MS8.roa
Signing time: Mon 01 Jan 2024 16:30:04 +0000
ROA not before: Mon 01 Jan 2024 16:30:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 31518
IP address blocks: 194.113.141.0/24 maxlen: 24
185.255.188.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 14 Mar 2024 18:02:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:63:fc:9d:ee:71:b1:47:3d:c6:fc:fc:48:bc:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bf63362fedee1c89135d5434d37b7375ed5a108
Validity
Not Before: Jan 1 16:30:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6305811fb38a903356a0a24e5b6676fb40f7312f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:c1:dc:8f:11:de:20:0b:d8:13:ba:4b:5c:70:
b0:8f:cc:ae:79:64:65:b3:6c:79:1e:21:ed:c6:36:
05:db:12:3e:c5:dd:ef:14:f4:d8:e2:95:96:c4:77:
d2:52:5a:7d:9c:07:01:ce:3a:20:2f:38:cf:e9:e7:
10:fd:83:4d:58:4e:b9:e6:6b:70:22:9a:bc:f0:fa:
27:90:c9:99:cb:6d:77:2f:26:c2:fb:55:62:3a:11:
24:74:43:ee:29:0a:09:db:27:75:5c:27:74:4b:43:
d0:ee:fa:fc:60:52:61:28:da:31:87:55:8f:23:6c:
48:b0:99:24:ca:1e:d2:b6:63:ab:da:bb:19:2b:df:
2e:f6:60:a1:80:7a:42:88:c7:9b:5d:30:4d:3e:e6:
18:8e:eb:39:6b:11:19:0b:0e:26:35:04:c1:84:cd:
95:e6:66:2d:ed:0f:8b:35:73:01:5d:e8:54:08:2f:
0b:01:e4:af:f1:e7:b7:c8:7f:04:ba:25:d2:9f:95:
ba:b4:82:45:7f:f4:73:52:47:ba:e8:c5:3a:9d:c0:
2e:aa:e2:ca:af:d4:64:fc:64:1e:1e:8c:e8:71:03:
a5:ad:bb:3e:d0:09:3a:00:44:06:95:83:1c:68:8d:
8d:6b:5d:b8:1a:96:46:2a:b0:a7:48:ee:2e:3b:aa:
c8:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:05:81:1F:B3:8A:90:33:56:A0:A2:4E:5B:66:76:FB:40:F7:31:2F
X509v3 Authority Key Identifier:
keyid:5B:F6:33:62:FE:DE:E1:C8:91:35:D5:43:4D:37:B7:37:5E:D5:A1:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W_YzYv7e4ciRNdVDTTe3N17VoQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/7709e7-8372-4824-a81c-6ad0b69b208f/1/YwWBH7OKkDNWoKJOW2Z2-0D3MS8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/7709e7-8372-4824-a81c-6ad0b69b208f/1/W_YzYv7e4ciRNdVDTTe3N17VoQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.188.0/22
194.113.141.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:33:81:7a:5f:7c:4c:c6:38:71:38:19:1e:97:24:aa:b7:b5:
7c:c7:9a:4a:bb:51:49:69:2b:22:6c:87:51:93:89:39:77:76:
06:f7:61:7b:bb:b8:f0:d1:ab:a3:65:af:05:07:14:87:1f:c6:
49:94:5b:87:74:b5:a4:ad:a9:4c:67:49:b0:4d:02:4e:70:04:
57:bb:43:eb:4c:dd:fb:f9:8a:9e:ac:46:88:40:75:12:85:a6:
bb:3e:ba:27:6f:49:1c:54:f1:83:f5:4c:f6:30:2e:bf:9f:26:
19:f7:dd:78:17:be:c4:be:68:89:c8:6d:41:50:01:db:4f:e4:
47:f0:e8:6b:2c:fa:03:26:f6:db:2a:92:57:cb:f0:52:24:b2:
c7:27:c0:a6:02:46:c3:94:bb:d0:45:b2:87:81:ef:93:b8:04:
f5:bb:78:88:85:3b:98:91:8a:f8:49:46:a2:b6:59:d9:11:60:
ce:41:85:0c:1a:a3:5f:03:b5:b4:9c:f0:5e:97:96:00:5d:2c:
82:77:58:eb:1e:7b:f2:d4:40:63:f4:a3:ec:40:cf:6a:7c:6b:
5d:5e:60:e7:8d:26:6c:9a:9a:57:2e:02:90:9d:9b:7f:dd:5b:
8c:18:7b:9c:50:5a:1a:6a:74:f0:2b:05:26:a2:fb:79:a5:4b:
8b:28:5f:1e
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzF3GP8ne5xsUc9xvz8SLynMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDViZjYzMzYyZmVkZWUxYzg5MTM1ZDU0MzRkMzdiNzM3NWVk
NWExMDgwHhcNMjQwMTAxMTYzMDA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MzA1ODExZmIzOGE5MDMzNTZhMGEyNGU1YjY2NzZmYjQwZjczMTJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4cHcjxHeIAvYE7pLXHCwj8yueWRl
s2x5HiHtxjYF2xI+xd3vFPTY4pWWxHfSUlp9nAcBzjogLzjP6ecQ/YNNWE655mtw
Ipq88PonkMmZy213LybC+1ViOhEkdEPuKQoJ2yd1XCd0S0PQ7vr8YFJhKNoxh1WP
I2xIsJkkyh7StmOr2rsZK98u9mChgHpCiMebXTBNPuYYjus5axEZCw4mNQTBhM2V
5mYt7Q+LNXMBXehUCC8LAeSv8ee3yH8EuiXSn5W6tIJFf/RzUke66MU6ncAuquLK
r9Rk/GQeHozocQOlrbs+0Ak6AEQGlYMcaI2Na124GpZGKrCnSO4uO6rInwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFGMFgR+zipAzVqCiTltmdvtA9zEvMB8GA1UdIwQY
MBaAFFv2M2L+3uHIkTXVQ003tzde1aEIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV19Zell2N2U0Y2lSTmRWRFRUZTNOMTdWb1FnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy83NzA5ZTctODM3Mi00ODI0LWE4MWMt
NmFkMGI2OWIyMDhmLzEvWXdXQkg3T0trRE5Xb0tKT1cyWjItMEQzTVM4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy83NzA5ZTctODM3Mi00ODI0LWE4MWMtNmFkMGI2OWIyMDhm
LzEvV19Zell2N2U0Y2lSTmRWRFRUZTNOMTdWb1FnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCuf+8AwQA
wnGNMA0GCSqGSIb3DQEBCwUAA4IBAQA8M4F6X3xMxjhxOBkelySqt7V8x5pKu1FJ
aSsibIdRk4k5d3YG92F7u7jw0aujZa8FBxSHH8ZJlFuHdLWkralMZ0mwTQJOcARX
u0PrTN37+YqerEaIQHUShaa7Pronb0kcVPGD9Uz2MC6/nyYZ9914F77EvmiJyG1B
UAHbT+RH8OhrLPoDJvbbKpJXy/BSJLLHJ8CmAkbDlLvQRbKHge+TuAT1u3iIhTuY
kYr4SUaitlnZEWDOQYUMGqNfA7W0nPBel5YAXSyCd1jrHnvy1EBj9KPsQM9qfGtd
XmDnjSZsmppXLgKQnZt/3VuMGHucUFoaanTwKwUmovt5pUuLKF8e
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:59:01 2025 by rpki-client