Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/64ae31-d1c8-4004-a778-06df1dc03367/1/YUVS3St-hoMVy7DayBhnxbK5V_k.roa
File: YUVS3St-hoMVy7DayBhnxbK5V_k.roa (raw, json)
Hash identifier: taKoY/n2ODMf1qrf+/T85ICk3yWcKq0kEs5Ebtlz1wo=
Subject key identifier: 61:45:52:DD:2B:7E:86:83:15:CB:B0:DA:C8:18:67:C5:B2:B9:57:F9
Certificate issuer: /CN=5813e26d71ac5b6a601156d90ce0dccec5986243
Certificate serial: 018F23738F231F17AB1E898BA49D66B1F982
Authority key identifier: 58:13:E2:6D:71:AC:5B:6A:60:11:56:D9:0C:E0:DC:CE:C5:98:62:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WBPibXGsW2pgEVbZDODczsWYYkM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/64ae31-d1c8-4004-a778-06df1dc03367/1/YUVS3St-hoMVy7DayBhnxbK5V_k.roa
Signing time: Sun 28 Apr 2024 06:45:26 +0000
ROA not before: Sun 28 Apr 2024 06:45:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 185.224.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 May 2024 08:56:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:23:73:8f:23:1f:17:ab:1e:89:8b:a4:9d:66:b1:f9:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5813e26d71ac5b6a601156d90ce0dccec5986243
Validity
Not Before: Apr 28 06:45:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=614552dd2b7e868315cbb0dac81867c5b2b957f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:83:92:e8:53:7d:7a:93:3d:dd:de:c0:db:53:
13:d1:98:17:0f:0e:6a:a4:ae:b6:bc:a3:15:79:d5:
a7:8b:23:20:fe:c9:8d:87:18:2b:a1:34:0e:2d:a7:
54:d7:5c:8c:15:dc:28:77:0d:1d:16:9b:23:94:72:
e3:3d:12:4b:cf:eb:4a:ea:da:dc:3c:22:e8:56:dc:
d7:6a:8c:98:3e:12:54:47:58:eb:84:2f:54:57:b1:
08:91:e0:63:75:5f:b8:10:60:dc:8a:91:7d:d4:9b:
d2:36:9c:65:9c:06:2e:8b:e7:c4:b6:1f:6d:63:f7:
56:50:bf:82:2a:6d:cf:98:83:eb:85:d2:e9:a2:58:
37:9d:d5:96:a7:58:ba:a9:03:86:f7:7d:fe:ff:68:
72:44:94:7b:ea:2c:bb:6c:55:4e:84:c6:a0:2e:46:
56:55:be:81:46:fb:a9:87:d4:d7:31:9a:e8:b1:83:
7f:c4:29:ec:64:0c:82:57:1f:c6:ca:63:f9:7a:13:
ca:db:85:29:d0:70:46:14:09:12:eb:3a:c2:f7:f1:
9c:a5:f5:75:71:4f:f1:1d:5c:07:de:81:24:f6:19:
5c:82:86:6e:83:ee:ce:03:92:8f:0b:6c:6e:41:9c:
40:76:41:55:90:7e:e4:07:bb:e8:bc:f0:45:55:5a:
f6:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:45:52:DD:2B:7E:86:83:15:CB:B0:DA:C8:18:67:C5:B2:B9:57:F9
X509v3 Authority Key Identifier:
keyid:58:13:E2:6D:71:AC:5B:6A:60:11:56:D9:0C:E0:DC:CE:C5:98:62:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WBPibXGsW2pgEVbZDODczsWYYkM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/64ae31-d1c8-4004-a778-06df1dc03367/1/YUVS3St-hoMVy7DayBhnxbK5V_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/64ae31-d1c8-4004-a778-06df1dc03367/1/WBPibXGsW2pgEVbZDODczsWYYkM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.224.2.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:b7:26:1d:f1:5c:aa:4c:09:05:b0:2a:d0:7d:f0:e3:d0:a8:
96:1a:8f:15:1a:40:b2:06:d7:93:f7:65:53:ef:7a:f3:fc:90:
f9:d3:f1:68:e0:50:9d:37:78:6c:53:da:ab:17:81:5c:d4:23:
48:ba:87:fd:a9:69:71:e4:d1:01:cc:2d:62:a8:62:60:89:cc:
ba:4e:d6:6d:d4:b9:ce:a3:63:93:b5:e4:8b:ce:2c:34:e1:3a:
e2:4e:7b:c7:17:54:98:37:c0:e0:53:74:15:aa:5d:b6:09:75:
d3:1a:b8:5f:1c:9a:3d:ce:a0:4d:35:54:d2:3c:74:4f:35:d9:
2b:1b:33:26:84:e0:d0:3c:61:20:e7:b1:e8:ef:0a:08:0e:e8:
ae:12:7e:67:31:e2:0b:e3:21:0c:05:c3:91:c7:84:26:ee:97:
31:3a:0c:c4:c9:99:ca:28:4e:5d:c8:38:74:d8:19:33:cb:74:
31:61:17:ae:c7:4f:0c:df:d3:8a:65:9e:a8:83:b9:4f:ea:bc:
7e:15:d0:31:2b:c0:c8:37:e3:71:9f:d6:bc:01:71:a0:3d:88:
b8:cf:5b:b0:2e:a6:4b:09:65:4c:2e:0d:a2:53:ea:0f:ed:9d:
bc:d4:70:8c:aa:a3:30:fd:db:65:27:84:70:ed:7f:0f:1b:e1:
58:f1:a5:cd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY8jc48jHxerHomLpJ1msfmCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4MTNlMjZkNzFhYzViNmE2MDExNTZkOTBjZTBkY2NlYzU5
ODYyNDMwHhcNMjQwNDI4MDY0NTI2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MTQ1NTJkZDJiN2U4NjgzMTVjYmIwZGFjODE4NjdjNWIyYjk1N2Y5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxIOS6FN9epM93d7A21MT0ZgXDw5q
pK62vKMVedWniyMg/smNhxgroTQOLadU11yMFdwodw0dFpsjlHLjPRJLz+tK6trc
PCLoVtzXaoyYPhJUR1jrhC9UV7EIkeBjdV+4EGDcipF91JvSNpxlnAYui+fEth9t
Y/dWUL+CKm3PmIPrhdLpolg3ndWWp1i6qQOG933+/2hyRJR76iy7bFVOhMagLkZW
Vb6BRvuph9TXMZrosYN/xCnsZAyCVx/GymP5ehPK24Up0HBGFAkS6zrC9/GcpfV1
cU/xHVwH3oEk9hlcgoZug+7OA5KPC2xuQZxAdkFVkH7kB7vovPBFVVr2ewIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGFFUt0rfoaDFcuw2sgYZ8WyuVf5MB8GA1UdIwQY
MBaAFFgT4m1xrFtqYBFW2Qzg3M7FmGJDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0JQaWJYR3NXMnBnRVZiWkRPRGN6c1dZWWtNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi82NGFlMzEtZDFjOC00MDA0LWE3Nzgt
MDZkZjFkYzAzMzY3LzEvWVVWUzNTdC1ob01WeTdEYXlCaG54Yks1Vl9rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi82NGFlMzEtZDFjOC00MDA0LWE3NzgtMDZkZjFkYzAzMzY3
LzEvV0JQaWJYR3NXMnBnRVZiWkRPRGN6c1dZWWtNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAueACMA0G
CSqGSIb3DQEBCwUAA4IBAQBttyYd8VyqTAkFsCrQffDj0KiWGo8VGkCyBteT92VT
73rz/JD50/Fo4FCdN3hsU9qrF4Fc1CNIuof9qWlx5NEBzC1iqGJgicy6TtZt1LnO
o2OTteSLziw04TriTnvHF1SYN8DgU3QVql22CXXTGrhfHJo9zqBNNVTSPHRPNdkr
GzMmhODQPGEg57Ho7woIDuiuEn5nMeIL4yEMBcORx4Qm7pcxOgzEyZnKKE5dyDh0
2Bkzy3QxYReux08M39OKZZ6og7lP6rx+FdAxK8DIN+Nxn9a8AXGgPYi4z1uwLqZL
CWVMLg2iU+oP7Z281HCMqqMw/dtlJ4Rw7X8PG+FY8aXN
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:14 2024 by rpki-client on console-ams.rpki-client.org