Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/y_c6oaji89Mv_sYeB06KIVgj6eI.roa
File: y_c6oaji89Mv_sYeB06KIVgj6eI.roa (raw, json)
Hash identifier: 9ylk59MCQVpkX1aUSseDOcMNGYf8hRcXSS6UNecWwV8=
Subject key identifier: CB:F7:3A:A1:A8:E2:F3:D3:2F:FE:C6:1E:07:4E:8A:21:58:23:E9:E2
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 01919928A3229C251DADA232EE6165666CEC
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/y_c6oaji89Mv_sYeB06KIVgj6eI.roa
Signing time: Wed 28 Aug 2024 13:24:22 +0000
ROA not before: Wed 28 Aug 2024 13:24:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214305
IP address blocks: 45.9.30.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 10 Oct 2024 17:50:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:99:28:a3:22:9c:25:1d:ad:a2:32:ee:61:65:66:6c:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Aug 28 13:24:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cbf73aa1a8e2f3d32ffec61e074e8a215823e9e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:a7:70:db:24:8d:32:ad:b9:25:d1:bb:f7:63:
eb:c7:5f:ed:48:23:88:a6:c7:ab:39:44:57:17:5f:
e6:8d:06:49:e8:cf:da:4f:ed:48:26:d5:05:a0:38:
bb:59:21:8d:f7:af:80:78:fd:92:33:40:3c:1f:da:
44:82:61:55:27:f3:75:13:40:51:00:42:74:be:6f:
41:71:2a:86:45:8e:8b:6d:98:a2:7d:59:dd:a6:df:
41:39:28:d6:e8:91:e1:50:6e:fa:b1:5c:4b:4b:55:
2b:a4:c8:b5:98:01:e0:78:fe:7a:1a:07:80:a0:80:
42:66:ae:47:a4:d3:e6:d4:df:2f:03:29:1f:04:c8:
01:f0:59:a9:32:e9:24:e5:d5:27:ab:1f:6d:5a:90:
04:ae:2a:59:f0:25:1d:52:a8:80:97:fc:2b:94:34:
c4:28:94:53:02:af:d1:11:52:12:61:50:dc:8f:71:
91:fe:2c:bb:aa:96:0d:19:a7:b9:85:5d:fe:f0:c1:
3c:ed:45:16:29:9b:cf:c7:a2:3d:c1:fb:64:04:a4:
41:d2:ff:83:a0:ec:30:56:03:89:24:6e:ae:69:1b:
69:7a:6a:96:a9:71:ae:fd:cb:a7:f5:55:5e:6d:21:
54:8d:67:fc:6d:90:30:1c:26:38:23:05:bc:ec:73:
1f:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:F7:3A:A1:A8:E2:F3:D3:2F:FE:C6:1E:07:4E:8A:21:58:23:E9:E2
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/y_c6oaji89Mv_sYeB06KIVgj6eI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.9.30.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:3b:b1:77:b7:0b:c9:34:3d:e9:b2:92:4f:2b:c7:2b:a9:6c:
10:11:8a:8a:e5:eb:91:ea:33:58:29:8c:19:f1:c0:5a:48:f3:
80:03:3a:6e:d0:36:e4:81:1f:8e:fe:c0:5a:27:c7:42:d9:76:
cf:f0:5f:8b:d7:1b:6c:11:e0:34:01:1b:47:15:28:02:f0:42:
e7:3c:70:36:a2:72:88:96:de:89:2e:d9:d6:e7:fe:40:01:11:
dd:c5:fa:37:87:63:5a:75:9c:52:a1:e0:fc:48:1e:0a:9e:a0:
43:4a:27:49:2f:c6:71:f4:48:59:18:a5:a3:19:21:6b:fd:bb:
1f:7a:73:4a:d5:35:a9:d9:7e:6f:17:9f:3a:28:2e:09:65:d4:
20:95:70:b5:3a:0f:c2:50:2a:b2:13:0c:51:75:2f:bd:8e:cc:
06:da:74:0c:b2:f5:d7:1f:7f:7e:fa:b9:48:3b:36:46:2d:5a:
d5:46:ce:12:3c:e4:67:ff:09:22:16:66:e9:d0:d1:66:93:71:
2e:a0:9f:1e:15:ac:44:70:0f:0a:c8:0d:39:93:7f:13:20:e2:
23:04:d9:74:37:77:d1:01:82:9d:8e:4d:f1:e1:6c:0b:06:c1:
c6:24:a9:f3:d2:b4:0f:99:55:d7:f8:11:7f:82:ec:80:6f:78:
2c:6c:5f:d8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZGZKKMinCUdraIy7mFlZmzsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMmE0NzhiYjBiMDhlNjYxYjBiMmY5ZmJlODkzNWJjOWMy
YTI4YTEwHhcNMjQwODI4MTMyNDIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYmY3M2FhMWE4ZTJmM2QzMmZmZWM2MWUwNzRlOGEyMTU4MjNlOWUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA16dw2ySNMq25JdG792Prx1/tSCOI
pserOURXF1/mjQZJ6M/aT+1IJtUFoDi7WSGN96+AeP2SM0A8H9pEgmFVJ/N1E0BR
AEJ0vm9BcSqGRY6LbZiifVndpt9BOSjW6JHhUG76sVxLS1UrpMi1mAHgeP56GgeA
oIBCZq5HpNPm1N8vAykfBMgB8FmpMukk5dUnqx9tWpAEripZ8CUdUqiAl/wrlDTE
KJRTAq/REVISYVDcj3GR/iy7qpYNGae5hV3+8ME87UUWKZvPx6I9wftkBKRB0v+D
oOwwVgOJJG6uaRtpemqWqXGu/cun9VVebSFUjWf8bZAwHCY4IwW87HMfXwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMv3OqGo4vPTL/7GHgdOiiFYI+niMB8GA1UdIwQY
MBaAFJ0qR4uwsI5mGwsvn76JNbycKiihMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMt
ZWVmMzUxMWY2YzYwLzEveV9jNm9hamk4OU12X3NZZUIwNktJVmdqNmVJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMtZWVmMzUxMWY2YzYw
LzEvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQkeMA0G
CSqGSIb3DQEBCwUAA4IBAQCfO7F3twvJND3pspJPK8crqWwQEYqK5euR6jNYKYwZ
8cBaSPOAAzpu0DbkgR+O/sBaJ8dC2XbP8F+L1xtsEeA0ARtHFSgC8ELnPHA2onKI
lt6JLtnW5/5AARHdxfo3h2NadZxSoeD8SB4KnqBDSidJL8Zx9EhZGKWjGSFr/bsf
enNK1TWp2X5vF586KC4JZdQglXC1Og/CUCqyEwxRdS+9jswG2nQMsvXXH39++rlI
OzZGLVrVRs4SPORn/wkiFmbp0NFmk3EuoJ8eFaxEcA8KyA05k38TIOIjBNl0N3fR
AYKdjk3x4WwLBsHGJKnz0rQPmVXX+BF/guyAb3gsbF/Y
-----END CERTIFICATE-----
Generated at Thu Oct 10 21:18:42 2024 by rpki-client on console-fra.rpki-client.org