Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/caYP81GJrByRYRU4mZSnJxP8FvY.roa
File: caYP81GJrByRYRU4mZSnJxP8FvY.roa (raw, json)
Hash identifier: 8BqZ/Q0NyUfobLCotSTIclMhKKxg3C/vy6WHU4NgUhg=
Subject key identifier: 71:A6:0F:F3:51:89:AC:1C:91:61:15:38:99:94:A7:27:13:FC:16:F6
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 018BDE582952A59A62EA38D9F23401C7F60E
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/caYP81GJrByRYRU4mZSnJxP8FvY.roa
Signing time: Fri 17 Nov 2023 17:33:21 +0000
ROA not before: Fri 17 Nov 2023 17:33:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200080
IP address blocks: 185.186.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:de:58:29:52:a5:9a:62:ea:38:d9:f2:34:01:c7:f6:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Nov 17 17:33:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=71a60ff35189ac1c916115389994a72713fc16f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ec:a7:5f:2b:ba:6b:86:8f:a0:8f:61:4f:2c:
a3:e4:7e:d6:df:62:68:7b:82:df:70:9b:3c:6b:36:
25:27:a1:5c:fa:0b:93:65:3b:bc:af:c6:f6:c5:85:
9f:a1:20:93:42:9c:00:27:52:ff:c3:80:71:54:4e:
c3:56:81:a3:bf:29:ec:d0:42:48:23:1b:cd:14:a7:
9b:95:bf:64:0e:e8:04:e7:69:76:ca:ca:1c:84:5d:
a0:0d:4a:24:57:31:82:c9:8c:fd:fe:80:56:2c:71:
23:0a:18:e9:53:f3:61:4e:cd:e3:5d:09:a0:7b:99:
e2:c0:b4:e5:b8:e1:bf:1a:a8:59:91:a0:d8:4b:a8:
08:f8:88:12:79:b5:54:56:f0:ea:de:f6:9d:75:47:
8e:dc:a6:0b:80:29:5f:30:4d:91:52:48:dd:06:39:
6f:76:b7:95:ed:27:9d:e6:cd:3b:1e:18:3c:87:ef:
44:82:50:f6:ac:4e:b9:41:8e:00:5f:32:bd:99:85:
b0:d8:60:ee:3f:22:06:29:cb:17:a5:95:77:f5:64:
fc:21:85:23:eb:3d:e1:aa:09:06:59:bd:22:07:e0:
bf:75:a7:fc:24:ca:3c:21:2f:4f:13:92:56:16:e5:
c8:01:f5:ec:3e:00:59:0b:35:73:82:97:f9:81:08:
a2:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:A6:0F:F3:51:89:AC:1C:91:61:15:38:99:94:A7:27:13:FC:16:F6
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/caYP81GJrByRYRU4mZSnJxP8FvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.67.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:58:88:85:0e:c2:61:b1:fa:e0:2e:41:3f:d4:39:c2:18:41:
e8:73:d6:4a:cb:c2:b0:86:45:14:1d:24:13:ea:55:65:5a:33:
ca:39:16:85:95:7f:65:91:75:b2:5f:e5:57:82:f2:a4:c5:1d:
1b:9e:6e:cf:70:0b:d6:4a:be:22:54:78:1c:61:e6:0f:9c:af:
c1:a2:50:3f:cc:2a:38:f6:30:08:a5:6b:e2:0a:e8:d2:2b:43:
6d:fe:cb:44:6e:94:80:d8:bc:9e:5e:c9:de:9d:ca:4d:cb:9e:
23:a7:50:63:f9:22:1f:b9:9a:ca:a4:8b:1c:e9:a8:65:94:ca:
af:49:73:cb:3e:0b:9c:b6:00:76:5b:85:c0:57:5c:ae:a7:ae:
1f:63:da:c7:d3:f2:a6:09:bb:22:72:57:4f:ed:9b:37:48:e4:
8a:8e:d5:a2:04:ff:ec:27:69:fb:c1:1f:64:c4:3a:35:62:fe:
bc:cb:cb:34:70:b4:96:c5:ab:3f:61:9f:cd:0e:43:c4:36:e8:
db:b3:bc:16:4e:08:44:c7:9d:23:85:d1:f9:d4:ad:87:75:64:
09:50:a5:5c:36:cf:25:af:c9:34:b9:3b:23:90:d9:a1:30:71:
26:7f:6f:74:bc:82:ee:bf:31:6c:de:f4:73:90:da:b4:46:da:
ff:1f:a1:3a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYveWClSpZpi6jjZ8jQBx/YOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxYTdiMGQ4ZGU4MjUxZDM2ZDdjODNmYWY2YmM3ZWZlYzcz
YjUwMzQwHhcNMjMxMTE3MTczMzIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MWE2MGZmMzUxODlhYzFjOTE2MTE1Mzg5OTk0YTcyNzEzZmMxNmY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkOynXyu6a4aPoI9hTyyj5H7W32Jo
e4LfcJs8azYlJ6Fc+guTZTu8r8b2xYWfoSCTQpwAJ1L/w4BxVE7DVoGjvyns0EJI
IxvNFKeblb9kDugE52l2ysochF2gDUokVzGCyYz9/oBWLHEjChjpU/NhTs3jXQmg
e5niwLTluOG/GqhZkaDYS6gI+IgSebVUVvDq3vaddUeO3KYLgClfME2RUkjdBjlv
dreV7Sed5s07Hhg8h+9EglD2rE65QY4AXzK9mYWw2GDuPyIGKcsXpZV39WT8IYUj
6z3hqgkGWb0iB+C/daf8JMo8IS9PE5JWFuXIAfXsPgBZCzVzgpf5gQiifwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHGmD/NRiawckWEVOJmUpycT/Bb2MB8GA1UdIwQY
MBaAFLGnsNjeglHTbXyD+va8fv7HO1A0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2It
Mzk0YWNkMjFmMzliLzEvY2FZUDgxR0pyQnlSWVJVNG1aU25KeFA4RnZZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2ItMzk0YWNkMjFmMzli
LzEvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAubpDMA0G
CSqGSIb3DQEBCwUAA4IBAQAKWIiFDsJhsfrgLkE/1DnCGEHoc9ZKy8KwhkUUHSQT
6lVlWjPKORaFlX9lkXWyX+VXgvKkxR0bnm7PcAvWSr4iVHgcYeYPnK/BolA/zCo4
9jAIpWviCujSK0Nt/stEbpSA2LyeXsnencpNy54jp1Bj+SIfuZrKpIsc6ahllMqv
SXPLPguctgB2W4XAV1yup64fY9rH0/KmCbsicldP7Zs3SOSKjtWiBP/sJ2n7wR9k
xDo1Yv68y8s0cLSWxas/YZ/NDkPENujbs7wWTghEx50jhdH51K2HdWQJUKVcNs8l
r8k0uTsjkNmhMHEmf290vILuvzFs3vRzkNq0Rtr/H6E6
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:39 2024 by rpki-client on console-ams.rpki-client.org