Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/0dff12-4e72-430e-9df6-bdaa6fbd4347/1/lyU8sjq-Opd2LXCpiydWT574xD4.roa
File: lyU8sjq-Opd2LXCpiydWT574xD4.roa (raw, json)
Hash identifier: Jjeqpu8+6L75Ct88opNVV0RCAxIHGjBTHhSTpHwfsZE=
Subject key identifier: 97:25:3C:B2:3A:BE:3A:97:76:2D:70:A9:8B:27:56:4F:9E:F8:C4:3E
Certificate issuer: /CN=95ebd8066f1090c3119cdb69e9d4dc40d90304f8
Certificate serial: 01856B0A117DDBEEEFC7256A917E413A7182
Authority key identifier: 95:EB:D8:06:6F:10:90:C3:11:9C:DB:69:E9:D4:DC:40:D9:03:04:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/levYBm8QkMMRnNtp6dTcQNkDBPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/0dff12-4e72-430e-9df6-bdaa6fbd4347/1/lyU8sjq-Opd2LXCpiydWT574xD4.roa
Signing time: Sun 01 Jan 2023 01:54:59 +0000
ROA not before: Sun 01 Jan 2023 01:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43242
IP address blocks: 185.51.24.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:0a:11:7d:db:ee:ef:c7:25:6a:91:7e:41:3a:71:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95ebd8066f1090c3119cdb69e9d4dc40d90304f8
Validity
Not Before: Jan 1 01:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=97253cb23abe3a97762d70a98b27564f9ef8c43e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:07:1c:72:7e:dd:3b:46:71:e4:c0:36:19:5f:
a4:4c:1e:c6:8f:1f:34:4e:9e:b5:7d:28:4b:c8:06:
c9:e6:4b:5a:16:c7:88:13:83:da:41:40:25:1d:89:
a9:5b:1e:36:fe:65:d6:ba:31:9f:e5:2e:79:2c:38:
5a:00:4a:a0:f0:84:a8:1a:f7:b8:cd:f3:0e:f1:24:
f8:53:09:75:5d:1d:d0:96:d2:13:2d:39:54:da:46:
6c:55:83:b7:e6:a4:8f:a4:51:09:03:51:51:7f:e4:
4a:6f:f0:27:db:e5:18:1c:48:ca:73:cf:34:56:bf:
4f:fd:2f:b8:30:b7:49:a8:03:65:c3:5a:48:12:18:
0f:8a:c5:04:cb:b0:0b:7f:63:d7:43:59:57:3b:44:
07:61:1a:4e:70:65:65:74:79:8e:c1:db:6e:5c:7d:
50:9a:f8:a7:ff:d6:41:e7:55:2c:a7:91:a3:60:63:
91:00:d1:38:12:ff:77:e6:98:7f:92:84:49:63:18:
90:d6:f3:1e:be:95:75:ce:3a:f3:8b:5d:2b:e1:64:
60:e7:9c:24:0d:70:78:96:b2:67:e3:98:1a:6d:6b:
73:09:b4:7e:27:18:ab:da:09:94:93:5b:11:69:10:
40:56:bc:5f:ed:9a:c2:d3:01:15:17:76:fb:28:76:
42:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:25:3C:B2:3A:BE:3A:97:76:2D:70:A9:8B:27:56:4F:9E:F8:C4:3E
X509v3 Authority Key Identifier:
keyid:95:EB:D8:06:6F:10:90:C3:11:9C:DB:69:E9:D4:DC:40:D9:03:04:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/levYBm8QkMMRnNtp6dTcQNkDBPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/0dff12-4e72-430e-9df6-bdaa6fbd4347/1/lyU8sjq-Opd2LXCpiydWT574xD4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/0dff12-4e72-430e-9df6-bdaa6fbd4347/1/levYBm8QkMMRnNtp6dTcQNkDBPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.24.0/22
Signature Algorithm: sha256WithRSAEncryption
09:46:b4:3b:ab:72:e1:c2:a9:fc:e3:c3:12:47:8c:a1:27:62:
ae:8f:0d:91:ff:6d:5f:cd:6d:d0:5c:9e:e5:a0:09:d2:c3:15:
61:ac:5a:c9:26:94:09:61:ef:ae:ef:10:47:7f:8f:06:2c:f0:
b4:01:02:db:51:ea:d4:57:07:ae:40:72:49:e0:89:d5:b9:ac:
ab:49:2b:ce:b8:e1:f4:b8:c5:a3:ca:ce:54:d8:13:21:6f:18:
87:4e:b3:c8:07:68:a3:fe:fb:f9:4c:f3:a5:e4:72:bd:bf:bd:
44:1e:2b:cc:e1:e5:ea:a4:9d:43:2e:61:a6:d8:0e:42:01:cd:
10:e1:c5:e0:3a:38:9c:98:b7:a4:a6:ca:29:b7:12:08:a8:d1:
c4:1a:43:49:e3:31:2b:84:c1:03:74:d5:e1:fc:ac:01:e6:36:
88:89:ec:f5:7a:d7:f3:4b:ed:6f:a6:07:53:38:2c:ff:9d:e5:
7d:4a:ae:ba:71:24:46:dc:8b:2a:1c:6f:52:49:0e:95:fa:a0:
95:e0:57:e0:1c:39:db:08:1a:bd:90:68:56:b6:ae:2c:fd:69:
72:cc:1e:94:4d:7f:59:69:ea:40:8a:15:10:9c:95:33:5b:91:
76:c6:c7:90:95:5e:bd:34:e6:d5:4f:08:84:ab:01:96:75:01:
c2:54:de:81
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVrChF92+7vxyVqkX5BOnGCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1ZWJkODA2NmYxMDkwYzMxMTljZGI2OWU5ZDRkYzQwZDkw
MzA0ZjgwHhcNMjMwMTAxMDE1NDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NzI1M2NiMjNhYmUzYTk3NzYyZDcwYTk4YjI3NTY0ZjllZjhjNDNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1wcccn7dO0Zx5MA2GV+kTB7Gjx80
Tp61fShLyAbJ5ktaFseIE4PaQUAlHYmpWx42/mXWujGf5S55LDhaAEqg8ISoGve4
zfMO8ST4Uwl1XR3QltITLTlU2kZsVYO35qSPpFEJA1FRf+RKb/An2+UYHEjKc880
Vr9P/S+4MLdJqANlw1pIEhgPisUEy7ALf2PXQ1lXO0QHYRpOcGVldHmOwdtuXH1Q
mvin/9ZB51Usp5GjYGORANE4Ev935ph/koRJYxiQ1vMevpV1zjrzi10r4WRg55wk
DXB4lrJn45gabWtzCbR+Jxir2gmUk1sRaRBAVrxf7ZrC0wEVF3b7KHZCdwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJclPLI6vjqXdi1wqYsnVk+e+MQ+MB8GA1UdIwQY
MBaAFJXr2AZvEJDDEZzbaenU3EDZAwT4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGV2WUJtOFFrTU1Sbk50cDZkVGNRTmtEQlBnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC8wZGZmMTItNGU3Mi00MzBlLTlkZjYt
YmRhYTZmYmQ0MzQ3LzEvbHlVOHNqcS1PcGQyTFhDcGl5ZFdUNTc0eEQ0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC8wZGZmMTItNGU3Mi00MzBlLTlkZjYtYmRhYTZmYmQ0MzQ3
LzEvbGV2WUJtOFFrTU1Sbk50cDZkVGNRTmtEQlBnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuTMYMA0G
CSqGSIb3DQEBCwUAA4IBAQAJRrQ7q3Lhwqn848MSR4yhJ2Kujw2R/21fzW3QXJ7l
oAnSwxVhrFrJJpQJYe+u7xBHf48GLPC0AQLbUerUVweuQHJJ4InVuayrSSvOuOH0
uMWjys5U2BMhbxiHTrPIB2ij/vv5TPOl5HK9v71EHivM4eXqpJ1DLmGm2A5CAc0Q
4cXgOjicmLekpsoptxIIqNHEGkNJ4zErhMEDdNXh/KwB5jaIiez1etfzS+1vpgdT
OCz/neV9Sq66cSRG3IsqHG9SSQ6V+qCV4FfgHDnbCBq9kGhWtq4s/WlyzB6UTX9Z
aepAihUQnJUzW5F2xseQlV69NObVTwiEqwGWdQHCVN6B
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:42 2024 by rpki-client on console-ams.rpki-client.org