Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/YCueOUZ4z0sU7q6UrpHwSWWBgaU.roa
File: YCueOUZ4z0sU7q6UrpHwSWWBgaU.roa (raw, json)
Hash identifier: lmXyZE88dMrCJvgeBlVRd6LvhmkgnY4fDL8MsbRUOWQ=
Subject key identifier: 60:2B:9E:39:46:78:CF:4B:14:EE:AE:94:AE:91:F0:49:65:81:81:A5
Certificate issuer: /CN=bb0d4e85937b7a0f271054d28614f2934d4ea500
Certificate serial: 01918F4D7138E648B63826BF4A91DEFD83C2
Authority key identifier: BB:0D:4E:85:93:7B:7A:0F:27:10:54:D2:86:14:F2:93:4D:4E:A5:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uw1OhZN7eg8nEFTShhTyk01OpQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/YCueOUZ4z0sU7q6UrpHwSWWBgaU.roa
Signing time: Mon 26 Aug 2024 15:28:22 +0000
ROA not before: Mon 26 Aug 2024 15:28:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 78.143.252.0/24 maxlen: 24
78.143.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Sep 2024 10:45:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:8f:4d:71:38:e6:48:b6:38:26:bf:4a:91:de:fd:83:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0d4e85937b7a0f271054d28614f2934d4ea500
Validity
Not Before: Aug 26 15:28:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=602b9e394678cf4b14eeae94ae91f049658181a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:4d:cd:73:2f:23:7e:51:c6:f9:4b:e4:86:58:
f5:be:74:87:b9:5e:57:88:af:52:3c:47:5a:a9:38:
f2:5a:79:a7:8f:d4:bd:26:0d:e9:2c:74:28:b6:83:
ed:e2:68:6a:a0:53:e7:7a:3d:35:18:20:7e:25:47:
bc:b8:ea:1c:b7:b6:4d:25:dc:92:4e:81:89:c8:c0:
c4:d3:0b:fc:77:0a:1a:52:fa:ee:a1:8e:25:d4:50:
58:bc:31:c1:15:97:31:97:36:17:da:fe:15:35:e3:
55:a6:89:b3:34:6f:b7:82:f9:0e:45:93:11:5a:8e:
5f:30:32:29:ea:91:f1:20:4f:a0:75:38:38:dd:62:
4a:bb:0d:bf:8a:d2:db:2b:f1:dc:c5:95:b2:e7:9b:
46:cc:5f:0d:51:f1:b8:e7:9d:00:dd:f1:d9:1c:4c:
0c:2c:95:33:fe:7d:df:72:0e:c2:d4:b4:e7:89:89:
c1:0a:e2:15:07:91:94:e3:c3:d7:0a:73:92:82:58:
c9:f8:55:8d:4d:ea:50:19:b5:10:10:9a:32:29:96:
3a:8c:fb:c6:4f:3c:c2:63:c4:cd:34:70:21:eb:fe:
82:75:94:1f:67:69:c3:4e:dc:cb:f3:a5:a7:ed:a7:
46:f4:8e:bb:c8:38:dc:e1:94:0b:f8:fd:51:c8:9e:
a8:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:2B:9E:39:46:78:CF:4B:14:EE:AE:94:AE:91:F0:49:65:81:81:A5
X509v3 Authority Key Identifier:
keyid:BB:0D:4E:85:93:7B:7A:0F:27:10:54:D2:86:14:F2:93:4D:4E:A5:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uw1OhZN7eg8nEFTShhTyk01OpQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/YCueOUZ4z0sU7q6UrpHwSWWBgaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/uw1OhZN7eg8nEFTShhTyk01OpQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.143.252.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:b5:71:76:a9:66:a3:9f:9d:75:7f:17:7c:3d:f4:94:82:29:
03:93:59:b1:e7:44:6a:8e:16:91:ab:93:9d:62:a0:e2:4c:8a:
33:20:ab:e6:40:9f:c6:cd:2a:65:ec:19:13:17:dc:9e:2e:ad:
dd:e4:90:8d:00:c3:6d:c7:34:af:4d:68:90:39:a5:8f:45:d9:
df:eb:d9:d9:2d:c7:56:59:29:06:e1:76:61:14:60:86:9d:7a:
42:fa:35:06:9b:cd:ef:cd:1e:27:b2:f5:9a:4b:71:e2:12:20:
19:42:65:a9:44:75:fd:9b:9e:93:96:d1:6b:5f:58:b0:22:6f:
d3:ec:6f:08:f3:d9:c0:24:96:d2:9f:ec:f9:b4:3b:de:82:8e:
b6:e2:9b:78:47:7e:52:f9:e8:da:95:9b:36:a6:54:23:ba:b9:
e9:6d:ca:9e:9c:47:d9:d3:1b:87:e4:57:e6:ca:4b:17:48:70:
17:88:63:81:d8:03:94:15:6d:1d:cf:0e:40:58:81:68:b7:fc:
0b:7b:e2:5f:71:25:bb:10:57:5d:26:50:59:44:d0:d5:f3:d3:
bf:97:b8:c4:4b:26:21:cd:0b:71:ac:78:54:5f:fd:ad:3b:55:
2b:b0:51:2a:18:8d:8b:1d:73:6f:bb:2d:c2:8d:57:34:15:44:
db:af:b0:e0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZGPTXE45ki2OCa/SpHe/YPCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJiMGQ0ZTg1OTM3YjdhMGYyNzEwNTRkMjg2MTRmMjkzNGQ0
ZWE1MDAwHhcNMjQwODI2MTUyODIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MDJiOWUzOTQ2NzhjZjRiMTRlZWFlOTRhZTkxZjA0OTY1ODE4MWE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq03Ncy8jflHG+Uvkhlj1vnSHuV5X
iK9SPEdaqTjyWnmnj9S9Jg3pLHQotoPt4mhqoFPnej01GCB+JUe8uOoct7ZNJdyS
ToGJyMDE0wv8dwoaUvruoY4l1FBYvDHBFZcxlzYX2v4VNeNVpomzNG+3gvkORZMR
Wo5fMDIp6pHxIE+gdTg43WJKuw2/itLbK/HcxZWy55tGzF8NUfG4550A3fHZHEwM
LJUz/n3fcg7C1LTniYnBCuIVB5GU48PXCnOSgljJ+FWNTepQGbUQEJoyKZY6jPvG
TzzCY8TNNHAh6/6CdZQfZ2nDTtzL86Wn7adG9I67yDjc4ZQL+P1RyJ6oKwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGArnjlGeM9LFO6ulK6R8EllgYGlMB8GA1UdIwQY
MBaAFLsNToWTe3oPJxBU0oYU8pNNTqUAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdXcxT2haTjdlZzhuRUZUU2hoVHlrMDFPcFFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS9kMTc1MjctY2Y5OC00ZDM3LTg2NmYt
OGU5Yjk4YTk5Y2RiLzEvWUN1ZU9VWjR6MHNVN3E2VXJwSHdTV1dCZ2FVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS9kMTc1MjctY2Y5OC00ZDM3LTg2NmYtOGU5Yjk4YTk5Y2Ri
LzEvdXcxT2haTjdlZzhuRUZUU2hoVHlrMDFPcFFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBTo/8MA0G
CSqGSIb3DQEBCwUAA4IBAQAqtXF2qWajn511fxd8PfSUgikDk1mx50RqjhaRq5Od
YqDiTIozIKvmQJ/GzSpl7BkTF9yeLq3d5JCNAMNtxzSvTWiQOaWPRdnf69nZLcdW
WSkG4XZhFGCGnXpC+jUGm83vzR4nsvWaS3HiEiAZQmWpRHX9m56TltFrX1iwIm/T
7G8I89nAJJbSn+z5tDvego624pt4R35S+ejalZs2plQjurnpbcqenEfZ0xuH5Ffm
yksXSHAXiGOB2AOUFW0dzw5AWIFot/wLe+JfcSW7EFddJlBZRNDV89O/l7jESyYh
zQtxrHhUX/2tO1UrsFEqGI2LHXNvuy3CjVc0FUTbr7Dg
-----END CERTIFICATE-----
Generated at Thu Sep 12 14:04:23 2024 by rpki-client on console-ams.rpki-client.org