Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/yiBgtBhFxVVUQEyVdfh7rtucr0I.roa
File: yiBgtBhFxVVUQEyVdfh7rtucr0I.roa (raw, json)
Hash identifier: ry3rZaAYmr7R/K1l4seIqyHqpYJhTaQ4BExGU43+sek=
Subject key identifier: CA:20:60:B4:18:45:C5:55:54:40:4C:95:75:F8:7B:AE:DB:9C:AF:42
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 0185724715882941799C55855E39546A0B08
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/yiBgtBhFxVVUQEyVdfh7rtucr0I.roa
Signing time: Mon 02 Jan 2023 11:38:59 +0000
ROA not before: Mon 02 Jan 2023 11:38:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204830
IP address blocks: 5.8.62.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:47:15:88:29:41:79:9c:55:85:5e:39:54:6a:0b:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jan 2 11:38:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ca2060b41845c55554404c9575f87baedb9caf42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ee:7f:6e:48:25:c6:2d:6b:79:fa:5e:9c:f7:
3f:1d:0e:ac:17:df:80:fe:dc:63:89:d9:37:66:05:
df:80:74:f1:18:8f:b8:98:d7:ea:37:1f:cc:07:3a:
c1:1a:ef:b4:a8:81:cd:69:d0:5d:67:ea:4e:ae:bc:
16:66:33:50:61:21:f9:cf:6a:41:15:cc:62:00:fb:
ec:f2:15:c8:a8:fb:fd:44:24:ce:f2:64:83:1c:d4:
73:cf:3a:e8:33:3e:05:2b:fc:24:b0:e2:be:8b:eb:
13:01:8a:d5:67:09:63:bb:d7:e6:49:27:f3:83:7e:
bc:c3:f9:a6:48:39:5e:f7:90:db:af:29:27:26:62:
02:40:1b:ea:2a:ef:69:29:03:d6:99:d3:d9:0c:81:
2d:18:0e:15:20:a6:70:64:db:19:43:60:18:19:50:
14:1b:7b:c6:ba:15:fc:f0:cd:77:73:ea:fc:98:0b:
e2:ef:5e:a1:d4:03:63:43:57:49:4d:64:f6:9d:e1:
09:70:b2:97:8a:de:c2:0b:53:f0:47:0c:b8:13:26:
da:b9:01:0f:17:56:84:d7:04:e7:92:98:41:d9:ec:
0e:7b:3f:47:08:3f:86:07:d7:54:10:15:81:33:da:
fd:95:b9:b0:00:9e:7e:9b:ab:fe:5f:41:c9:9c:d9:
11:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:20:60:B4:18:45:C5:55:54:40:4C:95:75:F8:7B:AE:DB:9C:AF:42
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/yiBgtBhFxVVUQEyVdfh7rtucr0I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.8.62.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:db:2a:c4:37:2d:da:a6:cd:07:97:0e:9e:3e:f6:6b:a2:0e:
31:9b:94:ce:b4:fc:bb:2a:7c:fd:70:48:23:23:9c:38:4d:c3:
54:cb:ac:d5:b0:42:5a:7c:d4:e8:89:18:b7:25:f5:da:65:c2:
6f:a7:82:68:e5:7c:d6:5e:46:04:d1:54:1f:2f:2a:09:1c:08:
86:b4:a7:91:fe:96:71:45:a6:eb:1d:a5:13:04:0e:2b:be:d7:
de:33:58:db:9e:80:99:11:29:bc:e8:4e:a7:a3:50:c9:7f:e9:
37:af:59:be:0d:d6:23:48:0b:87:5e:0f:c2:df:2e:08:9b:e5:
7e:eb:13:50:66:6a:43:b7:14:22:e8:7f:78:70:a7:9d:97:95:
d3:90:42:c7:6d:eb:b7:25:ac:08:55:16:94:f4:a6:93:4c:e2:
19:63:93:9a:db:fa:0d:33:3b:61:42:54:9e:91:fb:db:ac:e5:
71:7f:c4:a3:dd:24:2c:f1:23:99:0c:34:64:82:6d:67:f7:99:
44:bb:2d:e0:35:8e:5f:f5:8b:98:e6:8e:2f:b3:ae:6c:86:61:
6d:b1:ea:32:af:0e:42:ed:a4:e4:73:ba:5c:85:08:7e:f9:b0:
05:aa:f4:6d:88:35:b2:b6:3b:a5:b4:ba:f6:5a:be:45:2d:74:
58:f8:d3:b8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyRxWIKUF5nFWFXjlUagsIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVhYWE4YTBhNWZkZmQ2OThlMTA0YmUzNmEyYWVlYzgxM2Fl
Y2EwNzEwHhcNMjMwMTAyMTEzODU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYTIwNjBiNDE4NDVjNTU1NTQ0MDRjOTU3NWY4N2JhZWRiOWNhZjQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtO5/bkglxi1refpenPc/HQ6sF9+A
/txjidk3ZgXfgHTxGI+4mNfqNx/MBzrBGu+0qIHNadBdZ+pOrrwWZjNQYSH5z2pB
FcxiAPvs8hXIqPv9RCTO8mSDHNRzzzroMz4FK/wksOK+i+sTAYrVZwlju9fmSSfz
g368w/mmSDle95DbryknJmICQBvqKu9pKQPWmdPZDIEtGA4VIKZwZNsZQ2AYGVAU
G3vGuhX88M13c+r8mAvi716h1ANjQ1dJTWT2neEJcLKXit7CC1PwRwy4EybauQEP
F1aE1wTnkphB2ewOez9HCD+GB9dUEBWBM9r9lbmwAJ5+m6v+X0HJnNkRHQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMogYLQYRcVVVEBMlXX4e67bnK9CMB8GA1UdIwQY
MBaAFOqqigpf39aY4QS+NqKu7IE67KBxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNnFxS0NsX2YxcGpoQkw0Mm9xN3NnVHJzb0hFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy8yOTMyZGYtYTRiZC00YWY1LWE0ZDQt
ODlkMDkyNDBjNDNiLzEveWlCZ3RCaEZ4VlZVUUV5VmRmaDdydHVjcjBJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy8yOTMyZGYtYTRiZC00YWY1LWE0ZDQtODlkMDkyNDBjNDNi
LzEvNnFxS0NsX2YxcGpoQkw0Mm9xN3NnVHJzb0hFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABQg+MA0G
CSqGSIb3DQEBCwUAA4IBAQCl2yrENy3aps0Hlw6ePvZrog4xm5TOtPy7Knz9cEgj
I5w4TcNUy6zVsEJafNToiRi3JfXaZcJvp4Jo5XzWXkYE0VQfLyoJHAiGtKeR/pZx
RabrHaUTBA4rvtfeM1jbnoCZESm86E6no1DJf+k3r1m+DdYjSAuHXg/C3y4Im+V+
6xNQZmpDtxQi6H94cKedl5XTkELHbeu3JawIVRaU9KaTTOIZY5Oa2/oNMzthQlSe
kfvbrOVxf8Sj3SQs8SOZDDRkgm1n95lEuy3gNY5f9YuY5o4vs65shmFtseoyrw5C
7aTkc7pchQh++bAFqvRtiDWytjultLr2Wr5FLXRY+NO4
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:56 2023 by rpki-client on console-fra.rpki-client.org