Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/6b3dda-7368-4d19-b603-16b80aa28dd6/1/wmYjaxzuygpEmzVnK4NRWJvIrOI.roa
File: wmYjaxzuygpEmzVnK4NRWJvIrOI.roa (raw, json)
Hash identifier: J8T9eRij0D/8eaQUZvj6DH4vfaRkuWSnIyXPARHbqoY=
Subject key identifier: C2:66:23:6B:1C:EE:CA:0A:44:9B:35:67:2B:83:51:58:9B:C8:AC:E2
Certificate issuer: /CN=22a44566764ebb511683cb6228fa91997b559379
Certificate serial: 018CB05FCFDF89C345BF8194A9EB7871DC2D
Authority key identifier: 22:A4:45:66:76:4E:BB:51:16:83:CB:62:28:FA:91:99:7B:55:93:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IqRFZnZOu1EWg8tiKPqRmXtVk3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/6b3dda-7368-4d19-b603-16b80aa28dd6/1/wmYjaxzuygpEmzVnK4NRWJvIrOI.roa
Signing time: Thu 28 Dec 2023 12:21:58 +0000
ROA not before: Thu 28 Dec 2023 12:21:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207713
IP address blocks: 78.153.148.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:30:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b0:5f:cf:df:89:c3:45:bf:81:94:a9:eb:78:71:dc:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22a44566764ebb511683cb6228fa91997b559379
Validity
Not Before: Dec 28 12:21:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c266236b1ceeca0a449b35672b8351589bc8ace2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:9b:a8:80:1b:9a:ee:5f:d7:01:80:d2:b9:13:
ae:ed:54:3e:f9:10:ea:6d:c0:fa:be:fc:fc:3f:32:
53:03:86:06:54:60:54:fb:da:50:b7:b5:b7:e8:70:
3c:d2:78:c8:13:93:97:51:e5:02:19:72:d3:8e:7f:
f7:76:ab:1b:5a:8f:03:56:47:78:b7:65:0b:87:5e:
45:a9:81:fc:6b:2c:71:f8:b2:7f:9d:50:67:e3:75:
1e:6d:e4:eb:c9:9e:5e:9f:d3:e4:95:86:71:a6:28:
d9:44:fe:c8:8f:ba:53:52:5c:a6:9c:e5:ed:60:e9:
e6:ed:b1:99:81:a1:69:68:cc:2c:ba:fc:03:f2:e0:
98:ee:4f:04:dc:b1:2a:eb:5d:ad:50:ed:5e:13:f3:
bd:c5:98:be:15:61:d0:ed:8c:16:2d:ea:f1:1c:ed:
10:5b:0e:b9:45:f7:64:19:e3:13:ba:d6:d5:0d:15:
48:2e:28:e5:82:00:6b:ab:a1:af:52:1d:76:30:b7:
09:7c:3a:b0:c8:54:83:b6:ee:3d:5a:34:f9:67:73:
cc:e9:0b:ef:7c:52:da:ef:61:a1:1e:7b:5f:e4:ad:
99:18:c2:18:8b:d9:08:5a:a1:97:3f:4f:49:2f:64:
25:41:4f:b6:35:86:73:15:25:79:20:b8:3f:61:03:
fd:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:66:23:6B:1C:EE:CA:0A:44:9B:35:67:2B:83:51:58:9B:C8:AC:E2
X509v3 Authority Key Identifier:
keyid:22:A4:45:66:76:4E:BB:51:16:83:CB:62:28:FA:91:99:7B:55:93:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IqRFZnZOu1EWg8tiKPqRmXtVk3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/6b3dda-7368-4d19-b603-16b80aa28dd6/1/wmYjaxzuygpEmzVnK4NRWJvIrOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/6b3dda-7368-4d19-b603-16b80aa28dd6/1/IqRFZnZOu1EWg8tiKPqRmXtVk3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.153.148.0/24
Signature Algorithm: sha256WithRSAEncryption
09:c3:59:ec:71:f4:5e:ae:0c:95:a9:09:d6:56:d6:bb:92:7b:
e1:06:03:17:19:14:fd:16:c9:5d:8a:1c:a9:45:77:28:da:ff:
d6:85:91:a6:ae:10:dd:99:44:13:30:32:c2:4f:6e:ae:56:b0:
1c:51:a8:bf:9a:a3:38:aa:87:54:d5:2a:c6:a0:5f:48:9e:09:
e8:54:01:35:68:d0:d0:b4:d9:50:bd:b5:25:56:c9:97:a6:ba:
ac:e7:43:af:12:c5:1f:06:49:d2:14:b8:6c:db:19:6b:24:23:
92:6e:06:a0:a4:b2:bb:49:cf:87:4a:c3:22:fb:d4:78:41:93:
ad:c2:4d:85:93:01:fd:ed:64:44:bd:9f:09:e5:93:0a:45:0d:
89:db:c0:00:d3:b3:ec:8b:e1:8d:19:23:52:50:3c:62:00:b6:
e4:bd:02:e1:a6:e7:ee:de:f5:28:f3:4e:ca:28:2c:8b:9e:ec:
b0:8b:e0:25:72:1c:9b:3f:fa:41:90:9d:6c:ae:d5:06:85:7a:
87:ca:70:9e:ef:d1:c5:64:c4:ba:48:b0:cb:34:9b:24:de:af:
55:76:e4:87:6e:2f:79:1d:d4:e9:67:6d:af:66:05:84:33:65:
36:77:7b:0e:f2:da:42:74:b5:41:1d:90:2c:b5:11:c1:84:a7:
61:72:bb:3e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYywX8/ficNFv4GUqet4cdwtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYTQ0NTY2NzY0ZWJiNTExNjgzY2I2MjI4ZmE5MTk5N2I1
NTkzNzkwHhcNMjMxMjI4MTIyMTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMjY2MjM2YjFjZWVjYTBhNDQ5YjM1NjcyYjgzNTE1ODliYzhhY2UyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmJuogBua7l/XAYDSuROu7VQ++RDq
bcD6vvz8PzJTA4YGVGBU+9pQt7W36HA80njIE5OXUeUCGXLTjn/3dqsbWo8DVkd4
t2ULh15FqYH8ayxx+LJ/nVBn43UebeTryZ5en9PklYZxpijZRP7Ij7pTUlymnOXt
YOnm7bGZgaFpaMwsuvwD8uCY7k8E3LEq612tUO1eE/O9xZi+FWHQ7YwWLerxHO0Q
Ww65RfdkGeMTutbVDRVILijlggBrq6GvUh12MLcJfDqwyFSDtu49WjT5Z3PM6Qvv
fFLa72GhHntf5K2ZGMIYi9kIWqGXP09JL2QlQU+2NYZzFSV5ILg/YQP9yQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMJmI2sc7soKRJs1ZyuDUVibyKziMB8GA1UdIwQY
MBaAFCKkRWZ2TrtRFoPLYij6kZl7VZN5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXFSRlpuWk91MUVXZzh0aUtQcVJtWHRWazNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS82YjNkZGEtNzM2OC00ZDE5LWI2MDMt
MTZiODBhYTI4ZGQ2LzEvd21ZamF4enV5Z3BFbXpWbks0TlJXSnZJck9JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS82YjNkZGEtNzM2OC00ZDE5LWI2MDMtMTZiODBhYTI4ZGQ2
LzEvSXFSRlpuWk91MUVXZzh0aUtQcVJtWHRWazNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATpmUMA0G
CSqGSIb3DQEBCwUAA4IBAQAJw1nscfRergyVqQnWVta7knvhBgMXGRT9Fsldihyp
RXco2v/WhZGmrhDdmUQTMDLCT26uVrAcUai/mqM4qodU1SrGoF9IngnoVAE1aNDQ
tNlQvbUlVsmXprqs50OvEsUfBknSFLhs2xlrJCOSbgagpLK7Sc+HSsMi+9R4QZOt
wk2FkwH97WREvZ8J5ZMKRQ2J28AA07Psi+GNGSNSUDxiALbkvQLhpufu3vUo807K
KCyLnuywi+AlchybP/pBkJ1srtUGhXqHynCe79HFZMS6SLDLNJsk3q9VduSHbi95
HdTpZ22vZgWEM2U2d3sO8tpCdLVBHZAstRHBhKdhcrs+
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:11 2024 by rpki-client on console-fra.rpki-client.org