Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/e84340-128a-4497-946f-09787f152ade/1/yrkrshvzcouqPsPeAuVf6nv1zQE.roa
File: yrkrshvzcouqPsPeAuVf6nv1zQE.roa (raw, json)
Hash identifier: axDWWomlrsfqmPueVMTvw9G+5wSgiPRKPNdfecteTlM=
Subject key identifier: CA:B9:2B:B2:1B:F3:72:8B:AA:3E:C3:DE:02:E5:5F:EA:7B:F5:CD:01
Certificate issuer: /CN=66df7742890173927935206a28efbf48123e787c
Certificate serial: 018ED2E993F21F7A5808F1383AD6E02E646B
Authority key identifier: 66:DF:77:42:89:01:73:92:79:35:20:6A:28:EF:BF:48:12:3E:78:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zt93QokBc5J5NSBqKO-_SBI-eHw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/e84340-128a-4497-946f-09787f152ade/1/yrkrshvzcouqPsPeAuVf6nv1zQE.roa
Signing time: Fri 12 Apr 2024 15:25:06 +0000
ROA not before: Fri 12 Apr 2024 15:25:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200973
IP address blocks: 185.90.3.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 Apr 2024 12:07:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:d2:e9:93:f2:1f:7a:58:08:f1:38:3a:d6:e0:2e:64:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66df7742890173927935206a28efbf48123e787c
Validity
Not Before: Apr 12 15:25:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cab92bb21bf3728baa3ec3de02e55fea7bf5cd01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ca:64:47:e9:33:40:d8:56:2d:44:6e:3b:ff:
06:5b:19:a5:a9:dc:ee:79:48:00:10:b8:24:15:6b:
c7:3c:cd:9b:f1:ff:7a:91:2d:b6:55:04:3c:60:b7:
7b:4e:db:22:c2:9a:7c:6f:28:b5:85:d0:b3:41:f8:
fa:8b:f7:81:47:cd:3c:e0:e2:df:de:a3:3e:c6:06:
7b:a3:71:cd:b9:1d:ef:3c:26:41:2c:e4:48:ad:9c:
bd:a6:4f:ea:cd:c6:9e:3d:7b:25:84:70:dd:83:b2:
e1:b4:a6:9e:01:a7:c3:18:fe:51:4c:1c:e6:48:0c:
7e:1a:e7:f7:42:fd:ce:7c:d4:3b:12:0e:e9:c4:a5:
98:95:92:52:1e:fc:e4:c3:64:d7:f2:5a:8b:19:e0:
df:6e:94:57:65:68:52:26:71:3e:7f:49:04:5f:12:
39:7e:da:a6:c5:0a:ac:0f:20:95:ac:d6:af:c8:e1:
49:d5:01:d0:be:d3:95:7f:06:8a:df:47:cd:3f:a9:
d6:e5:4b:89:26:b7:41:3c:5b:54:40:ff:e5:72:33:
cb:07:c5:b7:a0:bd:d2:6e:6a:97:ba:1a:ee:15:ad:
f2:86:2f:9c:a9:b8:0a:0c:b2:91:3b:f3:b9:4e:e5:
ca:65:5e:5d:5e:b4:d9:58:fe:dc:ed:a5:b5:93:04:
e7:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:B9:2B:B2:1B:F3:72:8B:AA:3E:C3:DE:02:E5:5F:EA:7B:F5:CD:01
X509v3 Authority Key Identifier:
keyid:66:DF:77:42:89:01:73:92:79:35:20:6A:28:EF:BF:48:12:3E:78:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zt93QokBc5J5NSBqKO-_SBI-eHw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/e84340-128a-4497-946f-09787f152ade/1/yrkrshvzcouqPsPeAuVf6nv1zQE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/e84340-128a-4497-946f-09787f152ade/1/Zt93QokBc5J5NSBqKO-_SBI-eHw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.90.3.0/24
Signature Algorithm: sha256WithRSAEncryption
99:4a:13:0e:1d:44:7a:96:22:d9:04:03:87:5d:16:4a:ab:d7:
28:71:2c:c3:a8:2a:98:e6:1a:32:5e:e8:1d:4d:a8:e4:d8:45:
be:aa:e9:27:46:41:6b:67:ea:96:6d:c8:ea:6e:d5:97:2f:22:
2b:01:f8:90:b6:3e:a9:02:bf:d9:79:4f:03:a5:54:9a:ac:fb:
e9:d2:67:0e:94:73:db:6f:ca:49:fa:11:c2:1a:14:8b:f2:32:
cf:fd:c1:14:55:c4:f0:1c:82:50:bb:97:c1:69:51:52:2f:21:
6e:a1:7e:b5:0b:4e:84:89:a0:d7:b2:db:28:ca:da:ca:b8:d5:
3a:26:4c:de:c3:81:cd:63:eb:31:3f:6b:7d:6c:64:1a:ea:8c:
27:d6:e1:70:5a:cc:e1:83:8c:b6:86:22:eb:c9:4d:8a:40:f4:
92:df:43:e2:c1:d7:63:50:e3:0e:34:38:58:88:57:d4:e1:ba:
f1:27:9f:4f:03:f1:b6:04:a6:fd:64:f2:a6:ae:0c:5a:f6:5a:
4e:d5:e3:2c:b9:e2:f2:1b:8b:59:48:8e:a3:1c:eb:0e:b9:b9:
b0:c8:98:b9:de:33:2f:50:c2:b5:52:d0:c4:a1:17:8a:2f:44:
e3:7c:38:bd:21:5a:42:a9:0b:31:93:99:cf:6a:90:cb:75:23:
83:3d:9e:9f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY7S6ZPyH3pYCPE4OtbgLmRrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2ZGY3NzQyODkwMTczOTI3OTM1MjA2YTI4ZWZiZjQ4MTIz
ZTc4N2MwHhcNMjQwNDEyMTUyNTA2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYWI5MmJiMjFiZjM3MjhiYWEzZWMzZGUwMmU1NWZlYTdiZjVjZDAxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwcpkR+kzQNhWLURuO/8GWxmlqdzu
eUgAELgkFWvHPM2b8f96kS22VQQ8YLd7Ttsiwpp8byi1hdCzQfj6i/eBR8084OLf
3qM+xgZ7o3HNuR3vPCZBLORIrZy9pk/qzcaePXslhHDdg7LhtKaeAafDGP5RTBzm
SAx+Guf3Qv3OfNQ7Eg7pxKWYlZJSHvzkw2TX8lqLGeDfbpRXZWhSJnE+f0kEXxI5
ftqmxQqsDyCVrNavyOFJ1QHQvtOVfwaK30fNP6nW5UuJJrdBPFtUQP/lcjPLB8W3
oL3SbmqXuhruFa3yhi+cqbgKDLKRO/O5TuXKZV5dXrTZWP7c7aW1kwTnJQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMq5K7Ib83KLqj7D3gLlX+p79c0BMB8GA1UdIwQY
MBaAFGbfd0KJAXOSeTUgaijvv0gSPnh8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWnQ5M1Fva0JjNUo1TlNCcUtPLV9TQkktZUh3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9lODQzNDAtMTI4YS00NDk3LTk0NmYt
MDk3ODdmMTUyYWRlLzEveXJrcnNodnpjb3VxUHNQZUF1VmY2bnYxelFFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS9lODQzNDAtMTI4YS00NDk3LTk0NmYtMDk3ODdmMTUyYWRl
LzEvWnQ5M1Fva0JjNUo1TlNCcUtPLV9TQkktZUh3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuVoDMA0G
CSqGSIb3DQEBCwUAA4IBAQCZShMOHUR6liLZBAOHXRZKq9cocSzDqCqY5hoyXugd
Tajk2EW+quknRkFrZ+qWbcjqbtWXLyIrAfiQtj6pAr/ZeU8DpVSarPvp0mcOlHPb
b8pJ+hHCGhSL8jLP/cEUVcTwHIJQu5fBaVFSLyFuoX61C06EiaDXstsoytrKuNU6
Jkzew4HNY+sxP2t9bGQa6own1uFwWszhg4y2hiLryU2KQPSS30PiwddjUOMONDhY
iFfU4brxJ59PA/G2BKb9ZPKmrgxa9lpO1eMsueLyG4tZSI6jHOsOubmwyJi53jMv
UMK1UtDEoReKL0TjfDi9IVpCqQsxk5nPapDLdSODPZ6f
-----END CERTIFICATE-----
Generated at Mon Apr 15 15:28:27 2024 by rpki-client on console-fra.rpki-client.org