Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/8ed3b7-bb2d-4f4d-9db6-267669f35648/1/yYtKkOOSHmaT8ga0tLKQUPgtFOo.roa
File: yYtKkOOSHmaT8ga0tLKQUPgtFOo.roa (raw, json)
Hash identifier: UW9jTR41O4xpgiiykIK5D7OvNVvRVs+QaKtTZuZkkiA=
Subject key identifier: C9:8B:4A:90:E3:92:1E:66:93:F2:06:B4:B4:B2:90:50:F8:2D:14:EA
Certificate issuer: /CN=28fd66e43a104633b27bac539b98bdf8ebfac9ae
Certificate serial: 018591D79EB26E86FE02FE5DB637E03FF973
Authority key identifier: 28:FD:66:E4:3A:10:46:33:B2:7B:AC:53:9B:98:BD:F8:EB:FA:C9:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KP1m5DoQRjOye6xTm5i9-Ov6ya4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/8ed3b7-bb2d-4f4d-9db6-267669f35648/1/yYtKkOOSHmaT8ga0tLKQUPgtFOo.roa
Signing time: Sun 08 Jan 2023 14:45:05 +0000
ROA not before: Sun 08 Jan 2023 14:45:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208485
IP address blocks: 194.147.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 08 Jan 2023 21:07:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:91:d7:9e:b2:6e:86:fe:02:fe:5d:b6:37:e0:3f:f9:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28fd66e43a104633b27bac539b98bdf8ebfac9ae
Validity
Not Before: Jan 8 14:45:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c98b4a90e3921e6693f206b4b4b29050f82d14ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:f5:0c:c1:47:99:e1:7b:2e:e8:72:70:ce:10:
3a:d6:9d:13:68:e1:18:5b:ec:9c:d0:e4:f7:03:d3:
f5:56:e0:58:35:c9:7b:83:bd:a5:b0:9a:e7:cf:7d:
db:b6:9f:00:e2:5f:4f:10:50:5f:9b:77:93:44:bf:
98:f1:b9:d1:36:6d:aa:6a:25:c2:38:ea:d1:06:86:
92:24:37:3d:96:3e:7a:c0:f7:f1:88:9a:3d:06:24:
53:e0:95:5c:81:03:30:1c:ff:10:dd:8d:3d:cb:aa:
d3:7d:ed:34:59:d9:94:6b:c4:17:f9:50:95:a2:88:
d9:d8:bc:02:c6:00:e4:73:e6:72:19:5f:4b:a6:59:
f8:9a:75:e2:6d:a4:9c:0d:09:7f:e0:13:62:b5:85:
c9:a7:dd:cd:27:06:5e:af:23:73:8e:3f:28:00:df:
5a:7c:bb:62:5e:9c:e5:75:e1:cc:1d:94:c7:ef:bd:
7b:cc:28:22:14:28:2d:09:20:cb:f6:aa:83:6b:6f:
c5:17:f8:d9:7c:fe:a8:9c:88:a3:13:9e:e4:ee:6b:
ed:ac:c8:60:cf:90:79:74:03:6a:b9:0b:78:39:e5:
1d:6a:97:3e:d7:93:10:18:b9:d0:0b:fd:de:49:94:
4d:82:a2:84:d9:f3:4e:c9:71:e2:75:7c:5d:68:50:
8a:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:8B:4A:90:E3:92:1E:66:93:F2:06:B4:B4:B2:90:50:F8:2D:14:EA
X509v3 Authority Key Identifier:
keyid:28:FD:66:E4:3A:10:46:33:B2:7B:AC:53:9B:98:BD:F8:EB:FA:C9:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KP1m5DoQRjOye6xTm5i9-Ov6ya4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/8ed3b7-bb2d-4f4d-9db6-267669f35648/1/yYtKkOOSHmaT8ga0tLKQUPgtFOo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/8ed3b7-bb2d-4f4d-9db6-267669f35648/1/KP1m5DoQRjOye6xTm5i9-Ov6ya4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.216.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:58:d7:19:2e:7d:9b:b0:97:c2:a9:47:80:6f:5a:e5:af:3f:
59:fe:57:0c:2f:b0:e2:82:cb:3f:f4:30:fa:88:67:79:2c:c7:
09:ae:71:f2:f9:48:5d:fd:c6:94:78:fc:bb:ca:fd:f1:16:f7:
40:33:6c:2d:0b:96:ee:96:73:1c:df:aa:9f:a9:8e:68:44:06:
bf:f1:59:39:e6:38:c5:1d:b1:bd:04:ca:da:09:ce:6f:68:94:
fe:1a:d1:9d:e4:8d:f7:d7:67:25:98:7a:61:bf:94:16:7e:49:
0a:dd:38:98:f4:fe:de:de:37:2f:bd:c5:d6:37:32:2d:55:c7:
3d:b7:3d:a3:2b:2f:6d:e2:05:64:50:50:e7:c0:2e:6c:66:9e:
df:c1:06:4f:f0:8a:06:0f:89:7a:42:b4:77:84:5f:90:f6:90:
5e:75:17:7d:76:58:09:26:c9:39:f6:18:4d:0b:ca:dd:0b:5e:
c4:c0:bc:56:4c:fa:16:ff:0d:d2:04:31:d4:0f:80:bf:a0:6d:
c5:98:29:79:2c:9e:44:30:a0:aa:cf:a5:89:49:10:cf:32:5a:
31:19:80:dc:2b:ed:8c:b0:81:63:65:19:b9:a8:a9:81:d7:fc:
98:7a:1e:c7:f6:27:7d:0a:a4:45:ae:c1:31:eb:ad:23:50:33:
d4:41:e3:51
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYWR156ybob+Av5dtjfgP/lzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4ZmQ2NmU0M2ExMDQ2MzNiMjdiYWM1MzliOThiZGY4ZWJm
YWM5YWUwHhcNMjMwMTA4MTQ0NTA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjOThiNGE5MGUzOTIxZTY2OTNmMjA2YjRiNGIyOTA1MGY4MmQxNGVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgPUMwUeZ4Xsu6HJwzhA61p0TaOEY
W+yc0OT3A9P1VuBYNcl7g72lsJrnz33btp8A4l9PEFBfm3eTRL+Y8bnRNm2qaiXC
OOrRBoaSJDc9lj56wPfxiJo9BiRT4JVcgQMwHP8Q3Y09y6rTfe00WdmUa8QX+VCV
oojZ2LwCxgDkc+ZyGV9Lpln4mnXibaScDQl/4BNitYXJp93NJwZeryNzjj8oAN9a
fLtiXpzldeHMHZTH7717zCgiFCgtCSDL9qqDa2/FF/jZfP6onIijE57k7mvtrMhg
z5B5dANquQt4OeUdapc+15MQGLnQC/3eSZRNgqKE2fNOyXHidXxdaFCKNQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMmLSpDjkh5mk/IGtLSykFD4LRTqMB8GA1UdIwQY
MBaAFCj9ZuQ6EEYzsnusU5uYvfjr+smuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1AxbTVEb1FSak95ZTZ4VG01aTktT3Y2eWE0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi84ZWQzYjctYmIyZC00ZjRkLTlkYjYt
MjY3NjY5ZjM1NjQ4LzEveVl0S2tPT1NIbWFUOGdhMHRMS1FVUGd0Rk9vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi84ZWQzYjctYmIyZC00ZjRkLTlkYjYtMjY3NjY5ZjM1NjQ4
LzEvS1AxbTVEb1FSak95ZTZ4VG01aTktT3Y2eWE0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwpPYMA0G
CSqGSIb3DQEBCwUAA4IBAQA7WNcZLn2bsJfCqUeAb1rlrz9Z/lcML7Digss/9DD6
iGd5LMcJrnHy+Uhd/caUePy7yv3xFvdAM2wtC5bulnMc36qfqY5oRAa/8Vk55jjF
HbG9BMraCc5vaJT+GtGd5I3312clmHphv5QWfkkK3TiY9P7e3jcvvcXWNzItVcc9
tz2jKy9t4gVkUFDnwC5sZp7fwQZP8IoGD4l6QrR3hF+Q9pBedRd9dlgJJsk59hhN
C8rdC17EwLxWTPoW/w3SBDHUD4C/oG3FmCl5LJ5EMKCqz6WJSRDPMloxGYDcK+2M
sIFjZRm5qKmB1/yYeh7H9id9CqRFrsEx660jUDPUQeNR
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:02 2024 by rpki-client on console-ams.rpki-client.org