Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/YUVypK5uWpvZSu4nMp0CNrZDduE.roa
File: YUVypK5uWpvZSu4nMp0CNrZDduE.roa (raw, json)
Hash identifier: +9t1gBgb41zK8j2mScdxhDp0Ja72MYgbUHaxc97oaaA=
Subject key identifier: 61:45:72:A4:AE:6E:5A:9B:D9:4A:EE:27:32:9D:02:36:B6:43:76:E1
Certificate issuer: /CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Certificate serial: 018743DA05DC7B0F7C60DD9D705C37A012AC
Authority key identifier: D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/YUVypK5uWpvZSu4nMp0CNrZDduE.roa
Signing time: Sun 02 Apr 2023 21:22:54 +0000
ROA not before: Sun 02 Apr 2023 21:22:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200131
IP address blocks: 77.74.229.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:43:da:05:dc:7b:0f:7c:60:dd:9d:70:5c:37:a0:12:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8c60a0d2d70a9337d0bda56d1ad596ac1f69cda
Validity
Not Before: Apr 2 21:22:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=614572a4ae6e5a9bd94aee27329d0236b64376e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:05:fe:1b:f5:e3:88:02:c2:c3:4d:92:13:8b:
d3:a2:23:64:83:0f:16:ed:6a:a5:cf:18:97:4e:83:
bc:09:ae:c4:6a:dc:86:7d:d8:30:2b:cb:00:48:c7:
08:99:bf:9b:b0:1e:95:7e:00:f1:29:74:cc:7a:e8:
79:7b:1e:9c:90:6f:1b:b8:66:1d:0d:b1:f1:72:3e:
73:3b:57:44:ac:9f:6b:e3:24:73:72:41:e4:54:17:
07:1a:7c:e4:56:82:d0:69:26:e6:7a:74:56:eb:aa:
c5:a0:b2:62:ce:aa:1f:f5:b8:53:30:8c:17:dc:8c:
99:61:f5:82:13:d8:20:5f:b4:1a:6b:39:19:e8:18:
d7:d2:99:48:ab:1b:07:ac:ce:c1:f9:28:92:91:2f:
59:83:b6:54:bb:8b:41:b8:1f:43:7e:ea:2d:1a:34:
6b:30:98:0e:94:52:4e:17:db:f2:da:74:7f:13:f5:
f9:27:3e:4c:88:1c:04:2b:5c:67:e3:b8:c9:25:a2:
f6:53:47:f2:ba:70:81:79:f2:d9:95:d7:10:b9:49:
8a:e2:68:29:ce:50:01:75:82:a1:c1:36:51:26:fd:
8b:70:67:89:0d:9d:4e:3d:e6:a0:ff:33:de:c5:a3:
5b:bb:21:71:40:7f:43:a4:68:97:e5:8f:43:4c:98:
aa:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:45:72:A4:AE:6E:5A:9B:D9:4A:EE:27:32:9D:02:36:B6:43:76:E1
X509v3 Authority Key Identifier:
keyid:D8:C6:0A:0D:2D:70:A9:33:7D:0B:DA:56:D1:AD:59:6A:C1:F6:9C:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2MYKDS1wqTN9C9pW0a1ZasH2nNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/YUVypK5uWpvZSu4nMp0CNrZDduE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/b51a85-f99f-423f-9fae-dd294c378f6c/1/2MYKDS1wqTN9C9pW0a1ZasH2nNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.74.229.0/24
Signature Algorithm: sha256WithRSAEncryption
96:36:b7:70:78:26:36:2c:e4:3f:70:42:b0:be:1a:d7:e8:a9:
9a:f3:49:5e:ce:e1:1d:0e:6a:67:d2:eb:e7:88:ad:8a:61:33:
91:cc:92:82:d4:7e:b0:f1:07:32:14:c7:d1:23:db:9d:8d:d9:
ad:73:ce:48:ac:d0:10:86:af:85:46:33:91:b7:52:1d:3f:f4:
7f:6b:cd:09:9c:a6:d3:0a:dc:e7:d9:e3:7b:8f:1e:bc:02:ac:
be:72:17:b2:4e:05:2a:90:8b:b0:a5:a8:7a:36:64:ae:d8:98:
71:9e:7e:2d:93:ce:4d:58:16:07:cb:32:0e:23:52:63:9d:11:
26:50:bc:01:ed:b8:72:92:7a:fa:4c:43:65:a4:eb:4e:83:3d:
e1:39:db:f7:f8:20:bf:1c:3c:e6:e2:05:91:ba:ab:a1:9f:8f:
69:9e:9f:e3:d7:21:c4:6b:d7:97:ec:9d:f9:7f:90:58:6a:e2:
a2:e1:4f:28:00:be:a2:e6:2f:fe:1d:09:2b:39:16:e1:be:30:
1e:ee:b4:fe:69:a4:81:d8:21:0c:5a:63:aa:1d:4c:58:cf:21:
36:3f:69:6e:21:79:66:93:39:d8:58:4c:af:eb:fe:a7:4e:04:
2f:46:b1:9c:b1:9d:b4:c7:72:db:f0:0c:d4:52:df:93:c5:32:
72:a8:7d:f7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYdD2gXcew98YN2dcFw3oBKsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4YzYwYTBkMmQ3MGE5MzM3ZDBiZGE1NmQxYWQ1OTZhYzFm
NjljZGEwHhcNMjMwNDAyMjEyMjU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MTQ1NzJhNGFlNmU1YTliZDk0YWVlMjczMjlkMDIzNmI2NDM3NmUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApQX+G/XjiALCw02SE4vToiNkgw8W
7WqlzxiXToO8Ca7EatyGfdgwK8sASMcImb+bsB6VfgDxKXTMeuh5ex6ckG8buGYd
DbHxcj5zO1dErJ9r4yRzckHkVBcHGnzkVoLQaSbmenRW66rFoLJizqof9bhTMIwX
3IyZYfWCE9ggX7QaazkZ6BjX0plIqxsHrM7B+SiSkS9Zg7ZUu4tBuB9DfuotGjRr
MJgOlFJOF9vy2nR/E/X5Jz5MiBwEK1xn47jJJaL2U0fyunCBefLZldcQuUmK4mgp
zlABdYKhwTZRJv2LcGeJDZ1OPeag/zPexaNbuyFxQH9DpGiX5Y9DTJiq/QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGFFcqSublqb2UruJzKdAja2Q3bhMB8GA1UdIwQY
MBaAFNjGCg0tcKkzfQvaVtGtWWrB9pzaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMk1ZS0RTMXdxVE45QzlwVzBhMVphc0gybk5vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9iNTFhODUtZjk5Zi00MjNmLTlmYWUt
ZGQyOTRjMzc4ZjZjLzEvWVVWeXBLNXVXcHZaU3U0bk1wMENOclpEZHVFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC9iNTFhODUtZjk5Zi00MjNmLTlmYWUtZGQyOTRjMzc4ZjZj
LzEvMk1ZS0RTMXdxVE45QzlwVzBhMVphc0gybk5vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATUrlMA0G
CSqGSIb3DQEBCwUAA4IBAQCWNrdweCY2LOQ/cEKwvhrX6Kma80lezuEdDmpn0uvn
iK2KYTORzJKC1H6w8QcyFMfRI9udjdmtc85IrNAQhq+FRjORt1IdP/R/a80JnKbT
Ctzn2eN7jx68Aqy+cheyTgUqkIuwpah6NmSu2Jhxnn4tk85NWBYHyzIOI1JjnREm
ULwB7bhyknr6TENlpOtOgz3hOdv3+CC/HDzm4gWRuquhn49pnp/j1yHEa9eX7J35
f5BYauKi4U8oAL6i5i/+HQkrORbhvjAe7rT+aaSB2CEMWmOqHUxYzyE2P2luIXlm
kznYWEyv6/6nTgQvRrGcsZ20x3Lb8AzUUt+TxTJyqH33
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:10 2023 by rpki-client on console-ams.rpki-client.org