Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/rYp5hpF3Be0tn2aarpaHWDTodQ8.roa
File: rYp5hpF3Be0tn2aarpaHWDTodQ8.roa (raw, json)
Hash identifier: jHgy8JdM5edIvZehgCTbxwK4pLBgJetopTddjw8DsSU=
Subject key identifier: AD:8A:79:86:91:77:05:ED:2D:9F:66:9A:AE:96:87:58:34:E8:75:0F
Certificate issuer: /CN=621310302018a387c692146a35efd33a6ed6b1ef
Certificate serial: 0189EDEE35A07C3977095B52B82E9F53C4A4
Authority key identifier: 62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/rYp5hpF3Be0tn2aarpaHWDTodQ8.roa
Signing time: Sun 13 Aug 2023 08:05:58 +0000
ROA not before: Sun 13 Aug 2023 08:05:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 46427
IP address blocks: 185.99.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 09 Sep 2023 10:47:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ed:ee:35:a0:7c:39:77:09:5b:52:b8:2e:9f:53:c4:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621310302018a387c692146a35efd33a6ed6b1ef
Validity
Not Before: Aug 13 08:05:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ad8a7986917705ed2d9f669aae96875834e8750f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:7c:7d:d0:7d:da:ec:36:fc:5c:32:98:24:85:
fc:78:8f:45:97:61:90:52:69:cc:42:ae:b9:84:05:
4b:f6:b5:88:c7:3e:6f:db:b4:88:51:68:25:00:f1:
b1:7d:68:7e:e9:bf:6d:0d:e5:60:48:b4:68:a3:57:
8c:25:af:56:3d:69:e5:84:1f:58:1d:23:4e:49:f6:
89:59:e3:a3:47:94:17:d4:30:e8:24:27:7a:5d:45:
06:e2:c4:1f:4d:5a:18:3a:02:ff:1d:8f:6b:b9:3e:
45:a1:9d:ee:19:8e:92:c3:b5:cc:54:61:ea:da:7b:
23:51:93:aa:99:93:e5:45:e5:d6:bf:df:0d:76:c8:
68:4b:23:c5:22:ed:64:db:a9:1b:2c:de:e0:cd:dd:
9c:75:e9:ad:90:ad:43:4e:cd:49:6a:71:98:47:0d:
36:aa:8e:c5:f7:c5:bc:e2:9a:ca:72:25:17:a4:46:
3d:4a:c3:b4:9c:d5:72:0b:36:97:84:29:02:7e:18:
33:ab:45:43:0a:fa:5b:8a:67:93:9c:33:6f:e2:57:
29:33:62:44:73:b8:bd:0a:65:70:96:18:57:87:07:
47:64:dd:21:8f:51:70:65:87:c1:f0:ff:7c:b8:fe:
de:2b:0f:43:c7:28:23:fc:ea:9d:bb:f6:fb:6f:92:
34:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:8A:79:86:91:77:05:ED:2D:9F:66:9A:AE:96:87:58:34:E8:75:0F
X509v3 Authority Key Identifier:
keyid:62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/rYp5hpF3Be0tn2aarpaHWDTodQ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.99.20.0/24
Signature Algorithm: sha256WithRSAEncryption
09:3b:21:44:d7:91:96:e8:ba:4f:4b:f8:34:d8:00:a7:4e:8f:
44:49:9f:de:15:5a:95:cf:ba:91:5e:9a:80:82:d4:ec:fc:67:
5e:ee:85:36:f2:ed:d6:e2:af:92:13:a5:58:e8:8b:99:12:3e:
f2:51:3e:c1:a0:62:67:99:c9:3e:98:6c:4d:f4:b0:49:0f:ad:
81:a5:2e:ef:ea:48:1a:2b:f6:19:d1:14:f3:32:cb:ac:9a:c0:
36:67:fb:4e:37:eb:0b:e7:26:7e:0a:af:d4:ca:7b:cd:d8:1b:
36:3b:9d:20:41:36:42:d1:95:ca:b5:4e:22:1b:75:ed:2c:30:
60:79:db:26:c8:50:4c:db:b4:d1:ea:e9:e2:ef:88:8d:65:20:
44:f0:e7:e7:93:46:75:b9:66:81:48:ec:31:8a:a1:ea:79:d9:
1c:cb:34:3f:f2:4f:44:cc:b6:ea:4b:87:b5:5e:49:19:45:6c:
f8:1e:40:fb:ce:69:5e:8b:72:53:01:97:aa:da:67:ff:be:bd:
17:ab:27:dd:4c:52:42:f2:66:18:39:b2:a0:5b:e8:79:9b:9f:
bc:e6:79:eb:12:ce:1d:eb:6a:d2:a0:c3:35:8f:cf:7e:1c:12:
a1:ba:c0:e5:20:7a:39:13:11:59:fc:1f:19:03:6e:e3:64:c7:
c4:2e:e4:42
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYnt7jWgfDl3CVtSuC6fU8SkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyMTMxMDMwMjAxOGEzODdjNjkyMTQ2YTM1ZWZkMzNhNmVk
NmIxZWYwHhcNMjMwODEzMDgwNTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZDhhNzk4NjkxNzcwNWVkMmQ5ZjY2OWFhZTk2ODc1ODM0ZTg3NTBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA03x90H3a7Db8XDKYJIX8eI9Fl2GQ
UmnMQq65hAVL9rWIxz5v27SIUWglAPGxfWh+6b9tDeVgSLRoo1eMJa9WPWnlhB9Y
HSNOSfaJWeOjR5QX1DDoJCd6XUUG4sQfTVoYOgL/HY9ruT5FoZ3uGY6Sw7XMVGHq
2nsjUZOqmZPlReXWv98NdshoSyPFIu1k26kbLN7gzd2cdemtkK1DTs1JanGYRw02
qo7F98W84prKciUXpEY9SsO0nNVyCzaXhCkCfhgzq0VDCvpbimeTnDNv4lcpM2JE
c7i9CmVwlhhXhwdHZN0hj1FwZYfB8P98uP7eKw9Dxygj/Oqdu/b7b5I0JwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK2KeYaRdwXtLZ9mmq6Wh1g06HUPMB8GA1UdIwQY
MBaAFGITEDAgGKOHxpIUajXv0zpu1rHvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWhNUU1DQVlvNGZHa2hScU5lX1RPbTdXc2U4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9mNThhYzgtNTNlOS00Y2E2LWFjYjIt
YmU1N2Q3ZGZhMGRlLzEvcllwNWhwRjNCZTB0bjJhYXJwYUhXRFRvZFE4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS9mNThhYzgtNTNlOS00Y2E2LWFjYjItYmU1N2Q3ZGZhMGRl
LzEvWWhNUU1DQVlvNGZHa2hScU5lX1RPbTdXc2U4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuWMUMA0G
CSqGSIb3DQEBCwUAA4IBAQAJOyFE15GW6LpPS/g02ACnTo9ESZ/eFVqVz7qRXpqA
gtTs/Gde7oU28u3W4q+SE6VY6IuZEj7yUT7BoGJnmck+mGxN9LBJD62BpS7v6kga
K/YZ0RTzMsusmsA2Z/tON+sL5yZ+Cq/UynvN2Bs2O50gQTZC0ZXKtU4iG3XtLDBg
edsmyFBM27TR6uni74iNZSBE8Ofnk0Z1uWaBSOwxiqHqedkcyzQ/8k9EzLbqS4e1
XkkZRWz4HkD7zmlei3JTAZeq2mf/vr0XqyfdTFJC8mYYObKgW+h5m5+85nnrEs4d
62rSoMM1j89+HBKhusDlIHo5ExFZ/B8ZA27jZMfELuRC
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:45 2024 by rpki-client on console-fra.rpki-client.org