Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/3921b7-444c-4fef-8b77-c3c471afeed6/1/YvW-VGMggFArOpJQ3sihLxZMQAE.roa
File: YvW-VGMggFArOpJQ3sihLxZMQAE.roa (raw, json)
Hash identifier: fb1l9O9O54NZJj4wPRvDJ6CsGyDBZQjvVoVoINiDJuY=
Subject key identifier: 62:F5:BE:54:63:20:80:50:2B:3A:92:50:DE:C8:A1:2F:16:4C:40:01
Certificate issuer: /CN=b2e58cc2c45e5a73f48494315558259f2fc506d7
Certificate serial: 018570153A72AC23C3A02CC7DB91AB9AB373
Authority key identifier: B2:E5:8C:C2:C4:5E:5A:73:F4:84:94:31:55:58:25:9F:2F:C5:06:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/suWMwsReWnP0hJQxVVglny_FBtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/3921b7-444c-4fef-8b77-c3c471afeed6/1/YvW-VGMggFArOpJQ3sihLxZMQAE.roa
Signing time: Mon 02 Jan 2023 01:25:17 +0000
ROA not before: Mon 02 Jan 2023 01:25:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34650
IP address blocks: 193.33.98.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:3a:72:ac:23:c3:a0:2c:c7:db:91:ab:9a:b3:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2e58cc2c45e5a73f48494315558259f2fc506d7
Validity
Not Before: Jan 2 01:25:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62f5be54632080502b3a9250dec8a12f164c4001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:aa:8a:b0:30:1c:a1:7f:19:bf:ef:15:7b:27:
c7:5f:51:ed:b6:0b:78:28:c3:b9:8c:5c:ed:f9:d1:
ca:b1:eb:e9:fa:09:20:c2:b6:d2:f6:0e:e4:08:fc:
3d:74:f3:3c:e3:87:4e:e5:10:e5:02:b5:b7:aa:84:
d4:2d:65:ef:84:bb:2f:74:f3:be:4b:46:d7:0f:d2:
93:55:85:4f:59:b1:f1:50:d1:c8:7c:0b:92:63:d7:
15:14:ef:d6:ae:3d:7a:64:e3:b7:bd:8f:17:d8:26:
8e:86:8e:79:58:14:db:5e:ef:e2:71:a6:78:62:dc:
21:a1:35:63:7a:73:1d:e3:8d:a0:85:87:d2:41:61:
a4:52:b8:05:1f:9f:93:d6:74:12:09:4b:ef:48:0f:
ea:ff:83:35:30:9b:98:0e:25:f6:37:a2:12:6c:0d:
13:9b:26:b1:d0:44:cf:26:a0:c3:eb:7a:eb:03:06:
c3:ba:3d:65:76:f1:20:b0:51:d5:be:82:95:27:1c:
35:a8:72:e8:b2:3c:8f:e5:b7:2e:38:75:08:bd:b0:
23:df:0d:4d:78:9e:2e:e0:03:c2:c1:22:24:41:16:
ab:9f:fd:d6:cd:12:a5:fa:39:86:e6:77:3c:47:c7:
08:d3:f9:3f:e4:69:7c:d0:f7:3c:af:d8:1f:92:fd:
ee:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:F5:BE:54:63:20:80:50:2B:3A:92:50:DE:C8:A1:2F:16:4C:40:01
X509v3 Authority Key Identifier:
keyid:B2:E5:8C:C2:C4:5E:5A:73:F4:84:94:31:55:58:25:9F:2F:C5:06:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/suWMwsReWnP0hJQxVVglny_FBtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/3921b7-444c-4fef-8b77-c3c471afeed6/1/YvW-VGMggFArOpJQ3sihLxZMQAE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/3921b7-444c-4fef-8b77-c3c471afeed6/1/suWMwsReWnP0hJQxVVglny_FBtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.33.98.0/23
Signature Algorithm: sha256WithRSAEncryption
79:b4:fe:b9:f7:d2:64:60:61:89:68:f1:d5:61:4a:02:81:ae:
ad:1b:c3:f6:65:1a:51:5c:c8:8f:71:7d:fa:4f:23:f2:76:02:
b5:47:3c:25:45:f4:46:44:32:60:57:d2:0d:a2:ac:60:d3:6f:
1b:81:6a:8c:6d:78:2b:af:34:e8:30:4a:ad:0b:bd:2e:08:26:
1b:ac:f2:23:a6:86:73:9e:3a:ed:a2:8c:73:3e:e6:3e:47:9c:
ef:62:43:b3:ed:69:12:1a:e3:70:5e:ed:9e:80:af:63:80:b5:
af:3b:86:50:a6:84:e2:25:9a:8a:5b:aa:66:fe:89:50:83:2e:
f5:c5:f0:37:41:16:e1:48:f6:cc:2c:fb:2d:3e:59:a4:a9:1a:
b9:5d:17:14:26:ed:56:e3:60:31:11:7e:19:58:1a:4c:dd:aa:
e0:aa:a3:42:c7:4f:27:18:d3:a5:ac:5d:d5:02:f0:6c:49:51:
70:96:22:36:38:21:99:6a:7f:f6:71:e0:7c:af:bd:ed:a9:33:
4f:d5:01:bb:5d:94:59:fb:b1:04:57:98:97:db:41:72:d1:df:
57:ae:11:ed:1b:8c:bc:51:ac:a6:70:39:98:3d:48:47:98:b6:
79:67:c3:a3:1c:b5:59:e1:5e:62:0f:af:96:77:04:b4:a9:a7:
ac:f8:fd:f8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwFTpyrCPDoCzH25GrmrNzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyZTU4Y2MyYzQ1ZTVhNzNmNDg0OTQzMTU1NTgyNTlmMmZj
NTA2ZDcwHhcNMjMwMTAyMDEyNTE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MmY1YmU1NDYzMjA4MDUwMmIzYTkyNTBkZWM4YTEyZjE2NGM0MDAxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlqqKsDAcoX8Zv+8VeyfHX1Httgt4
KMO5jFzt+dHKsevp+gkgwrbS9g7kCPw9dPM844dO5RDlArW3qoTULWXvhLsvdPO+
S0bXD9KTVYVPWbHxUNHIfAuSY9cVFO/Wrj16ZOO3vY8X2CaOho55WBTbXu/icaZ4
YtwhoTVjenMd442ghYfSQWGkUrgFH5+T1nQSCUvvSA/q/4M1MJuYDiX2N6ISbA0T
myax0ETPJqDD63rrAwbDuj1ldvEgsFHVvoKVJxw1qHLosjyP5bcuOHUIvbAj3w1N
eJ4u4APCwSIkQRarn/3WzRKl+jmG5nc8R8cI0/k/5Gl80Pc8r9gfkv3uPQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGL1vlRjIIBQKzqSUN7IoS8WTEABMB8GA1UdIwQY
MBaAFLLljMLEXlpz9ISUMVVYJZ8vxQbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3VXTXdzUmVXblAwaEpReFZWZ2xueV9GQnRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC8zOTIxYjctNDQ0Yy00ZmVmLThiNzct
YzNjNDcxYWZlZWQ2LzEvWXZXLVZHTWdnRkFyT3BKUTNzaWhMeFpNUUFFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOC8zOTIxYjctNDQ0Yy00ZmVmLThiNzctYzNjNDcxYWZlZWQ2
LzEvc3VXTXdzUmVXblAwaEpReFZWZ2xueV9GQnRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwSFiMA0G
CSqGSIb3DQEBCwUAA4IBAQB5tP6599JkYGGJaPHVYUoCga6tG8P2ZRpRXMiPcX36
TyPydgK1RzwlRfRGRDJgV9INoqxg028bgWqMbXgrrzToMEqtC70uCCYbrPIjpoZz
njrtooxzPuY+R5zvYkOz7WkSGuNwXu2egK9jgLWvO4ZQpoTiJZqKW6pm/olQgy71
xfA3QRbhSPbMLPstPlmkqRq5XRcUJu1W42AxEX4ZWBpM3argqqNCx08nGNOlrF3V
AvBsSVFwliI2OCGZan/2ceB8r73tqTNP1QG7XZRZ+7EEV5iX20Fy0d9XrhHtG4y8
UaymcDmYPUhHmLZ5Z8OjHLVZ4V5iD6+WdwS0qaes+P34
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:05 2024 by rpki-client on console-fra.rpki-client.org