Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/92399b-1bed-45e2-9c93-e1b8ff25f60b/1/Y1L7771mMZCoaVs5MalvnyaVYc4.roa
File: Y1L7771mMZCoaVs5MalvnyaVYc4.roa (raw, json)
Hash identifier: JN2bWZqxTEgg+7ej4MR079K42RSzKA+d+DSKhtskm78=
Subject key identifier: 63:52:FB:EF:BD:66:31:90:A8:69:5B:39:31:A9:6F:9F:26:95:61:CE
Certificate issuer: /CN=87b976e2aab923248ee80ee57cbd34ad87bcef34
Certificate serial: 01856E0AE34798357108465524D6C682B215
Authority key identifier: 87:B9:76:E2:AA:B9:23:24:8E:E8:0E:E5:7C:BD:34:AD:87:BC:EF:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h7l24qq5IySO6A7lfL00rYe87zQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/92399b-1bed-45e2-9c93-e1b8ff25f60b/1/Y1L7771mMZCoaVs5MalvnyaVYc4.roa
Signing time: Sun 01 Jan 2023 15:54:44 +0000
ROA not before: Sun 01 Jan 2023 15:54:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34353
IP address blocks: 194.88.248.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:0a:e3:47:98:35:71:08:46:55:24:d6:c6:82:b2:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87b976e2aab923248ee80ee57cbd34ad87bcef34
Validity
Not Before: Jan 1 15:54:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6352fbefbd663190a8695b3931a96f9f269561ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:40:b0:0b:60:c7:ea:18:95:9b:e3:aa:4b:89:
1d:1a:59:d9:8f:b2:d1:4c:67:33:e9:f3:cd:f0:25:
02:aa:76:f1:35:16:63:eb:5d:b3:5d:b9:24:86:0f:
a0:bb:ce:25:15:dc:c2:60:76:a6:c2:d5:b3:e6:27:
5e:3f:c8:63:2e:97:7a:5e:dc:6b:02:17:9e:8b:42:
9c:d9:73:80:ad:e0:5b:d6:69:cf:0e:5f:c4:1e:b8:
7f:6f:fc:b7:72:10:07:75:13:4c:bd:0f:ba:09:96:
2c:68:8e:93:4b:71:76:e4:42:cb:b2:28:d6:03:7f:
92:ba:02:6c:ab:a2:77:37:d7:59:0d:35:09:f0:80:
c9:84:2d:c4:47:03:54:af:74:ee:8e:ea:d9:a9:6d:
16:f7:65:ae:ed:b6:13:18:0d:05:90:64:78:54:ba:
35:e4:c0:cf:4e:c3:6e:55:74:05:be:2c:f9:f6:20:
54:f3:2a:43:d8:c4:92:c6:7c:e0:5b:d8:3a:c9:4b:
04:40:67:70:1d:7c:88:97:cf:82:e0:cc:08:cb:1a:
82:3c:10:71:15:25:2e:e7:7f:1a:df:19:ab:2e:ae:
c8:02:13:aa:74:35:79:1d:37:2f:74:d4:dc:35:e8:
5c:ec:99:3c:96:23:02:de:4d:aa:1a:63:fd:d8:f9:
c2:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:52:FB:EF:BD:66:31:90:A8:69:5B:39:31:A9:6F:9F:26:95:61:CE
X509v3 Authority Key Identifier:
keyid:87:B9:76:E2:AA:B9:23:24:8E:E8:0E:E5:7C:BD:34:AD:87:BC:EF:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h7l24qq5IySO6A7lfL00rYe87zQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/92399b-1bed-45e2-9c93-e1b8ff25f60b/1/Y1L7771mMZCoaVs5MalvnyaVYc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/92399b-1bed-45e2-9c93-e1b8ff25f60b/1/h7l24qq5IySO6A7lfL00rYe87zQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.88.248.0/23
Signature Algorithm: sha256WithRSAEncryption
77:10:7e:58:ac:c8:1c:8a:51:07:73:b2:b1:22:e4:9f:2e:9b:
b9:50:2f:ac:3a:57:78:35:d0:c3:e8:94:b3:73:f4:56:a0:64:
78:65:9b:42:37:6e:c5:06:9b:0d:30:14:19:73:90:b0:b3:cc:
4f:f9:5a:c2:29:a2:f7:ce:10:12:e8:67:ad:0d:23:62:c7:44:
7f:e7:07:b6:83:f6:5e:66:41:05:a2:f6:37:bb:64:1d:21:71:
a1:25:af:f3:cd:59:ea:2e:4d:7c:fb:b9:88:a2:af:f6:14:78:
9f:6c:01:59:0b:86:d2:b2:1b:29:22:a8:50:e8:2d:0e:80:66:
bd:cc:25:26:17:50:e8:f2:67:2f:82:47:cf:a5:6c:48:2d:1b:
76:19:4e:61:8b:7d:12:d8:39:44:71:ad:4e:89:65:3b:31:4c:
28:e2:fa:b9:8f:9e:4a:c3:86:b5:67:55:1e:c8:69:a0:81:8c:
d9:0d:2d:d2:7b:4a:3f:20:ba:eb:05:d0:42:ac:44:fc:d5:e0:
f5:8a:c1:b9:3e:8d:49:28:11:19:b6:c1:f1:87:91:20:67:65:
9a:4a:42:01:86:ce:47:4a:4e:fa:cb:e6:97:33:65:03:74:ed:
89:3c:7f:76:39:b2:88:f5:fd:21:78:84:36:34:d0:5a:ee:36:
d0:2a:d0:d3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuCuNHmDVxCEZVJNbGgrIVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3Yjk3NmUyYWFiOTIzMjQ4ZWU4MGVlNTdjYmQzNGFkODdi
Y2VmMzQwHhcNMjMwMTAxMTU1NDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MzUyZmJlZmJkNjYzMTkwYTg2OTViMzkzMWE5NmY5ZjI2OTU2MWNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApECwC2DH6hiVm+OqS4kdGlnZj7LR
TGcz6fPN8CUCqnbxNRZj612zXbkkhg+gu84lFdzCYHamwtWz5ideP8hjLpd6Xtxr
Aheei0Kc2XOAreBb1mnPDl/EHrh/b/y3chAHdRNMvQ+6CZYsaI6TS3F25ELLsijW
A3+SugJsq6J3N9dZDTUJ8IDJhC3ERwNUr3TujurZqW0W92Wu7bYTGA0FkGR4VLo1
5MDPTsNuVXQFviz59iBU8ypD2MSSxnzgW9g6yUsEQGdwHXyIl8+C4MwIyxqCPBBx
FSUu538a3xmrLq7IAhOqdDV5HTcvdNTcNehc7Jk8liMC3k2qGmP92PnCJwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGNS+++9ZjGQqGlbOTGpb58mlWHOMB8GA1UdIwQY
MBaAFIe5duKquSMkjugO5Xy9NK2HvO80MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDdsMjRxcTVJeVNPNkE3bGZMMDByWWU4N3pRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi85MjM5OWItMWJlZC00NWUyLTljOTMt
ZTFiOGZmMjVmNjBiLzEvWTFMNzc3MW1NWkNvYVZzNU1hbHZueWFWWWM0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZi85MjM5OWItMWJlZC00NWUyLTljOTMtZTFiOGZmMjVmNjBi
LzEvaDdsMjRxcTVJeVNPNkE3bGZMMDByWWU4N3pRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwlj4MA0G
CSqGSIb3DQEBCwUAA4IBAQB3EH5YrMgcilEHc7KxIuSfLpu5UC+sOld4NdDD6JSz
c/RWoGR4ZZtCN27FBpsNMBQZc5Cws8xP+VrCKaL3zhAS6GetDSNix0R/5we2g/Ze
ZkEFovY3u2QdIXGhJa/zzVnqLk18+7mIoq/2FHifbAFZC4bSshspIqhQ6C0OgGa9
zCUmF1Do8mcvgkfPpWxILRt2GU5hi30S2DlEca1OiWU7MUwo4vq5j55Kw4a1Z1Ue
yGmggYzZDS3Se0o/ILrrBdBCrET81eD1isG5Po1JKBEZtsHxh5EgZ2WaSkIBhs5H
Sk76y+aXM2UDdO2JPH92ObKI9f0heIQ2NNBa7jbQKtDT
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:14 2024 by rpki-client on console-fra.rpki-client.org