Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/CYpQnomPMhgB3CNezLFMtE_EoK4.roa
File: CYpQnomPMhgB3CNezLFMtE_EoK4.roa (raw, json)
Hash identifier: OC5fPzXJb5WLnY6SEVXQwO0KwP4H25nddclvdsxbQ9Y=
Subject key identifier: 09:8A:50:9E:89:8F:32:18:01:DC:23:5E:CC:B1:4C:B4:4F:C4:A0:AE
Certificate issuer: /CN=aca6f0683cc74badd23a8140c385f1c81ce24df7
Certificate serial: 01856C0106106D8526AB7D020DEDF008DD73
Authority key identifier: AC:A6:F0:68:3C:C7:4B:AD:D2:3A:81:40:C3:85:F1:C8:1C:E2:4D:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKbwaDzHS63SOoFAw4XxyBziTfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/CYpQnomPMhgB3CNezLFMtE_EoK4.roa
Signing time: Sun 01 Jan 2023 06:24:44 +0000
ROA not before: Sun 01 Jan 2023 06:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210797
IP address blocks: 178.22.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:01:06:10:6d:85:26:ab:7d:02:0d:ed:f0:08:dd:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca6f0683cc74badd23a8140c385f1c81ce24df7
Validity
Not Before: Jan 1 06:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=098a509e898f321801dc235eccb14cb44fc4a0ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b9:b2:d5:8d:c2:0a:3a:29:35:87:80:10:a3:
c3:83:30:2b:fd:b2:6b:26:9e:15:60:3e:e3:24:ab:
30:7a:aa:4d:c8:b8:63:97:c3:0d:a4:13:60:26:3c:
22:9c:61:62:e0:75:69:60:2a:35:3d:a9:dc:0f:c2:
4f:60:14:fe:9e:e1:63:84:b1:0c:d3:a9:26:59:d0:
20:54:27:2e:b8:52:80:1a:b4:1d:b4:5a:25:50:48:
47:2a:a0:c3:d7:57:f2:10:17:da:e2:22:e1:df:d1:
45:12:cc:87:e0:e8:91:7a:0c:1c:71:8a:76:9d:1f:
ab:4b:0f:53:ac:e7:c7:9f:b5:59:83:be:ca:3b:b7:
95:ca:ea:dd:9e:b1:cb:0a:79:0a:f3:d7:11:e5:38:
5d:19:ad:d6:ed:f8:bd:16:0b:da:15:ba:14:de:e8:
27:51:29:45:2b:0f:57:10:6f:8b:bc:b4:74:e7:fb:
03:8f:0b:31:d0:2e:4f:d2:3b:89:0e:1c:fb:96:61:
74:3a:fe:c2:5d:83:bf:5b:f9:7f:e7:1e:7a:db:dd:
3d:29:78:f0:e2:41:b5:db:9a:0b:c0:aa:af:82:7e:
1e:cf:60:42:42:aa:e8:e4:2a:4e:73:72:a3:4c:32:
18:81:b7:1c:6f:df:34:ea:07:af:53:c6:a6:57:29:
dd:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:8A:50:9E:89:8F:32:18:01:DC:23:5E:CC:B1:4C:B4:4F:C4:A0:AE
X509v3 Authority Key Identifier:
keyid:AC:A6:F0:68:3C:C7:4B:AD:D2:3A:81:40:C3:85:F1:C8:1C:E2:4D:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKbwaDzHS63SOoFAw4XxyBziTfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/CYpQnomPMhgB3CNezLFMtE_EoK4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.22.27.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:10:93:00:1e:88:c6:0c:52:c6:ed:59:fd:10:3f:8e:a3:fd:
65:55:bd:2b:73:9d:5c:7a:b4:07:db:ae:f6:5f:2f:1a:08:ad:
2f:68:12:23:20:38:27:a9:7a:10:a5:fa:0f:40:25:c4:5b:09:
90:5f:d6:2a:38:f2:d5:3c:ea:1d:81:a6:a5:f5:06:c8:7a:8c:
f6:19:2e:f6:43:86:c1:69:7a:96:46:1e:bb:5f:3a:fe:c1:a3:
05:a8:a3:18:9b:a2:4e:22:78:dd:de:25:8d:c8:e9:74:c9:10:
ed:93:00:6c:9b:ab:3f:c1:57:13:d6:c0:4c:2d:ff:e3:86:50:
31:14:ef:42:c5:90:76:51:8c:d8:71:d1:8b:3c:fe:47:2b:7b:
62:31:c0:17:c0:1b:9f:cd:aa:c9:27:53:09:5f:fc:f1:7a:27:
0e:1f:d1:c6:e5:2b:85:f8:55:db:06:74:42:8a:57:d0:0a:de:
15:43:14:c0:80:87:fd:d4:2b:c2:b2:b7:b4:e7:bc:26:29:b2:
52:5a:db:b4:1e:ee:6e:e3:6c:7f:a6:a3:cb:00:af:46:e2:0c:
7d:b3:f6:38:59:e2:e6:62:12:b8:fa:b3:9e:a7:1f:3e:7d:7f:
58:77:0f:06:eb:f7:d1:9c:f4:1c:5f:df:a5:01:ed:3d:a0:e5:
55:ba:17:fc
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsAQYQbYUmq30CDe3wCN1zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjYTZmMDY4M2NjNzRiYWRkMjNhODE0MGMzODVmMWM4MWNl
MjRkZjcwHhcNMjMwMTAxMDYyNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwOThhNTA5ZTg5OGYzMjE4MDFkYzIzNWVjY2IxNGNiNDRmYzRhMGFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsLmy1Y3CCjopNYeAEKPDgzAr/bJr
Jp4VYD7jJKsweqpNyLhjl8MNpBNgJjwinGFi4HVpYCo1PancD8JPYBT+nuFjhLEM
06kmWdAgVCcuuFKAGrQdtFolUEhHKqDD11fyEBfa4iLh39FFEsyH4OiRegwccYp2
nR+rSw9TrOfHn7VZg77KO7eVyurdnrHLCnkK89cR5ThdGa3W7fi9FgvaFboU3ugn
USlFKw9XEG+LvLR05/sDjwsx0C5P0juJDhz7lmF0Ov7CXYO/W/l/5x562909KXjw
4kG125oLwKqvgn4ez2BCQqro5CpOc3KjTDIYgbccb9806gevU8amVyndqwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAmKUJ6JjzIYAdwjXsyxTLRPxKCuMB8GA1UdIwQY
MBaAFKym8Gg8x0ut0jqBQMOF8cgc4k33MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcktid2FEekhTNjNTT29GQXc0WHh5QnppVGZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS8yZDQ4MTgtZjE4Mi00YjQ2LTllOGMt
MDgyNzk2MWMwNWUwLzEvQ1lwUW5vbVBNaGdCM0NOZXpMRk10RV9Fb0s0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS8yZDQ4MTgtZjE4Mi00YjQ2LTllOGMtMDgyNzk2MWMwNWUw
LzEvcktid2FEekhTNjNTT29GQXc0WHh5QnppVGZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAshYbMA0G
CSqGSIb3DQEBCwUAA4IBAQAbEJMAHojGDFLG7Vn9ED+Oo/1lVb0rc51cerQH2672
Xy8aCK0vaBIjIDgnqXoQpfoPQCXEWwmQX9YqOPLVPOodgaal9QbIeoz2GS72Q4bB
aXqWRh67Xzr+waMFqKMYm6JOInjd3iWNyOl0yRDtkwBsm6s/wVcT1sBMLf/jhlAx
FO9CxZB2UYzYcdGLPP5HK3tiMcAXwBufzarJJ1MJX/zxeicOH9HG5SuF+FXbBnRC
ilfQCt4VQxTAgIf91CvCsre057wmKbJSWtu0Hu5u42x/pqPLAK9G4gx9s/Y4WeLm
YhK4+rOepx8+fX9Ydw8G6/fRnPQcX9+lAe09oOVVuhf8
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:44 2024 by rpki-client on console-ams.rpki-client.org