Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/5531eb-dc9a-42ad-a5d6-43718f422b1f/1/p-ybR2VsAzx4WQi9-igrqmzuCOs.roa
File: p-ybR2VsAzx4WQi9-igrqmzuCOs.roa (raw, json)
Hash identifier: uKGLyEPuk32btD8XCMPPXGRw9mbM7eXkDmGwA7MtWZ4=
Subject key identifier: A7:EC:9B:47:65:6C:03:3C:78:59:08:BD:FA:28:2B:AA:6C:EE:08:EB
Certificate issuer: /CN=1dde851d53bec9b19f7f7cee4d7a61b2a8aef420
Certificate serial: 018AAE3CBA891C383DE4A5C8F097F9369285
Authority key identifier: 1D:DE:85:1D:53:BE:C9:B1:9F:7F:7C:EE:4D:7A:61:B2:A8:AE:F4:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hd6FHVO-ybGff3zuTXphsqiu9CA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/5531eb-dc9a-42ad-a5d6-43718f422b1f/1/p-ybR2VsAzx4WQi9-igrqmzuCOs.roa
Signing time: Tue 19 Sep 2023 16:18:50 +0000
ROA not before: Tue 19 Sep 2023 16:18:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24904
IP address blocks: 185.200.200.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ae:3c:ba:89:1c:38:3d:e4:a5:c8:f0:97:f9:36:92:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dde851d53bec9b19f7f7cee4d7a61b2a8aef420
Validity
Not Before: Sep 19 16:18:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a7ec9b47656c033c785908bdfa282baa6cee08eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:40:8b:f0:a7:d2:27:71:13:62:36:41:7e:82:
1d:20:b4:c2:37:63:57:5a:8a:bf:ea:7b:1e:1a:58:
0a:36:69:a7:2e:ad:37:6c:26:8b:7f:48:c6:d5:0a:
10:54:30:cf:19:8f:e8:f4:79:80:9c:44:23:be:a5:
e9:bd:24:c3:2c:ce:46:4a:a9:3b:a6:c0:58:02:c5:
30:98:b5:d3:9c:55:69:a8:eb:43:0d:7f:97:2c:d1:
40:5e:23:ff:a7:2e:f2:6f:36:3d:71:cf:ed:02:d5:
3e:cb:9f:a1:a1:3f:d4:f8:02:91:9a:a6:a1:17:3d:
27:82:e7:f2:74:6a:9e:14:8a:4e:b1:28:4c:cf:07:
88:3c:48:f9:f2:b3:fb:71:43:90:f6:60:95:dc:95:
de:ed:24:57:00:0d:06:89:a5:0e:71:30:f7:cd:e8:
89:3d:6e:5e:74:2d:fa:39:ce:7a:4a:ae:9c:4e:7e:
4c:dd:99:16:bb:25:b0:ae:16:81:59:21:5f:5e:9c:
5c:e6:b5:04:23:3b:13:9c:96:0b:6e:0e:d7:bf:ae:
fe:e2:ed:90:3e:0e:93:f5:f3:a9:3f:a8:09:67:29:
92:9b:76:fa:93:dd:98:0a:d4:ee:a7:80:2f:87:c5:
5b:41:b4:f1:bd:e1:40:c4:90:ba:4a:7c:f6:14:ab:
07:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:EC:9B:47:65:6C:03:3C:78:59:08:BD:FA:28:2B:AA:6C:EE:08:EB
X509v3 Authority Key Identifier:
keyid:1D:DE:85:1D:53:BE:C9:B1:9F:7F:7C:EE:4D:7A:61:B2:A8:AE:F4:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hd6FHVO-ybGff3zuTXphsqiu9CA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5531eb-dc9a-42ad-a5d6-43718f422b1f/1/p-ybR2VsAzx4WQi9-igrqmzuCOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/5531eb-dc9a-42ad-a5d6-43718f422b1f/1/Hd6FHVO-ybGff3zuTXphsqiu9CA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.200.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:ff:86:fe:21:8d:4c:e7:a1:57:e0:6e:cf:d0:0d:7d:df:bc:
8f:a4:16:dc:e5:a9:ca:3d:6f:cc:f6:c3:1b:50:5c:6f:33:43:
15:8c:6d:cf:87:da:26:02:96:98:00:67:f6:8f:09:39:27:fd:
4d:1b:e2:dd:91:9f:b7:79:d5:7c:74:7d:6a:a0:3f:ec:67:f9:
b7:06:90:91:46:bf:17:02:14:b4:fb:18:e9:89:b4:22:4f:15:
67:34:b8:57:9a:90:3b:8d:45:2d:31:fe:80:2a:99:ef:36:3f:
68:65:b5:63:28:6f:d3:07:8b:0b:9b:9d:30:c6:af:34:31:35:
20:f1:c9:6c:d9:83:20:6d:68:98:7d:ba:38:ca:82:e0:d7:80:
b3:81:d5:9f:2f:c0:7d:fe:78:cc:9a:74:84:a0:0f:e3:2f:b6:
17:b4:bb:a3:b1:fe:4a:37:5e:fb:eb:e7:75:de:ad:b1:a6:4a:
ae:c6:fe:9d:9d:ea:d9:c7:f5:d6:d9:bf:f0:09:d7:8f:5d:16:
13:5e:d0:85:1c:37:bc:fb:42:45:72:61:c8:f2:6b:49:66:a5:
4b:4d:ee:8b:0e:f6:1a:e0:33:3a:4e:c7:9b:f3:e5:06:e0:50:
25:c3:a7:d5:27:f7:b7:23:2d:7d:4a:3b:28:8e:63:78:03:52:
df:70:ad:de
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYquPLqJHDg95KXI8Jf5NpKFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkZGU4NTFkNTNiZWM5YjE5ZjdmN2NlZTRkN2E2MWIyYThh
ZWY0MjAwHhcNMjMwOTE5MTYxODUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhN2VjOWI0NzY1NmMwMzNjNzg1OTA4YmRmYTI4MmJhYTZjZWUwOGViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv0CL8KfSJ3ETYjZBfoIdILTCN2NX
Woq/6nseGlgKNmmnLq03bCaLf0jG1QoQVDDPGY/o9HmAnEQjvqXpvSTDLM5GSqk7
psBYAsUwmLXTnFVpqOtDDX+XLNFAXiP/py7ybzY9cc/tAtU+y5+hoT/U+AKRmqah
Fz0ngufydGqeFIpOsShMzweIPEj58rP7cUOQ9mCV3JXe7SRXAA0GiaUOcTD3zeiJ
PW5edC36Oc56Sq6cTn5M3ZkWuyWwrhaBWSFfXpxc5rUEIzsTnJYLbg7Xv67+4u2Q
Pg6T9fOpP6gJZymSm3b6k92YCtTup4Avh8VbQbTxveFAxJC6Snz2FKsHiQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKfsm0dlbAM8eFkIvfooK6ps7gjrMB8GA1UdIwQY
MBaAFB3ehR1Tvsmxn3987k16YbKorvQgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGQ2RkhWTy15YkdmZjN6dVRYcGhzcWl1OUNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi81NTMxZWItZGM5YS00MmFkLWE1ZDYt
NDM3MThmNDIyYjFmLzEvcC15YlIyVnNBeng0V1FpOS1pZ3JxbXp1Q09zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi81NTMxZWItZGM5YS00MmFkLWE1ZDYtNDM3MThmNDIyYjFm
LzEvSGQ2RkhWTy15YkdmZjN6dVRYcGhzcWl1OUNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCucjIMA0G
CSqGSIb3DQEBCwUAA4IBAQBe/4b+IY1M56FX4G7P0A1937yPpBbc5anKPW/M9sMb
UFxvM0MVjG3Ph9omApaYAGf2jwk5J/1NG+LdkZ+3edV8dH1qoD/sZ/m3BpCRRr8X
AhS0+xjpibQiTxVnNLhXmpA7jUUtMf6AKpnvNj9oZbVjKG/TB4sLm50wxq80MTUg
8cls2YMgbWiYfbo4yoLg14CzgdWfL8B9/njMmnSEoA/jL7YXtLujsf5KN1776+d1
3q2xpkquxv6dnerZx/XW2b/wCdePXRYTXtCFHDe8+0JFcmHI8mtJZqVLTe6LDvYa
4DM6Tseb8+UG4FAlw6fVJ/e3Iy19SjsojmN4A1LfcK3e
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:41 2024 by rpki-client on console-fra.rpki-client.org