Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/YnjiGd9bu9TLKYCkSKbk_VqWDM8.roa
File: YnjiGd9bu9TLKYCkSKbk_VqWDM8.roa (raw, json)
Hash identifier: gYDqX/3U0B3dwu2Ifm3QI8ywH0yvANQXC7k9O7vHkeo=
Subject key identifier: 62:78:E2:19:DF:5B:BB:D4:CB:29:80:A4:48:A6:E4:FD:5A:96:0C:CF
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 01918C558D62B828B1DC404E96CECCD017EE
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/YnjiGd9bu9TLKYCkSKbk_VqWDM8.roa
Signing time: Mon 26 Aug 2024 01:38:22 +0000
ROA not before: Mon 26 Aug 2024 01:38:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61254
IP address blocks: 185.233.17.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Sep 2024 01:52:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:8c:55:8d:62:b8:28:b1:dc:40:4e:96:ce:cc:d0:17:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Aug 26 01:38:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6278e219df5bbbd4cb2980a448a6e4fd5a960ccf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:51:60:e0:d0:a5:2d:d2:71:1f:0c:7f:bc:2d:
45:43:8a:82:76:07:1a:2c:9e:c8:0e:91:bd:7f:ed:
88:32:c8:3f:70:e7:b4:59:8e:56:20:66:2f:4f:d5:
96:87:c6:e1:c9:31:7f:8f:18:aa:9e:fa:ff:b9:4b:
66:e8:ff:3f:01:66:8b:6c:15:d1:be:75:a0:46:27:
59:b7:5b:0f:f9:c0:c1:6b:e1:46:40:08:e9:e1:69:
a1:a6:26:bb:aa:d5:6e:39:07:21:f4:4b:c9:88:07:
59:70:e7:9e:be:7d:99:2e:7c:a3:2a:d4:73:a9:6f:
29:3c:fa:de:c9:f0:ac:f6:4f:b8:6d:d5:e9:c3:8f:
a7:8a:39:0c:b4:fc:9b:23:ac:2a:2e:45:d8:f3:dd:
49:0c:34:d7:c6:83:d0:8d:a1:28:3d:5a:97:c8:ae:
4f:37:58:57:bf:a1:60:75:68:55:de:bb:5f:0d:a9:
31:0e:d2:8e:1d:7e:e0:5a:57:7a:12:cf:28:90:f1:
44:93:75:f3:e3:84:28:f0:0c:fd:1a:ef:a8:98:de:
3d:3c:00:a1:d6:af:bf:bc:f6:b3:65:97:b9:d4:8f:
e7:7e:8b:9b:49:a0:a5:6d:de:9d:fb:6e:b8:ca:64:
11:03:fe:f5:18:5e:8f:1c:e4:b8:d6:d6:2b:2f:ff:
05:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:78:E2:19:DF:5B:BB:D4:CB:29:80:A4:48:A6:E4:FD:5A:96:0C:CF
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/YnjiGd9bu9TLKYCkSKbk_VqWDM8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.17.0/24
Signature Algorithm: sha256WithRSAEncryption
93:22:53:a8:8e:c3:07:57:e5:0e:50:bf:a5:be:76:95:4d:eb:
d3:dc:00:33:17:5f:e8:1b:e2:b4:73:13:eb:e1:30:ca:54:46:
1c:dd:1a:41:52:ec:ad:f1:fc:c6:29:8b:7e:29:42:3c:ba:65:
97:22:2a:10:d8:97:98:ec:ed:98:05:b4:2d:c4:b6:f3:be:67:
10:a6:2d:57:60:7f:fd:60:bb:22:8f:84:b6:cb:b0:d2:10:71:
22:cb:13:ab:20:2f:84:91:01:eb:c1:91:f0:e4:19:9d:3d:e8:
67:21:0f:33:70:8f:53:05:e1:e4:ed:71:d2:87:59:48:f5:65:
f6:68:83:8c:33:50:2c:87:2e:74:f8:9b:e4:eb:6f:5f:82:ba:
0d:3c:b6:85:99:01:4d:ab:58:cc:39:d7:d7:1b:05:4f:94:70:
96:13:2a:0d:7c:e3:ee:01:a6:08:5a:8e:e5:d9:87:98:a1:cc:
4e:40:2b:af:6f:44:ee:60:3f:d2:f3:6e:2b:fd:38:62:06:99:
c8:4e:ad:ea:3d:59:0c:37:dd:5c:71:60:c4:89:f4:41:cb:df:
ae:0e:99:0a:7a:9c:d1:47:34:b9:58:dd:c6:ab:cd:64:ac:02:
18:f4:f3:e2:e9:d8:b8:d6:ec:4c:64:71:a3:8c:18:93:c9:7b:
63:70:59:96
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZGMVY1iuCix3EBOls7M0BfuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3ZDAzZjI5ODE4MGNjMTA5ZjE5ZDRiMTk5MmM3ZDcxYzU2
YzhkY2MwHhcNMjQwODI2MDEzODIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2Mjc4ZTIxOWRmNWJiYmQ0Y2IyOTgwYTQ0OGE2ZTRmZDVhOTYwY2NmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8VFg4NClLdJxHwx/vC1FQ4qCdgca
LJ7IDpG9f+2IMsg/cOe0WY5WIGYvT9WWh8bhyTF/jxiqnvr/uUtm6P8/AWaLbBXR
vnWgRidZt1sP+cDBa+FGQAjp4Wmhpia7qtVuOQch9EvJiAdZcOeevn2ZLnyjKtRz
qW8pPPreyfCs9k+4bdXpw4+nijkMtPybI6wqLkXY891JDDTXxoPQjaEoPVqXyK5P
N1hXv6FgdWhV3rtfDakxDtKOHX7gWld6Es8okPFEk3Xz44Qo8Az9Gu+omN49PACh
1q+/vPazZZe51I/nfoubSaClbd6d+264ymQRA/71GF6PHOS41tYrL/8FywIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGJ44hnfW7vUyymApEim5P1algzPMB8GA1UdIwQY
MBaAFBfQPymBgMwQnxnUsZksfXHFbI3MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRjlBX0tZR0F6QkNmR2RTeG1TeDljY1ZzamN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC84MmUyNTMtMDE3Ny00YTIwLWJlZmUt
OTE4YWM2NDYyNjc5LzEvWW5qaUdkOWJ1OVRMS1lDa1NLYmtfVnFXRE04LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC84MmUyNTMtMDE3Ny00YTIwLWJlZmUtOTE4YWM2NDYyNjc5
LzEvRjlBX0tZR0F6QkNmR2RTeG1TeDljY1ZzamN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuekRMA0G
CSqGSIb3DQEBCwUAA4IBAQCTIlOojsMHV+UOUL+lvnaVTevT3AAzF1/oG+K0cxPr
4TDKVEYc3RpBUuyt8fzGKYt+KUI8umWXIioQ2JeY7O2YBbQtxLbzvmcQpi1XYH/9
YLsij4S2y7DSEHEiyxOrIC+EkQHrwZHw5BmdPehnIQ8zcI9TBeHk7XHSh1lI9WX2
aIOMM1Ashy50+Jvk629fgroNPLaFmQFNq1jMOdfXGwVPlHCWEyoNfOPuAaYIWo7l
2YeYocxOQCuvb0TuYD/S824r/ThiBpnITq3qPVkMN91ccWDEifRBy9+uDpkKepzR
RzS5WN3Gq81krAIY9PPi6di41uxMZHGjjBiTyXtjcFmW
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:25:16 2025 by rpki-client