Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/yuIbuESH0LPna2JXSMDtlcXFcS8.roa
File: yuIbuESH0LPna2JXSMDtlcXFcS8.roa (raw, json)
Hash identifier: ccQG7kw+YcwVOKA0JxzrbqM51QuMq1Zvehsu3nb2zcw=
Subject key identifier: CA:E2:1B:B8:44:87:D0:B3:E7:6B:62:57:48:C0:ED:95:C5:C5:71:2F
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 018ED239CCB4ED2E02EA7E5861CAE46AC9A3
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/yuIbuESH0LPna2JXSMDtlcXFcS8.roa
Signing time: Fri 12 Apr 2024 12:13:07 +0000
ROA not before: Fri 12 Apr 2024 12:13:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24875
IP address blocks: 160.238.64.0/24 maxlen: 24
160.238.65.0/24 maxlen: 24
160.238.67.0/24 maxlen: 24
185.245.3.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 18 May 2024 14:51:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:d2:39:cc:b4:ed:2e:02:ea:7e:58:61:ca:e4:6a:c9:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Apr 12 12:13:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cae21bb84487d0b3e76b625748c0ed95c5c5712f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:37:5b:21:36:d4:73:3c:43:f7:2e:22:dd:b2:
f6:9f:b6:f9:b1:7c:68:bf:ca:38:19:1c:64:6a:21:
6d:18:8f:8e:46:fc:d3:f0:75:2a:91:b9:ad:53:d8:
25:a3:47:c3:f1:3d:40:9a:08:fe:5d:40:9a:c9:60:
39:f2:a4:7c:66:b7:9c:0e:4e:a9:84:8c:d4:f1:89:
f6:8c:85:92:d9:85:cc:ee:85:ab:ec:1b:5e:f6:9b:
fc:90:c3:a6:47:bc:79:ec:84:3c:8e:4b:7f:d5:35:
4b:d9:ef:1d:60:10:20:4b:6c:7b:9c:fb:2d:c2:95:
9f:13:40:73:29:8c:73:17:6e:56:fb:96:5d:94:67:
66:24:72:a3:a6:ed:31:7f:23:73:00:b2:3b:da:05:
a4:8e:57:84:57:02:08:9a:8e:24:ef:63:7f:19:8e:
cb:8a:0b:ec:c0:a6:e7:e7:94:78:c4:6c:53:6b:44:
db:0f:b8:10:9f:42:fa:d8:c1:c9:2a:d8:5e:3c:49:
fd:5c:73:b8:c2:e9:84:3b:3c:1b:9d:2e:58:3d:09:
19:e5:00:e3:af:06:3a:40:16:37:18:0f:41:b5:7e:
9a:e3:31:b8:94:3b:75:87:fe:cb:fc:f8:c0:3a:3e:
ad:3c:bc:b7:de:3e:71:d8:e5:c0:ba:0a:b9:d8:95:
1f:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:E2:1B:B8:44:87:D0:B3:E7:6B:62:57:48:C0:ED:95:C5:C5:71:2F
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/yuIbuESH0LPna2JXSMDtlcXFcS8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.238.64.0/23
160.238.67.0/24
185.245.3.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:cf:c7:06:d4:9e:f0:be:93:47:a5:e7:00:13:1f:be:d4:de:
04:d6:17:26:71:88:38:18:48:7c:c3:86:2a:1c:b1:28:1e:b9:
db:83:78:91:a5:11:71:ce:e2:af:1d:5f:9e:35:41:81:5d:c3:
25:89:0b:e0:c7:86:a4:21:c1:ab:76:4f:c7:84:9e:55:95:10:
96:5c:ae:54:54:a1:5a:aa:14:4e:4c:48:cf:9d:90:69:ac:06:
86:59:27:c0:de:d7:88:bd:5f:5d:bd:9a:96:11:e9:ed:7a:fd:
cb:14:4a:7e:c5:87:67:4f:b2:f7:b1:42:10:4f:b6:8a:5b:ea:
c7:72:8d:36:5d:df:9c:ae:71:a9:41:d8:88:46:11:d4:c7:21:
ad:4b:81:42:ab:7f:e3:d5:04:b9:39:29:ba:3a:74:06:2f:6d:
52:c4:8a:ad:94:88:e6:63:98:3c:1f:d8:da:2d:8b:b9:5e:5a:
6b:dc:33:21:4c:2f:22:2a:3c:46:d4:da:d4:46:5e:c5:7f:9f:
9e:bf:63:17:f3:50:86:5c:bd:c3:8f:39:ff:7e:0a:13:f8:43:
8a:99:8d:89:16:9e:77:92:4e:f6:70:97:ad:9f:34:66:8f:7e:
74:f5:ad:d6:6f:70:8b:f6:7f:57:2e:51:2f:9d:6d:30:11:52:
5c:1b:a1:f5
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAY7SOcy07S4C6n5YYcrkasmjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3ZDAzZjI5ODE4MGNjMTA5ZjE5ZDRiMTk5MmM3ZDcxYzU2
YzhkY2MwHhcNMjQwNDEyMTIxMzA3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYWUyMWJiODQ0ODdkMGIzZTc2YjYyNTc0OGMwZWQ5NWM1YzU3MTJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgjdbITbUczxD9y4i3bL2n7b5sXxo
v8o4GRxkaiFtGI+ORvzT8HUqkbmtU9glo0fD8T1Amgj+XUCayWA58qR8ZrecDk6p
hIzU8Yn2jIWS2YXM7oWr7Bte9pv8kMOmR7x57IQ8jkt/1TVL2e8dYBAgS2x7nPst
wpWfE0BzKYxzF25W+5ZdlGdmJHKjpu0xfyNzALI72gWkjleEVwIImo4k72N/GY7L
igvswKbn55R4xGxTa0TbD7gQn0L62MHJKthePEn9XHO4wumEOzwbnS5YPQkZ5QDj
rwY6QBY3GA9BtX6a4zG4lDt1h/7L/PjAOj6tPLy33j5x2OXAugq52JUfOQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFMriG7hEh9Cz52tiV0jA7ZXFxXEvMB8GA1UdIwQY
MBaAFBfQPymBgMwQnxnUsZksfXHFbI3MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRjlBX0tZR0F6QkNmR2RTeG1TeDljY1ZzamN3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC84MmUyNTMtMDE3Ny00YTIwLWJlZmUt
OTE4YWM2NDYyNjc5LzEveXVJYnVFU0gwTFBuYTJKWFNNRHRsY1hGY1M4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC84MmUyNTMtMDE3Ny00YTIwLWJlZmUtOTE4YWM2NDYyNjc5
LzEvRjlBX0tZR0F6QkNmR2RTeG1TeDljY1ZzamN3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQBoO5AAwQA
oO5DAwQAufUDMA0GCSqGSIb3DQEBCwUAA4IBAQCOz8cG1J7wvpNHpecAEx++1N4E
1hcmcYg4GEh8w4YqHLEoHrnbg3iRpRFxzuKvHV+eNUGBXcMliQvgx4akIcGrdk/H
hJ5VlRCWXK5UVKFaqhROTEjPnZBprAaGWSfA3teIvV9dvZqWEentev3LFEp+xYdn
T7L3sUIQT7aKW+rHco02Xd+crnGpQdiIRhHUxyGtS4FCq3/j1QS5OSm6OnQGL21S
xIqtlIjmY5g8H9jaLYu5Xlpr3DMhTC8iKjxG1NrURl7Ff5+ev2MX81CGXL3Djzn/
fgoT+EOKmY2JFp53kk72cJetnzRmj3509a3Wb3CL9n9XLlEvnW0wEVJcG6H1
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:04 2024 by rpki-client on console-ams.rpki-client.org