Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/S2-yqtcDosfdhLJoM090OkjAitg.roa
File: S2-yqtcDosfdhLJoM090OkjAitg.roa (raw, json)
Hash identifier: ouDVwPj5q2COBSMS4p7526z4EMAobcBI5gjHHJQ6iaU=
Subject key identifier: 4B:6F:B2:AA:D7:03:A2:C7:DD:84:B2:68:33:4F:74:3A:48:C0:8A:D8
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01909B3BA02636E66DBB851105159DFB982A
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/S2-yqtcDosfdhLJoM090OkjAitg.roa
Signing time: Wed 10 Jul 2024 06:01:34 +0000
ROA not before: Wed 10 Jul 2024 06:01:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 400866
IP address blocks: 84.32.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Jul 2024 07:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:9b:3b:a0:26:36:e6:6d:bb:85:11:05:15:9d:fb:98:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jul 10 06:01:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4b6fb2aad703a2c7dd84b268334f743a48c08ad8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:1b:c7:ca:82:79:9f:e6:71:ad:11:09:cc:85:
21:9f:fe:1a:e9:fb:b3:48:9b:3e:4a:80:8d:ab:2c:
1e:99:40:36:9f:4d:c0:8d:99:f6:ee:0d:bf:6f:a4:
f3:53:2d:d9:9c:04:23:b8:dc:a4:a3:bd:12:ca:dd:
b8:d8:a3:14:69:aa:ac:4a:10:4e:72:48:5a:ac:54:
81:4e:d9:82:28:a2:fa:05:3f:2e:a3:d7:4b:25:b2:
f4:f0:55:09:3a:31:e8:c8:f8:4e:11:65:8e:64:35:
0b:1e:8e:09:37:f0:09:e5:87:d3:39:1a:8c:11:2f:
9b:af:50:d9:1c:50:47:56:5e:3f:0d:12:6e:07:10:
98:a4:8b:17:8c:dc:bc:e7:6e:22:56:4a:9c:6e:ef:
c1:4d:f4:39:77:7a:5a:27:0c:e7:b6:11:ac:f2:07:
d1:2d:12:ee:ff:3f:96:7e:d9:b3:48:9d:fe:32:de:
0f:16:34:4c:39:23:ca:87:46:a9:75:5b:77:4d:b4:
77:6b:31:67:fa:59:c7:ee:c2:04:86:8e:07:58:34:
c6:2a:7e:73:09:ab:fb:7c:18:dc:4d:1b:07:a0:b0:
17:3c:f6:ea:7b:bf:39:44:ff:36:a2:98:25:84:ff:
26:38:15:6a:98:5b:23:57:dc:cb:63:dd:fe:72:72:
77:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:6F:B2:AA:D7:03:A2:C7:DD:84:B2:68:33:4F:74:3A:48:C0:8A:D8
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/S2-yqtcDosfdhLJoM090OkjAitg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.220.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:9d:7d:ef:3f:b7:39:f0:1b:8f:47:68:35:89:35:06:c5:0c:
78:0a:15:3f:ef:3f:98:8e:a0:80:e4:9f:9a:c0:40:5f:0e:3e:
a7:ac:0e:fb:84:9a:e0:83:cd:52:c3:14:35:94:45:ed:ad:bc:
8f:26:10:d4:76:9c:25:8b:91:c8:71:b1:77:4e:4a:54:25:0e:
ba:35:74:0b:e6:3d:88:d9:cb:70:a9:b4:53:f2:0f:c4:ba:41:
52:f6:fb:37:89:53:f9:48:b0:ce:8d:80:13:29:25:23:f1:75:
85:a1:52:3a:73:35:4d:af:b3:c5:c9:d2:81:7d:3c:b6:0c:ec:
bd:83:0d:e6:11:42:cf:74:5c:4f:fc:54:e9:f3:72:f4:c4:15:
1b:23:ae:18:01:e9:3c:4f:ae:17:e2:8e:fe:fd:29:37:1f:d7:
75:92:d5:3f:21:3b:6f:4c:83:ab:9c:3d:16:0a:26:17:a4:91:
16:3d:fd:ed:54:87:41:29:70:09:da:5e:15:55:d8:97:b2:75:
86:a3:79:c9:da:b8:fd:0b:2f:c6:65:9e:0f:35:1b:92:d7:8c:
91:bd:87:b9:26:d8:9c:28:2a:48:f9:b5:cb:b9:4a:ac:fd:76:
d9:27:bf:59:1c:83:98:1b:9e:a5:c0:3c:68:21:d3:3f:ce:87:
ac:94:26:11
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZCbO6AmNuZtu4URBRWd+5gqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjQwNzEwMDYwMTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YjZmYjJhYWQ3MDNhMmM3ZGQ4NGIyNjgzMzRmNzQzYTQ4YzA4YWQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAohvHyoJ5n+ZxrREJzIUhn/4a6fuz
SJs+SoCNqywemUA2n03AjZn27g2/b6TzUy3ZnAQjuNyko70Syt242KMUaaqsShBO
ckharFSBTtmCKKL6BT8uo9dLJbL08FUJOjHoyPhOEWWOZDULHo4JN/AJ5YfTORqM
ES+br1DZHFBHVl4/DRJuBxCYpIsXjNy8524iVkqcbu/BTfQ5d3paJwznthGs8gfR
LRLu/z+WftmzSJ3+Mt4PFjRMOSPKh0apdVt3TbR3azFn+lnH7sIEho4HWDTGKn5z
Cav7fBjcTRsHoLAXPPbqe785RP82opglhP8mOBVqmFsjV9zLY93+cnJ3mwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEtvsqrXA6LH3YSyaDNPdDpIwIrYMB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvUzIteXF0Y0Rvc2ZkaExKb00wOTBPa2pBaXRnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVCDcMA0G
CSqGSIb3DQEBCwUAA4IBAQBenX3vP7c58BuPR2g1iTUGxQx4ChU/7z+YjqCA5J+a
wEBfDj6nrA77hJrgg81SwxQ1lEXtrbyPJhDUdpwli5HIcbF3TkpUJQ66NXQL5j2I
2ctwqbRT8g/EukFS9vs3iVP5SLDOjYATKSUj8XWFoVI6czVNr7PFydKBfTy2DOy9
gw3mEULPdFxP/FTp83L0xBUbI64YAek8T64X4o7+/Sk3H9d1ktU/ITtvTIOrnD0W
CiYXpJEWPf3tVIdBKXAJ2l4VVdiXsnWGo3nJ2rj9Cy/GZZ4PNRuS14yRvYe5Jtic
KCpI+bXLuUqs/XbZJ79ZHIOYG56lwDxoIdM/zoeslCYR
-----END CERTIFICATE-----
Generated at Thu Jul 11 08:35:48 2024 by rpki-client on console-ams.rpki-client.org