Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/y_sL1wXvzlVkECf7Np2mVuGYgtM.roa
File: y_sL1wXvzlVkECf7Np2mVuGYgtM.roa (raw, json)
Hash identifier: RRQuSRI91s+uO0S/VZkrvIMSYTH+T8AN8BPQauXCA5I=
Subject key identifier: CB:FB:0B:D7:05:EF:CE:55:64:10:27:FB:36:9D:A6:56:E1:98:82:D3
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01856EAFC04C3DE7C5B10D9FEEC06C80F8AC
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/y_sL1wXvzlVkECf7Np2mVuGYgtM.roa
Signing time: Sun 01 Jan 2023 18:54:49 +0000
ROA not before: Sun 01 Jan 2023 18:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59642
IP address blocks: 84.32.184.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Jan 2023 20:14:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:af:c0:4c:3d:e7:c5:b1:0d:9f:ee:c0:6c:80:f8:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jan 1 18:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cbfb0bd705efce55641027fb369da656e19882d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:12:aa:7d:7e:3e:65:2e:18:ad:ae:20:b9:48:
4e:95:8c:4e:32:f7:4c:80:28:39:d6:d4:c7:8f:06:
a8:ca:65:3e:45:15:cc:d0:8f:f4:46:69:da:08:3f:
a6:d7:b6:48:e0:52:cc:ff:b0:2c:6b:5a:b6:6d:1f:
98:80:18:c5:b9:5a:33:ce:e3:58:ab:04:4b:12:da:
66:41:a3:a8:97:9b:d2:4c:f1:4a:68:bb:15:33:56:
dc:fe:4a:c3:ed:85:80:1a:a0:16:5f:10:22:e6:4b:
d4:68:d2:1b:48:87:47:95:0c:60:c5:d8:7e:88:ed:
8c:12:ba:da:e2:5c:79:ad:d6:50:27:f1:89:32:f8:
a7:ab:df:99:9c:ec:cb:03:e2:45:36:36:6f:67:9f:
2d:35:92:1c:41:bb:46:55:1c:27:80:c7:48:f2:6c:
c9:43:6c:6c:df:cc:9b:ac:21:a4:f3:3a:ff:1e:28:
42:27:13:2c:ff:17:ff:c0:90:0e:1a:4c:be:29:87:
27:f1:59:e9:f8:2d:56:92:d4:02:c8:6c:10:11:10:
15:ea:4b:25:a7:bf:45:6c:41:b6:ba:25:67:80:7a:
84:76:1e:b6:71:08:82:18:13:40:58:ed:ec:84:72:
ae:d8:15:6e:cd:4e:4d:7c:75:e8:12:f5:0a:a8:ee:
b3:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:FB:0B:D7:05:EF:CE:55:64:10:27:FB:36:9D:A6:56:E1:98:82:D3
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/y_sL1wXvzlVkECf7Np2mVuGYgtM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.184.0/22
Signature Algorithm: sha256WithRSAEncryption
16:35:a6:5a:be:90:0e:10:8b:bc:f1:44:d3:2d:22:86:e9:38:
c4:2c:34:2f:bf:e9:3b:6e:ee:e2:ea:36:3d:9b:ce:d4:df:e8:
be:ce:e3:78:88:8f:94:f4:c3:00:5b:a0:7b:46:44:03:0f:bd:
10:e8:c3:08:e5:98:3e:6e:53:de:db:08:1f:cc:e5:f2:cb:95:
c6:3d:57:25:d1:e6:4c:5e:cb:4b:65:a9:cc:d5:d0:ed:79:70:
4b:d2:4c:22:67:3a:a7:60:f1:2c:f6:76:56:92:92:42:d3:c5:
1f:d9:7a:3e:99:06:6e:22:3e:76:ae:95:e8:d7:c7:93:0f:64:
35:f8:71:d4:e5:82:8d:ce:65:a2:37:42:ac:af:80:a7:79:0d:
3c:9a:67:6a:13:7f:cf:1b:af:0d:26:ee:3d:ef:26:d5:a2:dc:
9a:7a:84:6f:69:2a:1a:e0:e9:08:2b:48:62:70:3b:05:16:73:
72:80:8f:fe:31:fc:74:ae:98:ed:05:d2:24:a5:1f:bb:3f:b7:
d8:c6:fc:a6:49:d8:11:3b:b9:bd:b7:c1:41:06:73:0c:e6:89:
fa:42:83:83:2f:de:e3:31:b7:1b:94:57:8d:74:d2:e4:c1:0d:
0a:8a:fe:21:b6:1a:aa:12:ea:1f:d4:37:d0:d7:17:c4:4a:b7:
b0:c6:77:f4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVur8BMPefFsQ2f7sBsgPisMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjMwMTAxMTg1NDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYmZiMGJkNzA1ZWZjZTU1NjQxMDI3ZmIzNjlkYTY1NmUxOTg4MmQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxRKqfX4+ZS4Yra4guUhOlYxOMvdM
gCg51tTHjwaoymU+RRXM0I/0RmnaCD+m17ZI4FLM/7Asa1q2bR+YgBjFuVozzuNY
qwRLEtpmQaOol5vSTPFKaLsVM1bc/krD7YWAGqAWXxAi5kvUaNIbSIdHlQxgxdh+
iO2MErra4lx5rdZQJ/GJMvinq9+ZnOzLA+JFNjZvZ58tNZIcQbtGVRwngMdI8mzJ
Q2xs38ybrCGk8zr/HihCJxMs/xf/wJAOGky+KYcn8Vnp+C1WktQCyGwQERAV6ksl
p79FbEG2uiVngHqEdh62cQiCGBNAWO3shHKu2BVuzU5NfHXoEvUKqO6zEQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMv7C9cF785VZBAn+zadplbhmILTMB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEveV9zTDF3WHZ6bFZrRUNmN05wMm1WdUdZZ3RNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCVCC4MA0G
CSqGSIb3DQEBCwUAA4IBAQAWNaZavpAOEIu88UTTLSKG6TjELDQvv+k7bu7i6jY9
m87U3+i+zuN4iI+U9MMAW6B7RkQDD70Q6MMI5Zg+blPe2wgfzOXyy5XGPVcl0eZM
XstLZanM1dDteXBL0kwiZzqnYPEs9nZWkpJC08Uf2Xo+mQZuIj52rpXo18eTD2Q1
+HHU5YKNzmWiN0Ksr4CneQ08mmdqE3/PG68NJu497ybVotyaeoRvaSoa4OkIK0hi
cDsFFnNygI/+Mfx0rpjtBdIkpR+7P7fYxvymSdgRO7m9t8FBBnMM5on6QoODL97j
MbcblFeNdNLkwQ0Kiv4hthqqEuof1DfQ1xfESrewxnf0
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:33 2024 by rpki-client on console-ams.rpki-client.org