Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/U2ZyOP6yG8u74dpNw5wPCCrZ-b4.roa
File: U2ZyOP6yG8u74dpNw5wPCCrZ-b4.roa (raw, json)
Hash identifier: ks0fPahy2qAEhvjICD9SpVtetnQFmmhcNZJrtZKOap0=
Subject key identifier: 53:66:72:38:FE:B2:1B:CB:BB:E1:DA:4D:C3:9C:0F:08:2A:D9:F9:BE
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 0185700285CFF6B9F96E271D180A5C6C1900
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/U2ZyOP6yG8u74dpNw5wPCCrZ-b4.roa
Signing time: Mon 02 Jan 2023 01:04:51 +0000
ROA not before: Mon 02 Jan 2023 01:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42910
IP address blocks: 77.92.152.0/24 maxlen: 24
188.132.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Apr 2023 15:34:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:85:cf:f6:b9:f9:6e:27:1d:18:0a:5c:6c:19:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 2 01:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53667238feb21bcbbbe1da4dc39c0f082ad9f9be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ad:46:b4:cd:91:99:66:39:82:cd:9b:90:67:
e6:6d:dc:86:02:91:1b:67:ad:61:93:31:05:34:50:
88:c4:4a:2a:c2:4c:fb:eb:c1:13:61:b8:b7:30:e9:
5b:cb:78:93:18:94:ab:46:5b:93:33:56:8c:40:52:
7b:9c:96:2f:e1:51:f0:0b:ee:73:37:f6:28:da:24:
b0:17:dd:82:60:c6:f7:93:9b:e9:9b:62:19:6e:ae:
e2:52:04:3f:00:02:35:7d:87:82:7e:ee:8f:c9:13:
91:40:94:c6:df:80:6d:22:bb:2a:7b:1d:73:4b:2b:
88:ca:d7:8e:cc:16:d6:1e:a1:8f:4a:66:81:39:f5:
49:de:05:6d:25:fa:78:f2:0c:dc:34:fc:4b:10:2e:
83:4a:b0:8e:3a:09:66:d7:03:9d:af:ae:d7:05:8a:
b6:f4:6b:8f:d9:b1:31:4f:ba:b9:77:7f:4f:b7:f2:
93:dc:89:ee:f7:25:25:b5:8c:b6:57:e8:c1:ed:9e:
f4:dd:33:57:6d:d6:2e:f6:68:1e:38:81:9d:60:3f:
21:e6:2a:f7:fd:3c:da:ec:57:1d:1c:ef:19:10:41:
11:25:b9:45:13:73:28:d3:83:dc:56:16:a6:fe:c5:
9d:95:c8:68:54:1b:07:49:5a:02:28:ca:7b:ec:2c:
c1:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:66:72:38:FE:B2:1B:CB:BB:E1:DA:4D:C3:9C:0F:08:2A:D9:F9:BE
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/U2ZyOP6yG8u74dpNw5wPCCrZ-b4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.92.152.0/24
188.132.170.0/24
Signature Algorithm: sha256WithRSAEncryption
38:c1:7b:33:c7:f5:6a:88:7e:95:5c:5c:e1:be:a0:f8:0b:b1:
63:3c:d6:73:a8:f3:10:42:31:24:b1:3a:ca:ac:cd:04:a5:53:
67:e5:0c:fc:ce:53:f2:e9:8f:1e:e7:92:23:36:3b:3e:28:78:
f5:4c:20:1b:a7:10:d8:33:9f:8b:52:00:f8:af:ab:f7:99:dd:
a1:e1:c3:24:e3:de:fd:0e:f7:bf:9e:9b:d5:78:9c:82:dc:2a:
fe:71:bf:a1:87:8e:f2:ca:dc:88:f2:78:18:37:65:bb:ae:95:
21:a5:5a:f1:bd:0b:45:2a:31:7c:05:a9:04:a8:95:e6:13:5a:
20:75:79:11:a0:4b:86:6a:31:86:c5:87:57:aa:14:f2:47:74:
9e:78:2e:20:ab:3f:c7:35:f6:35:e1:c8:a8:a2:88:85:01:84:
f3:27:d2:f1:17:66:6d:47:e3:03:27:4d:a0:dc:1e:c1:e6:b4:
10:8a:7c:87:99:d8:eb:46:a4:5b:18:8d:2c:64:58:a4:42:c2:
bb:51:db:39:d6:2b:6c:23:da:61:54:0a:7f:1c:e6:15:c9:dd:
50:3e:51:4b:e5:59:de:30:21:ea:cd:1b:4c:8d:b3:91:d0:c9:
5b:72:f4:51:1c:e9:55:07:69:b2:fe:f6:d2:ca:e6:5c:e6:df:
e0:bd:08:5a
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVwAoXP9rn5bicdGApcbBkAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZDU3NDQ3ZTM0MjBiODUzODc1YjZmYTQwMzcyYWFkZTMx
OTJjYTIwHhcNMjMwMTAyMDEwNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MzY2NzIzOGZlYjIxYmNiYmJlMWRhNGRjMzljMGYwODJhZDlmOWJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn61GtM2RmWY5gs2bkGfmbdyGApEb
Z61hkzEFNFCIxEoqwkz768ETYbi3MOlby3iTGJSrRluTM1aMQFJ7nJYv4VHwC+5z
N/Yo2iSwF92CYMb3k5vpm2IZbq7iUgQ/AAI1fYeCfu6PyRORQJTG34BtIrsqex1z
SyuIyteOzBbWHqGPSmaBOfVJ3gVtJfp48gzcNPxLEC6DSrCOOglm1wOdr67XBYq2
9GuP2bExT7q5d39Pt/KT3Inu9yUltYy2V+jB7Z703TNXbdYu9mgeOIGdYD8h5ir3
/Tza7FcdHO8ZEEERJblFE3Mo04PcVham/sWdlchoVBsHSVoCKMp77CzBPQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFFNmcjj+shvLu+HaTcOcDwgq2fm+MB8GA1UdIwQY
MBaAFMnVdEfjQguFOHW2+kA3Kq3jGSyiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTkt
NGUxOThmMGE2MDEzLzEvVTJaeU9QNnlHOHU3NGRwTnc1d1BDQ3JaLWI0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTktNGUxOThmMGE2MDEz
LzEveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQATVyYAwQA
vISqMA0GCSqGSIb3DQEBCwUAA4IBAQA4wXszx/VqiH6VXFzhvqD4C7FjPNZzqPMQ
QjEksTrKrM0EpVNn5Qz8zlPy6Y8e55IjNjs+KHj1TCAbpxDYM5+LUgD4r6v3md2h
4cMk4979Dve/npvVeJyC3Cr+cb+hh47yytyI8ngYN2W7rpUhpVrxvQtFKjF8BakE
qJXmE1ogdXkRoEuGajGGxYdXqhTyR3SeeC4gqz/HNfY14cioooiFAYTzJ9LxF2Zt
R+MDJ02g3B7B5rQQinyHmdjrRqRbGI0sZFikQsK7Uds51itsI9phVAp/HOYVyd1Q
PlFL5VneMCHqzRtMjbOR0MlbcvRRHOlVB2my/vbSyuZc5t/gvQha
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org