Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/YaoJL_bcATLzr8ez9b_OeHlYQtc.roa
File: YaoJL_bcATLzr8ez9b_OeHlYQtc.roa (raw, json)
Hash identifier: 3gsjw9n6Y3H+Jgsd07H4TY0MfuPrbrMtHpbDRivOFOI=
Subject key identifier: 61:AA:09:2F:F6:DC:01:32:F3:AF:C7:B3:F5:BF:CE:78:79:58:42:D7
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018A6FC8061F5B88B58D164420DBD7E2482C
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/YaoJL_bcATLzr8ez9b_OeHlYQtc.roa
Signing time: Thu 07 Sep 2023 13:14:54 +0000
ROA not before: Thu 07 Sep 2023 13:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48678
IP address blocks: 77.92.153.0/24 maxlen: 24
188.132.185.0/24 maxlen: 24
78.135.66.0/24 maxlen: 24
188.132.201.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Oct 2023 18:55:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6f:c8:06:1f:5b:88:b5:8d:16:44:20:db:d7:e2:48:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Sep 7 13:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=61aa092ff6dc0132f3afc7b3f5bfce78795842d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:de:7f:3b:06:d3:0f:d0:25:d6:5a:5f:e3:7b:
90:d7:e4:25:c8:96:de:95:b3:71:0b:59:d9:1e:b8:
8a:08:4d:b9:e6:b6:94:20:9f:53:ae:3c:d0:f8:60:
0e:d0:aa:cf:28:f1:f3:ba:9b:d1:72:ea:5d:e5:89:
ee:b4:be:ee:23:4f:67:cc:d8:17:ea:04:7b:f8:2f:
5e:18:fe:44:c4:15:e2:12:9b:4f:b7:ce:0c:09:b7:
06:d1:4a:94:a3:61:40:9e:53:4b:59:01:8a:f5:11:
fc:a0:06:a4:31:46:56:cd:6c:2c:fc:74:de:83:62:
5d:60:23:a4:1f:cd:ab:4c:5c:e6:13:e1:b0:0a:f8:
5b:55:e4:c4:03:c5:25:de:80:c0:3f:b8:cb:78:ec:
aa:6e:ac:b6:ff:57:c1:56:df:3c:7c:d1:d2:a5:df:
35:11:74:43:5a:40:1c:20:da:c3:da:7f:d4:1a:f5:
c0:dd:10:f5:8e:7b:21:f5:87:20:36:54:35:7d:eb:
83:49:d7:92:99:b2:91:45:1f:89:1a:9a:f5:7b:11:
70:83:c9:45:81:20:9e:81:16:af:29:81:6c:ae:68:
96:63:99:e2:86:5f:d2:45:f8:f0:09:c0:e6:85:e1:
7b:6d:b5:9a:bf:69:39:07:ae:f8:6d:ab:0a:59:c4:
d5:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:AA:09:2F:F6:DC:01:32:F3:AF:C7:B3:F5:BF:CE:78:79:58:42:D7
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/YaoJL_bcATLzr8ez9b_OeHlYQtc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.92.153.0/24
78.135.66.0/24
188.132.185.0/24
188.132.201.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:23:4c:54:5d:ca:03:3c:75:f9:ac:82:93:94:99:63:47:66:
67:00:15:eb:b3:6d:c6:8f:03:40:68:8a:05:1b:c2:dd:47:06:
21:72:25:16:0e:62:0a:f3:25:8b:d2:19:4a:d3:f9:e2:d2:f1:
b7:7c:17:4e:e0:b0:1f:44:23:cd:b9:a4:53:ac:76:30:b7:1e:
1e:36:13:ee:66:20:a1:e9:6a:f2:29:5a:b7:30:ca:65:a4:f7:
83:ce:43:fe:05:12:a2:21:24:f9:9b:1d:31:c3:64:b0:50:28:
52:43:67:4b:33:04:c5:fa:96:86:cd:09:40:ee:f8:e2:a8:b2:
4d:92:f6:ec:9b:58:6c:79:1b:b0:29:cf:00:4c:41:50:f3:f4:
b3:fe:96:41:4c:e0:fc:2c:11:43:b6:84:7c:95:c4:54:44:18:
66:72:48:78:be:8f:a4:e2:b5:c8:12:88:df:38:93:cc:e9:4c:
9b:6b:bb:7b:7a:9e:0d:70:86:05:21:d7:f2:13:10:79:4c:64:
0e:36:48:2e:09:5f:29:5c:a3:be:2b:7d:8e:cf:a5:dd:ca:bd:
a2:68:77:7c:a3:d4:84:63:d5:8e:c1:b8:4a:3f:ab:88:6d:59:
5a:25:38:1f:b2:25:f6:97:a8:20:dc:67:21:a3:5c:95:01:64:
71:12:08:c8
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAYpvyAYfW4i1jRZEINvX4kgsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZDU3NDQ3ZTM0MjBiODUzODc1YjZmYTQwMzcyYWFkZTMx
OTJjYTIwHhcNMjMwOTA3MTMxNDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MWFhMDkyZmY2ZGMwMTMyZjNhZmM3YjNmNWJmY2U3ODc5NTg0MmQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvd5/OwbTD9Al1lpf43uQ1+QlyJbe
lbNxC1nZHriKCE255raUIJ9TrjzQ+GAO0KrPKPHzupvRcupd5YnutL7uI09nzNgX
6gR7+C9eGP5ExBXiEptPt84MCbcG0UqUo2FAnlNLWQGK9RH8oAakMUZWzWws/HTe
g2JdYCOkH82rTFzmE+GwCvhbVeTEA8Ul3oDAP7jLeOyqbqy2/1fBVt88fNHSpd81
EXRDWkAcINrD2n/UGvXA3RD1jnsh9YcgNlQ1feuDSdeSmbKRRR+JGpr1exFwg8lF
gSCegRavKYFsrmiWY5nihl/SRfjwCcDmheF7bbWav2k5B674basKWcTVEwIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFGGqCS/23AEy86/Hs/W/znh5WELXMB8GA1UdIwQY
MBaAFMnVdEfjQguFOHW2+kA3Kq3jGSyiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTkt
NGUxOThmMGE2MDEzLzEvWWFvSkxfYmNBVEx6cjhlejliX09lSGxZUXRjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTktNGUxOThmMGE2MDEz
LzEveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQATVyZAwQA
TodCAwQAvIS5AwQAvITJMA0GCSqGSIb3DQEBCwUAA4IBAQBaI0xUXcoDPHX5rIKT
lJljR2ZnABXrs23GjwNAaIoFG8LdRwYhciUWDmIK8yWL0hlK0/ni0vG3fBdO4LAf
RCPNuaRTrHYwtx4eNhPuZiCh6WryKVq3MMplpPeDzkP+BRKiIST5mx0xw2SwUChS
Q2dLMwTF+paGzQlA7vjiqLJNkvbsm1hseRuwKc8ATEFQ8/Sz/pZBTOD8LBFDtoR8
lcRURBhmckh4vo+k4rXIEojfOJPM6Uyba7t7ep4NcIYFIdfyExB5TGQONkguCV8p
XKO+K32Oz6Xdyr2iaHd8o9SEY9WOwbhKP6uIbVlaJTgfsiX2l6gg3Gcho1yVAWRx
EgjI
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org