Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/YF8Y7VltajbPQVq2IX24OdXRbFA.roa
File: YF8Y7VltajbPQVq2IX24OdXRbFA.roa (raw, json)
Hash identifier: VDfIuevFzZ9jHsHfKpfxtFQQ0AnWot2lnYWdHy15cYs=
Subject key identifier: 60:5F:18:ED:59:6D:6A:36:CF:41:5A:B6:21:7D:B8:39:D5:D1:6C:50
Certificate issuer: /CN=f82554a856a422b061ae64c577630f91d408cd4a
Certificate serial: 018571F9EFD0EE7F7306E064E522460C36D4
Authority key identifier: F8:25:54:A8:56:A4:22:B0:61:AE:64:C5:77:63:0F:91:D4:08:CD:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-CVUqFakIrBhrmTFd2MPkdQIzUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/YF8Y7VltajbPQVq2IX24OdXRbFA.roa
Signing time: Mon 02 Jan 2023 10:14:43 +0000
ROA not before: Mon 02 Jan 2023 10:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199881
IP address blocks: 89.234.132.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:f9:ef:d0:ee:7f:73:06:e0:64:e5:22:46:0c:36:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f82554a856a422b061ae64c577630f91d408cd4a
Validity
Not Before: Jan 2 10:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=605f18ed596d6a36cf415ab6217db839d5d16c50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6c:78:60:c1:f0:73:09:f1:ad:ff:5a:3b:3c:
57:b3:35:49:0c:6b:11:07:92:9a:fd:5d:2a:5d:1f:
f4:a1:5c:d7:28:c1:fe:de:ea:91:96:a2:83:31:49:
59:a2:f8:a6:48:e4:47:5d:73:2b:fc:e3:f5:19:85:
8b:40:fd:a4:0e:e0:09:b3:df:e3:b6:e6:f7:71:65:
5e:cb:ba:d6:30:60:f8:9b:24:45:dc:39:5a:85:fe:
05:96:27:61:8e:c1:58:06:27:b9:f1:d5:17:2f:f6:
31:11:a6:3a:4c:b5:dd:51:82:20:69:fa:92:16:f6:
08:15:1f:44:0b:ef:81:c0:4c:03:5c:fa:7a:49:35:
6c:1b:6f:8c:d5:ca:7c:e4:1c:3e:70:e0:cf:ad:91:
6c:18:0c:47:77:55:a6:be:c8:43:bb:25:7a:69:72:
1a:61:21:b5:8e:fb:a7:ae:ba:b5:67:4a:c5:4c:f7:
b2:f2:33:89:f9:83:17:6d:b2:3b:8b:07:63:e3:66:
8d:18:f0:ab:7b:85:b6:57:a9:06:2d:68:08:64:31:
cc:13:fd:00:53:7b:c8:c1:17:0c:15:9b:c3:0c:51:
79:c1:e7:32:3d:5d:2d:20:e0:84:a9:cb:96:c5:49:
b4:ef:02:01:6b:bb:93:5b:86:6b:1c:1a:43:41:7b:
22:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:5F:18:ED:59:6D:6A:36:CF:41:5A:B6:21:7D:B8:39:D5:D1:6C:50
X509v3 Authority Key Identifier:
keyid:F8:25:54:A8:56:A4:22:B0:61:AE:64:C5:77:63:0F:91:D4:08:CD:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-CVUqFakIrBhrmTFd2MPkdQIzUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/YF8Y7VltajbPQVq2IX24OdXRbFA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9437a2-07e6-4e6a-aa3f-965d6d603bfa/1/1-CVUqFakIrBhrmTFd2MPkdQIzUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.234.132.0/24
Signature Algorithm: sha256WithRSAEncryption
34:7f:1d:35:a9:2f:3a:d9:65:2b:77:3e:22:52:db:85:eb:26:
47:27:00:b5:8f:35:ef:3d:00:4f:41:9e:8e:c4:f0:8a:f7:37:
d3:38:a0:8f:1e:4b:67:12:5b:a3:96:ac:63:7b:90:fc:16:22:
a3:1b:5d:28:f5:cd:61:00:93:0a:a6:28:32:ec:be:13:93:d2:
b1:ec:7f:7c:eb:50:d8:48:24:49:41:0c:31:cc:7d:ea:a6:83:
51:9e:f0:a9:63:1d:d0:ef:a7:8d:b8:e9:8d:4c:a4:6b:4b:6c:
52:0f:5d:0f:97:98:2e:1d:b2:87:8b:5d:82:d9:99:89:d3:26:
d0:0f:e6:c7:ee:30:eb:4a:0b:aa:f4:18:06:9a:56:13:6f:0c:
fd:c1:99:05:79:63:b6:24:35:f7:37:c6:ed:c4:e2:93:90:4b:
63:76:6b:97:b3:78:84:49:1e:4d:12:0d:ee:6e:9e:d2:a2:7a:
1c:83:80:fa:f5:33:85:a1:ef:f5:63:5b:e1:8a:1f:f6:f0:ca:
b2:0c:cd:a8:a6:fe:5d:dd:60:60:21:a7:59:14:a5:f5:bb:b4:
e2:11:ce:ab:36:c5:a8:be:99:0d:bf:3f:e3:b1:7d:dd:67:04:
7a:38:7c:e9:3b:8f:09:53:b6:e6:5f:e6:c6:25:11:19:66:37:
62:17:d9:0c
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYVx+e/Q7n9zBuBk5SJGDDbUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY4MjU1NGE4NTZhNDIyYjA2MWFlNjRjNTc3NjMwZjkxZDQw
OGNkNGEwHhcNMjMwMTAyMTAxNDQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MDVmMThlZDU5NmQ2YTM2Y2Y0MTVhYjYyMTdkYjgzOWQ1ZDE2YzUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtWx4YMHwcwnxrf9aOzxXszVJDGsR
B5Ka/V0qXR/0oVzXKMH+3uqRlqKDMUlZovimSORHXXMr/OP1GYWLQP2kDuAJs9/j
tub3cWVey7rWMGD4myRF3Dlahf4FlidhjsFYBie58dUXL/YxEaY6TLXdUYIgafqS
FvYIFR9EC++BwEwDXPp6STVsG2+M1cp85Bw+cODPrZFsGAxHd1WmvshDuyV6aXIa
YSG1jvunrrq1Z0rFTPey8jOJ+YMXbbI7iwdj42aNGPCre4W2V6kGLWgIZDHME/0A
U3vIwRcMFZvDDFF5wecyPV0tIOCEqcuWxUm07wIBa7uTW4ZrHBpDQXsi+QIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFGBfGO1ZbWo2z0FatiF9uDnV0WxQMB8GA1UdIwQY
MBaAFPglVKhWpCKwYa5kxXdjD5HUCM1KMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1DVlVxRmFrSXJCaHJtVEZkMk1Qa2RRSXpVby5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGYvOTQzN2EyLTA3ZTYtNGU2YS1hYTNm
LTk2NWQ2ZDYwM2JmYS8xL1lGOFk3Vmx0YWpiUFFWcTJJWDI0T2RYUmJGQS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNGYvOTQzN2EyLTA3ZTYtNGU2YS1hYTNmLTk2NWQ2ZDYwM2Jm
YS8xLzEtQ1ZVcUZha0lyQmhybVRGZDJNUGtkUUl6VW8uY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABZ6oQw
DQYJKoZIhvcNAQELBQADggEBADR/HTWpLzrZZSt3PiJS24XrJkcnALWPNe89AE9B
no7E8Ir3N9M4oI8eS2cSW6OWrGN7kPwWIqMbXSj1zWEAkwqmKDLsvhOT0rHsf3zr
UNhIJElBDDHMfeqmg1Ge8KljHdDvp4246Y1MpGtLbFIPXQ+XmC4dsoeLXYLZmYnT
JtAP5sfuMOtKC6r0GAaaVhNvDP3BmQV5Y7YkNfc3xu3E4pOQS2N2a5ezeIRJHk0S
De5untKiehyDgPr1M4Wh7/VjW+GKH/bwyrIMzaim/l3dYGAhp1kUpfW7tOIRzqs2
xai+mQ2/P+Oxfd1nBHo4fOk7jwlTtuZf5sYlERlmN2IX2Qw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:25 2024 by rpki-client on console-ams.rpki-client.org