Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/yGp6OF55umWKI1kroAcIPL4MCK4.roa
File: yGp6OF55umWKI1kroAcIPL4MCK4.roa (raw, json)
Hash identifier: 4YOli20euI0rtR20sLsWCXy2PbF794LzuXZHv4aOplA=
Subject key identifier: C8:6A:7A:38:5E:79:BA:65:8A:23:59:2B:A0:07:08:3C:BE:0C:08:AE
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0193CF52B0B3CCF7DAB938E322DDDC465CA0
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/yGp6OF55umWKI1kroAcIPL4MCK4.roa
Signing time: Mon 16 Dec 2024 11:55:23 +0000
ROA not before: Mon 16 Dec 2024 11:55:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211373
IP address blocks: 94.177.145.0/24 maxlen: 24
212.192.6.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Dec 2024 07:48:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:cf:52:b0:b3:cc:f7:da:b9:38:e3:22:dd:dc:46:5c:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Dec 16 11:55:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c86a7a385e79ba658a23592ba007083cbe0c08ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d2:17:bb:96:fa:e4:16:92:19:87:2b:dd:60:
1b:f4:62:9e:5b:bf:17:c1:23:16:a4:89:68:b4:8c:
2c:5b:47:69:b3:61:86:fc:a9:10:20:e3:bf:3a:8a:
02:be:07:3a:d2:d6:6e:6f:94:89:cf:97:ad:ef:61:
af:97:96:6e:cd:94:cc:0f:2b:bd:50:56:97:9f:d6:
05:ab:d2:f2:6f:a1:cd:02:cd:c3:c4:f2:06:25:0b:
62:47:e4:4e:ea:30:0a:5e:03:57:f6:bd:23:9a:24:
83:bb:91:d3:c7:80:32:0a:3c:de:01:96:af:ff:e9:
2f:9a:7c:43:71:4f:73:fc:23:9b:8b:34:46:4e:df:
ce:6a:06:93:4b:14:ce:df:31:52:92:f5:86:6a:92:
c7:e8:18:4b:40:76:11:8e:f6:e2:ff:84:92:67:e8:
31:92:e3:d8:bf:31:ad:cb:b2:d3:b0:46:88:4f:19:
60:99:ae:7c:07:d6:4b:dc:e7:33:03:9d:30:ad:d0:
f9:f4:d5:67:a4:d5:3b:e4:3e:e4:ac:d1:df:46:67:
a1:3b:7d:3b:c1:b8:eb:03:a7:4a:a8:9e:f5:0f:1a:
6e:f8:02:1c:63:37:f2:1a:e6:2b:d5:2f:5d:7b:cc:
7f:e1:23:52:fa:90:94:12:60:74:ed:9e:34:07:22:
23:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:6A:7A:38:5E:79:BA:65:8A:23:59:2B:A0:07:08:3C:BE:0C:08:AE
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/yGp6OF55umWKI1kroAcIPL4MCK4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.177.145.0/24
212.192.6.0/24
Signature Algorithm: sha256WithRSAEncryption
66:a3:27:1c:06:0a:f6:92:17:a2:bf:df:45:12:30:5a:79:db:
46:e2:fb:cb:3c:2b:38:1b:67:b6:2e:e0:32:48:8f:c6:09:e5:
fd:da:a3:df:b3:23:8d:4f:69:2c:5b:dd:9c:97:5b:a8:47:49:
25:92:3d:4e:e1:9d:9a:10:b3:61:01:e9:42:bd:25:50:38:1d:
f9:a1:2c:bc:a7:9c:c5:6a:ce:94:83:4f:5f:e3:5a:7d:44:ba:
4d:e1:52:ed:af:e0:57:41:fc:73:6c:2d:73:66:8b:c0:04:6d:
30:73:04:0a:ba:82:8e:b7:60:80:28:95:0c:47:ab:41:d6:64:
5f:11:09:2b:82:56:eb:37:d6:39:39:30:bd:53:0f:4a:84:8d:
54:5d:07:c7:38:33:7c:bd:70:9c:87:b2:49:2e:b6:dc:96:23:
fc:e7:4c:29:66:ba:5e:ca:14:9a:db:9f:78:43:cb:ec:e3:b0:
d1:17:f0:25:d7:ab:5e:f1:72:e2:28:7f:ce:f0:ae:11:ea:f3:
8d:61:f7:a7:e5:6d:3c:13:1f:32:48:3b:73:03:f5:30:f2:a6:
8d:85:de:6f:4b:d8:61:3a:17:42:81:fa:8e:53:c4:14:97:25:
0e:71:89:70:c9:ae:99:b6:9e:14:28:09:37:63:a1:5a:a0:1e:
9f:a8:57:40
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZPPUrCzzPfauTjjIt3cRlygMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjQxMjE2MTE1NTIzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjODZhN2EzODVlNzliYTY1OGEyMzU5MmJhMDA3MDgzY2JlMGMwOGFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqNIXu5b65BaSGYcr3WAb9GKeW78X
wSMWpIlotIwsW0dps2GG/KkQIOO/OooCvgc60tZub5SJz5et72Gvl5ZuzZTMDyu9
UFaXn9YFq9Lyb6HNAs3DxPIGJQtiR+RO6jAKXgNX9r0jmiSDu5HTx4AyCjzeAZav
/+kvmnxDcU9z/CObizRGTt/OagaTSxTO3zFSkvWGapLH6BhLQHYRjvbi/4SSZ+gx
kuPYvzGty7LTsEaITxlgma58B9ZL3OczA50wrdD59NVnpNU75D7krNHfRmehO307
wbjrA6dKqJ71Dxpu+AIcYzfyGuYr1S9de8x/4SNS+pCUEmB07Z40ByIjcwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFMhqejheebpliiNZK6AHCDy+DAiuMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEveUdwNk9GNTV1bVdLSTFrcm9BY0lQTDRNQ0s0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAXrGRAwQA
1MAGMA0GCSqGSIb3DQEBCwUAA4IBAQBmoyccBgr2kheiv99FEjBaedtG4vvLPCs4
G2e2LuAySI/GCeX92qPfsyONT2ksW92cl1uoR0klkj1O4Z2aELNhAelCvSVQOB35
oSy8p5zFas6Ug09f41p9RLpN4VLtr+BXQfxzbC1zZovABG0wcwQKuoKOt2CAKJUM
R6tB1mRfEQkrglbrN9Y5OTC9Uw9KhI1UXQfHODN8vXCch7JJLrbcliP850wpZrpe
yhSa2594Q8vs47DRF/Al16te8XLiKH/O8K4R6vONYfen5W08Ex8ySDtzA/Uw8qaN
hd5vS9hhOhdCgfqOU8QUlyUOcYlwya6Ztp4UKAk3Y6FaoB6fqFdA
-----END CERTIFICATE-----
Generated at Fri Mar 14 11:42:42 2025 by rpki-client