Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/yjLj904PWoTGXLjD5WNwskXlDdw.roa
File: yjLj904PWoTGXLjD5WNwskXlDdw.roa (raw, json)
Hash identifier: 8J14D1+tIxQd7Qf8Ufva170IOhW7KOPXRGUhZrEu6EQ=
Subject key identifier: CA:32:E3:F7:4E:0F:5A:84:C6:5C:B8:C3:E5:63:70:B2:45:E5:0D:DC
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018A21159292895A888EF90DE2C7BD1D9CC4
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/yjLj904PWoTGXLjD5WNwskXlDdw.roa
Signing time: Wed 23 Aug 2023 06:29:36 +0000
ROA not before: Wed 23 Aug 2023 06:29:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 36113
IP address blocks: 45.88.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Sep 2023 11:19:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:21:15:92:92:89:5a:88:8e:f9:0d:e2:c7:bd:1d:9c:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Aug 23 06:29:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ca32e3f74e0f5a84c65cb8c3e56370b245e50ddc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:cf:ac:88:b3:f8:97:8b:f7:50:4a:64:79:74:
d1:5b:e2:0b:af:dd:46:2c:3d:08:fd:87:53:01:cd:
d3:62:e5:e2:76:3f:e4:f1:c4:5c:02:15:0b:88:7e:
f9:62:62:bd:e1:18:38:a7:c4:b1:b1:8d:e7:30:18:
dc:2e:73:48:04:4f:64:80:5b:de:97:8e:9e:fc:f7:
4f:b3:84:40:6a:ff:bd:81:9e:49:a6:8d:43:bf:c9:
7f:d0:7e:04:f8:e4:38:81:38:a6:f1:90:bf:30:25:
c0:4e:ff:84:97:a5:24:38:ca:a8:6d:39:ea:c3:bd:
71:1a:87:07:89:79:24:1b:61:7b:26:7c:67:23:fd:
61:2b:47:1b:a2:f4:76:60:b0:29:f2:a9:9f:19:dd:
d0:6d:63:fd:81:42:df:03:2e:75:cd:d9:93:0f:77:
f5:97:f8:38:07:27:e9:20:6f:1a:64:38:fb:a4:b1:
bc:e0:53:ac:77:5c:e8:51:e4:1d:e9:c2:38:6a:0f:
e9:8a:d3:12:8f:da:33:92:9b:4c:f4:d2:ff:ca:bf:
f4:87:3e:24:5c:4f:71:2e:31:1c:29:ce:77:7c:42:
f4:e3:1d:49:42:8f:40:a6:e2:db:80:14:b5:51:98:
e7:23:8e:99:26:51:4f:91:f3:62:38:dd:ea:9e:1f:
ed:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:32:E3:F7:4E:0F:5A:84:C6:5C:B8:C3:E5:63:70:B2:45:E5:0D:DC
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/yjLj904PWoTGXLjD5WNwskXlDdw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.14.0/24
Signature Algorithm: sha256WithRSAEncryption
96:24:cc:7c:e7:89:c2:82:ba:08:27:c7:d3:d9:64:a4:1f:53:
88:ee:98:2d:95:1e:86:ef:01:72:a3:b8:e2:3b:ad:d3:86:87:
8c:1d:f9:fb:90:5c:1a:f1:aa:1d:88:2b:ac:83:90:f7:2a:61:
08:48:22:68:3a:66:21:bf:b7:44:05:a6:40:fa:8c:f1:48:ef:
47:7d:3a:c9:0c:82:b2:73:a3:b0:b7:5c:ef:66:10:10:f0:00:
6a:12:4d:15:76:3d:e2:fd:81:13:38:50:fb:8b:72:0e:f7:c3:
7e:80:e2:7e:e3:3e:02:c1:d4:43:75:b6:92:8b:1b:63:d9:69:
35:d6:e2:45:67:19:cb:86:1e:71:21:1b:bb:ee:ee:88:00:4d:
0b:1d:d5:33:93:3b:9a:6a:c6:9e:01:5b:6f:1e:5d:db:04:f7:
03:b5:e6:01:a4:f4:57:5d:8b:8a:c7:bb:15:2e:7e:8a:38:0d:
94:ad:a5:11:b4:e0:45:b9:e3:03:86:2d:fa:95:8b:50:60:5f:
39:6f:35:bf:d7:58:78:f2:c7:0a:c5:ff:23:72:ca:48:64:a7:
ec:c3:78:ac:85:6e:a9:96:71:13:fa:68:68:db:a8:9c:69:32:
9d:a2:9b:8d:86:aa:21:90:6a:a9:af:57:b1:bf:d2:3a:e7:ce:
56:ff:d5:cf
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYohFZKSiVqIjvkN4se9HZzEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjMwODIzMDYyOTM2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYTMyZTNmNzRlMGY1YTg0YzY1Y2I4YzNlNTYzNzBiMjQ1ZTUwZGRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh8+siLP4l4v3UEpkeXTRW+ILr91G
LD0I/YdTAc3TYuXidj/k8cRcAhULiH75YmK94Rg4p8SxsY3nMBjcLnNIBE9kgFve
l46e/PdPs4RAav+9gZ5Jpo1Dv8l/0H4E+OQ4gTim8ZC/MCXATv+El6UkOMqobTnq
w71xGocHiXkkG2F7JnxnI/1hK0cbovR2YLAp8qmfGd3QbWP9gULfAy51zdmTD3f1
l/g4ByfpIG8aZDj7pLG84FOsd1zoUeQd6cI4ag/pitMSj9ozkptM9NL/yr/0hz4k
XE9xLjEcKc53fEL04x1JQo9ApuLbgBS1UZjnI46ZJlFPkfNiON3qnh/tRwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMoy4/dOD1qExly4w+VjcLJF5Q3cMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEveWpMajkwNFBXb1RHWExqRDVXTndza1hsRGR3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVgOMA0G
CSqGSIb3DQEBCwUAA4IBAQCWJMx854nCgroIJ8fT2WSkH1OI7pgtlR6G7wFyo7ji
O63ThoeMHfn7kFwa8aodiCusg5D3KmEISCJoOmYhv7dEBaZA+ozxSO9HfTrJDIKy
c6Owt1zvZhAQ8ABqEk0Vdj3i/YETOFD7i3IO98N+gOJ+4z4CwdRDdbaSixtj2Wk1
1uJFZxnLhh5xIRu77u6IAE0LHdUzkzuaasaeAVtvHl3bBPcDteYBpPRXXYuKx7sV
Ln6KOA2UraURtOBFueMDhi36lYtQYF85bzW/11h48scKxf8jcspIZKfsw3ishW6p
lnET+mho26icaTKdopuNhqohkGqpr1exv9I6585W/9XP
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:11 2024 by rpki-client on console-fra.rpki-client.org