Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/WByTz2DtQBodLL7nEbrxcVAULtg.roa
File: WByTz2DtQBodLL7nEbrxcVAULtg.roa (raw, json)
Hash identifier: Hpaz1d3uJv8v/TjZaJjhw8n+v9DKZGDOMfMGf6wBcEA=
Subject key identifier: 58:1C:93:CF:60:ED:40:1A:1D:2C:BE:E7:11:BA:F1:71:50:14:2E:D8
Certificate issuer: /CN=d98247d3f81472dbba06dbea9bd19c785d18babe
Certificate serial: 018D6115352A4B63255ECA18A48AEA9CC58F
Authority key identifier: D9:82:47:D3:F8:14:72:DB:BA:06:DB:EA:9B:D1:9C:78:5D:18:BA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YJH0_gUctu6Btvqm9GceF0Yur4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/WByTz2DtQBodLL7nEbrxcVAULtg.roa
Signing time: Wed 31 Jan 2024 19:53:16 +0000
ROA not before: Wed 31 Jan 2024 19:53:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61135
IP address blocks: 194.169.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Feb 2024 11:23:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:61:15:35:2a:4b:63:25:5e:ca:18:a4:8a:ea:9c:c5:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d98247d3f81472dbba06dbea9bd19c785d18babe
Validity
Not Before: Jan 31 19:53:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=581c93cf60ed401a1d2cbee711baf17150142ed8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:36:a5:e0:13:ea:2a:f3:33:79:70:ad:26:43:
5e:cd:17:53:f2:d2:9c:38:24:af:19:5a:b8:86:24:
18:6a:1f:86:ed:82:26:38:85:e0:e4:11:09:ad:ed:
7f:18:e0:ce:26:3b:85:0b:f4:e5:c1:f0:10:13:52:
b5:de:81:68:15:03:76:91:e1:55:31:fc:20:41:f1:
da:41:ef:e1:51:98:4f:8c:82:92:0c:fe:ce:45:c2:
22:16:7c:98:b0:ff:bc:44:11:fd:17:9b:44:1c:ff:
cb:5f:9b:b9:0a:82:3d:12:58:41:17:3d:a6:8e:fa:
d1:57:0f:eb:78:1e:94:d6:46:88:d0:4f:18:7a:f3:
3a:38:c7:8e:33:f9:b4:3f:56:ff:68:23:21:18:88:
de:db:cf:cd:63:af:dc:6d:0c:c4:82:62:9b:48:50:
87:bc:f3:02:e6:79:df:7e:ca:00:24:b8:0f:49:b7:
1b:14:83:04:7b:b7:2a:c4:e6:3c:97:1a:52:94:68:
c5:3a:72:15:a3:b9:dc:3a:07:44:fa:47:6b:ae:ca:
1d:74:db:eb:21:dd:92:cb:c6:21:13:b5:f3:b9:b9:
4b:1f:0a:f4:e5:cb:74:79:5f:18:b6:78:40:89:5b:
1e:db:88:55:b0:ae:2d:22:2d:f5:09:58:f6:69:2e:
c5:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:1C:93:CF:60:ED:40:1A:1D:2C:BE:E7:11:BA:F1:71:50:14:2E:D8
X509v3 Authority Key Identifier:
keyid:D9:82:47:D3:F8:14:72:DB:BA:06:DB:EA:9B:D1:9C:78:5D:18:BA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YJH0_gUctu6Btvqm9GceF0Yur4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/WByTz2DtQBodLL7nEbrxcVAULtg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/2YJH0_gUctu6Btvqm9GceF0Yur4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.169.48.0/24
Signature Algorithm: sha256WithRSAEncryption
95:f7:f1:cf:11:91:93:7e:ce:2b:5d:b2:f9:1a:f6:69:bf:31:
9a:99:91:09:be:b6:23:3c:98:6f:a0:47:85:7d:40:39:22:b7:
44:c6:50:79:1a:9b:67:18:db:6e:b2:8d:49:f7:d5:70:66:f9:
b9:e6:72:99:25:af:b9:31:15:f0:9b:ab:6b:1a:95:d5:07:50:
1f:2c:d4:27:ac:dc:f5:f8:24:48:66:fa:d1:20:e7:87:74:33:
08:4e:15:a8:0e:4b:a2:b6:27:4f:88:ca:2c:bc:df:d3:e9:f7:
6d:49:ab:19:ee:19:8f:9d:ce:6c:35:64:f8:5b:7a:6e:85:fb:
f6:74:85:b8:4b:82:51:2f:a6:46:db:84:ce:a5:45:57:b4:28:
bd:8d:e4:c8:a4:9c:47:f5:26:b6:d3:98:69:59:25:d0:d7:46:
df:aa:fa:9a:fd:5f:0f:66:53:2a:89:c8:ad:39:82:af:71:94:
05:69:20:94:7b:d4:fa:88:ce:49:4e:09:0d:d5:8b:b9:f2:d0:
39:26:2b:b2:38:87:24:a7:8b:90:18:c7:23:7e:fe:2e:48:ab:
92:17:09:62:3b:29:9f:c5:87:5a:6b:55:d9:42:fd:6b:4b:03:
c0:20:f0:75:99:70:9d:4e:ab:ce:6e:d7:40:60:4a:0d:aa:31:
47:d6:10:84
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY1hFTUqS2MlXsoYpIrqnMWPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5ODI0N2QzZjgxNDcyZGJiYTA2ZGJlYTliZDE5Yzc4NWQx
OGJhYmUwHhcNMjQwMTMxMTk1MzE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ODFjOTNjZjYwZWQ0MDFhMWQyY2JlZTcxMWJhZjE3MTUwMTQyZWQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAujal4BPqKvMzeXCtJkNezRdT8tKc
OCSvGVq4hiQYah+G7YImOIXg5BEJre1/GODOJjuFC/TlwfAQE1K13oFoFQN2keFV
MfwgQfHaQe/hUZhPjIKSDP7ORcIiFnyYsP+8RBH9F5tEHP/LX5u5CoI9ElhBFz2m
jvrRVw/reB6U1kaI0E8YevM6OMeOM/m0P1b/aCMhGIje28/NY6/cbQzEgmKbSFCH
vPMC5nnffsoAJLgPSbcbFIMEe7cqxOY8lxpSlGjFOnIVo7ncOgdE+kdrrsoddNvr
Id2Sy8YhE7XzublLHwr05ct0eV8YtnhAiVse24hVsK4tIi31CVj2aS7FGQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFgck89g7UAaHSy+5xG68XFQFC7YMB8GA1UdIwQY
MBaAFNmCR9P4FHLbugbb6pvRnHhdGLq+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMllKSDBfZ1VjdHU2QnR2cW05R2NlRjBZdXI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC82ZGJjOTktYmZhOS00ZWY3LWE3OTgt
YTMwMzI2MTU2NjBjLzEvV0J5VHoyRHRRQm9kTEw3bkVicnhjVkFVTHRnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC82ZGJjOTktYmZhOS00ZWY3LWE3OTgtYTMwMzI2MTU2NjBj
LzEvMllKSDBfZ1VjdHU2QnR2cW05R2NlRjBZdXI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwqkwMA0G
CSqGSIb3DQEBCwUAA4IBAQCV9/HPEZGTfs4rXbL5GvZpvzGamZEJvrYjPJhvoEeF
fUA5IrdExlB5GptnGNtuso1J99VwZvm55nKZJa+5MRXwm6trGpXVB1AfLNQnrNz1
+CRIZvrRIOeHdDMIThWoDkuitidPiMosvN/T6fdtSasZ7hmPnc5sNWT4W3puhfv2
dIW4S4JRL6ZG24TOpUVXtCi9jeTIpJxH9Sa205hpWSXQ10bfqvqa/V8PZlMqicit
OYKvcZQFaSCUe9T6iM5JTgkN1Yu58tA5JiuyOIckp4uQGMcjfv4uSKuSFwliOymf
xYdaa1XZQv1rSwPAIPB1mXCdTqvObtdAYEoNqjFH1hCE
-----END CERTIFICATE-----
Generated at Mon Feb 5 14:22:07 2024 by rpki-client on console-ams.rpki-client.org