Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/yRd119S6z9YKqr_rlCteJ5zCvD8.roa
File: yRd119S6z9YKqr_rlCteJ5zCvD8.roa (raw, json)
Hash identifier: cBy8vYIUqjRiSNdLYTWXJNapxemYfYpq2LLMI5itNDE=
Subject key identifier: C9:17:75:D7:D4:BA:CF:D6:0A:AA:BF:EB:94:2B:5E:27:9C:C2:BC:3F
Certificate issuer: /CN=a590ef23b456c9db20d30742932b017fc5724e56
Certificate serial: 01857169C0D526C18BD959BCF9701F196EDC
Authority key identifier: A5:90:EF:23:B4:56:C9:DB:20:D3:07:42:93:2B:01:7F:C5:72:4E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pZDvI7RWydsg0wdCkysBf8VyTlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/yRd119S6z9YKqr_rlCteJ5zCvD8.roa
Signing time: Mon 02 Jan 2023 07:37:14 +0000
ROA not before: Mon 02 Jan 2023 07:37:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43804
IP address blocks: 193.200.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:c0:d5:26:c1:8b:d9:59:bc:f9:70:1f:19:6e:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a590ef23b456c9db20d30742932b017fc5724e56
Validity
Not Before: Jan 2 07:37:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c91775d7d4bacfd60aaabfeb942b5e279cc2bc3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:40:80:d4:fd:a5:85:35:79:e6:f6:e6:41:2b:
a4:21:e6:4a:4e:08:22:67:a9:c1:16:33:c6:41:be:
4d:96:f4:47:00:b7:72:0f:13:ed:ff:4f:bc:43:40:
ca:b8:96:d8:70:99:3c:4a:e5:66:8d:1f:9c:73:c9:
7e:fa:c4:f6:19:f6:fd:94:b6:de:65:89:10:a1:53:
6d:29:06:13:cd:ce:a1:e3:6e:76:94:49:b2:7d:e5:
7a:de:fe:e5:98:66:f8:18:bf:d8:bf:d4:79:8b:f1:
89:f1:c6:b4:92:3e:17:c9:0b:28:a8:df:d4:13:38:
8c:24:53:c7:22:03:3e:97:e8:03:2d:dd:38:9c:4e:
f0:ed:a5:45:15:2e:8d:60:96:d8:fa:04:67:d7:8c:
fc:f1:9e:6e:35:92:3e:ed:5a:9b:be:69:a7:95:79:
30:1a:a2:b5:8d:88:2d:cd:4f:b7:6c:92:3d:18:4f:
66:48:2b:2d:92:16:9e:86:62:e0:30:4d:ad:0b:4c:
0d:5e:0a:2c:23:02:6d:aa:12:c8:9e:5d:24:3b:37:
ae:76:15:5f:2b:db:e4:ec:d5:79:29:3e:58:3c:85:
b5:46:63:ab:da:71:eb:55:cd:a9:e4:26:bc:5c:b8:
92:c0:e8:3f:ef:6d:55:b6:57:e3:62:e6:af:a9:84:
14:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:17:75:D7:D4:BA:CF:D6:0A:AA:BF:EB:94:2B:5E:27:9C:C2:BC:3F
X509v3 Authority Key Identifier:
keyid:A5:90:EF:23:B4:56:C9:DB:20:D3:07:42:93:2B:01:7F:C5:72:4E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pZDvI7RWydsg0wdCkysBf8VyTlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/yRd119S6z9YKqr_rlCteJ5zCvD8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.203.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:d0:86:62:8b:eb:c4:7c:45:68:49:ff:c7:5c:cf:00:cf:21:
81:07:94:ad:bf:f3:7e:3d:3f:7a:89:67:69:81:bd:ef:a2:09:
4f:6f:60:78:e9:4d:1f:f1:74:ed:bf:7f:88:f0:06:7b:84:71:
87:d9:0b:86:1a:db:eb:44:03:a6:cc:96:33:c6:c6:25:85:2a:
c8:cd:1a:fb:7a:7d:bc:ad:39:91:5b:8c:fb:09:d3:93:17:19:
6c:ba:9e:72:6d:31:06:33:f7:0b:32:f4:86:73:b3:1d:64:ed:
7c:36:5a:05:4a:d2:00:0f:6c:e4:4c:69:90:6b:d8:1f:eb:71:
ff:86:53:e8:de:55:8a:68:5a:bb:2f:37:43:23:7f:b9:ab:3b:
d9:9a:24:66:62:ae:fd:b0:a3:cc:80:04:0b:c4:4d:04:6e:22:
32:d0:37:7d:ef:ce:78:19:0c:14:58:86:cd:6f:6e:42:e0:e9:
0f:f0:22:aa:9a:10:5d:b0:bf:f5:e7:a9:0c:54:df:25:ac:a2:
36:e0:39:6e:3e:00:1a:88:a6:b9:3d:50:13:23:17:d3:71:e6:
b9:37:26:ef:f6:a2:e8:25:f3:4e:79:7e:93:82:53:b0:7d:7b:
e9:8d:c6:f9:73:ed:2f:6c:e5:b9:a9:ca:9c:2e:45:c1:9d:ec:
88:c7:03:e3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxacDVJsGL2Vm8+XAfGW7cMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1OTBlZjIzYjQ1NmM5ZGIyMGQzMDc0MjkzMmIwMTdmYzU3
MjRlNTYwHhcNMjMwMTAyMDczNzE0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjOTE3NzVkN2Q0YmFjZmQ2MGFhYWJmZWI5NDJiNWUyNzljYzJiYzNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ECA1P2lhTV55vbmQSukIeZKTggi
Z6nBFjPGQb5NlvRHALdyDxPt/0+8Q0DKuJbYcJk8SuVmjR+cc8l++sT2Gfb9lLbe
ZYkQoVNtKQYTzc6h4252lEmyfeV63v7lmGb4GL/Yv9R5i/GJ8ca0kj4XyQsoqN/U
EziMJFPHIgM+l+gDLd04nE7w7aVFFS6NYJbY+gRn14z88Z5uNZI+7VqbvmmnlXkw
GqK1jYgtzU+3bJI9GE9mSCstkhaehmLgME2tC0wNXgosIwJtqhLInl0kOzeudhVf
K9vk7NV5KT5YPIW1RmOr2nHrVc2p5Ca8XLiSwOg/721VtlfjYuavqYQU1QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMkXddfUus/WCqq/65QrXiecwrw/MB8GA1UdIwQY
MBaAFKWQ7yO0VsnbINMHQpMrAX/Fck5WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFpEdkk3Uld5ZHNnMHdkQ2t5c0JmOFZ5VGxZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC8zMTg1YzQtZDcyNC00MzVkLTgyNzct
MTUyZDIwNGViZmEzLzEveVJkMTE5UzZ6OVlLcXJfcmxDdGVKNXpDdkQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC8zMTg1YzQtZDcyNC00MzVkLTgyNzctMTUyZDIwNGViZmEz
LzEvcFpEdkk3Uld5ZHNnMHdkQ2t5c0JmOFZ5VGxZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwcjLMA0G
CSqGSIb3DQEBCwUAA4IBAQA/0IZii+vEfEVoSf/HXM8AzyGBB5Stv/N+PT96iWdp
gb3voglPb2B46U0f8XTtv3+I8AZ7hHGH2QuGGtvrRAOmzJYzxsYlhSrIzRr7en28
rTmRW4z7CdOTFxlsup5ybTEGM/cLMvSGc7MdZO18NloFStIAD2zkTGmQa9gf63H/
hlPo3lWKaFq7LzdDI3+5qzvZmiRmYq79sKPMgAQLxE0EbiIy0Dd97854GQwUWIbN
b25C4OkP8CKqmhBdsL/156kMVN8lrKI24DluPgAaiKa5PVATIxfTcea5Nybv9qLo
JfNOeX6TglOwfXvpjcb5c+0vbOW5qcqcLkXBneyIxwPj
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:03 2024 by rpki-client on console-ams.rpki-client.org