Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/d54e81-3317-4283-b45f-c81743b2cae6/1/Y4bJ5IipD3g2P9JC9I5KPHbIKHc.roa
File: Y4bJ5IipD3g2P9JC9I5KPHbIKHc.roa (raw, json)
Hash identifier: UN096uhv8h9O1tODGG/WdPro78O1yYQrBTBUqdtsxP0=
Subject key identifier: 63:86:C9:E4:88:A9:0F:78:36:3F:D2:42:F4:8E:4A:3C:76:C8:28:77
Certificate issuer: /CN=9b67c02de7fc8d11a1afe7ae62c5854d17767553
Certificate serial: 018CC94E1FE57FD240799F0C17E43A1440F7
Authority key identifier: 9B:67:C0:2D:E7:FC:8D:11:A1:AF:E7:AE:62:C5:85:4D:17:76:75:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m2fALef8jRGhr-euYsWFTRd2dVM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/d54e81-3317-4283-b45f-c81743b2cae6/1/Y4bJ5IipD3g2P9JC9I5KPHbIKHc.roa
Signing time: Tue 02 Jan 2024 08:33:09 +0000
ROA not before: Tue 02 Jan 2024 08:33:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208065
IP address blocks: 193.8.40.0/22 maxlen: 22
193.8.44.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 03 May 2024 14:34:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:1f:e5:7f:d2:40:79:9f:0c:17:e4:3a:14:40:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b67c02de7fc8d11a1afe7ae62c5854d17767553
Validity
Not Before: Jan 2 08:33:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6386c9e488a90f78363fd242f48e4a3c76c82877
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:73:c4:7d:89:78:1d:ff:b3:b0:ec:74:f1:bb:
15:41:73:80:5f:30:10:6c:8f:fc:cd:e6:ca:53:bc:
48:45:0a:4e:b9:8e:ec:b4:da:3f:4b:81:97:b1:25:
2a:67:2b:6a:ed:47:79:68:3b:83:3b:b9:f2:77:c6:
fa:2e:7e:d5:02:22:1d:56:51:e7:00:20:cb:ee:aa:
aa:8b:3d:bc:16:2f:78:45:35:69:81:e2:12:98:41:
ef:91:49:3e:bd:1e:76:a1:40:78:c5:4c:71:c0:e5:
25:68:9e:48:07:7f:64:91:ee:10:b6:b5:f4:83:93:
d5:3b:08:30:ca:52:d0:55:c3:5b:80:26:fc:96:06:
58:24:98:0d:2e:ea:d3:cd:18:1d:4a:b7:c1:45:2a:
bf:4f:2a:00:37:b7:b9:5e:cc:0d:03:c0:9f:2e:60:
ce:fc:b5:ac:76:18:21:91:56:33:58:3e:9d:75:9f:
20:b3:d6:9d:bc:e5:62:eb:d6:ba:cb:f8:40:91:99:
d9:e0:e1:26:d5:c6:2e:99:e6:76:8b:4f:b4:c1:93:
55:f8:9a:43:10:f9:d9:a6:8b:44:6c:e0:7b:01:9a:
f0:31:31:cd:ea:a1:ab:ff:f6:f8:76:52:d7:65:48:
d6:ab:2a:d3:e5:4f:bb:7c:e1:4c:b2:79:ac:df:41:
8c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:86:C9:E4:88:A9:0F:78:36:3F:D2:42:F4:8E:4A:3C:76:C8:28:77
X509v3 Authority Key Identifier:
keyid:9B:67:C0:2D:E7:FC:8D:11:A1:AF:E7:AE:62:C5:85:4D:17:76:75:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m2fALef8jRGhr-euYsWFTRd2dVM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/d54e81-3317-4283-b45f-c81743b2cae6/1/Y4bJ5IipD3g2P9JC9I5KPHbIKHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/d54e81-3317-4283-b45f-c81743b2cae6/1/m2fALef8jRGhr-euYsWFTRd2dVM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.40.0-193.8.44.255
Signature Algorithm: sha256WithRSAEncryption
38:0a:f4:5d:e1:32:de:9e:ef:42:25:38:d0:ed:14:12:d0:fc:
36:2f:d7:e7:40:d0:71:2c:a0:82:41:22:16:b5:d6:cb:7a:9e:
b8:79:42:b1:13:7d:b7:dd:c4:3b:70:1e:46:2a:3f:ab:37:4f:
9c:af:58:19:8f:f9:e7:24:39:a5:c4:ef:b7:bb:11:45:67:9c:
fd:de:09:3c:fc:cc:5e:74:b9:f9:5a:f6:9d:c7:6d:0c:d0:91:
f0:db:6a:9e:82:22:a6:be:a0:62:79:d1:07:51:70:56:15:96:
39:03:bd:98:74:82:48:2e:47:85:68:ea:b4:bf:18:57:14:e5:
c7:e0:cd:fd:a6:9e:f0:59:44:72:e1:c2:05:b4:f8:c8:04:99:
1e:eb:92:66:4e:1c:bd:5c:79:f6:18:fa:41:af:54:b6:39:0a:
58:18:81:8c:53:5b:a1:e6:a6:49:e5:b4:4b:7c:7e:02:2f:0c:
a0:43:95:27:ab:cb:03:64:5b:5d:90:5b:e1:01:8a:ad:93:ec:
e3:a6:43:f3:c3:38:64:96:b8:62:55:a9:23:58:c3:07:b0:9c:
98:ee:e2:30:02:bd:fe:92:dc:53:d4:c5:a1:97:b3:ea:d9:78:
d6:5a:e0:40:42:c8:54:c5:bf:91:40:8e:0d:50:9c:45:51:11:
8b:56:c8:bb
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYzJTh/lf9JAeZ8MF+Q6FED3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDliNjdjMDJkZTdmYzhkMTFhMWFmZTdhZTYyYzU4NTRkMTc3
Njc1NTMwHhcNMjQwMTAyMDgzMzA5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2Mzg2YzllNDg4YTkwZjc4MzYzZmQyNDJmNDhlNGEzYzc2YzgyODc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu3PEfYl4Hf+zsOx08bsVQXOAXzAQ
bI/8zebKU7xIRQpOuY7stNo/S4GXsSUqZytq7Ud5aDuDO7nyd8b6Ln7VAiIdVlHn
ACDL7qqqiz28Fi94RTVpgeISmEHvkUk+vR52oUB4xUxxwOUlaJ5IB39kke4QtrX0
g5PVOwgwylLQVcNbgCb8lgZYJJgNLurTzRgdSrfBRSq/TyoAN7e5XswNA8CfLmDO
/LWsdhghkVYzWD6ddZ8gs9advOVi69a6y/hAkZnZ4OEm1cYumeZ2i0+0wZNV+JpD
EPnZpotEbOB7AZrwMTHN6qGr//b4dlLXZUjWqyrT5U+7fOFMsnms30GMpwIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFGOGyeSIqQ94Nj/SQvSOSjx2yCh3MB8GA1UdIwQY
MBaAFJtnwC3n/I0Roa/nrmLFhU0XdnVTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbTJmQUxlZjhqUkdoci1ldVlzV0ZUUmQyZFZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS9kNTRlODEtMzMxNy00MjgzLWI0NWYt
YzgxNzQzYjJjYWU2LzEvWTRiSjVJaXBEM2cyUDlKQzlJNUtQSGJJS0hjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NS9kNTRlODEtMzMxNy00MjgzLWI0NWYtYzgxNzQzYjJjYWU2
LzEvbTJmQUxlZjhqUkdoci1ldVlzV0ZUUmQyZFZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAPBCCgD
BADBCCwwDQYJKoZIhvcNAQELBQADggEBADgK9F3hMt6e70IlONDtFBLQ/DYv1+dA
0HEsoIJBIha11st6nrh5QrETfbfdxDtwHkYqP6s3T5yvWBmP+eckOaXE77e7EUVn
nP3eCTz8zF50ufla9p3HbQzQkfDbap6CIqa+oGJ50QdRcFYVljkDvZh0gkguR4Vo
6rS/GFcU5cfgzf2mnvBZRHLhwgW0+MgEmR7rkmZOHL1cefYY+kGvVLY5ClgYgYxT
W6HmpknltEt8fgIvDKBDlSerywNkW12QW+EBiq2T7OOmQ/PDOGSWuGJVqSNYwwew
nJju4jACvf6S3FPUxaGXs+rZeNZa4EBCyFTFv5FAjg1QnEVREYtWyLs=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:16 2024 by rpki-client on console-fra.rpki-client.org