Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/ypU-fcHuaLOrFh8HEX6PB4jzREE.roa
File: ypU-fcHuaLOrFh8HEX6PB4jzREE.roa (raw, json)
Hash identifier: GYklmHSADPSNWHslgaulGmUMqS8o2z+bBQV3wrZG8H4=
Subject key identifier: CA:95:3E:7D:C1:EE:68:B3:AB:16:1F:07:11:7E:8F:07:88:F3:44:41
Certificate issuer: /CN=3718b734349bf327d9453b96501e44b192e55142
Certificate serial: 018BDE366B7CE0EB3030D3D4421093E12911
Authority key identifier: 37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/ypU-fcHuaLOrFh8HEX6PB4jzREE.roa
Signing time: Fri 17 Nov 2023 16:56:30 +0000
ROA not before: Fri 17 Nov 2023 16:56:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 31.14.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Dec 2023 11:28:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:de:36:6b:7c:e0:eb:30:30:d3:d4:42:10:93:e1:29:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3718b734349bf327d9453b96501e44b192e55142
Validity
Not Before: Nov 17 16:56:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ca953e7dc1ee68b3ab161f07117e8f0788f34441
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:05:49:c5:e1:fa:f6:76:30:9a:cd:2d:2d:84:
7b:36:83:b3:0a:34:a8:49:f6:e7:ee:c6:da:d8:d9:
8d:aa:a6:ea:20:66:ed:b1:2d:4d:1c:28:c1:58:e3:
69:ff:18:fa:bf:52:f5:63:6d:4b:73:74:d4:a1:8a:
7d:dc:0a:7c:e2:4c:87:d4:65:17:42:98:65:4e:60:
48:90:02:36:fd:f7:fb:cd:ab:31:f0:92:15:7f:0a:
9e:98:a5:23:05:5e:2b:25:a6:6c:17:30:2b:7f:98:
3a:84:11:4d:e2:6d:81:ef:e6:34:93:9d:8a:35:ae:
d4:df:06:c4:e2:8a:d0:23:56:b2:b8:31:38:1c:11:
61:1b:ac:e1:b9:0d:89:50:1e:ff:f8:9d:87:7b:1a:
61:ac:f8:57:64:7a:69:bf:4b:50:44:3b:0b:2b:b9:
1b:5b:6c:09:2b:7a:23:93:61:f5:bf:69:27:f2:aa:
46:d6:cd:3e:aa:f9:69:fb:e0:c0:44:90:88:3d:cf:
b5:f1:26:e8:38:72:ea:5d:d9:d3:4f:7f:a3:e2:31:
a3:18:9c:24:c8:df:03:77:b6:62:e9:e6:4c:2a:64:
a0:77:a9:63:d4:83:e7:eb:68:69:fb:c5:13:f4:f4:
cf:9f:33:75:47:59:2e:51:bb:f9:4e:f0:f2:83:c2:
c9:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:95:3E:7D:C1:EE:68:B3:AB:16:1F:07:11:7E:8F:07:88:F3:44:41
X509v3 Authority Key Identifier:
keyid:37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/ypU-fcHuaLOrFh8HEX6PB4jzREE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.37.0/24
Signature Algorithm: sha256WithRSAEncryption
84:64:38:13:02:e2:fd:b4:4f:ed:08:4a:97:75:6d:fc:d6:5a:
ca:64:57:52:53:0a:10:b6:b1:28:d6:cb:6e:ea:61:e8:6b:5d:
2a:06:4c:7b:bc:bf:53:d3:6b:98:1e:ba:9c:4b:53:de:84:bd:
21:75:10:7b:94:30:88:01:69:f3:5e:fd:61:ce:b9:09:73:3b:
b9:67:b3:7a:64:f5:60:88:c5:e6:ef:7a:a1:12:b5:5c:99:56:
db:f2:93:53:a3:d3:1f:f9:93:ab:d9:2b:3b:f8:e4:bd:0d:40:
ca:a3:0e:45:5f:ff:d0:1c:aa:00:ba:94:60:85:a1:4f:4f:72:
51:90:4e:46:09:3c:2d:c0:be:cc:a6:7c:27:cb:1c:d8:01:5a:
a3:ed:19:96:9b:0e:a1:58:47:6f:24:23:9d:8a:22:16:db:24:
8e:27:9c:29:fa:7c:c3:f2:ca:d5:f2:5b:fa:c7:a2:e1:04:0e:
4e:91:ed:73:3e:40:7c:6e:88:b9:8a:f3:92:5e:3a:ee:6f:94:
1a:3b:74:fc:7e:a0:47:4f:56:b9:45:63:a1:23:85:bb:f4:c6:
04:14:7d:08:b1:33:c2:3e:2e:2e:59:86:a9:40:da:1d:28:de:
91:b9:57:92:f8:46:43:e2:cc:07:80:02:28:c0:24:13:11:7a:
5d:bb:97:2c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYveNmt84OswMNPUQhCT4SkRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM3MThiNzM0MzQ5YmYzMjdkOTQ1M2I5NjUwMWU0NGIxOTJl
NTUxNDIwHhcNMjMxMTE3MTY1NjMwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYTk1M2U3ZGMxZWU2OGIzYWIxNjFmMDcxMTdlOGYwNzg4ZjM0NDQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAogVJxeH69nYwms0tLYR7NoOzCjSo
Sfbn7sba2NmNqqbqIGbtsS1NHCjBWONp/xj6v1L1Y21Lc3TUoYp93Ap84kyH1GUX
QphlTmBIkAI2/ff7zasx8JIVfwqemKUjBV4rJaZsFzArf5g6hBFN4m2B7+Y0k52K
Na7U3wbE4orQI1ayuDE4HBFhG6zhuQ2JUB7/+J2HexphrPhXZHppv0tQRDsLK7kb
W2wJK3ojk2H1v2kn8qpG1s0+qvlp++DARJCIPc+18SboOHLqXdnTT3+j4jGjGJwk
yN8Dd7Zi6eZMKmSgd6lj1IPn62hp+8UT9PTPnzN1R1kuUbv5TvDyg8LJdwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMqVPn3B7mizqxYfBxF+jweI80RBMB8GA1UdIwQY
MBaAFDcYtzQ0m/Mn2UU7llAeRLGS5VFCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnhpM05EU2I4eWZaUlR1V1VCNUVzWkxsVVVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My83YmY4YTgtZTQ5Yy00MDZlLThlYjct
YzgyM2NjOGYzODM3LzEveXBVLWZjSHVhTE9yRmg4SEVYNlBCNGp6UkVFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84My83YmY4YTgtZTQ5Yy00MDZlLThlYjctYzgyM2NjOGYzODM3
LzEvTnhpM05EU2I4eWZaUlR1V1VCNUVzWkxsVVVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAHw4lMA0G
CSqGSIb3DQEBCwUAA4IBAQCEZDgTAuL9tE/tCEqXdW381lrKZFdSUwoQtrEo1stu
6mHoa10qBkx7vL9T02uYHrqcS1PehL0hdRB7lDCIAWnzXv1hzrkJczu5Z7N6ZPVg
iMXm73qhErVcmVbb8pNTo9Mf+ZOr2Ss7+OS9DUDKow5FX//QHKoAupRghaFPT3JR
kE5GCTwtwL7MpnwnyxzYAVqj7RmWmw6hWEdvJCOdiiIW2ySOJ5wp+nzD8srV8lv6
x6LhBA5Oke1zPkB8boi5ivOSXjrub5QaO3T8fqBHT1a5RWOhI4W79MYEFH0IsTPC
Pi4uWYapQNodKN6RuVeS+EZD4swHgAIowCQTEXpdu5cs
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:04 2024 by rpki-client on console-ams.rpki-client.org