Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/Y5HhHnjTHyfXj6DEPwHbSFVo01o.roa
File: Y5HhHnjTHyfXj6DEPwHbSFVo01o.roa (raw, json)
Hash identifier: GvZ1nXTg3M0s2NU0/EL38TLaHnl/VIaYXYMYvT+0guk=
Subject key identifier: 63:91:E1:1E:78:D3:1F:27:D7:8F:A0:C4:3F:01:DB:48:55:68:D3:5A
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 01856F54BAC4A9B40EB5F0C3050024CAEF8F
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/Y5HhHnjTHyfXj6DEPwHbSFVo01o.roa
Signing time: Sun 01 Jan 2023 21:55:01 +0000
ROA not before: Sun 01 Jan 2023 21:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212815
IP address blocks: 80.71.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Jan 2023 07:19:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:ba:c4:a9:b4:0e:b5:f0:c3:05:00:24:ca:ef:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Jan 1 21:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6391e11e78d31f27d78fa0c43f01db485568d35a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f8:40:e3:87:13:1c:18:2c:3a:74:f6:2a:8e:
93:67:48:d1:ce:47:ea:28:36:5a:1e:e7:b4:17:70:
59:87:05:61:f9:d5:49:57:02:32:91:e2:42:49:4b:
b9:48:d8:c1:9b:3b:7e:5c:d6:7c:96:16:67:ab:bf:
ea:38:a0:db:bb:2a:97:a9:b0:2d:68:b2:bb:35:e7:
fc:25:7f:7a:d2:17:9e:cc:98:43:dd:5c:08:2f:16:
09:4f:61:6c:39:fd:7e:68:5c:35:b9:70:85:d2:0a:
da:d8:35:72:e1:8c:d1:b2:df:df:89:5e:bc:88:77:
32:c8:54:18:08:ab:57:c1:31:7a:17:da:39:3d:ff:
c9:10:10:c7:d1:0b:6b:bb:c3:fc:33:58:e5:b2:c2:
fb:e7:0a:d8:84:6a:81:10:7c:7b:cc:bd:fa:1b:b1:
83:61:ea:6d:c0:02:cf:87:b0:3d:0c:a1:78:55:c1:
cb:8a:7c:c1:da:7b:05:47:26:c9:30:fc:c2:f5:89:
63:ff:36:ac:a9:00:72:8f:c1:41:68:ca:56:d8:8a:
86:98:90:0e:1d:92:ce:3e:b4:ff:aa:65:1d:56:c6:
99:c1:50:90:1a:dc:17:78:98:fc:82:79:56:e6:44:
6c:24:2a:9e:a7:ab:7d:ea:85:24:e3:9f:f8:c5:bb:
93:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:91:E1:1E:78:D3:1F:27:D7:8F:A0:C4:3F:01:DB:48:55:68:D3:5A
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/Y5HhHnjTHyfXj6DEPwHbSFVo01o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.234.0/24
Signature Algorithm: sha256WithRSAEncryption
12:23:c6:b2:1d:ac:6d:c3:8f:4c:52:74:a3:52:de:cd:b7:fa:
b0:09:d1:94:46:48:92:88:08:d7:41:b1:97:85:f6:dd:2b:d5:
1c:69:0b:96:77:c4:ed:52:fd:c7:f6:14:10:10:87:9f:f5:4c:
e1:83:38:38:5d:d9:be:d6:8e:6a:51:9a:6d:35:2b:e3:58:1b:
ee:b5:8f:84:8b:39:58:de:1f:84:ac:00:82:a6:21:1f:59:e6:
47:fe:b2:99:64:eb:17:ce:58:21:b5:26:80:7a:fc:a7:b5:be:
c8:af:0b:2b:d6:99:48:81:42:a5:25:5f:96:80:3d:f9:08:29:
6e:08:d5:62:61:b9:de:aa:aa:44:6a:27:bd:95:c9:08:ae:45:
ed:a5:d0:6a:8a:38:cb:51:d1:26:fb:ff:7a:b3:5c:b5:ef:4e:
22:d5:2d:ef:03:a2:1b:72:a9:ee:1b:76:56:ed:47:79:e1:56:
97:18:49:cc:9d:6c:47:1d:da:71:d0:42:21:7e:9c:3b:06:4f:
8d:b6:ae:d2:b7:79:49:68:95:4c:7d:f2:11:30:18:9e:2c:f4:
11:4f:7d:9d:06:63:69:32:a5:07:b3:47:97:27:45:0e:f5:41:
2a:d4:e4:7f:cd:63:cf:0a:48:8f:68:8e:54:98:5e:05:69:00:
9c:87:29:16
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvVLrEqbQOtfDDBQAkyu+PMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ZTUxNjk0YzRkNDZiNGZjYzAyZmFlNzFlNWRiOTQyYTcx
MDhlNDcwHhcNMjMwMTAxMjE1NTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MzkxZTExZTc4ZDMxZjI3ZDc4ZmEwYzQzZjAxZGI0ODU1NjhkMzVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsfhA44cTHBgsOnT2Ko6TZ0jRzkfq
KDZaHue0F3BZhwVh+dVJVwIykeJCSUu5SNjBmzt+XNZ8lhZnq7/qOKDbuyqXqbAt
aLK7Nef8JX960heezJhD3VwILxYJT2FsOf1+aFw1uXCF0gra2DVy4YzRst/fiV68
iHcyyFQYCKtXwTF6F9o5Pf/JEBDH0Qtru8P8M1jlssL75wrYhGqBEHx7zL36G7GD
YeptwALPh7A9DKF4VcHLinzB2nsFRybJMPzC9Ylj/zasqQByj8FBaMpW2IqGmJAO
HZLOPrT/qmUdVsaZwVCQGtwXeJj8gnlW5kRsJCqep6t96oUk45/4xbuTxwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGOR4R540x8n14+gxD8B20hVaNNaMB8GA1UdIwQY
MBaAFEnlFpTE1GtPzAL65x5duUKnEI5HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQt
MTkxODliM2M5YzdkLzEvWTVIaEhualRIeWZYajZERVB3SGJTRlZvMDFvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQtMTkxODliM2M5Yzdk
LzEvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUEfqMA0G
CSqGSIb3DQEBCwUAA4IBAQASI8ayHaxtw49MUnSjUt7Nt/qwCdGURkiSiAjXQbGX
hfbdK9UcaQuWd8TtUv3H9hQQEIef9Uzhgzg4Xdm+1o5qUZptNSvjWBvutY+EizlY
3h+ErACCpiEfWeZH/rKZZOsXzlghtSaAevyntb7Irwsr1plIgUKlJV+WgD35CClu
CNViYbneqqpEaie9lckIrkXtpdBqijjLUdEm+/96s1y1704i1S3vA6IbcqnuG3ZW
7Ud54VaXGEnMnWxHHdpx0EIhfpw7Bk+Ntq7St3lJaJVMffIRMBieLPQRT32dBmNp
MqUHs0eXJ0UO9UEq1OR/zWPPCkiPaI5UmF4FaQCchykW
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:35 2024 by rpki-client on console-ams.rpki-client.org