Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/Yv_M9JPbvGl0jD0asBmwTEAb38c.roa
File: Yv_M9JPbvGl0jD0asBmwTEAb38c.roa (raw, json)
Hash identifier: 7Jue9UXHGyf93L+0wsYUw6aOb33dzgfJzPkn+p6+YI4=
Subject key identifier: 62:FF:CC:F4:93:DB:BC:69:74:8C:3D:1A:B0:19:B0:4C:40:1B:DF:C7
Certificate issuer: /CN=cec5afe769b94346e1cd362eb85f875b23b17277
Certificate serial: 018B4EE4713DBAD293F9F0147E535FC54D23
Authority key identifier: CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/Yv_M9JPbvGl0jD0asBmwTEAb38c.roa
Signing time: Fri 20 Oct 2023 21:01:15 +0000
ROA not before: Fri 20 Oct 2023 21:01:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40676
IP address blocks: 45.145.155.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:4e:e4:71:3d:ba:d2:93:f9:f0:14:7e:53:5f:c5:4d:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cec5afe769b94346e1cd362eb85f875b23b17277
Validity
Not Before: Oct 20 21:01:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62ffccf493dbbc69748c3d1ab019b04c401bdfc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ec:86:e5:75:1d:4f:89:06:4c:9d:4c:fc:f3:
9e:7b:14:6b:91:a2:66:b6:1c:ea:75:72:eb:ad:ef:
ca:dd:3f:eb:91:56:bf:f4:ea:6c:d0:35:42:1c:61:
b3:c4:b7:0d:33:a8:d2:f8:2c:a6:6f:29:3d:d5:c9:
55:49:02:ef:61:35:e5:5a:67:16:fd:f0:5e:4b:d2:
e5:15:69:93:1c:ae:eb:45:92:8d:55:38:4e:28:7c:
c6:8a:68:88:dd:e3:b5:ba:68:f9:66:af:b6:42:00:
80:34:37:9c:ff:50:92:07:d6:e5:a9:6c:a0:7d:f3:
18:7f:07:5e:5d:35:6a:2b:1a:43:f7:3c:49:4a:aa:
71:f6:f7:98:f5:5e:48:ad:55:9a:38:ce:1c:37:07:
42:22:c8:ae:70:3c:39:7d:aa:e1:d3:d2:3f:c8:fd:
47:e3:e8:c0:b5:e2:e4:44:33:fe:41:c7:d0:cf:e5:
6f:36:8d:11:bb:9e:29:fc:52:6c:6a:d9:a8:44:f4:
a0:5d:b6:c8:1b:c7:3c:93:47:5b:d3:1b:8d:d6:35:
4f:38:22:b4:11:ac:d2:8e:88:0a:30:cc:37:01:d4:
3c:06:c2:b9:43:8a:0d:41:39:01:29:3f:6a:99:b5:
92:eb:e2:50:24:f0:e5:ae:be:d2:14:ab:69:1e:f9:
ef:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:FF:CC:F4:93:DB:BC:69:74:8C:3D:1A:B0:19:B0:4C:40:1B:DF:C7
X509v3 Authority Key Identifier:
keyid:CE:C5:AF:E7:69:B9:43:46:E1:CD:36:2E:B8:5F:87:5B:23:B1:72:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsWv52m5Q0bhzTYuuF-HWyOxcnc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/Yv_M9JPbvGl0jD0asBmwTEAb38c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/3d569c-1907-4d2c-aced-33247c8e1c1f/1/zsWv52m5Q0bhzTYuuF-HWyOxcnc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.155.0/24
Signature Algorithm: sha256WithRSAEncryption
08:da:7c:c8:59:6a:5b:e7:29:f4:c1:6e:46:c5:68:09:f5:5b:
2a:ff:c6:d3:5c:c9:57:02:89:0a:8c:1d:1a:89:29:6f:44:28:
0b:81:63:d3:97:8d:10:62:04:d6:d3:fc:b0:99:2e:24:03:2b:
b6:6a:8e:d6:ff:a6:ff:52:aa:55:07:65:71:7e:c9:63:d0:2d:
ee:11:f6:26:44:49:48:84:55:e1:c6:ec:64:02:c5:bc:7a:f0:
88:8f:1b:18:43:ab:96:71:68:7e:9e:2d:e7:14:b5:db:67:fd:
50:4e:26:05:a8:80:e5:a5:92:97:cb:47:30:1f:29:72:18:91:
4a:d1:9e:82:d9:35:95:75:dc:58:c0:b0:96:c5:15:9d:29:d8:
d9:ea:99:67:b1:8e:29:15:6a:4d:7c:68:a7:9d:c8:cf:56:af:
96:52:4b:32:9a:9e:fb:f4:8c:48:6d:74:08:90:c8:46:5b:c6:
64:e5:3f:42:d7:0f:cb:ce:e4:5c:a7:d9:dc:1a:b2:db:fd:7d:
63:d9:78:94:47:94:35:b5:85:10:92:a3:7c:66:b2:b8:b2:8f:
64:5f:85:dc:a8:b5:5c:36:e6:8c:5a:68:13:d3:99:52:d8:14:
2d:fd:f7:01:86:f1:fe:8b:2d:26:10:3c:f7:1b:13:d5:cc:5c:
66:80:b8:61
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYtO5HE9utKT+fAUflNfxU0jMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNlYzVhZmU3NjliOTQzNDZlMWNkMzYyZWI4NWY4NzViMjNi
MTcyNzcwHhcNMjMxMDIwMjEwMTE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MmZmY2NmNDkzZGJiYzY5NzQ4YzNkMWFiMDE5YjA0YzQwMWJkZmM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnuyG5XUdT4kGTJ1M/POeexRrkaJm
thzqdXLrre/K3T/rkVa/9Ops0DVCHGGzxLcNM6jS+Cymbyk91clVSQLvYTXlWmcW
/fBeS9LlFWmTHK7rRZKNVThOKHzGimiI3eO1umj5Zq+2QgCANDec/1CSB9blqWyg
ffMYfwdeXTVqKxpD9zxJSqpx9veY9V5IrVWaOM4cNwdCIsiucDw5farh09I/yP1H
4+jAteLkRDP+QcfQz+VvNo0Ru54p/FJsatmoRPSgXbbIG8c8k0db0xuN1jVPOCK0
EazSjogKMMw3AdQ8BsK5Q4oNQTkBKT9qmbWS6+JQJPDlrr7SFKtpHvnvcwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGL/zPST27xpdIw9GrAZsExAG9/HMB8GA1UdIwQY
MBaAFM7Fr+dpuUNG4c02Lrhfh1sjsXJ3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvenNXdjUybTVRMGJoelRZdXVGLUhXeU94Y25jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi8zZDU2OWMtMTkwNy00ZDJjLWFjZWQt
MzMyNDdjOGUxYzFmLzEvWXZfTTlKUGJ2R2wwakQwYXNCbXdURUFiMzhjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yi8zZDU2OWMtMTkwNy00ZDJjLWFjZWQtMzMyNDdjOGUxYzFm
LzEvenNXdjUybTVRMGJoelRZdXVGLUhXeU94Y25jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZGbMA0G
CSqGSIb3DQEBCwUAA4IBAQAI2nzIWWpb5yn0wW5GxWgJ9Vsq/8bTXMlXAokKjB0a
iSlvRCgLgWPTl40QYgTW0/ywmS4kAyu2ao7W/6b/UqpVB2Vxfslj0C3uEfYmRElI
hFXhxuxkAsW8evCIjxsYQ6uWcWh+ni3nFLXbZ/1QTiYFqIDlpZKXy0cwHylyGJFK
0Z6C2TWVddxYwLCWxRWdKdjZ6plnsY4pFWpNfGinncjPVq+WUksymp779IxIbXQI
kMhGW8Zk5T9C1w/LzuRcp9ncGrLb/X1j2XiUR5Q1tYUQkqN8ZrK4so9kX4XcqLVc
NuaMWmgT05lS2BQt/fcBhvH+iy0mEDz3GxPVzFxmgLhh
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:10:13 2024 by rpki-client on console-ams.rpki-client.org