Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/YdmT4YlIX22VV01wqFR8U47H5pg.roa
File: YdmT4YlIX22VV01wqFR8U47H5pg.roa (raw, json)
Hash identifier: P0fFcX5KrcxKvIKjADs8QFxsEniPbGuSleQWFO/pBLU=
Subject key identifier: 61:D9:93:E1:89:48:5F:6D:95:57:4D:70:A8:54:7C:53:8E:C7:E6:98
Certificate issuer: /CN=ed800950a31dcdacaac56adb936a42beb845e24b
Certificate serial: 0188589A967DDE216782B95475CF34278814
Authority key identifier: ED:80:09:50:A3:1D:CD:AC:AA:C5:6A:DB:93:6A:42:BE:B8:45:E2:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7YAJUKMdzayqxWrbk2pCvrhF4ks.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/YdmT4YlIX22VV01wqFR8U47H5pg.roa
Signing time: Fri 26 May 2023 15:08:26 +0000
ROA not before: Fri 26 May 2023 15:08:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39521
IP address blocks: 185.221.217.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Jul 2023 12:19:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:58:9a:96:7d:de:21:67:82:b9:54:75:cf:34:27:88:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed800950a31dcdacaac56adb936a42beb845e24b
Validity
Not Before: May 26 15:08:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=61d993e189485f6d95574d70a8547c538ec7e698
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:f4:7e:bd:14:27:fa:67:12:47:79:11:be:06:
47:fb:e9:08:72:7a:ac:86:e6:ce:d2:24:b6:8b:45:
98:84:9a:35:23:43:c4:1f:f7:e5:5f:2c:50:4c:95:
8c:20:5f:50:13:b2:2a:85:c6:d3:65:da:9f:c3:a0:
1c:7f:fb:59:66:94:73:a3:9f:cd:b3:4b:56:47:0e:
ba:d0:11:c3:df:5f:3a:f7:37:d9:71:b5:d7:e0:22:
16:be:c4:ca:ea:65:0f:d3:6c:f4:e9:91:e3:8d:f1:
01:c2:6f:36:ff:6d:6d:36:60:50:da:8e:38:4a:5c:
ed:cd:0c:a3:b9:5a:b4:d8:84:06:d0:25:d6:1f:57:
dd:ce:d9:25:a2:f4:e9:24:cc:bd:e2:71:5c:d5:2f:
dd:f4:50:ea:2a:40:0c:97:a7:a8:ee:de:db:80:b9:
0e:94:f8:6b:50:49:3b:32:ae:11:66:19:11:98:06:
1d:67:5a:c3:35:1a:e0:2d:88:99:b8:39:de:35:05:
c3:06:4a:74:1e:29:ee:72:19:6b:34:2e:8e:cc:fa:
6e:09:74:54:24:50:7c:d1:fc:dc:9d:6e:5a:5b:14:
b8:fd:33:83:d1:80:6e:d3:6a:c0:bf:e9:c0:5b:4e:
4b:72:cb:99:fe:d3:74:31:a0:29:15:a2:f3:98:4e:
e1:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:D9:93:E1:89:48:5F:6D:95:57:4D:70:A8:54:7C:53:8E:C7:E6:98
X509v3 Authority Key Identifier:
keyid:ED:80:09:50:A3:1D:CD:AC:AA:C5:6A:DB:93:6A:42:BE:B8:45:E2:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7YAJUKMdzayqxWrbk2pCvrhF4ks.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/YdmT4YlIX22VV01wqFR8U47H5pg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/7YAJUKMdzayqxWrbk2pCvrhF4ks.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.217.0/24
Signature Algorithm: sha256WithRSAEncryption
49:51:89:06:bb:ff:d8:e0:42:47:0c:d9:23:95:0c:21:1b:14:
ea:e5:b3:c9:78:6a:f4:9d:f1:17:bd:c2:aa:7c:fc:6f:93:06:
d6:36:d0:38:87:ce:ad:cd:17:41:60:d9:01:20:77:74:7c:81:
1c:48:22:33:10:16:76:9c:2f:0f:50:8b:ab:27:66:07:75:a6:
6a:f4:86:5a:cb:ef:c0:78:de:ed:0c:03:e2:78:41:43:58:50:
36:2c:7a:b2:10:a0:dd:64:77:ad:65:ac:06:6d:a9:81:c2:fd:
23:a3:a2:67:19:b3:4e:1a:b3:ae:b8:37:d6:fb:cb:84:27:c1:
db:6f:3c:1f:55:5a:f6:78:5c:5f:5a:3c:af:3a:b2:78:31:e0:
ad:cb:50:04:bc:29:29:1a:8e:c5:a0:18:47:13:8c:9f:46:18:
17:bd:5f:e3:2b:ca:04:25:2d:81:c0:5d:14:c0:80:10:2d:dc:
47:94:29:5a:2e:ef:05:17:7b:02:bd:91:71:c2:b3:6c:42:5d:
6a:9f:83:62:d5:1a:0a:36:b3:a8:71:8e:0e:ae:70:ea:23:75:
e5:e0:78:54:de:49:e7:db:66:85:f2:e2:5a:1a:60:a8:7a:bb:
8c:dc:13:56:16:90:87:7d:2a:00:19:ef:1a:95:59:d6:13:45:
42:82:0f:54
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYhYmpZ93iFngrlUdc80J4gUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVkODAwOTUwYTMxZGNkYWNhYWM1NmFkYjkzNmE0MmJlYjg0
NWUyNGIwHhcNMjMwNTI2MTUwODI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MWQ5OTNlMTg5NDg1ZjZkOTU1NzRkNzBhODU0N2M1MzhlYzdlNjk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgfR+vRQn+mcSR3kRvgZH++kIcnqs
hubO0iS2i0WYhJo1I0PEH/flXyxQTJWMIF9QE7IqhcbTZdqfw6Acf/tZZpRzo5/N
s0tWRw660BHD31869zfZcbXX4CIWvsTK6mUP02z06ZHjjfEBwm82/21tNmBQ2o44
SlztzQyjuVq02IQG0CXWH1fdztklovTpJMy94nFc1S/d9FDqKkAMl6eo7t7bgLkO
lPhrUEk7Mq4RZhkRmAYdZ1rDNRrgLYiZuDneNQXDBkp0HinuchlrNC6OzPpuCXRU
JFB80fzcnW5aWxS4/TOD0YBu02rAv+nAW05LcsuZ/tN0MaApFaLzmE7h1QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGHZk+GJSF9tlVdNcKhUfFOOx+aYMB8GA1UdIwQY
MBaAFO2ACVCjHc2sqsVq25NqQr64ReJLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN1lBSlVLTWR6YXlxeFdyYmsycEN2cmhGNGtzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC84YTZmNzItYzgyMi00NTFmLWE1YzUt
YTdmZDZjOGU3MGZkLzEvWWRtVDRZbElYMjJWVjAxd3FGUjhVNDdINXBnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC84YTZmNzItYzgyMi00NTFmLWE1YzUtYTdmZDZjOGU3MGZk
LzEvN1lBSlVLTWR6YXlxeFdyYmsycEN2cmhGNGtzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAud3ZMA0G
CSqGSIb3DQEBCwUAA4IBAQBJUYkGu//Y4EJHDNkjlQwhGxTq5bPJeGr0nfEXvcKq
fPxvkwbWNtA4h86tzRdBYNkBIHd0fIEcSCIzEBZ2nC8PUIurJ2YHdaZq9IZay+/A
eN7tDAPieEFDWFA2LHqyEKDdZHetZawGbamBwv0jo6JnGbNOGrOuuDfW+8uEJ8Hb
bzwfVVr2eFxfWjyvOrJ4MeCty1AEvCkpGo7FoBhHE4yfRhgXvV/jK8oEJS2BwF0U
wIAQLdxHlClaLu8FF3sCvZFxwrNsQl1qn4Ni1RoKNrOocY4OrnDqI3Xl4HhU3knn
22aF8uJaGmCoeruM3BNWFpCHfSoAGe8alVnWE0VCgg9U
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:11 2024 by rpki-client on console-fra.rpki-client.org