Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/9de8b0-6cc5-458b-b23e-16e10d72b567/1/ymDCLGHbcgu-HHrIQkED4mPdJS8.roa
File: ymDCLGHbcgu-HHrIQkED4mPdJS8.roa (raw, json)
Hash identifier: ZeijketkDiGrmVV1hdndZ8MN1Gj2msLHkFrCJ88MYZ8=
Subject key identifier: CA:60:C2:2C:61:DB:72:0B:BE:1C:7A:C8:42:41:03:E2:63:DD:25:2F
Certificate issuer: /CN=b6ae61814f7150c9b8117f498cab94db72a8339c
Certificate serial: 01856D6F4C02C7CB0352E8DF48BE656FF11A
Authority key identifier: B6:AE:61:81:4F:71:50:C9:B8:11:7F:49:8C:AB:94:DB:72:A8:33:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tq5hgU9xUMm4EX9JjKuU23KoM5w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/9de8b0-6cc5-458b-b23e-16e10d72b567/1/ymDCLGHbcgu-HHrIQkED4mPdJS8.roa
Signing time: Sun 01 Jan 2023 13:04:48 +0000
ROA not before: Sun 01 Jan 2023 13:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 185.214.166.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:6f:4c:02:c7:cb:03:52:e8:df:48:be:65:6f:f1:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6ae61814f7150c9b8117f498cab94db72a8339c
Validity
Not Before: Jan 1 13:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ca60c22c61db720bbe1c7ac8424103e263dd252f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:63:9f:0d:33:ac:c1:67:36:82:6a:c2:fc:f3:
05:0d:c1:32:b2:71:c7:85:d8:c7:12:ca:7e:89:5b:
40:e3:ec:5a:e8:d3:95:cb:ae:ab:08:5e:98:55:47:
5c:54:80:80:2a:09:4f:99:64:96:a4:c8:64:60:c7:
91:19:a9:3e:eb:c3:3e:0b:06:41:e1:0f:35:e8:15:
12:8a:b0:b3:4f:0c:dd:83:c3:ec:62:aa:0f:71:39:
cd:ea:e7:94:60:84:ac:1b:ef:2f:9b:dd:2c:ee:e2:
00:0d:e0:1c:1c:cb:58:13:ca:1d:72:5d:d2:25:d7:
ea:7d:86:0d:4b:bb:06:f8:c7:f7:7b:e2:94:b0:ee:
33:a9:6f:b7:c9:01:2a:6b:17:31:f3:c3:2f:e9:47:
3a:df:a8:72:1a:b4:e8:55:c4:a8:1e:dd:66:f4:29:
6e:2c:ec:fc:c4:4b:aa:33:ac:7f:88:61:d9:df:27:
71:e2:78:cb:5e:e8:9e:4c:5f:6f:ee:3c:d1:a7:82:
c4:01:25:51:e8:76:4d:e7:15:42:0d:b8:57:22:1e:
d5:e8:e1:b3:81:89:34:f8:79:a9:6b:35:b9:b8:2c:
d2:21:b8:20:92:b9:74:e4:cc:0a:47:4e:0b:aa:ac:
e5:fa:8b:d8:2c:ba:da:9b:ce:a2:58:2e:9e:d1:98:
d8:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:60:C2:2C:61:DB:72:0B:BE:1C:7A:C8:42:41:03:E2:63:DD:25:2F
X509v3 Authority Key Identifier:
keyid:B6:AE:61:81:4F:71:50:C9:B8:11:7F:49:8C:AB:94:DB:72:A8:33:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tq5hgU9xUMm4EX9JjKuU23KoM5w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9de8b0-6cc5-458b-b23e-16e10d72b567/1/ymDCLGHbcgu-HHrIQkED4mPdJS8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9de8b0-6cc5-458b-b23e-16e10d72b567/1/tq5hgU9xUMm4EX9JjKuU23KoM5w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.166.0/24
Signature Algorithm: sha256WithRSAEncryption
27:35:8b:dc:3e:34:bd:64:d2:3f:9b:08:da:f2:7c:25:f5:b5:
6d:89:41:13:68:33:82:10:da:2d:be:ee:d1:31:20:f1:e6:16:
8c:a7:a4:f5:7b:25:a2:97:72:64:1b:f7:9c:27:55:77:7f:b2:
20:f6:af:dd:26:79:c3:23:29:15:ad:2d:47:80:31:71:5a:e3:
d4:c7:d2:c6:e6:f5:25:72:0f:d9:19:e0:ba:2e:5e:54:f9:68:
06:dd:3d:a3:88:fa:09:ff:5c:d5:0e:b7:df:e1:8f:91:fe:bd:
bb:63:a9:10:34:34:46:d4:b3:3a:26:4a:05:56:67:ea:51:90:
61:15:a6:1a:63:6a:5d:55:9a:1e:48:45:53:cb:ae:d1:78:2f:
4c:4a:15:80:74:b4:a0:65:1d:1d:e4:85:ca:6a:9b:b5:f2:03:
a5:d7:fa:ce:7b:68:bb:45:52:61:49:95:21:56:a4:4a:88:41:
24:6a:0c:ee:e3:94:50:e6:a2:8d:8d:d0:bf:0e:ab:4e:ce:c5:
2a:cf:3d:23:3f:da:ed:2c:df:db:46:6b:08:ae:14:4c:6e:33:
5b:1c:9a:a2:f7:a5:61:a7:ff:17:bf:b7:5f:3f:59:0a:b7:3c:
ba:17:89:dd:c5:7a:f0:ac:34:44:4d:cd:42:fa:9a:d5:6a:ef:
61:1b:8c:6c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtb0wCx8sDUujfSL5lb/EaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2YWU2MTgxNGY3MTUwYzliODExN2Y0OThjYWI5NGRiNzJh
ODMzOWMwHhcNMjMwMTAxMTMwNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYTYwYzIyYzYxZGI3MjBiYmUxYzdhYzg0MjQxMDNlMjYzZGQyNTJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAimOfDTOswWc2gmrC/PMFDcEysnHH
hdjHEsp+iVtA4+xa6NOVy66rCF6YVUdcVICAKglPmWSWpMhkYMeRGak+68M+CwZB
4Q816BUSirCzTwzdg8PsYqoPcTnN6ueUYISsG+8vm90s7uIADeAcHMtYE8odcl3S
JdfqfYYNS7sG+Mf3e+KUsO4zqW+3yQEqaxcx88Mv6Uc636hyGrToVcSoHt1m9Clu
LOz8xEuqM6x/iGHZ3ydx4njLXuieTF9v7jzRp4LEASVR6HZN5xVCDbhXIh7V6OGz
gYk0+HmpazW5uCzSIbggkrl05MwKR04Lqqzl+ovYLLram86iWC6e0ZjYjwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMpgwixh23ILvhx6yEJBA+Jj3SUvMB8GA1UdIwQY
MBaAFLauYYFPcVDJuBF/SYyrlNtyqDOcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdHE1aGdVOXhVTW00RVg5SmpLdVUyM0tvTTV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi85ZGU4YjAtNmNjNS00NThiLWIyM2Ut
MTZlMTBkNzJiNTY3LzEveW1EQ0xHSGJjZ3UtSEhySVFrRUQ0bVBkSlM4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi85ZGU4YjAtNmNjNS00NThiLWIyM2UtMTZlMTBkNzJiNTY3
LzEvdHE1aGdVOXhVTW00RVg5SmpLdVUyM0tvTTV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAudamMA0G
CSqGSIb3DQEBCwUAA4IBAQAnNYvcPjS9ZNI/mwja8nwl9bVtiUETaDOCENotvu7R
MSDx5haMp6T1eyWil3JkG/ecJ1V3f7Ig9q/dJnnDIykVrS1HgDFxWuPUx9LG5vUl
cg/ZGeC6Ll5U+WgG3T2jiPoJ/1zVDrff4Y+R/r27Y6kQNDRG1LM6JkoFVmfqUZBh
FaYaY2pdVZoeSEVTy67ReC9MShWAdLSgZR0d5IXKapu18gOl1/rOe2i7RVJhSZUh
VqRKiEEkagzu45RQ5qKNjdC/DqtOzsUqzz0jP9rtLN/bRmsIrhRMbjNbHJqi96Vh
p/8Xv7dfP1kKtzy6F4ndxXrwrDRETc1C+prVau9hG4xs
-----END CERTIFICATE-----
Generated at Mon Jan 1 15:15:21 2024 by rpki-client on console-fra.rpki-client.org