Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/y6IQthZG5iQC7rIPFJqObCPBoIU.roa
File: y6IQthZG5iQC7rIPFJqObCPBoIU.roa (raw, json)
Hash identifier: neJ2biPxYnPZdJvg+9/PVu+aPTLSH3zgXpJ2e8IwnGA=
Subject key identifier: CB:A2:10:B6:16:46:E6:24:02:EE:B2:0F:14:9A:8E:6C:23:C1:A0:85
Certificate issuer: /CN=d5637692ff5c45486d1053b149dc1420026cd733
Certificate serial: 0189C6583A56A6D2CC3D8B772B413C331597
Authority key identifier: D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/y6IQthZG5iQC7rIPFJqObCPBoIU.roa
Signing time: Sat 05 Aug 2023 15:36:58 +0000
ROA not before: Sat 05 Aug 2023 15:36:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 80.246.232.0/24 maxlen: 24
80.246.236.0/22 maxlen: 24
80.246.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 07 Aug 2023 22:40:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:c6:58:3a:56:a6:d2:cc:3d:8b:77:2b:41:3c:33:15:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5637692ff5c45486d1053b149dc1420026cd733
Validity
Not Before: Aug 5 15:36:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cba210b61646e62402eeb20f149a8e6c23c1a085
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:45:91:cb:7f:03:53:af:f0:ea:55:c3:7f:c4:
d3:57:03:64:3f:c5:d6:3e:56:16:29:52:dd:e8:2b:
d6:f6:c2:ab:c8:ba:fc:6f:51:c5:b9:09:2b:03:17:
29:bd:dd:12:1c:30:8e:7b:54:ce:e9:97:74:3c:c2:
23:1a:a3:2a:d8:bf:88:e6:4e:07:a9:0c:87:1e:0e:
b6:f6:47:b6:2d:f6:0d:97:d6:73:06:00:49:31:92:
03:e8:33:69:d8:5f:70:91:6b:44:64:ee:9b:d1:34:
f6:50:57:a8:8f:5c:19:f8:10:e7:6c:96:ae:c7:c1:
21:28:2a:8f:84:38:03:81:ec:b8:c7:dd:55:cb:df:
fa:1d:cc:99:22:85:9d:a0:14:fa:b0:88:27:e7:14:
b9:ea:a9:8c:52:81:93:39:4b:9e:a8:80:f2:4b:79:
f2:f6:62:91:01:96:1d:12:2d:a2:d9:42:6c:c5:71:
d8:20:cc:dc:c0:13:fe:2e:83:3e:18:8b:00:c6:2e:
c8:53:68:e3:4d:90:12:33:8e:78:1c:cc:c0:61:21:
21:33:8f:48:04:de:87:28:0e:9c:ab:11:b5:7c:ab:
fa:72:57:47:d6:11:69:31:79:f4:a6:fa:79:0c:06:
29:29:01:26:a3:45:69:65:a9:74:0f:d5:80:f2:b3:
5a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:A2:10:B6:16:46:E6:24:02:EE:B2:0F:14:9A:8E:6C:23:C1:A0:85
X509v3 Authority Key Identifier:
keyid:D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/y6IQthZG5iQC7rIPFJqObCPBoIU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.246.232.0/24
80.246.236.0/22
Signature Algorithm: sha256WithRSAEncryption
73:e6:7c:bb:0b:35:5d:9f:1e:8e:5d:95:ee:64:37:da:bc:92:
12:7c:8f:05:73:68:98:08:ac:a7:46:ef:89:82:03:d7:9f:b8:
87:8e:5c:a8:9a:59:e1:26:f3:3b:0e:ae:c8:2d:ad:20:b3:c6:
9e:f8:80:91:3c:ba:46:b4:76:03:d6:3d:90:f7:de:5a:8d:f7:
35:4b:f3:1b:37:22:ec:62:05:05:4e:e1:7c:e4:fb:79:1f:13:
a5:03:c5:e6:05:3c:f7:3c:bd:bb:38:53:60:2f:25:39:ad:9a:
8a:bb:c5:7a:bf:13:7f:71:15:39:a5:51:a0:eb:b2:c3:b1:db:
58:c6:fb:d1:0f:d2:2c:48:40:fc:07:c2:49:66:4f:64:74:f0:
2c:91:24:3e:8b:43:0d:8e:4f:c9:6b:d9:05:e4:7a:65:bd:42:
9a:7e:ad:48:4a:f4:a1:9b:c8:58:49:9c:fa:e6:e9:32:01:bd:
b6:23:3a:3c:27:d4:a8:c5:20:cc:5e:6e:b2:ab:24:28:8a:83:
76:57:63:39:9e:af:9d:6c:69:15:fa:f0:98:f4:7f:e4:8f:22:
7f:ae:11:6d:63:97:6d:11:70:35:2f:cd:08:2b:3a:c2:91:4a:
4d:c6:bf:16:54:65:b4:b9:86:fa:81:e6:53:e0:5a:d3:de:c5:
56:0b:8f:28
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYnGWDpWptLMPYt3K0E8MxWXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1NjM3NjkyZmY1YzQ1NDg2ZDEwNTNiMTQ5ZGMxNDIwMDI2
Y2Q3MzMwHhcNMjMwODA1MTUzNjU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYmEyMTBiNjE2NDZlNjI0MDJlZWIyMGYxNDlhOGU2YzIzYzFhMDg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8kWRy38DU6/w6lXDf8TTVwNkP8XW
PlYWKVLd6CvW9sKryLr8b1HFuQkrAxcpvd0SHDCOe1TO6Zd0PMIjGqMq2L+I5k4H
qQyHHg629ke2LfYNl9ZzBgBJMZID6DNp2F9wkWtEZO6b0TT2UFeoj1wZ+BDnbJau
x8EhKCqPhDgDgey4x91Vy9/6HcyZIoWdoBT6sIgn5xS56qmMUoGTOUueqIDyS3ny
9mKRAZYdEi2i2UJsxXHYIMzcwBP+LoM+GIsAxi7IU2jjTZASM454HMzAYSEhM49I
BN6HKA6cqxG1fKv6cldH1hFpMXn0pvp5DAYpKQEmo0VpZal0D9WA8rNaOQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFMuiELYWRuYkAu6yDxSajmwjwaCFMB8GA1UdIwQY
MBaAFNVjdpL/XEVIbRBTsUncFCACbNczMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVdOMmt2OWNSVWh0RUZPeFNkd1VJQUpzMXpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi85OGUxMTMtZTAwMi00ZDkzLTlhNDkt
YWRlYWRlMjg2NWMxLzEveTZJUXRoWkc1aVFDN3JJUEZKcU9iQ1BCb0lVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi85OGUxMTMtZTAwMi00ZDkzLTlhNDktYWRlYWRlMjg2NWMx
LzEvMVdOMmt2OWNSVWh0RUZPeFNkd1VJQUpzMXpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAUPboAwQC
UPbsMA0GCSqGSIb3DQEBCwUAA4IBAQBz5ny7CzVdnx6OXZXuZDfavJISfI8Fc2iY
CKynRu+JggPXn7iHjlyomlnhJvM7Dq7ILa0gs8ae+ICRPLpGtHYD1j2Q995ajfc1
S/MbNyLsYgUFTuF85Pt5HxOlA8XmBTz3PL27OFNgLyU5rZqKu8V6vxN/cRU5pVGg
67LDsdtYxvvRD9IsSED8B8JJZk9kdPAskSQ+i0MNjk/Ja9kF5HplvUKafq1ISvSh
m8hYSZz65ukyAb22Izo8J9SoxSDMXm6yqyQoioN2V2M5nq+dbGkV+vCY9H/kjyJ/
rhFtY5dtEXA1L80IKzrCkUpNxr8WVGW0uYb6geZT4FrT3sVWC48o
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:52 2024 by rpki-client on console-fra.rpki-client.org