Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/Ryld_NjoxoeHsGKcbDFec5lFX5s.roa
File: Ryld_NjoxoeHsGKcbDFec5lFX5s.roa (raw, json)
Hash identifier: KnJvH0uyrhrWsmsknTHeHEwwZEnx1XZXmDIUrcdLQmE=
Subject key identifier: 47:29:5D:FC:D8:E8:C6:87:87:B0:62:9C:6C:31:5E:73:99:45:5F:9B
Certificate issuer: /CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Certificate serial: 018CF7406151E9F691B5F8E63C812AC7619D
Authority key identifier: 57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/Ryld_NjoxoeHsGKcbDFec5lFX5s.roa
Signing time: Thu 11 Jan 2024 06:40:40 +0000
ROA not before: Thu 11 Jan 2024 06:40:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215749
IP address blocks: 178.236.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 May 2024 01:52:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f7:40:61:51:e9:f6:91:b5:f8:e6:3c:81:2a:c7:61:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5794afdb5e6a1885780920a54ffa82408ea85ba1
Validity
Not Before: Jan 11 06:40:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=47295dfcd8e8c68787b0629c6c315e7399455f9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:4c:36:65:4f:b3:70:03:b2:3f:28:42:e5:c9:
8a:1d:5b:01:c0:f6:08:cc:65:36:ac:96:d8:fa:b4:
a2:1b:bb:bf:43:56:88:5b:d0:7f:d9:6f:0a:56:ef:
4f:79:cb:21:cd:d6:b4:8d:07:ec:a7:3b:ad:c9:3a:
df:0e:92:0b:a5:dc:7d:3e:73:34:7a:9f:26:16:92:
d2:e2:d2:63:dc:35:07:b9:23:04:ce:33:1c:bf:98:
d8:dd:c9:8e:9c:ec:14:31:6d:9a:ff:a3:7b:b4:bb:
12:07:bb:ff:ba:9d:6d:73:7b:25:52:c8:59:1a:28:
92:62:2f:8f:be:90:84:0e:cb:3f:89:e3:01:17:b8:
9e:e8:28:b0:44:1e:98:f0:d4:9c:89:30:bf:06:72:
de:a1:f4:38:2c:27:ee:a0:5a:27:5d:45:28:a7:30:
09:bb:a2:0b:b2:69:c5:0f:11:53:ed:72:8e:7c:bd:
a1:d7:88:a9:d1:bf:8d:8d:9a:b8:4d:f2:51:92:e2:
f3:08:d4:45:ac:bb:74:a0:f4:78:29:4c:1a:48:6c:
d9:2a:c3:e9:e3:4c:27:85:c4:61:04:b1:ba:ed:b5:
cd:e9:e5:fe:54:36:30:88:3a:56:ca:0e:fd:4b:23:
de:68:f3:2b:f2:2f:ca:93:d6:bd:1f:ce:56:58:6e:
74:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:29:5D:FC:D8:E8:C6:87:87:B0:62:9C:6C:31:5E:73:99:45:5F:9B
X509v3 Authority Key Identifier:
keyid:57:94:AF:DB:5E:6A:18:85:78:09:20:A5:4F:FA:82:40:8E:A8:5B:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5Sv215qGIV4CSClT_qCQI6oW6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/Ryld_NjoxoeHsGKcbDFec5lFX5s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/ddce4d-9912-487d-b55d-47d82a41a8f3/1/V5Sv215qGIV4CSClT_qCQI6oW6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.236.237.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:b5:d1:41:57:d1:75:24:2e:75:1b:9e:a7:bf:bc:a7:e9:9a:
54:08:1c:6f:ce:83:20:c4:6c:7b:98:d2:0b:66:75:d1:9a:05:
be:2d:bb:2e:95:f1:16:69:8a:af:b4:88:cf:18:b2:aa:a0:16:
44:dc:70:d8:21:86:16:56:46:53:dd:61:54:46:b3:31:1c:ea:
61:82:d2:96:e0:e2:75:4d:74:f5:10:41:75:9b:43:61:f9:2e:
eb:64:24:e5:e6:da:ff:4b:07:64:be:d0:b8:4d:97:dc:74:e8:
0b:9a:28:cc:55:6e:9c:f1:73:bb:d5:e7:45:ed:ef:0c:11:0c:
cb:f3:7e:57:72:2f:5c:9d:a4:87:9a:86:3a:e3:0c:ef:30:a7:
3a:26:0a:62:c2:a0:b9:f9:f4:67:76:41:95:26:e6:c9:49:98:
83:ee:11:d9:38:e1:3d:87:76:fe:28:24:f3:47:d5:be:40:5a:
3b:d6:72:99:b1:24:dd:d5:53:13:08:57:fd:9b:88:26:c9:5b:
5f:f0:6b:7f:53:6f:3b:d7:b4:93:82:de:11:e8:14:2a:24:b6:
fe:c9:48:a8:48:47:78:55:e1:14:64:83:3e:49:cb:8c:08:ca:
9d:51:2e:e6:87:17:d6:98:c8:72:c4:7f:ca:6f:d1:af:02:cc:
d6:84:39:67
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYz3QGFR6faRtfjmPIEqx2GdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU3OTRhZmRiNWU2YTE4ODU3ODA5MjBhNTRmZmE4MjQwOGVh
ODViYTEwHhcNMjQwMTExMDY0MDQwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NzI5NWRmY2Q4ZThjNjg3ODdiMDYyOWM2YzMxNWU3Mzk5NDU1ZjliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmUw2ZU+zcAOyPyhC5cmKHVsBwPYI
zGU2rJbY+rSiG7u/Q1aIW9B/2W8KVu9Pecshzda0jQfspzutyTrfDpILpdx9PnM0
ep8mFpLS4tJj3DUHuSMEzjMcv5jY3cmOnOwUMW2a/6N7tLsSB7v/up1tc3slUshZ
GiiSYi+PvpCEDss/ieMBF7ie6CiwRB6Y8NSciTC/BnLeofQ4LCfuoFonXUUopzAJ
u6ILsmnFDxFT7XKOfL2h14ip0b+NjZq4TfJRkuLzCNRFrLt0oPR4KUwaSGzZKsPp
40wnhcRhBLG67bXN6eX+VDYwiDpWyg79SyPeaPMr8i/Kk9a9H85WWG50uQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEcpXfzY6MaHh7BinGwxXnOZRV+bMB8GA1UdIwQY
MBaAFFeUr9teahiFeAkgpU/6gkCOqFuhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVjVTdjIxNXFHSVY0Q1NDbFRfcUNRSTZvVzZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS9kZGNlNGQtOTkxMi00ODdkLWI1NWQt
NDdkODJhNDFhOGYzLzEvUnlsZF9Oam94b2VIc0dLY2JERmVjNWxGWDVzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMS9kZGNlNGQtOTkxMi00ODdkLWI1NWQtNDdkODJhNDFhOGYz
LzEvVjVTdjIxNXFHSVY0Q1NDbFRfcUNRSTZvVzZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsuztMA0G
CSqGSIb3DQEBCwUAA4IBAQCatdFBV9F1JC51G56nv7yn6ZpUCBxvzoMgxGx7mNIL
ZnXRmgW+LbsulfEWaYqvtIjPGLKqoBZE3HDYIYYWVkZT3WFURrMxHOphgtKW4OJ1
TXT1EEF1m0Nh+S7rZCTl5tr/SwdkvtC4TZfcdOgLmijMVW6c8XO71edF7e8MEQzL
835Xci9cnaSHmoY64wzvMKc6JgpiwqC5+fRndkGVJubJSZiD7hHZOOE9h3b+KCTz
R9W+QFo71nKZsSTd1VMTCFf9m4gmyVtf8Gt/U28717STgt4R6BQqJLb+yUioSEd4
VeEUZIM+ScuMCMqdUS7mhxfWmMhyxH/Kb9GvAszWhDln
Generated at Tue May 7 03:15:02 2024 by rpki-client on console-fra.rpki-client.org