Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/py7Ty4rqPLsQU4ZiZ7B35m-SL_M.roa
File: py7Ty4rqPLsQU4ZiZ7B35m-SL_M.roa (raw, json)
Hash identifier: NxRM1pE/4M38HQhWnoAGQnQ+jXmNCne5jV1aQJCk9eg=
Subject key identifier: A7:2E:D3:CB:8A:EA:3C:BB:10:53:86:62:67:B0:77:E6:6F:92:2F:F3
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 01887398C5DC2369073DD8D1B12C75359C5F
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/py7Ty4rqPLsQU4ZiZ7B35m-SL_M.roa
Signing time: Wed 31 May 2023 20:56:11 +0000
ROA not before: Wed 31 May 2023 20:56:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49981
IP address blocks: 85.209.163.0/24 maxlen: 24
5.180.49.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 02 Aug 2023 11:41:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:73:98:c5:dc:23:69:07:3d:d8:d1:b1:2c:75:35:9c:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: May 31 20:56:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a72ed3cb8aea3cbb1053866267b077e66f922ff3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:57:26:04:ea:ac:ff:b1:d1:86:42:6b:e6:e3:
c2:29:b8:b1:63:05:0f:c3:b6:67:23:bf:43:bd:81:
9a:1b:4c:9b:e2:d7:40:12:60:f4:62:da:5f:1a:45:
91:fc:56:83:b1:b1:3a:a8:89:8f:92:d1:a8:7e:65:
ad:29:24:06:37:e2:f0:47:50:81:21:7c:1f:b1:47:
d3:c3:68:26:33:d8:33:bd:29:c6:f3:a0:12:42:7f:
7f:dc:ec:dd:f1:a0:17:76:11:f2:89:1d:61:af:19:
ad:a1:75:3d:93:24:81:ce:25:a4:02:56:94:ff:21:
42:52:b9:2e:83:2e:23:e4:94:de:15:26:a1:a2:26:
9b:67:9a:cd:01:23:18:01:c2:ab:30:85:27:f0:81:
51:9b:6e:65:fd:ee:c5:10:4f:0d:4e:53:3f:1a:71:
a3:3f:cb:16:af:c3:03:a5:b0:ff:0c:a9:6a:50:8d:
52:c9:89:92:a3:0e:1c:ac:5f:c9:6d:a2:89:49:ec:
de:00:c8:71:c3:9a:38:7d:f6:26:ef:19:8b:27:0e:
29:f6:1b:34:e9:c0:a4:0d:01:45:62:6f:28:d9:60:
c2:aa:ac:81:91:1e:88:83:e2:0f:65:35:80:4e:93:
ed:00:55:bd:6c:96:2e:ec:01:45:fd:87:85:f5:1d:
94:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:2E:D3:CB:8A:EA:3C:BB:10:53:86:62:67:B0:77:E6:6F:92:2F:F3
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/py7Ty4rqPLsQU4ZiZ7B35m-SL_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.49.0/24
85.209.163.0/24
Signature Algorithm: sha256WithRSAEncryption
66:24:db:9e:f9:ae:18:51:4e:3c:ee:60:9e:4c:e5:b6:c5:c4:
4e:34:76:a9:e2:a2:56:2a:ae:29:c1:01:96:f6:84:2d:6e:56:
5d:83:66:0d:e6:1e:6c:0a:82:bc:32:59:8e:1c:7f:e5:fa:0e:
37:82:73:19:d8:37:d2:72:0f:c2:6d:f3:2a:3f:c2:f9:f0:86:
9f:14:e0:a8:17:c7:11:88:b9:36:cd:1d:9e:e2:a7:93:73:2c:
71:e0:8f:1e:32:7c:5c:21:c0:a3:ea:87:14:7c:56:3c:c0:66:
85:d4:d5:e1:9c:ff:9f:99:75:01:5d:b9:ab:9b:d7:dd:bc:96:
8f:94:b5:b4:d2:0f:ce:8c:8a:bb:8e:66:4e:b7:2e:25:be:40:
7c:c2:db:9f:06:c7:7f:e1:b9:f1:8c:64:0a:ed:ed:8b:73:b0:
a2:46:c1:8b:66:31:69:74:95:3a:71:08:a8:2b:a7:37:66:69:
10:9e:e9:60:04:b9:18:41:64:86:7d:20:e6:a5:cc:a7:af:2c:
c9:ea:7f:21:3f:0f:6f:fc:ee:09:c5:49:0a:10:0d:be:ab:d6:
93:c3:66:35:5a:ee:34:ac:31:cd:e1:7c:a4:8f:6a:c5:d3:22:
95:cc:65:87:da:c5:ff:e4:00:6a:2c:b8:51:12:06:8a:c5:36:
95:93:40:14
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYhzmMXcI2kHPdjRsSx1NZxfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyZmRiNjc2NTRkZjYxODRlN2Q2MGM0MTUwZWE5NTMzYzJj
Zjk3MDQwHhcNMjMwNTMxMjA1NjExWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNzJlZDNjYjhhZWEzY2JiMTA1Mzg2NjI2N2IwNzdlNjZmOTIyZmYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuFcmBOqs/7HRhkJr5uPCKbixYwUP
w7ZnI79DvYGaG0yb4tdAEmD0YtpfGkWR/FaDsbE6qImPktGofmWtKSQGN+LwR1CB
IXwfsUfTw2gmM9gzvSnG86ASQn9/3Ozd8aAXdhHyiR1hrxmtoXU9kySBziWkAlaU
/yFCUrkugy4j5JTeFSahoiabZ5rNASMYAcKrMIUn8IFRm25l/e7FEE8NTlM/GnGj
P8sWr8MDpbD/DKlqUI1SyYmSow4crF/JbaKJSezeAMhxw5o4ffYm7xmLJw4p9hs0
6cCkDQFFYm8o2WDCqqyBkR6Ig+IPZTWATpPtAFW9bJYu7AFF/YeF9R2UiQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFKcu08uK6jy7EFOGYmewd+Zvki/zMB8GA1UdIwQY
MBaAFGL9tnZU32GE59YMQVDqlTPCz5cEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTct
ZTg2MTIxYzU5NGRmLzEvcHk3VHk0cnFQTHNRVTRaaVo3QjM1bS1TTF9NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTctZTg2MTIxYzU5NGRm
LzEvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQABbQxAwQA
VdGjMA0GCSqGSIb3DQEBCwUAA4IBAQBmJNue+a4YUU487mCeTOW2xcRONHap4qJW
Kq4pwQGW9oQtblZdg2YN5h5sCoK8MlmOHH/l+g43gnMZ2DfScg/CbfMqP8L58Iaf
FOCoF8cRiLk2zR2e4qeTcyxx4I8eMnxcIcCj6ocUfFY8wGaF1NXhnP+fmXUBXbmr
m9fdvJaPlLW00g/OjIq7jmZOty4lvkB8wtufBsd/4bnxjGQK7e2Lc7CiRsGLZjFp
dJU6cQioK6c3ZmkQnulgBLkYQWSGfSDmpcynryzJ6n8hPw9v/O4JxUkKEA2+q9aT
w2Y1Wu40rDHN4Xykj2rF0yKVzGWH2sX/5ABqLLhREgaKxTaVk0AU
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:25 2024 by rpki-client on console-fra.rpki-client.org