Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/ypP7Hu7g8-De05msS_Cwx3ajGv0.roa
File: ypP7Hu7g8-De05msS_Cwx3ajGv0.roa (raw, json)
Hash identifier: PBe71eo1k2Qz+7fU/ZzXtphsdkhaymV3cN2dkOiWcNE=
Subject key identifier: CA:93:FB:1E:EE:E0:F3:E0:DE:D3:99:AC:4B:F0:B0:C7:76:A3:1A:FD
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 019186336CE4D49F93B6A1D30C7E0D1AB914
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/ypP7Hu7g8-De05msS_Cwx3ajGv0.roa
Signing time: Sat 24 Aug 2024 21:03:22 +0000
ROA not before: Sat 24 Aug 2024 21:03:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215622
IP address blocks: 83.147.194.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 02 Oct 2024 20:36:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:86:33:6c:e4:d4:9f:93:b6:a1:d3:0c:7e:0d:1a:b9:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Aug 24 21:03:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ca93fb1eeee0f3e0ded399ac4bf0b0c776a31afd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:3b:68:93:0f:49:37:f0:3a:25:81:9f:45:67:
b6:c0:1f:f2:ed:e0:23:3e:f7:2a:3e:f7:4c:9f:99:
18:09:4e:ce:e4:08:1f:09:1b:ac:2c:16:87:a6:f9:
fc:83:4a:03:01:ce:73:12:97:92:36:84:56:3b:f0:
3d:d4:32:69:13:4d:ad:64:07:b5:06:b9:51:52:6b:
95:88:43:23:c9:d7:0c:f8:81:48:8c:6f:7f:1e:bd:
6a:d4:fb:48:32:1c:6a:9a:2a:b3:ed:05:17:5c:e6:
29:af:6a:0c:2e:84:81:b4:68:3c:83:af:47:b3:97:
18:19:76:60:39:5e:07:e2:5a:6b:5a:f3:11:b5:58:
3a:7f:f7:ca:61:e5:d5:0a:1b:9e:45:58:1a:2f:3f:
0e:fd:83:d5:b0:f4:4b:a4:f9:77:4d:eb:19:60:46:
f3:8b:4a:5a:a8:cc:2f:1d:b1:5d:9d:5d:1a:11:df:
69:82:d7:ec:33:c5:ef:90:e7:72:4c:90:6d:f9:30:
fe:9f:05:4a:dd:e9:0a:fd:c3:14:36:f7:c2:84:2b:
79:cc:75:ff:70:50:05:90:1c:65:d0:2e:94:ad:02:
85:3a:6a:94:ad:75:73:c1:19:84:b3:97:23:c0:01:
e1:01:32:ba:da:fa:a5:64:5d:85:52:dd:5c:d1:11:
b3:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:93:FB:1E:EE:E0:F3:E0:DE:D3:99:AC:4B:F0:B0:C7:76:A3:1A:FD
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/ypP7Hu7g8-De05msS_Cwx3ajGv0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.194.0/24
Signature Algorithm: sha256WithRSAEncryption
74:be:c0:73:77:08:e3:df:ed:c0:98:d0:b4:aa:5f:96:ae:11:
cf:db:76:c8:84:3e:37:48:d5:dc:5f:50:49:4c:97:a4:7b:1f:
61:eb:d1:47:72:f9:9b:a7:d2:cb:6a:3b:10:51:20:98:1c:d3:
ea:b6:cc:eb:f4:b8:09:41:ea:73:ac:8e:36:22:4b:3a:2c:b4:
87:f1:72:42:23:0d:93:f0:fa:49:c3:e9:69:ed:5b:55:de:68:
69:45:46:4d:86:65:f6:44:80:4f:fc:79:ea:a1:26:df:2f:ae:
61:41:90:94:a1:31:ae:62:a4:30:c3:51:f0:cf:7f:21:18:27:
76:2c:74:50:06:57:88:7d:86:a5:6d:39:b6:05:b0:53:33:e5:
ee:9d:67:92:21:a1:c4:fa:e6:50:72:23:b1:13:21:19:b3:a1:
b5:07:e9:04:54:29:13:45:c2:27:b5:04:86:c9:44:37:48:17:
32:ca:ea:78:ad:88:d0:65:c7:9d:18:32:16:67:87:12:a3:6c:
40:dd:85:35:62:1b:a9:23:a2:cc:60:61:48:d9:6b:6f:bd:25:
d9:e9:1f:57:61:17:ed:5e:b1:d1:3a:34:0c:16:fb:05:72:ec:
07:d8:28:60:2d:79:a6:5d:ad:5d:a4:a7:2c:fc:7f:68:78:90:
3f:81:24:7f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZGGM2zk1J+TtqHTDH4NGrkUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyNzc4ZGUyYTliZTk4MDIxMjAzODJlNzUwZDE1OWU5NTg3
MmMyYWUwHhcNMjQwODI0MjEwMzIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYTkzZmIxZWVlZTBmM2UwZGVkMzk5YWM0YmYwYjBjNzc2YTMxYWZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4Dtokw9JN/A6JYGfRWe2wB/y7eAj
PvcqPvdMn5kYCU7O5AgfCRusLBaHpvn8g0oDAc5zEpeSNoRWO/A91DJpE02tZAe1
BrlRUmuViEMjydcM+IFIjG9/Hr1q1PtIMhxqmiqz7QUXXOYpr2oMLoSBtGg8g69H
s5cYGXZgOV4H4lprWvMRtVg6f/fKYeXVChueRVgaLz8O/YPVsPRLpPl3TesZYEbz
i0paqMwvHbFdnV0aEd9pgtfsM8XvkOdyTJBt+TD+nwVK3ekK/cMUNvfChCt5zHX/
cFAFkBxl0C6UrQKFOmqUrXVzwRmEs5cjwAHhATK62vqlZF2FUt1c0RGzcQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMqT+x7u4PPg3tOZrEvwsMd2oxr9MB8GA1UdIwQY
MBaAFMJ3jeKpvpgCEgOC51DRWelYcsKuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEt
Zjk4ZGE1NGFmNDM0LzEveXBQN0h1N2c4LURlMDVtc1NfQ3d4M2FqR3YwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOC80MTA5MzAtOWQ2NS00YmU4LTllYmEtZjk4ZGE1NGFmNDM0
LzEvd25lTjRxbS1tQUlTQTRMblVORlo2Vmh5d3E0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAU5PCMA0G
CSqGSIb3DQEBCwUAA4IBAQB0vsBzdwjj3+3AmNC0ql+WrhHP23bIhD43SNXcX1BJ
TJekex9h69FHcvmbp9LLajsQUSCYHNPqtszr9LgJQepzrI42Iks6LLSH8XJCIw2T
8PpJw+lp7VtV3mhpRUZNhmX2RIBP/HnqoSbfL65hQZCUoTGuYqQww1Hwz38hGCd2
LHRQBleIfYalbTm2BbBTM+XunWeSIaHE+uZQciOxEyEZs6G1B+kEVCkTRcIntQSG
yUQ3SBcyyup4rYjQZcedGDIWZ4cSo2xA3YU1YhupI6LMYGFI2WtvvSXZ6R9XYRft
XrHROjQMFvsFcuwH2ChgLXmmXa1dpKcs/H9oeJA/gSR/
Generated at Wed Oct 2 21:47:24 2024 by rpki-client on console-fra.rpki-client.org