Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/Y7aZAlCIVnWTI7LfWZgVUbSnlP0.roa
File: Y7aZAlCIVnWTI7LfWZgVUbSnlP0.roa (raw, json)
Hash identifier: Njv94ZkLAGPPD7Na1m1cHjCWXcarqPMAhDOd3nifeG8=
Subject key identifier: 63:B6:99:02:50:88:56:75:93:23:B2:DF:59:98:15:51:B4:A7:94:FD
Certificate issuer: /CN=ad9681f144db1430ac315c8306e1c14730c5fec2
Certificate serial: 018776F021AA1462167F62D8AB50970AEF97
Authority key identifier: AD:96:81:F1:44:DB:14:30:AC:31:5C:83:06:E1:C1:47:30:C5:FE:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rZaB8UTbFDCsMVyDBuHBRzDF_sI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/Y7aZAlCIVnWTI7LfWZgVUbSnlP0.roa
Signing time: Wed 12 Apr 2023 19:27:41 +0000
ROA not before: Wed 12 Apr 2023 19:27:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41881
IP address blocks: 89.221.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:76:f0:21:aa:14:62:16:7f:62:d8:ab:50:97:0a:ef:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad9681f144db1430ac315c8306e1c14730c5fec2
Validity
Not Before: Apr 12 19:27:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=63b69902508856759323b2df59981551b4a794fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:91:60:b3:80:37:12:b1:47:38:71:23:29:43:
d5:06:d8:f4:61:79:14:be:39:4a:8d:43:26:c7:7e:
5b:06:d4:cc:35:3f:e8:d8:25:af:b7:d5:a9:2f:f6:
e4:9a:8c:ae:b7:2e:75:c6:c4:d8:b8:3a:c5:4e:7c:
5d:07:64:84:d6:17:ec:bd:d2:a5:e8:2b:07:07:23:
45:63:6c:91:fc:30:02:44:49:ad:28:49:bc:62:85:
f2:3d:0d:74:d4:44:16:9c:df:7f:a9:17:d5:f7:9a:
fe:4e:b6:28:17:ea:27:bd:e2:24:77:e3:4a:a0:7e:
c3:01:2f:e0:ec:bb:4f:27:8d:aa:80:1a:df:5f:75:
01:34:d6:91:8e:7e:13:6c:39:5e:2a:d5:11:9f:40:
aa:94:4b:07:47:a4:e9:ab:c4:dd:1a:37:34:39:23:
cf:9f:6c:a7:ae:94:9a:6a:71:57:3c:b4:6f:2c:a6:
f7:77:02:58:f0:c5:e5:89:e0:6a:36:2d:58:0d:f1:
9a:20:ff:11:4e:bc:dc:38:83:97:a8:cb:57:e5:7d:
35:de:29:b2:33:ab:f9:4e:26:59:d2:a9:ba:34:13:
cc:41:fd:12:ba:5b:8a:22:d2:62:d0:2b:b6:44:19:
9f:5d:a2:b0:dd:96:df:1a:77:fc:38:3f:dd:a2:ee:
f7:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:B6:99:02:50:88:56:75:93:23:B2:DF:59:98:15:51:B4:A7:94:FD
X509v3 Authority Key Identifier:
keyid:AD:96:81:F1:44:DB:14:30:AC:31:5C:83:06:E1:C1:47:30:C5:FE:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rZaB8UTbFDCsMVyDBuHBRzDF_sI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/Y7aZAlCIVnWTI7LfWZgVUbSnlP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/405b5f-8d26-4ee3-b87f-a3a13e3a7d80/1/rZaB8UTbFDCsMVyDBuHBRzDF_sI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.221.95.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:8d:f6:17:37:f7:76:86:f4:25:72:f1:6e:9b:50:6b:59:93:
44:1f:f5:92:62:dc:34:4a:6d:d1:00:16:80:96:f3:b2:da:bd:
59:2f:87:c5:bc:6e:b1:ef:b8:a7:05:8c:04:a0:d7:57:50:65:
bf:48:35:61:23:c0:c0:79:91:92:9e:11:e5:9d:1a:0b:83:c0:
6c:fb:f5:8a:34:4d:bc:fe:73:9a:5c:bb:6c:39:e6:cb:dc:be:
77:d5:a4:40:cf:f7:f1:95:cd:ed:ed:07:ea:4d:0c:0c:1b:9c:
c6:9e:ec:60:50:5d:fd:c3:40:8b:b6:d8:f8:ca:37:09:fa:f6:
69:ae:ad:98:03:2f:16:b4:3c:5e:74:85:a6:d4:2c:9f:45:80:
f0:61:c3:10:ee:de:42:c2:39:4a:02:f0:05:4e:60:39:d4:27:
33:ec:3b:97:da:45:1f:89:a1:d8:66:ec:52:3c:da:c3:3d:fd:
50:fe:ec:ca:fb:cc:34:59:d8:36:51:22:d9:97:67:4c:c5:f3:
f9:7d:fb:00:4a:a2:3f:10:b8:cd:c0:80:f2:84:b9:73:a4:0e:
ea:85:49:8a:c8:40:f2:2c:f9:9f:b9:1d:20:12:ec:8a:82:83:
3a:fd:c4:11:ba:5d:05:f0:22:7a:4e:96:2c:38:dc:42:46:f5:
43:e7:18:c8
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYd28CGqFGIWf2LYq1CXCu+XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkOTY4MWYxNDRkYjE0MzBhYzMxNWM4MzA2ZTFjMTQ3MzBj
NWZlYzIwHhcNMjMwNDEyMTkyNzQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2M2I2OTkwMjUwODg1Njc1OTMyM2IyZGY1OTk4MTU1MWI0YTc5NGZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmJFgs4A3ErFHOHEjKUPVBtj0YXkU
vjlKjUMmx35bBtTMNT/o2CWvt9WpL/bkmoyuty51xsTYuDrFTnxdB2SE1hfsvdKl
6CsHByNFY2yR/DACREmtKEm8YoXyPQ101EQWnN9/qRfV95r+TrYoF+onveIkd+NK
oH7DAS/g7LtPJ42qgBrfX3UBNNaRjn4TbDleKtURn0CqlEsHR6Tpq8TdGjc0OSPP
n2ynrpSaanFXPLRvLKb3dwJY8MXlieBqNi1YDfGaIP8RTrzcOIOXqMtX5X013imy
M6v5TiZZ0qm6NBPMQf0SuluKItJi0Cu2RBmfXaKw3ZbfGnf8OD/dou73uQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGO2mQJQiFZ1kyOy31mYFVG0p5T9MB8GA1UdIwQY
MBaAFK2WgfFE2xQwrDFcgwbhwUcwxf7CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvclphQjhVVGJGRENzTVZ5REJ1SEJSekRGX3NJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy80MDViNWYtOGQyNi00ZWUzLWI4N2Yt
YTNhMTNlM2E3ZDgwLzEvWTdhWkFsQ0lWbldUSTdMZldaZ1ZVYlNubFAwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYy80MDViNWYtOGQyNi00ZWUzLWI4N2YtYTNhMTNlM2E3ZDgw
LzEvclphQjhVVGJGRENzTVZ5REJ1SEJSekRGX3NJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWd1fMA0G
CSqGSIb3DQEBCwUAA4IBAQDEjfYXN/d2hvQlcvFum1BrWZNEH/WSYtw0Sm3RABaA
lvOy2r1ZL4fFvG6x77inBYwEoNdXUGW/SDVhI8DAeZGSnhHlnRoLg8Bs+/WKNE28
/nOaXLtsOebL3L531aRAz/fxlc3t7QfqTQwMG5zGnuxgUF39w0CLttj4yjcJ+vZp
rq2YAy8WtDxedIWm1CyfRYDwYcMQ7t5CwjlKAvAFTmA51Ccz7DuX2kUfiaHYZuxS
PNrDPf1Q/uzK+8w0Wdg2USLZl2dMxfP5ffsASqI/ELjNwIDyhLlzpA7qhUmKyEDy
LPmfuR0gEuyKgoM6/cQRul0F8CJ6TpYsONxCRvVD5xjI
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:07 2024 by rpki-client on console-fra.rpki-client.org