Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/YrpdxXTvpNihEce8-DqZO-_TSTg.roa
File: YrpdxXTvpNihEce8-DqZO-_TSTg.roa (raw, json)
Hash identifier: c14PaUmeyGMfU9uzrcZZ2aYaNEIosAod41ie2yYkAb0=
Subject key identifier: 62:BA:5D:C5:74:EF:A4:D8:A1:11:C7:BC:F8:3A:99:3B:EF:D3:49:38
Certificate issuer: /CN=c04db7623241d7e6678fc25751fa4e0b6665186b
Certificate serial: 018B5CB3CA27A1444B3E61AC21B11A438571
Authority key identifier: C0:4D:B7:62:32:41:D7:E6:67:8F:C2:57:51:FA:4E:0B:66:65:18:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/YrpdxXTvpNihEce8-DqZO-_TSTg.roa
Signing time: Mon 23 Oct 2023 13:22:48 +0000
ROA not before: Mon 23 Oct 2023 13:22:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12325
IP address blocks: 194.8.80.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5c:b3:ca:27:a1:44:4b:3e:61:ac:21:b1:1a:43:85:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c04db7623241d7e6678fc25751fa4e0b6665186b
Validity
Not Before: Oct 23 13:22:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62ba5dc574efa4d8a111c7bcf83a993befd34938
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:7d:50:97:11:06:65:2a:5e:9b:a8:b1:99:4b:
e8:12:ef:2e:f3:48:dd:68:41:91:e0:1c:15:38:b5:
c4:40:3e:79:05:af:c9:58:83:c5:53:10:b9:ff:3d:
a9:c8:61:8c:ed:a3:de:fa:b1:48:c9:4d:ad:80:88:
3a:cf:c3:ee:1a:1b:fe:0d:99:bf:34:28:1c:8e:55:
56:8d:a5:60:b7:0b:97:6b:74:54:e5:74:3a:d3:48:
c3:4f:0d:6f:0c:d9:b3:ac:af:ba:fb:32:44:9d:bf:
8a:cd:03:dc:f7:a8:ac:08:ce:9b:51:2a:12:9c:1e:
04:aa:4c:13:c4:a1:dd:12:0c:70:0f:fa:0d:32:68:
c7:c3:09:a4:42:d9:46:bb:46:ce:5d:86:e3:5c:23:
47:6c:37:c8:40:fc:2d:3c:01:1a:0f:1e:59:28:2a:
94:93:34:9e:83:ec:25:73:5b:a0:8b:a9:c9:39:0e:
cb:0e:16:7c:71:ce:89:35:fe:28:29:eb:90:03:a8:
ad:b7:e4:c4:fd:0e:d5:39:ca:d9:68:41:8f:7f:56:
7e:66:7e:a6:0f:cd:57:6a:13:d1:38:58:fd:98:de:
60:58:8f:25:24:82:7e:0e:cc:dc:68:32:14:ec:24:
c4:c7:9d:62:b1:c7:29:c1:33:e3:27:b7:22:3a:9e:
01:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:BA:5D:C5:74:EF:A4:D8:A1:11:C7:BC:F8:3A:99:3B:EF:D3:49:38
X509v3 Authority Key Identifier:
keyid:C0:4D:B7:62:32:41:D7:E6:67:8F:C2:57:51:FA:4E:0B:66:65:18:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/YrpdxXTvpNihEce8-DqZO-_TSTg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/wE23YjJB1-Znj8JXUfpOC2ZlGGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.8.80.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:38:fe:98:a7:f7:10:b7:43:9f:84:d0:3f:98:bf:2d:a4:11:
0e:cb:b9:88:05:e3:39:2e:4f:d8:4b:d1:2a:d1:f0:d0:93:68:
61:da:b9:d0:61:d2:ec:01:b2:cc:2c:fc:65:07:be:15:34:2e:
1c:72:79:25:9f:66:06:95:be:16:09:3e:45:9e:03:70:13:4b:
c3:e2:61:0c:c8:fe:3c:6f:9a:94:bd:60:c6:9e:30:da:0d:08:
d3:52:3b:d3:e0:0b:b2:c7:13:aa:66:c1:b8:88:9f:98:37:f1:
70:c5:ea:b8:a7:28:db:aa:c7:77:e1:56:05:c4:2b:be:27:70:
4b:f6:b3:ba:f9:dd:dc:5a:fb:09:73:3c:bb:f9:85:e2:60:98:
d6:9d:2d:32:a4:f8:74:da:7b:98:0d:83:51:fb:35:a5:65:95:
ba:7c:62:45:05:75:80:22:b2:68:a1:3a:db:28:97:62:30:16:
e5:d7:4a:3b:54:53:4f:1e:66:66:24:5a:5e:e1:30:0e:10:72:
84:4a:3b:b0:c2:ab:c3:80:3a:37:7a:c7:8e:c9:f6:5d:e4:6c:
92:02:75:35:84:fc:4c:6c:a7:fc:65:7f:a8:60:0a:10:69:41:
55:92:86:f3:a0:c0:67:c2:13:8f:10:d5:19:96:5f:5f:e4:71:
04:b5:67:87
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYtcs8onoURLPmGsIbEaQ4VxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMwNGRiNzYyMzI0MWQ3ZTY2NzhmYzI1NzUxZmE0ZTBiNjY2
NTE4NmIwHhcNMjMxMDIzMTMyMjQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MmJhNWRjNTc0ZWZhNGQ4YTExMWM3YmNmODNhOTkzYmVmZDM0OTM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmX1QlxEGZSpem6ixmUvoEu8u80jd
aEGR4BwVOLXEQD55Ba/JWIPFUxC5/z2pyGGM7aPe+rFIyU2tgIg6z8PuGhv+DZm/
NCgcjlVWjaVgtwuXa3RU5XQ600jDTw1vDNmzrK+6+zJEnb+KzQPc96isCM6bUSoS
nB4EqkwTxKHdEgxwD/oNMmjHwwmkQtlGu0bOXYbjXCNHbDfIQPwtPAEaDx5ZKCqU
kzSeg+wlc1ugi6nJOQ7LDhZ8cc6JNf4oKeuQA6itt+TE/Q7VOcrZaEGPf1Z+Zn6m
D81XahPROFj9mN5gWI8lJIJ+DszcaDIU7CTEx51isccpwTPjJ7ciOp4BywIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGK6XcV076TYoRHHvPg6mTvv00k4MB8GA1UdIwQY
MBaAFMBNt2IyQdfmZ4/CV1H6TgtmZRhrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd0UyM1lqSkIxLVpuajhKWFVmcE9DMlpsR0dzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC82ZTg3NGUtNzNmZS00ZGJiLWI3NGMt
MDQyM2YyNjNmMmNiLzEvWXJwZHhYVHZwTmloRWNlOC1EcVpPLV9UU1RnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC82ZTg3NGUtNzNmZS00ZGJiLWI3NGMtMDQyM2YyNjNmMmNi
LzEvd0UyM1lqSkIxLVpuajhKWFVmcE9DMlpsR0dzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwghQMA0G
CSqGSIb3DQEBCwUAA4IBAQAKOP6Yp/cQt0OfhNA/mL8tpBEOy7mIBeM5Lk/YS9Eq
0fDQk2hh2rnQYdLsAbLMLPxlB74VNC4ccnkln2YGlb4WCT5FngNwE0vD4mEMyP48
b5qUvWDGnjDaDQjTUjvT4AuyxxOqZsG4iJ+YN/Fwxeq4pyjbqsd34VYFxCu+J3BL
9rO6+d3cWvsJczy7+YXiYJjWnS0ypPh02nuYDYNR+zWlZZW6fGJFBXWAIrJooTrb
KJdiMBbl10o7VFNPHmZmJFpe4TAOEHKESjuwwqvDgDo3eseOyfZd5GySAnU1hPxM
bKf8ZX+oYAoQaUFVkobzoMBnwhOPENUZll9f5HEEtWeH
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:59 2024 by rpki-client on console-ams.rpki-client.org