Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/0YEAAylVsb0gIUSpxkogHJnbiSA.roa
File: 0YEAAylVsb0gIUSpxkogHJnbiSA.roa (raw, json)
Hash identifier: OhiBUr7T5HUictOutXcYMZj0L8B+fC6RTSUinynnOaA=
Subject key identifier: D1:81:00:03:29:55:B1:BD:20:21:44:A9:C6:4A:20:1C:99:DB:89:20
Certificate issuer: /CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Certificate serial: 0188529791E8D4B48194A015BBCE1F92D14C
Authority key identifier: 0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/0YEAAylVsb0gIUSpxkogHJnbiSA.roa
Signing time: Thu 25 May 2023 11:07:24 +0000
ROA not before: Thu 25 May 2023 11:07:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204843
IP address blocks: 87.254.2.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:52:97:91:e8:d4:b4:81:94:a0:15:bb:ce:1f:92:d1:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Validity
Not Before: May 25 11:07:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d18100032955b1bd202144a9c64a201c99db8920
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:68:a5:91:02:4d:e7:8d:2a:cd:ea:bf:ff:ab:
48:15:5a:fe:68:cb:5b:6d:18:1d:00:6d:2b:21:6b:
b2:4a:a1:6b:f5:fa:85:ad:c2:67:83:50:06:65:84:
ca:b5:e5:b6:38:82:bf:7c:48:50:10:3e:a1:60:e5:
29:fe:c5:94:0e:f4:5a:b6:99:73:3c:85:76:2f:c4:
3f:ae:e8:83:a9:bd:8b:98:53:6c:f3:81:ba:b6:00:
f9:d9:e2:c3:14:79:a9:c3:97:ac:1a:4a:06:89:f8:
96:67:de:d6:bd:63:03:21:d2:b6:15:16:16:d1:88:
ea:a7:be:8c:c1:db:31:75:b2:07:2d:df:ed:bf:9f:
27:2d:65:2c:01:3a:75:06:5b:98:d1:5a:19:0f:d1:
fa:ac:14:57:f2:3f:c9:ec:bf:fe:f2:6b:25:57:dd:
35:e9:7c:7d:f9:c2:2e:41:a5:02:d2:40:0e:cb:94:
52:19:bc:ca:55:7c:17:ba:ac:34:08:ff:60:6c:f6:
f2:e1:75:b7:b0:a0:78:14:06:99:94:3c:94:56:6e:
04:29:72:8b:fe:9a:b1:be:0e:91:12:ec:9b:a4:4b:
6e:b3:68:46:b0:62:c7:af:36:2c:cc:d3:b7:42:d7:
18:64:9c:53:bb:62:a4:9b:1a:00:2b:9a:32:02:d9:
a2:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:81:00:03:29:55:B1:BD:20:21:44:A9:C6:4A:20:1C:99:DB:89:20
X509v3 Authority Key Identifier:
keyid:0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/0YEAAylVsb0gIUSpxkogHJnbiSA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/D_gMvf4YNUo8_bov4HmqLrxY3NQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.254.2.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:50:c1:4c:7f:5a:71:f0:3a:b1:68:52:1e:19:54:cc:22:ed:
84:3b:0c:31:d2:39:4d:c5:7d:58:66:67:d8:33:46:6b:58:f6:
ed:78:d0:38:ab:ee:40:ca:8e:ae:b0:cc:0e:ec:57:d8:f9:d0:
20:de:d4:52:1a:ac:f4:0a:22:f8:ca:e0:78:22:f7:14:db:c0:
33:30:12:0a:84:09:fc:05:fe:61:28:1f:ac:71:0c:48:1c:98:
fd:bb:da:92:55:8a:a5:0c:35:91:a2:7f:7e:bc:72:12:cf:15:
15:d8:bc:62:4f:59:c3:e2:1c:a3:69:33:22:91:4e:49:c4:2c:
38:6f:2d:98:fc:6b:d8:2f:ce:73:6e:84:f9:f8:09:94:75:21:
88:7a:7d:fa:29:f7:b5:fe:d3:26:69:32:a4:e1:19:3f:52:09:
b1:d1:78:15:21:09:77:66:2b:90:e2:3f:2f:bc:f7:5f:36:73:
1a:30:f4:6e:33:dc:c9:19:60:c7:29:4c:7f:3d:2d:86:69:11:
20:03:f9:11:e4:db:3e:99:12:d3:85:4f:c2:bd:39:f5:25:4e:
01:e0:ee:26:90:5e:91:f5:f6:e7:5b:72:65:12:e8:3c:ef:72:
ce:ad:36:02:7f:2e:8a:c8:ba:c1:78:a6:d9:dc:28:a5:f2:0e:
60:a8:67:4c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYhSl5Ho1LSBlKAVu84fktFMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmZjgwY2JkZmUxODM1NGEzY2ZkYmEyZmUwNzlhYTJlYmM1
OGRjZDQwHhcNMjMwNTI1MTEwNzI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMTgxMDAwMzI5NTViMWJkMjAyMTQ0YTljNjRhMjAxYzk5ZGI4OTIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArmilkQJN540qzeq//6tIFVr+aMtb
bRgdAG0rIWuySqFr9fqFrcJng1AGZYTKteW2OIK/fEhQED6hYOUp/sWUDvRatplz
PIV2L8Q/ruiDqb2LmFNs84G6tgD52eLDFHmpw5esGkoGifiWZ97WvWMDIdK2FRYW
0Yjqp76MwdsxdbIHLd/tv58nLWUsATp1BluY0VoZD9H6rBRX8j/J7L/+8mslV901
6Xx9+cIuQaUC0kAOy5RSGbzKVXwXuqw0CP9gbPby4XW3sKB4FAaZlDyUVm4EKXKL
/pqxvg6REuybpEtus2hGsGLHrzYszNO3QtcYZJxTu2KkmxoAK5oyAtmiXwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNGBAAMpVbG9ICFEqcZKIByZ24kgMB8GA1UdIwQY
MBaAFA/4DL3+GDVKPP26L+B5qi68WNzUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRF9nTXZmNFlOVW84X2JvdjRIbXFMcnhZM05RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS8xMjk1NjQtZjFkYi00ZGM1LTg5MDYt
NmZjZGNkNWFiNjYwLzEvMFlFQUF5bFZzYjBnSVVTcHhrb2dISm5iaVNBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOS8xMjk1NjQtZjFkYi00ZGM1LTg5MDYtNmZjZGNkNWFiNjYw
LzEvRF9nTXZmNFlOVW84X2JvdjRIbXFMcnhZM05RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAV/4CMA0G
CSqGSIb3DQEBCwUAA4IBAQCNUMFMf1px8DqxaFIeGVTMIu2EOwwx0jlNxX1YZmfY
M0ZrWPbteNA4q+5Ayo6usMwO7FfY+dAg3tRSGqz0CiL4yuB4IvcU28AzMBIKhAn8
Bf5hKB+scQxIHJj9u9qSVYqlDDWRon9+vHISzxUV2LxiT1nD4hyjaTMikU5JxCw4
by2Y/GvYL85zboT5+AmUdSGIen36Kfe1/tMmaTKk4Rk/Ugmx0XgVIQl3ZiuQ4j8v
vPdfNnMaMPRuM9zJGWDHKUx/PS2GaREgA/kR5Ns+mRLThU/CvTn1JU4B4O4mkF6R
9fbnW3JlEug873LOrTYCfy6KyLrBeKbZ3Cil8g5gqGdM
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:38 2023 by rpki-client on console-ams.rpki-client.org