Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/a3af20-a4a9-4e2e-b344-30b1886d797a/1/Y0rbKgIVYDfGpi05vvztDsC66EI.roa
File: Y0rbKgIVYDfGpi05vvztDsC66EI.roa (raw, json)
Hash identifier: PpKHbp5kke+asWsT/DpArMLjLFXtWBBI7yaZKm5gn7g=
Subject key identifier: 63:4A:DB:2A:02:15:60:37:C6:A6:2D:39:BE:FC:ED:0E:C0:BA:E8:42
Certificate issuer: /CN=8b9facca22cc0c60e237a7b20416a260045a5c68
Certificate serial: 01856FB11A0AF97E744EB3D221FB798CEF66
Authority key identifier: 8B:9F:AC:CA:22:CC:0C:60:E2:37:A7:B2:04:16:A2:60:04:5A:5C:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i5-syiLMDGDiN6eyBBaiYARaXGg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/a3af20-a4a9-4e2e-b344-30b1886d797a/1/Y0rbKgIVYDfGpi05vvztDsC66EI.roa
Signing time: Sun 01 Jan 2023 23:35:55 +0000
ROA not before: Sun 01 Jan 2023 23:35:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15404
IP address blocks: 91.212.113.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:b1:1a:0a:f9:7e:74:4e:b3:d2:21:fb:79:8c:ef:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b9facca22cc0c60e237a7b20416a260045a5c68
Validity
Not Before: Jan 1 23:35:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=634adb2a02156037c6a62d39befced0ec0bae842
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:cf:ec:f1:51:b2:fe:bf:56:48:5f:26:87:33:
ac:1c:b6:5b:51:2f:a6:b5:5e:e1:98:d5:56:09:45:
cc:9e:60:7e:09:57:d1:01:b4:e9:81:20:aa:06:d6:
12:b9:8a:c6:60:22:2b:c6:6f:8f:af:d4:57:50:41:
37:2f:ed:22:f7:5f:ae:66:19:85:25:ac:39:a2:d7:
d6:0b:7b:af:82:a8:f0:dc:79:49:5f:ac:da:ca:73:
04:ea:c7:e2:9e:01:e9:ab:7b:c2:46:67:75:48:e2:
cf:a4:81:97:f0:a3:b0:fe:39:61:9c:78:44:19:36:
7d:45:fb:6e:58:14:ad:d0:1f:99:cf:84:90:e5:80:
53:70:6a:1f:04:3c:fb:0c:78:b7:52:3d:32:67:39:
5b:85:61:f6:57:43:73:c3:6e:12:fd:30:52:47:9d:
c2:90:5f:3f:7c:90:5e:ee:dc:d6:0d:96:a8:df:f7:
bf:9a:1e:ba:6d:f6:d3:ee:95:19:7e:d2:02:0e:b7:
6f:a1:20:1f:25:53:8e:88:44:59:80:44:dd:e1:bd:
b2:e6:e9:cf:a1:f3:f4:1d:7f:b3:f0:02:79:1a:81:
53:07:7a:74:eb:5f:0e:97:ca:b1:3c:1a:37:0d:d2:
22:f4:e7:c6:9d:71:40:84:2a:3b:d2:17:26:dd:a7:
fb:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:4A:DB:2A:02:15:60:37:C6:A6:2D:39:BE:FC:ED:0E:C0:BA:E8:42
X509v3 Authority Key Identifier:
keyid:8B:9F:AC:CA:22:CC:0C:60:E2:37:A7:B2:04:16:A2:60:04:5A:5C:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i5-syiLMDGDiN6eyBBaiYARaXGg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a3af20-a4a9-4e2e-b344-30b1886d797a/1/Y0rbKgIVYDfGpi05vvztDsC66EI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/a3af20-a4a9-4e2e-b344-30b1886d797a/1/i5-syiLMDGDiN6eyBBaiYARaXGg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.113.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:55:ea:20:9b:49:94:0e:6b:68:f7:a2:5f:5d:b1:71:86:8d:
59:d8:22:ac:4d:4d:21:ef:30:30:3d:0d:b4:4a:b8:d0:a8:13:
f7:d0:d2:64:5e:db:20:83:0f:23:69:11:a8:14:bc:de:35:cc:
be:d9:39:50:26:7b:34:80:e6:ce:4e:9e:1a:66:22:f8:f5:7a:
e6:e3:86:db:05:5e:9e:2b:68:dc:21:62:93:7a:69:e1:f7:95:
66:e1:24:e4:bf:cf:ee:7a:f0:03:95:17:0f:dd:e9:9e:b5:8e:
b8:1d:87:3b:ec:46:59:2c:24:40:5f:07:82:46:ae:25:13:f1:
7b:10:3f:29:3f:1e:28:2c:9f:df:3c:20:78:89:48:c6:4a:53:
31:40:07:a7:0e:75:35:2a:bb:47:ee:46:43:eb:34:ef:fd:88:
c5:b9:6e:c1:4d:7e:2e:e1:a3:af:ed:d5:ef:75:18:9f:ad:81:
47:1c:0c:79:71:92:9e:fb:2e:5b:d9:75:48:00:9e:56:00:3f:
93:af:5b:c8:3d:32:b0:e8:1d:94:3c:49:00:c7:3f:2f:21:d4:
c7:3f:9a:79:82:fe:c8:cb:43:8f:f4:89:56:d1:ff:ad:08:75:
9b:2c:86:2b:2e:04:e8:14:6f:7e:89:84:c1:74:aa:5a:2b:be:
1b:70:28:f3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvsRoK+X50TrPSIft5jO9mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiOWZhY2NhMjJjYzBjNjBlMjM3YTdiMjA0MTZhMjYwMDQ1
YTVjNjgwHhcNMjMwMTAxMjMzNTU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MzRhZGIyYTAyMTU2MDM3YzZhNjJkMzliZWZjZWQwZWMwYmFlODQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsc/s8VGy/r9WSF8mhzOsHLZbUS+m
tV7hmNVWCUXMnmB+CVfRAbTpgSCqBtYSuYrGYCIrxm+Pr9RXUEE3L+0i91+uZhmF
Jaw5otfWC3uvgqjw3HlJX6zaynME6sfingHpq3vCRmd1SOLPpIGX8KOw/jlhnHhE
GTZ9RftuWBSt0B+Zz4SQ5YBTcGofBDz7DHi3Uj0yZzlbhWH2V0Nzw24S/TBSR53C
kF8/fJBe7tzWDZao3/e/mh66bfbT7pUZftICDrdvoSAfJVOOiERZgETd4b2y5unP
ofP0HX+z8AJ5GoFTB3p0618Ol8qxPBo3DdIi9OfGnXFAhCo70hcm3af7OwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGNK2yoCFWA3xqYtOb787Q7AuuhCMB8GA1UdIwQY
MBaAFIufrMoizAxg4jensgQWomAEWlxoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTUtc3lpTE1ER0RpTjZleUJCYWlZQVJhWEdnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC9hM2FmMjAtYTRhOS00ZTJlLWIzNDQt
MzBiMTg4NmQ3OTdhLzEvWTByYktnSVZZRGZHcGkwNXZ2enREc0M2NkVJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC9hM2FmMjAtYTRhOS00ZTJlLWIzNDQtMzBiMTg4NmQ3OTdh
LzEvaTUtc3lpTE1ER0RpTjZleUJCYWlZQVJhWEdnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9RxMA0G
CSqGSIb3DQEBCwUAA4IBAQArVeogm0mUDmto96JfXbFxho1Z2CKsTU0h7zAwPQ20
SrjQqBP30NJkXtsggw8jaRGoFLzeNcy+2TlQJns0gObOTp4aZiL49Xrm44bbBV6e
K2jcIWKTemnh95Vm4STkv8/uevADlRcP3emetY64HYc77EZZLCRAXweCRq4lE/F7
ED8pPx4oLJ/fPCB4iUjGSlMxQAenDnU1KrtH7kZD6zTv/YjFuW7BTX4u4aOv7dXv
dRifrYFHHAx5cZKe+y5b2XVIAJ5WAD+Tr1vIPTKw6B2UPEkAxz8vIdTHP5p5gv7I
y0OP9IlW0f+tCHWbLIYrLgToFG9+iYTBdKpaK74bcCjz
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:19 2024 by rpki-client on console-ams.rpki-client.org