Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/yBmEG43K1PVcN2-mBUYwbLSnAS8.roa
File: yBmEG43K1PVcN2-mBUYwbLSnAS8.roa (raw, json)
Hash identifier: hkQN5F05obBMoFeYTyTir8U5VpnR6Lobnj543XoGxaM=
Subject key identifier: C8:19:84:1B:8D:CA:D4:F5:5C:37:6F:A6:05:46:30:6C:B4:A7:01:2F
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 0187DAF37DA9C89DD235B056C05397E3E9EA
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/yBmEG43K1PVcN2-mBUYwbLSnAS8.roa
Signing time: Tue 02 May 2023 05:33:23 +0000
ROA not before: Tue 02 May 2023 05:33:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208626
IP address blocks: 185.39.206.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:da:f3:7d:a9:c8:9d:d2:35:b0:56:c0:53:97:e3:e9:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: May 2 05:33:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c819841b8dcad4f55c376fa60546306cb4a7012f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:53:8c:e1:e3:11:bc:b5:d9:0d:3a:4f:46:77:
5d:bc:22:28:96:1c:b7:8e:45:e1:36:a9:12:ee:07:
ba:ff:86:73:1d:8c:7f:33:6a:5a:f0:23:71:c6:f2:
11:d0:77:ab:7e:0c:61:8a:f1:e3:8f:a0:6b:61:1d:
bf:d0:19:e0:33:62:99:62:e5:4d:4f:e5:4d:9a:b7:
56:c5:8f:95:fe:42:fa:24:97:a2:97:18:ae:c3:a8:
d7:d2:8f:e2:ad:ce:90:44:19:bb:4e:11:ac:ff:33:
9e:94:01:22:c3:be:e9:1a:2d:bd:3a:e9:a7:e1:60:
89:a5:70:c4:5e:a6:15:05:f3:e0:3e:a0:30:a4:63:
16:96:50:60:98:13:5b:8f:ae:29:39:20:56:e5:e3:
92:6c:d2:30:fd:13:aa:df:c7:c8:73:1c:c5:11:b0:
4d:23:d7:d2:43:e7:45:87:59:13:60:2d:bd:fe:8e:
62:af:3b:9d:05:39:77:74:53:b5:48:58:ec:9b:11:
11:ed:78:ba:3c:8b:72:3e:17:f5:a2:a4:fb:77:03:
7f:cf:6b:b8:b3:b1:1c:59:84:d3:9c:be:77:5a:9c:
66:db:25:e4:b1:b7:3b:f6:cf:f1:69:6c:6a:5b:17:
fc:1a:e5:e0:52:b9:8e:c6:4d:2a:a7:9a:18:1e:1e:
cb:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:19:84:1B:8D:CA:D4:F5:5C:37:6F:A6:05:46:30:6C:B4:A7:01:2F
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/yBmEG43K1PVcN2-mBUYwbLSnAS8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.39.206.0/24
Signature Algorithm: sha256WithRSAEncryption
50:8c:00:f3:eb:b4:24:68:24:b6:15:c9:9e:94:26:6b:fe:39:
3b:37:69:63:14:6a:63:38:c3:a6:be:9d:d5:71:6f:af:64:fa:
7e:ee:49:2c:e2:27:13:f7:e2:e1:3b:69:73:08:d8:75:46:24:
fc:d8:8b:c9:89:e5:14:04:ca:b3:8a:37:87:79:20:88:57:bd:
0b:c6:22:94:33:89:ed:6e:18:bd:d5:cd:05:65:1f:99:b6:e4:
ac:b8:8a:86:04:2d:43:47:cc:4f:7e:a0:05:77:3d:93:8d:f2:
c4:47:e0:4e:1b:d8:c6:12:fb:68:88:bc:13:d2:39:c1:ac:6d:
4b:33:86:60:4d:67:88:79:6e:db:49:0a:ab:22:df:cc:d3:23:
0d:ec:f3:33:ae:ec:a3:c5:f7:87:74:6a:9e:25:84:74:7e:93:
ab:7f:7a:f7:4a:4b:f6:82:10:52:df:d4:fb:fc:ed:30:4e:83:
e8:3a:cc:77:f6:4f:7e:cc:ad:25:62:33:48:af:e7:6c:cb:52:
31:5f:07:07:a2:dd:ed:17:d8:b5:21:f8:72:51:a9:0f:67:90:
d0:3c:87:73:18:e0:36:af:8b:ac:5b:27:af:91:95:d1:28:25:
0e:38:98:a7:0e:e8:8d:71:3e:e4:b3:2f:34:e0:25:1b:7a:b5:
d5:0c:84:c3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYfa832pyJ3SNbBWwFOX4+nqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1MDg0NzVmZjBkOGVjOTYwMzM2MDE2ZTBlMDQyMjFhOThl
NWVjZjIwHhcNMjMwNTAyMDUzMzIzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjODE5ODQxYjhkY2FkNGY1NWMzNzZmYTYwNTQ2MzA2Y2I0YTcwMTJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh1OM4eMRvLXZDTpPRnddvCIolhy3
jkXhNqkS7ge6/4ZzHYx/M2pa8CNxxvIR0HerfgxhivHjj6BrYR2/0BngM2KZYuVN
T+VNmrdWxY+V/kL6JJeilxiuw6jX0o/irc6QRBm7ThGs/zOelAEiw77pGi29Oumn
4WCJpXDEXqYVBfPgPqAwpGMWllBgmBNbj64pOSBW5eOSbNIw/ROq38fIcxzFEbBN
I9fSQ+dFh1kTYC29/o5irzudBTl3dFO1SFjsmxER7Xi6PItyPhf1oqT7dwN/z2u4
s7EcWYTTnL53Wpxm2yXksbc79s/xaWxqWxf8GuXgUrmOxk0qp5oYHh7LZwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMgZhBuNytT1XDdvpgVGMGy0pwEvMB8GA1UdIwQY
MBaAFHUIR1/w2OyWAzYBbg4EIhqY5ezyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZFFoSFhfRFk3SllETmdGdURnUWlHcGpsN1BJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8xZmE2YTMtOGRjNS00YzM1LWE0OWIt
MTcxYzM2N2JlNzgyLzEveUJtRUc0M0sxUFZjTjItbUJVWXdiTFNuQVM4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS8xZmE2YTMtOGRjNS00YzM1LWE0OWItMTcxYzM2N2JlNzgy
LzEvZFFoSFhfRFk3SllETmdGdURnUWlHcGpsN1BJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuSfOMA0G
CSqGSIb3DQEBCwUAA4IBAQBQjADz67QkaCS2FcmelCZr/jk7N2ljFGpjOMOmvp3V
cW+vZPp+7kks4icT9+LhO2lzCNh1RiT82IvJieUUBMqzijeHeSCIV70LxiKUM4nt
bhi91c0FZR+ZtuSsuIqGBC1DR8xPfqAFdz2TjfLER+BOG9jGEvtoiLwT0jnBrG1L
M4ZgTWeIeW7bSQqrIt/M0yMN7PMzruyjxfeHdGqeJYR0fpOrf3r3Skv2ghBS39T7
/O0wToPoOsx39k9+zK0lYjNIr+dsy1IxXwcHot3tF9i1IfhyUakPZ5DQPIdzGOA2
r4usWyevkZXRKCUOOJinDuiNcT7ksy804CUberXVDITD
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:33 2024 by rpki-client on console-ams.rpki-client.org