Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/82ed9c-7c13-48b9-a886-cd66ad534812/1/YSxeoZF5qSTcw6NFGFTZUTVQiQA.roa
File: YSxeoZF5qSTcw6NFGFTZUTVQiQA.roa (raw, json)
Hash identifier: 4/lJjzvsAyCvWVS7Gc3Q2lfHz6uBcPpb2e9eVBm03js=
Subject key identifier: 61:2C:5E:A1:91:79:A9:24:DC:C3:A3:45:18:54:D9:51:35:50:89:00
Certificate issuer: /CN=39247f77a3ae0af71eac03256449f5d292cffd74
Certificate serial: 01912294388377AB5A6C95A936CA2A393189
Authority key identifier: 39:24:7F:77:A3:AE:0A:F7:1E:AC:03:25:64:49:F5:D2:92:CF:FD:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OSR_d6OuCvcerAMlZEn10pLP_XQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/82ed9c-7c13-48b9-a886-cd66ad534812/1/YSxeoZF5qSTcw6NFGFTZUTVQiQA.roa
Signing time: Mon 05 Aug 2024 12:47:04 +0000
ROA not before: Mon 05 Aug 2024 12:47:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 273015
IP address blocks: 185.56.110.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 05 Sep 2024 15:45:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:22:94:38:83:77:ab:5a:6c:95:a9:36:ca:2a:39:31:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39247f77a3ae0af71eac03256449f5d292cffd74
Validity
Not Before: Aug 5 12:47:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=612c5ea19179a924dcc3a3451854d95135508900
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d9:de:47:98:68:99:15:b0:1e:d1:6d:f1:77:
38:6f:32:2b:13:16:a0:86:64:41:1c:b9:bd:09:3d:
68:4f:26:15:ae:c9:3c:69:14:aa:fa:49:29:d8:50:
29:c4:fb:01:3c:d1:0c:ae:7f:1d:a7:52:97:96:28:
45:83:2b:75:3d:59:9f:cd:c0:0d:03:51:7f:6b:fa:
88:3f:92:b1:bb:db:4f:2c:86:76:c4:e2:24:1d:8e:
a0:3d:73:78:c8:93:52:f1:4d:1e:80:00:6f:16:c7:
15:62:c1:cf:60:9d:f9:c3:e4:b1:ca:c8:34:4b:9a:
23:93:af:4b:29:d2:c7:51:8a:85:4b:f5:74:e2:9a:
49:d0:f5:aa:fe:ab:96:3d:23:45:c2:17:09:2c:03:
ff:7a:99:a8:c9:32:4e:80:35:34:66:06:c6:40:e0:
19:69:f2:38:b8:c9:6d:1f:59:d2:54:a6:0b:b5:33:
3c:95:45:be:55:1c:81:c9:56:9f:82:c9:9b:8b:2a:
cb:34:49:8e:fb:f6:da:72:9d:3f:41:49:b3:cc:3f:
7e:cb:7e:ea:c2:92:69:49:93:d2:f7:5d:5b:1f:8b:
da:55:b5:86:9d:52:23:06:63:e7:cc:c4:08:31:f9:
71:2e:b1:03:1f:19:0c:f6:7e:06:7a:30:a4:9d:c3:
60:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:2C:5E:A1:91:79:A9:24:DC:C3:A3:45:18:54:D9:51:35:50:89:00
X509v3 Authority Key Identifier:
keyid:39:24:7F:77:A3:AE:0A:F7:1E:AC:03:25:64:49:F5:D2:92:CF:FD:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OSR_d6OuCvcerAMlZEn10pLP_XQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82ed9c-7c13-48b9-a886-cd66ad534812/1/YSxeoZF5qSTcw6NFGFTZUTVQiQA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/82ed9c-7c13-48b9-a886-cd66ad534812/1/OSR_d6OuCvcerAMlZEn10pLP_XQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.56.110.0/23
Signature Algorithm: sha256WithRSAEncryption
65:6b:a6:f7:70:06:68:2c:0b:bc:9a:e2:74:43:83:78:bb:46:
ff:90:18:58:98:3a:e9:41:80:1c:9b:00:b3:2c:d5:c5:0d:64:
94:d8:6e:39:7b:5d:eb:6c:b6:8c:c9:e2:f4:df:ed:33:34:bd:
9d:53:41:27:ce:01:6e:60:3d:3f:d1:24:26:61:7c:42:52:2f:
e5:65:c7:57:97:42:6c:a3:56:70:7f:c0:5b:70:fc:a9:b4:65:
0c:0d:8f:54:87:51:f0:bb:d8:5d:93:ee:b7:63:8c:d1:19:ef:
7f:10:4c:93:96:86:cd:4d:37:24:04:ed:47:3d:78:2f:80:30:
9b:b4:a9:a3:fa:6e:eb:39:0a:17:1a:b9:ea:03:a2:20:8e:75:
3f:10:30:f6:bd:7e:bd:59:5e:2a:fc:ac:15:a5:f6:1a:8a:85:
66:c5:a6:59:91:e1:ce:ee:11:da:81:91:3b:08:e9:4a:c7:23:
75:94:b7:cf:23:a9:cf:20:4d:20:19:0c:e3:9d:36:d1:16:e2:
5b:01:b8:d5:d6:17:c1:a7:52:a6:be:56:b4:62:e3:66:ed:44:
7f:cf:b4:bc:45:48:53:72:3b:89:78:67:40:8e:da:fd:67:f8:
a3:81:43:be:57:78:bd:6a:86:03:40:6a:d4:ec:7a:2d:f1:e6:
53:b6:2d:9f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZEilDiDd6tabJWpNsoqOTGJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5MjQ3Zjc3YTNhZTBhZjcxZWFjMDMyNTY0NDlmNWQyOTJj
ZmZkNzQwHhcNMjQwODA1MTI0NzA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MTJjNWVhMTkxNzlhOTI0ZGNjM2EzNDUxODU0ZDk1MTM1NTA4OTAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx9neR5homRWwHtFt8Xc4bzIrExag
hmRBHLm9CT1oTyYVrsk8aRSq+kkp2FApxPsBPNEMrn8dp1KXlihFgyt1PVmfzcAN
A1F/a/qIP5Kxu9tPLIZ2xOIkHY6gPXN4yJNS8U0egABvFscVYsHPYJ35w+Sxysg0
S5ojk69LKdLHUYqFS/V04ppJ0PWq/quWPSNFwhcJLAP/epmoyTJOgDU0ZgbGQOAZ
afI4uMltH1nSVKYLtTM8lUW+VRyByVafgsmbiyrLNEmO+/bacp0/QUmzzD9+y37q
wpJpSZPS911bH4vaVbWGnVIjBmPnzMQIMflxLrEDHxkM9n4GejCkncNgAwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGEsXqGReakk3MOjRRhU2VE1UIkAMB8GA1UdIwQY
MBaAFDkkf3ejrgr3HqwDJWRJ9dKSz/10MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1NSX2Q2T3VDdmNlckFNbFpFbjEwcExQX1hRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZi84MmVkOWMtN2MxMy00OGI5LWE4ODYt
Y2Q2NmFkNTM0ODEyLzEvWVN4ZW9aRjVxU1RjdzZORkdGVFpVVFZRaVFBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZi84MmVkOWMtN2MxMy00OGI5LWE4ODYtY2Q2NmFkNTM0ODEy
LzEvT1NSX2Q2T3VDdmNlckFNbFpFbjEwcExQX1hRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBuThuMA0G
CSqGSIb3DQEBCwUAA4IBAQBla6b3cAZoLAu8muJ0Q4N4u0b/kBhYmDrpQYAcmwCz
LNXFDWSU2G45e13rbLaMyeL03+0zNL2dU0EnzgFuYD0/0SQmYXxCUi/lZcdXl0Js
o1Zwf8BbcPyptGUMDY9Uh1Hwu9hdk+63Y4zRGe9/EEyTlobNTTckBO1HPXgvgDCb
tKmj+m7rOQoXGrnqA6IgjnU/EDD2vX69WV4q/KwVpfYaioVmxaZZkeHO7hHagZE7
COlKxyN1lLfPI6nPIE0gGQzjnTbRFuJbAbjV1hfBp1Kmvla0YuNm7UR/z7S8RUhT
cjuJeGdAjtr9Z/ijgUO+V3i9aoYDQGrU7Hot8eZTti2f
-----END CERTIFICATE-----
Generated at Thu Sep 5 18:20:21 2024 by rpki-client on console-fra.rpki-client.org