Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/YdEZ2Fcrn6vWgrUtw0D5KbFS8dw.roa
File: YdEZ2Fcrn6vWgrUtw0D5KbFS8dw.roa (raw, json)
Hash identifier: pjt1Jq2aTt+TQqzPyk7wFXQjyy4uG0LYr8Ty19nfP0k=
Subject key identifier: 61:D1:19:D8:57:2B:9F:AB:D6:82:B5:2D:C3:40:F9:29:B1:52:F1:DC
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018E802273EA96F6558D8DC80DA3883BB557
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/YdEZ2Fcrn6vWgrUtw0D5KbFS8dw.roa
Signing time: Wed 27 Mar 2024 13:38:45 +0000
ROA not before: Wed 27 Mar 2024 13:38:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 134835
IP address blocks: 188.64.142.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Mar 2024 14:20:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:80:22:73:ea:96:f6:55:8d:8d:c8:0d:a3:88:3b:b5:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Mar 27 13:38:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=61d119d8572b9fabd682b52dc340f929b152f1dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:ca:a6:2a:b6:fe:86:64:f7:7b:e9:96:d7:02:
b1:88:d0:02:cf:0a:c6:b2:31:40:76:66:18:53:6c:
48:18:47:ce:b5:21:00:13:a8:55:a6:0f:82:a6:dc:
be:b8:06:f6:ab:6b:09:1d:ca:a5:8c:f5:ec:30:7f:
1d:b5:f6:39:6b:bb:a2:fa:2b:3e:0b:ba:7f:90:25:
82:4a:97:e1:2c:a6:97:c6:85:49:16:97:a2:f3:f0:
59:5c:b5:ff:b5:f1:7d:89:e5:d7:be:83:99:3e:4d:
12:52:c4:ef:12:ac:1d:63:07:71:97:ad:8a:e3:31:
79:9a:ba:1d:73:de:c8:8f:9a:f9:2f:cb:a9:72:4b:
16:19:a1:85:af:c8:9b:4f:a0:a7:d4:6c:bc:f8:88:
3e:3c:5e:0e:66:a6:f9:65:9b:cc:e7:66:c9:8a:7b:
28:93:cb:39:76:4c:dd:e3:50:ba:48:16:84:46:f2:
7b:04:68:75:c5:b2:e2:f4:a0:f3:0d:20:03:cd:f6:
9a:6c:7d:ae:63:07:7f:cd:4e:af:dd:2b:4e:af:18:
33:d5:da:ea:71:6f:ad:31:df:e4:b0:02:a1:38:57:
7d:6b:6b:aa:e0:cc:26:ac:4f:47:bf:b3:0f:7a:68:
cd:c1:a4:85:0b:68:ab:ac:ce:64:63:78:d4:49:5b:
91:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:D1:19:D8:57:2B:9F:AB:D6:82:B5:2D:C3:40:F9:29:B1:52:F1:DC
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/YdEZ2Fcrn6vWgrUtw0D5KbFS8dw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.64.142.0/24
Signature Algorithm: sha256WithRSAEncryption
29:3b:2b:be:2b:6e:7e:48:da:35:21:ef:ff:2b:77:8a:b8:6f:
e0:f6:f9:1c:da:30:d2:2e:8d:fb:b2:bf:69:42:b0:a9:8a:29:
ef:ef:7b:ad:a2:98:63:f1:5a:df:bb:e6:70:97:8b:1e:cb:b5:
06:c0:e3:e2:47:72:a9:ae:5e:0e:de:d6:e0:e3:9b:a4:44:98:
87:48:5e:fd:ee:62:9f:66:6b:cb:2b:80:f9:81:e0:99:14:82:
c4:98:5f:03:44:b8:d1:a1:14:b5:48:ae:5f:e9:92:8a:92:37:
b9:6c:f9:55:f6:c2:60:e4:7a:4b:80:b9:3d:37:ff:0e:52:30:
6d:3b:53:01:f6:98:c7:00:6b:94:87:09:29:d9:48:d6:df:76:
60:fd:73:16:91:98:2a:7e:99:17:88:97:5b:43:cd:cc:ed:b5:
b6:d4:1a:5c:e6:19:e0:0b:a9:64:78:d9:f1:44:89:68:c7:b1:
8d:60:21:7a:84:67:43:6a:18:af:2a:cd:c7:41:c3:9a:d0:6a:
63:c9:01:3a:85:9a:99:f3:1c:22:b1:66:6d:64:d4:88:8b:82:
63:53:24:18:0b:c4:6e:91:10:60:25:af:11:91:14:b9:79:e6:
73:af:ba:e0:89:81:05:34:c7:cb:32:cd:c6:2e:56:ab:9e:d3:
e6:4b:98:33
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY6AInPqlvZVjY3IDaOIO7VXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjQwMzI3MTMzODQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MWQxMTlkODU3MmI5ZmFiZDY4MmI1MmRjMzQwZjkyOWIxNTJmMWRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhsqmKrb+hmT3e+mW1wKxiNACzwrG
sjFAdmYYU2xIGEfOtSEAE6hVpg+Cpty+uAb2q2sJHcqljPXsMH8dtfY5a7ui+is+
C7p/kCWCSpfhLKaXxoVJFpei8/BZXLX/tfF9ieXXvoOZPk0SUsTvEqwdYwdxl62K
4zF5mrodc97Ij5r5L8upcksWGaGFr8ibT6Cn1Gy8+Ig+PF4OZqb5ZZvM52bJinso
k8s5dkzd41C6SBaERvJ7BGh1xbLi9KDzDSADzfaabH2uYwd/zU6v3StOrxgz1drq
cW+tMd/ksAKhOFd9a2uq4MwmrE9Hv7MPemjNwaSFC2irrM5kY3jUSVuRqwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGHRGdhXK5+r1oK1LcNA+SmxUvHcMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvWWRFWjJGY3JuNnZXZ3JVdHcwRDVLYkZTOGR3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvECOMA0G
CSqGSIb3DQEBCwUAA4IBAQApOyu+K25+SNo1Ie//K3eKuG/g9vkc2jDSLo37sr9p
QrCpiinv73utophj8Vrfu+Zwl4sey7UGwOPiR3Kprl4O3tbg45ukRJiHSF797mKf
ZmvLK4D5geCZFILEmF8DRLjRoRS1SK5f6ZKKkje5bPlV9sJg5HpLgLk9N/8OUjBt
O1MB9pjHAGuUhwkp2UjW33Zg/XMWkZgqfpkXiJdbQ83M7bW21Bpc5hngC6lkeNnx
RIlox7GNYCF6hGdDahivKs3HQcOa0GpjyQE6hZqZ8xwisWZtZNSIi4JjUyQYC8Ru
kRBgJa8RkRS5eeZzr7rgiYEFNMfLMs3GLlarntPmS5gz
-----END CERTIFICATE-----
Generated at Wed Mar 27 20:11:34 2024 by rpki-client on console.sobornost.net