Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/03ca23-a143-4df0-afb9-a24e3a0a31ef/1/yjeZHsLugJRGeJ6qWgArmNUR05g.roa
File: yjeZHsLugJRGeJ6qWgArmNUR05g.roa (raw, json)
Hash identifier: xi0QgMVWZdwVTrU7U42N3fdsZsNwZ2zST2CaPQAKwUw=
Subject key identifier: CA:37:99:1E:C2:EE:80:94:46:78:9E:AA:5A:00:2B:98:D5:11:D3:98
Certificate issuer: /CN=98728e8a27d30c83aee5f496240985ee40cb378b
Certificate serial: 018CC424B9C87810ADD8AE6273A3D5647FD5
Authority key identifier: 98:72:8E:8A:27:D3:0C:83:AE:E5:F4:96:24:09:85:EE:40:CB:37:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mHKOiifTDIOu5fSWJAmF7kDLN4s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/03ca23-a143-4df0-afb9-a24e3a0a31ef/1/yjeZHsLugJRGeJ6qWgArmNUR05g.roa
Signing time: Mon 01 Jan 2024 08:29:50 +0000
ROA not before: Mon 01 Jan 2024 08:29:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8873
IP address blocks: 45.154.28.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 01 Jan 2025 19:48:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:b9:c8:78:10:ad:d8:ae:62:73:a3:d5:64:7f:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98728e8a27d30c83aee5f496240985ee40cb378b
Validity
Not Before: Jan 1 08:29:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ca37991ec2ee809446789eaa5a002b98d511d398
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:c3:a8:d8:e2:33:d8:3f:b5:54:93:f7:0d:b1:
a1:e1:f1:9b:ed:76:b7:f2:c5:c5:cf:1b:85:ae:84:
e7:83:ae:83:80:e8:65:02:b1:ca:b6:37:58:2a:03:
27:c5:2d:25:9f:e4:de:55:3f:1a:83:2b:68:07:58:
27:39:06:f9:ee:9e:61:b3:0d:f2:fb:78:c5:aa:22:
ba:19:2c:42:23:8b:a2:ad:bf:02:16:60:30:d6:e9:
76:fb:bf:aa:65:85:be:b9:c1:73:59:00:b1:06:8d:
fe:3b:4a:14:a8:03:b7:24:cc:2a:61:7d:07:4a:30:
1c:98:fa:86:a0:dd:29:be:f4:f5:32:e9:23:88:ce:
f6:c6:aa:bd:c1:62:00:0d:7b:2a:36:2c:d8:30:fa:
e7:92:bd:5f:7f:d2:18:40:a8:e4:9b:32:5c:1c:12:
78:c5:c2:33:15:3f:56:91:3a:82:05:ec:04:43:cb:
b2:da:80:87:35:e0:7a:12:7a:27:d5:4d:ed:91:d9:
0f:09:c9:5f:23:e8:29:ab:e4:4d:34:cb:00:41:3b:
b2:5e:d3:e6:73:50:e9:13:97:04:9d:73:c4:d8:2f:
fc:1c:d7:5c:a5:ba:2a:93:c7:10:ab:3d:6b:e5:24:
c0:72:ec:bf:ec:67:0e:62:94:df:0f:ad:b3:9e:54:
53:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:37:99:1E:C2:EE:80:94:46:78:9E:AA:5A:00:2B:98:D5:11:D3:98
X509v3 Authority Key Identifier:
keyid:98:72:8E:8A:27:D3:0C:83:AE:E5:F4:96:24:09:85:EE:40:CB:37:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mHKOiifTDIOu5fSWJAmF7kDLN4s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/03ca23-a143-4df0-afb9-a24e3a0a31ef/1/yjeZHsLugJRGeJ6qWgArmNUR05g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/03ca23-a143-4df0-afb9-a24e3a0a31ef/1/mHKOiifTDIOu5fSWJAmF7kDLN4s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.28.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:1e:d9:81:46:b5:e9:b6:09:34:3b:e5:0c:77:89:82:b0:16:
a4:d9:0d:48:ca:47:68:86:dd:32:c0:e2:8e:ef:25:fa:b9:78:
48:6f:24:ac:1b:15:64:23:13:7f:8b:b0:44:aa:f3:8e:22:a7:
f8:dd:9d:03:5a:a9:e9:28:a6:92:9b:84:d7:ba:00:dd:3d:b4:
f1:34:1b:33:e4:31:ab:9a:7a:da:39:8d:ea:f9:a4:4d:16:ad:
ac:42:f7:8e:bc:76:c6:a4:a4:02:0e:a1:44:3b:b2:42:38:1d:
ac:db:19:1e:c6:cc:7c:62:f4:c4:9e:3e:85:39:3d:86:c4:b4:
83:b6:7f:26:8b:b6:e0:8e:cb:c6:35:03:ab:39:1e:fb:7a:a9:
4c:fe:a2:07:c5:fe:4b:48:50:ca:1f:fe:21:b7:c7:6d:32:09:
36:75:d2:d0:41:cf:f1:8a:cb:25:aa:42:08:3c:4c:26:77:af:
4c:b3:ad:ef:a0:5d:ad:1b:36:ae:c3:b8:df:ce:1e:2a:69:8f:
c1:8a:8c:2b:71:46:0f:d8:8d:87:1d:4f:b4:ad:a9:12:ea:c9:
19:52:b7:9e:25:8a:d4:7a:4f:87:b2:88:53:57:56:7a:cc:85:
e8:17:89:b2:5f:e0:ba:d5:fc:a1:f8:a8:86:db:63:a3:ca:1a:
de:77:9f:cf
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzEJLnIeBCt2K5ic6PVZH/VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk4NzI4ZThhMjdkMzBjODNhZWU1ZjQ5NjI0MDk4NWVlNDBj
YjM3OGIwHhcNMjQwMTAxMDgyOTUwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYTM3OTkxZWMyZWU4MDk0NDY3ODllYWE1YTAwMmI5OGQ1MTFkMzk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqMOo2OIz2D+1VJP3DbGh4fGb7Xa3
8sXFzxuFroTng66DgOhlArHKtjdYKgMnxS0ln+TeVT8agytoB1gnOQb57p5hsw3y
+3jFqiK6GSxCI4uirb8CFmAw1ul2+7+qZYW+ucFzWQCxBo3+O0oUqAO3JMwqYX0H
SjAcmPqGoN0pvvT1MukjiM72xqq9wWIADXsqNizYMPrnkr1ff9IYQKjkmzJcHBJ4
xcIzFT9WkTqCBewEQ8uy2oCHNeB6Enon1U3tkdkPCclfI+gpq+RNNMsAQTuyXtPm
c1DpE5cEnXPE2C/8HNdcpboqk8cQqz1r5STAcuy/7GcOYpTfD62znlRT6QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFMo3mR7C7oCURnieqloAK5jVEdOYMB8GA1UdIwQY
MBaAFJhyjoon0wyDruX0liQJhe5AyzeLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbUhLT2lpZlRESU91NWZTV0pBbUY3a0RMTjRzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC8wM2NhMjMtYTE0My00ZGYwLWFmYjkt
YTI0ZTNhMGEzMWVmLzEveWplWkhzTHVnSlJHZUo2cVdnQXJtTlVSMDVnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC8wM2NhMjMtYTE0My00ZGYwLWFmYjktYTI0ZTNhMGEzMWVm
LzEvbUhLT2lpZlRESU91NWZTV0pBbUY3a0RMTjRzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLZocMA0G
CSqGSIb3DQEBCwUAA4IBAQB8HtmBRrXptgk0O+UMd4mCsBak2Q1Iykdoht0ywOKO
7yX6uXhIbySsGxVkIxN/i7BEqvOOIqf43Z0DWqnpKKaSm4TXugDdPbTxNBsz5DGr
mnraOY3q+aRNFq2sQveOvHbGpKQCDqFEO7JCOB2s2xkexsx8YvTEnj6FOT2GxLSD
tn8mi7bgjsvGNQOrOR77eqlM/qIHxf5LSFDKH/4ht8dtMgk2ddLQQc/xisslqkII
PEwmd69Ms63voF2tGzauw7jfzh4qaY/BiowrcUYP2I2HHU+0rakS6skZUreeJYrU
ek+HsohTV1Z6zIXoF4myX+C61fyh+KiG22Ojyhred5/P
-----END CERTIFICATE-----
Generated at Tue Apr 29 18:22:33 2025 by rpki-client