Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/4ba79a-73c4-4600-9239-66c9ff675711/1/YkTO5GAcGYDYBxA_wfBOsfcmPI4.roa
File: YkTO5GAcGYDYBxA_wfBOsfcmPI4.roa (raw, json)
Hash identifier: 5Y0BBAKJP/6VBIlZZe90t0mwxbYIcX6lTtL1BKRYZcY=
Subject key identifier: 62:44:CE:E4:60:1C:19:80:D8:07:10:3F:C1:F0:4E:B1:F7:26:3C:8E
Certificate issuer: /CN=d49fe7b9eccdf99cea9c362e19ce77b0452289c7
Certificate serial: 01857139B5108D9DA1A8BEE4581EF94B37CD
Authority key identifier: D4:9F:E7:B9:EC:CD:F9:9C:EA:9C:36:2E:19:CE:77:B0:45:22:89:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1J_nuezN-ZzqnDYuGc53sEUiicc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/4ba79a-73c4-4600-9239-66c9ff675711/1/YkTO5GAcGYDYBxA_wfBOsfcmPI4.roa
Signing time: Mon 02 Jan 2023 06:44:45 +0000
ROA not before: Mon 02 Jan 2023 06:44:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59253
IP address blocks: 146.19.66.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:b5:10:8d:9d:a1:a8:be:e4:58:1e:f9:4b:37:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d49fe7b9eccdf99cea9c362e19ce77b0452289c7
Validity
Not Before: Jan 2 06:44:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6244cee4601c1980d807103fc1f04eb1f7263c8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:e8:9a:e9:d2:30:2c:af:ff:35:52:95:a5:a0:
e2:b5:ba:1e:f2:b4:5a:be:86:7c:36:7e:74:f1:11:
5a:65:08:a5:44:4b:4b:3a:53:4f:ce:98:80:f4:36:
82:25:37:d0:d5:c9:fe:08:7a:d2:28:27:60:80:e6:
e6:df:1c:02:d2:6d:be:20:89:0d:5a:b8:42:08:8f:
af:c3:05:79:c7:27:27:7e:bd:4f:6f:26:4c:ae:b0:
3a:fa:d2:e3:4a:e0:38:2b:88:c8:29:a4:d1:f0:4a:
ac:af:38:62:54:7e:e4:19:18:fe:53:1d:d9:c1:58:
2b:99:4a:ff:9d:3d:85:59:9a:59:f5:bb:f6:90:6c:
a7:95:37:9b:f1:5d:30:ff:45:17:9f:80:e4:72:7d:
cb:42:e7:6a:3a:8a:d7:b5:90:32:17:84:06:15:23:
84:0d:5a:c5:6a:82:9f:ff:ba:91:21:71:ce:1a:10:
7d:23:b1:bc:3a:51:d6:81:08:ba:f7:09:06:f5:ab:
02:34:43:a7:16:97:e3:a3:26:69:02:0c:57:c5:eb:
f5:49:99:c6:59:36:7a:f2:8f:e8:3c:90:85:eb:42:
ea:b1:13:88:33:3e:de:17:29:49:46:34:21:62:31:
92:b4:a1:bc:25:e5:37:03:9e:27:d6:f7:25:d4:25:
79:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:44:CE:E4:60:1C:19:80:D8:07:10:3F:C1:F0:4E:B1:F7:26:3C:8E
X509v3 Authority Key Identifier:
keyid:D4:9F:E7:B9:EC:CD:F9:9C:EA:9C:36:2E:19:CE:77:B0:45:22:89:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1J_nuezN-ZzqnDYuGc53sEUiicc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4ba79a-73c4-4600-9239-66c9ff675711/1/YkTO5GAcGYDYBxA_wfBOsfcmPI4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/4ba79a-73c4-4600-9239-66c9ff675711/1/1J_nuezN-ZzqnDYuGc53sEUiicc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.66.0/24
Signature Algorithm: sha256WithRSAEncryption
36:b3:a7:62:9e:2b:32:58:0c:1c:1a:ca:66:0a:4d:5d:93:34:
aa:48:73:0d:76:55:70:fe:42:5c:38:04:c9:c2:d2:4f:0a:b5:
27:c4:48:9a:d9:cc:7f:e4:77:52:16:7d:c7:f3:65:d8:c9:4c:
c6:64:eb:94:b8:9c:9e:bf:62:46:d9:6b:9d:5b:47:b1:98:d9:
3e:08:54:64:86:60:a4:6b:fc:f2:d0:e4:6b:81:7c:2b:be:2b:
57:0b:99:41:6e:5e:c9:91:23:1f:c4:cb:c5:d0:9c:b0:d2:1a:
c7:f6:48:fc:df:bb:c2:95:1a:45:71:65:e3:2a:ae:82:e1:f4:
5d:62:6d:54:5d:8e:de:d8:0c:c7:b7:5a:1a:90:cb:81:6d:23:
32:da:33:17:0b:bf:a4:c2:f2:56:43:52:50:da:78:e7:32:63:
44:ac:70:08:60:72:af:f0:c4:52:42:af:c5:b5:e0:0b:db:56:
b5:d1:47:c4:d1:d5:18:a8:df:80:46:48:22:91:c0:10:96:b1:
2c:48:ee:68:f5:ee:f5:3a:cc:d0:1c:10:d4:48:f5:f9:3f:04:
2f:5f:ab:61:03:4a:13:93:8f:79:1a:70:cf:46:77:06:0d:bd:
55:cd:83:e4:75:90:bb:c5:94:50:c7:9c:cb:75:b4:e6:92:c4:
69:51:6b:18
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxObUQjZ2hqL7kWB75SzfNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0OWZlN2I5ZWNjZGY5OWNlYTljMzYyZTE5Y2U3N2IwNDUy
Mjg5YzcwHhcNMjMwMTAyMDY0NDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MjQ0Y2VlNDYwMWMxOTgwZDgwNzEwM2ZjMWYwNGViMWY3MjYzYzhlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiuia6dIwLK//NVKVpaDitboe8rRa
voZ8Nn508RFaZQilREtLOlNPzpiA9DaCJTfQ1cn+CHrSKCdggObm3xwC0m2+IIkN
WrhCCI+vwwV5xycnfr1PbyZMrrA6+tLjSuA4K4jIKaTR8EqsrzhiVH7kGRj+Ux3Z
wVgrmUr/nT2FWZpZ9bv2kGynlTeb8V0w/0UXn4Dkcn3LQudqOorXtZAyF4QGFSOE
DVrFaoKf/7qRIXHOGhB9I7G8OlHWgQi69wkG9asCNEOnFpfjoyZpAgxXxev1SZnG
WTZ68o/oPJCF60LqsROIMz7eFylJRjQhYjGStKG8JeU3A54n1vcl1CV5JQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGJEzuRgHBmA2AcQP8HwTrH3JjyOMB8GA1UdIwQY
MBaAFNSf57nszfmc6pw2LhnOd7BFIonHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUpfbnVlek4tWnpxbkRZdUdjNTNzRVVpaWNjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS80YmE3OWEtNzNjNC00NjAwLTkyMzkt
NjZjOWZmNjc1NzExLzEvWWtUTzVHQWNHWURZQnhBX3dmQk9zZmNtUEk0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS80YmE3OWEtNzNjNC00NjAwLTkyMzktNjZjOWZmNjc1NzEx
LzEvMUpfbnVlek4tWnpxbkRZdUdjNTNzRVVpaWNjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAkhNCMA0G
CSqGSIb3DQEBCwUAA4IBAQA2s6dinisyWAwcGspmCk1dkzSqSHMNdlVw/kJcOATJ
wtJPCrUnxEia2cx/5HdSFn3H82XYyUzGZOuUuJyev2JG2WudW0exmNk+CFRkhmCk
a/zy0ORrgXwrvitXC5lBbl7JkSMfxMvF0Jyw0hrH9kj837vClRpFcWXjKq6C4fRd
Ym1UXY7e2AzHt1oakMuBbSMy2jMXC7+kwvJWQ1JQ2njnMmNErHAIYHKv8MRSQq/F
teAL21a10UfE0dUYqN+ARkgikcAQlrEsSO5o9e71OszQHBDUSPX5PwQvX6thA0oT
k495GnDPRncGDb1VzYPkdZC7xZRQx5zLdbTmksRpUWsY
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:27 2023 by rpki-client on console-fra.rpki-client.org