Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/YkL-DpzKO_X5q2nThmyOtSUqKLE.roa
File: YkL-DpzKO_X5q2nThmyOtSUqKLE.roa (raw, json)
Hash identifier: j/CK2fqjmMOUp8LhsS23835qU39oxTEbU5qqDyHtV88=
Subject key identifier: 62:42:FE:0E:9C:CA:3B:F5:F9:AB:69:D3:86:6C:8E:B5:25:2A:28:B1
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 018CC2DB69E15AD57107A5D70FCBD11A66CE
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/YkL-DpzKO_X5q2nThmyOtSUqKLE.roa
Signing time: Mon 01 Jan 2024 02:30:08 +0000
ROA not before: Mon 01 Jan 2024 02:30:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216383
IP address blocks: 87.248.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 28 Feb 2024 13:55:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:69:e1:5a:d5:71:07:a5:d7:0f:cb:d1:1a:66:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Jan 1 02:30:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6242fe0e9cca3bf5f9ab69d3866c8eb5252a28b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:bf:1d:4a:c0:2c:6e:ce:d4:39:71:b0:67:a6:
7a:56:d1:ac:f0:e8:4b:12:a3:fd:b8:18:0b:62:0e:
e8:85:6f:ac:03:60:bd:68:54:02:06:33:a5:4f:30:
64:7b:03:30:f9:61:41:0b:9a:07:0e:2a:a4:ba:2e:
9e:6e:22:f4:8e:d8:b2:0d:07:b2:1a:f2:04:47:99:
e1:3e:19:d1:a0:75:a4:47:a1:c7:fd:90:1c:b3:7c:
a5:2e:9d:1c:0d:f2:29:fa:7e:e1:61:83:87:b2:8e:
91:9a:f3:4c:b5:cd:d5:f0:05:08:d5:49:11:dc:35:
dd:c6:3d:b3:1c:4e:31:30:de:44:f1:37:2e:c6:73:
79:80:4c:9b:b4:f2:22:e9:de:78:51:9e:72:3f:ee:
73:7c:9c:bf:d0:32:a2:f5:b8:01:59:b7:24:16:82:
49:68:d6:13:2b:ee:f5:b4:33:a1:59:05:8e:55:1d:
72:75:0f:f3:12:c5:66:5a:33:1b:45:52:01:af:ff:
2b:ec:67:84:d2:9d:c1:9f:25:5a:29:9a:5e:65:e8:
c0:46:6d:21:f6:05:b1:d1:e4:2c:76:16:4e:5b:28:
d1:27:05:70:47:80:5b:62:16:91:ff:fd:6a:e6:93:
67:58:80:88:32:39:7f:ad:5b:5a:b3:23:b1:0f:63:
68:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:42:FE:0E:9C:CA:3B:F5:F9:AB:69:D3:86:6C:8E:B5:25:2A:28:B1
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/YkL-DpzKO_X5q2nThmyOtSUqKLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.129.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:ef:d7:98:aa:88:79:94:4d:91:a6:f0:d2:45:35:72:a4:f2:
81:87:0d:99:b5:fd:ed:df:e0:c9:97:ab:3f:62:10:dd:be:23:
aa:28:8c:d3:ed:4d:cc:91:b4:80:f0:9d:9e:07:2e:6b:b9:58:
97:86:99:64:f8:33:2f:1a:f7:48:b3:7a:9e:17:b9:48:31:ab:
b5:87:94:7c:29:dd:50:bc:fc:d6:7a:36:60:75:7c:58:cc:2a:
3a:5b:71:94:fc:04:a5:88:0f:c4:41:fc:26:e8:c3:94:b4:06:
64:ae:5e:23:80:11:f9:1e:b3:ab:f2:de:f5:a3:70:de:5d:88:
bb:01:e0:22:52:03:88:63:a0:de:aa:cc:ac:f7:a4:0c:10:47:
15:b2:ac:9e:96:e1:0a:fa:2f:3d:4a:36:19:fa:f9:ff:48:06:
5d:ff:04:27:e4:20:ce:33:38:fe:8b:b6:22:ea:25:23:98:f6:
72:0d:96:5f:7a:d6:0b:2b:dd:5f:25:32:e5:ab:00:c7:38:7c:
f7:01:2e:48:41:1f:33:a5:d8:7e:7f:06:76:63:9a:74:82:56:
80:b0:7d:d4:e9:2d:7f:13:68:fe:db:a2:18:ed:63:c8:56:9a:
27:ab:0b:c5:b7:c1:f9:a5:18:b9:bf:c5:e8:2d:2a:aa:79:c2:
99:e3:d0:4b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzC22nhWtVxB6XXD8vRGmbOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3ZjYxZmM3YzBhYjQxY2UxNTRlN2JjYjA4ZWY5NjIzNTFh
NDY3ODQwHhcNMjQwMTAxMDIzMDA4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MjQyZmUwZTljY2EzYmY1ZjlhYjY5ZDM4NjZjOGViNTI1MmEyOGIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi78dSsAsbs7UOXGwZ6Z6VtGs8OhL
EqP9uBgLYg7ohW+sA2C9aFQCBjOlTzBkewMw+WFBC5oHDiqkui6ebiL0jtiyDQey
GvIER5nhPhnRoHWkR6HH/ZAcs3ylLp0cDfIp+n7hYYOHso6RmvNMtc3V8AUI1UkR
3DXdxj2zHE4xMN5E8TcuxnN5gEybtPIi6d54UZ5yP+5zfJy/0DKi9bgBWbckFoJJ
aNYTK+71tDOhWQWOVR1ydQ/zEsVmWjMbRVIBr/8r7GeE0p3BnyVaKZpeZejARm0h
9gWx0eQsdhZOWyjRJwVwR4BbYhaR//1q5pNnWICIMjl/rVtasyOxD2NoswIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGJC/g6cyjv1+atp04ZsjrUlKiixMB8GA1UdIwQY
MBaAFHf2H8fAq0HOFU57ywjvliNRpGeEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZF9ZZng4Q3JRYzRWVG52TENPLVdJMUdrWjRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC85MjEzZWMtODVhOS00OGQ2LWFhNjkt
ZWRjOWQwMmZhZjU0LzEvWWtMLURwektPX1g1cTJuVGhteU90U1VxS0xFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC85MjEzZWMtODVhOS00OGQ2LWFhNjktZWRjOWQwMmZhZjU0
LzEvZF9ZZng4Q3JRYzRWVG52TENPLVdJMUdrWjRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAV/iBMA0G
CSqGSIb3DQEBCwUAA4IBAQCd79eYqoh5lE2RpvDSRTVypPKBhw2Ztf3t3+DJl6s/
YhDdviOqKIzT7U3MkbSA8J2eBy5ruViXhplk+DMvGvdIs3qeF7lIMau1h5R8Kd1Q
vPzWejZgdXxYzCo6W3GU/ASliA/EQfwm6MOUtAZkrl4jgBH5HrOr8t71o3DeXYi7
AeAiUgOIY6Deqsys96QMEEcVsqyeluEK+i89SjYZ+vn/SAZd/wQn5CDOMzj+i7Yi
6iUjmPZyDZZfetYLK91fJTLlqwDHOHz3AS5IQR8zpdh+fwZ2Y5p0glaAsH3U6S1/
E2j+26IY7WPIVponqwvFt8H5pRi5v8XoLSqqecKZ49BL
-----END CERTIFICATE-----
Generated at Wed Feb 28 17:27:42 2024 by rpki-client on console-fra.rpki-client.org