Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/YJrNTj_0cilZckul1IZE5jGIeNc.roa
File: YJrNTj_0cilZckul1IZE5jGIeNc.roa (raw, json)
Hash identifier: 3HM7pxzMZfVTgzb8GMBWcSK6/NXKp+gnMxeHid9OxwY=
Subject key identifier: 60:9A:CD:4E:3F:F4:72:29:59:72:4B:A5:D4:86:44:E6:31:88:78:D7
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E9305C9C6E225D19B786618CBBE11
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/YJrNTj_0cilZckul1IZE5jGIeNc.roa
Signing time: Mon 02 Jan 2023 06:15:07 +0000
ROA not before: Mon 02 Jan 2023 06:15:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212980
IP address blocks: 2a0c:b641:5a0::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:93:05:c9:c6:e2:25:d1:9b:78:66:18:cb:be:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:15:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=609acd4e3ff4722959724ba5d48644e6318878d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:ae:23:ae:4a:60:c7:f6:71:52:44:c7:7c:55:
b7:91:cf:f1:68:bb:11:6b:6e:1f:e9:40:c4:25:2b:
69:f6:c5:81:ae:e1:ca:85:d6:7d:b8:9a:4f:70:d4:
f7:57:91:66:67:57:60:85:6d:28:e5:8e:2d:4e:1a:
8f:fb:0d:51:fe:18:16:06:92:2d:18:86:04:2c:2e:
f0:3a:34:c4:f5:0d:5b:45:94:03:f2:e7:e0:b9:a5:
5d:13:53:fa:1b:3b:d5:fe:ab:22:4c:4b:bb:a9:6e:
d2:20:fa:e1:53:3a:d1:80:c4:e4:bc:0b:d7:89:90:
50:99:21:17:a7:eb:f1:57:91:dc:33:02:5a:2a:fd:
db:fc:26:82:29:3a:32:42:7a:39:3d:19:d8:b5:5d:
aa:7c:63:6a:f1:94:3e:35:cc:a1:ba:2a:c3:57:9f:
d6:c2:9f:25:c9:77:c6:0a:2a:29:23:64:27:e1:40:
6f:64:18:d6:08:95:54:a6:40:1b:c2:dd:6d:29:ee:
73:10:84:e3:b0:1e:95:ce:25:19:ac:69:a5:e8:ca:
99:b4:20:ed:e8:b7:2c:93:15:8b:20:c5:32:40:8f:
0d:74:25:6a:6d:e5:6b:d3:4c:25:9a:73:c1:eb:b8:
b1:96:f0:5a:cf:49:83:87:3f:03:a0:15:85:fd:c4:
91:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:9A:CD:4E:3F:F4:72:29:59:72:4B:A5:D4:86:44:E6:31:88:78:D7
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/YJrNTj_0cilZckul1IZE5jGIeNc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:5a0::/44
Signature Algorithm: sha256WithRSAEncryption
3b:b1:af:f2:9c:71:96:9d:86:83:b2:31:02:e6:14:63:5b:cd:
02:e4:f1:fa:c7:0c:14:87:b1:80:43:ab:a0:56:f8:99:06:75:
ba:df:32:67:67:21:e9:a6:8a:f7:39:5b:75:8e:87:8e:a1:4e:
97:ac:eb:82:ac:5b:c9:6f:03:da:2f:59:54:c2:6d:76:d3:a2:
12:7d:76:09:74:47:62:14:d9:01:f2:79:d7:82:f5:dc:33:56:
1f:ba:f8:7d:ba:7d:06:9d:c6:6f:47:3f:83:6e:d8:e3:3c:fe:
b4:83:fb:73:9f:f1:5a:17:32:56:23:d8:24:2b:b4:83:50:d2:
b0:dc:15:29:fa:9d:89:04:8e:e8:8a:32:62:07:ef:70:92:8f:
75:39:9a:07:25:a5:3a:ad:1d:7e:3d:ff:3d:60:b6:f7:fd:0c:
d6:f9:a4:03:c1:0b:3c:2c:f4:5c:9c:a4:af:87:8f:aa:95:63:
e3:34:53:e0:30:74:f0:c0:22:08:e3:5b:01:db:cf:aa:5a:dc:
a5:e1:dd:b7:fc:f6:a7:6d:75:09:eb:ac:b5:0f:aa:32:50:d5:
9a:0c:de:b1:e0:bd:23:8e:cb:87:f6:4f:47:98:72:d9:b9:a3:
7f:93:1f:5b:d4:54:3c:06:37:07:d1:a3:c1:a0:bd:21:fa:db:
11:1c:8c:c4
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVxHpMFycbiJdGbeGYYy74RMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi
MzUwNTgwHhcNMjMwMTAyMDYxNTA3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MDlhY2Q0ZTNmZjQ3MjI5NTk3MjRiYTVkNDg2NDRlNjMxODg3OGQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgK4jrkpgx/ZxUkTHfFW3kc/xaLsR
a24f6UDEJStp9sWBruHKhdZ9uJpPcNT3V5FmZ1dghW0o5Y4tThqP+w1R/hgWBpIt
GIYELC7wOjTE9Q1bRZQD8ufguaVdE1P6GzvV/qsiTEu7qW7SIPrhUzrRgMTkvAvX
iZBQmSEXp+vxV5HcMwJaKv3b/CaCKToyQno5PRnYtV2qfGNq8ZQ+NcyhuirDV5/W
wp8lyXfGCiopI2Qn4UBvZBjWCJVUpkAbwt1tKe5zEITjsB6VziUZrGml6MqZtCDt
6LcskxWLIMUyQI8NdCVqbeVr00wlmnPB67ixlvBaz0mDhz8DoBWF/cSRAwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFGCazU4/9HIpWXJLpdSGROYxiHjXMB8GA1UdIwQY
MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et
NWVjOGM4ZWQ2MGZkLzEvWUpyTlRqXzBjaWxaY2t1bDFJWkU1akdJZU5jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk
LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQWg
MA0GCSqGSIb3DQEBCwUAA4IBAQA7sa/ynHGWnYaDsjEC5hRjW80C5PH6xwwUh7GA
Q6ugVviZBnW63zJnZyHppor3OVt1joeOoU6XrOuCrFvJbwPaL1lUwm1206ISfXYJ
dEdiFNkB8nnXgvXcM1Yfuvh9un0GncZvRz+DbtjjPP60g/tzn/FaFzJWI9gkK7SD
UNKw3BUp+p2JBI7oijJiB+9wko91OZoHJaU6rR1+Pf89YLb3/QzW+aQDwQs8LPRc
nKSvh4+qlWPjNFPgMHTwwCII41sB28+qWtyl4d23/PanbXUJ66y1D6oyUNWaDN6x
4L0jjsuH9k9HmHLZuaN/kx9b1FQ8BjcH0aPBoL0h+tsRHIzE
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:06 2024 by rpki-client on console-fra.rpki-client.org