Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/c65398-a8eb-4d16-9c4e-3584e2ab1f0d/1/YCF1H9CPAx-PKhV_fUqk1jhf32A.roa
File: YCF1H9CPAx-PKhV_fUqk1jhf32A.roa (raw, json)
Hash identifier: re+cKAawhPEjHm/7qeM7veBtpwfGlPi32OMAbDtO7mQ=
Subject key identifier: 60:21:75:1F:D0:8F:03:1F:8F:2A:15:7F:7D:4A:A4:D6:38:5F:DF:60
Certificate issuer: /CN=c0d0495acf9c78b9183bba0c05b8a29974382b14
Certificate serial: 018571D7DCE7E54E2944E0700B798BFD136F
Authority key identifier: C0:D0:49:5A:CF:9C:78:B9:18:3B:BA:0C:05:B8:A2:99:74:38:2B:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wNBJWs-ceLkYO7oMBbiimXQ4KxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/c65398-a8eb-4d16-9c4e-3584e2ab1f0d/1/YCF1H9CPAx-PKhV_fUqk1jhf32A.roa
Signing time: Mon 02 Jan 2023 09:37:30 +0000
ROA not before: Mon 02 Jan 2023 09:37:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201971
IP address blocks: 185.57.188.0/22 maxlen: 24
2a04:de40::/29 maxlen: 64
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:dc:e7:e5:4e:29:44:e0:70:0b:79:8b:fd:13:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0d0495acf9c78b9183bba0c05b8a29974382b14
Validity
Not Before: Jan 2 09:37:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6021751fd08f031f8f2a157f7d4aa4d6385fdf60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:33:66:fe:2d:91:db:31:e2:1f:f7:20:a2:fe:
a8:83:e5:b0:35:5a:00:b4:6f:71:f1:64:23:62:ff:
30:1c:32:38:20:0f:3a:cf:2c:b7:76:dd:7c:97:41:
8f:ae:24:91:8c:59:86:16:c2:2f:43:7e:f7:a5:7e:
72:9f:7f:38:d4:33:ef:e4:5b:ab:17:7b:17:e3:6d:
47:e3:33:b2:9a:f0:38:1d:e0:c9:77:e6:e9:cf:1a:
9e:d3:43:93:9b:5b:27:b6:74:60:a2:e1:4e:5a:d8:
58:b1:71:13:0b:b5:35:90:ab:ef:56:25:5a:d8:61:
4a:94:97:c7:cd:4f:17:a7:62:99:16:7e:9e:3f:ed:
4a:16:2c:3f:92:48:7f:8d:63:b2:e6:17:a7:68:f2:
1e:34:25:b9:7f:bb:89:16:08:7f:d8:74:8a:a3:68:
40:ac:3c:2e:cf:62:68:71:07:4d:e3:5b:4f:9d:cf:
3e:e2:b9:ac:54:ea:97:b3:d0:08:37:9b:9f:6d:56:
d0:e4:62:10:e3:db:16:77:5a:a3:ba:a7:c5:a7:eb:
dd:96:21:26:50:9f:8c:1d:11:b2:68:36:43:73:c8:
c8:47:eb:2f:d2:8a:81:c8:b3:8a:96:29:72:75:de:
90:cc:74:34:4e:16:00:09:3a:45:15:ee:62:58:70:
50:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:21:75:1F:D0:8F:03:1F:8F:2A:15:7F:7D:4A:A4:D6:38:5F:DF:60
X509v3 Authority Key Identifier:
keyid:C0:D0:49:5A:CF:9C:78:B9:18:3B:BA:0C:05:B8:A2:99:74:38:2B:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wNBJWs-ceLkYO7oMBbiimXQ4KxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/c65398-a8eb-4d16-9c4e-3584e2ab1f0d/1/YCF1H9CPAx-PKhV_fUqk1jhf32A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/c65398-a8eb-4d16-9c4e-3584e2ab1f0d/1/wNBJWs-ceLkYO7oMBbiimXQ4KxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.57.188.0/22
IPv6:
2a04:de40::/29
Signature Algorithm: sha256WithRSAEncryption
6c:ce:46:91:3a:55:7e:2c:32:4a:6a:f0:eb:a6:dc:84:fb:0d:
e7:66:46:4c:35:73:42:d0:e9:ed:83:8f:04:9c:d4:53:8b:e0:
81:77:52:9c:e5:01:b7:09:19:fe:4e:f7:5e:38:dc:33:f8:ff:
c8:42:cb:64:98:08:ff:6e:e4:f4:72:cc:c6:b6:3d:e7:06:0d:
c1:dc:9b:c5:e9:f7:65:54:ce:f7:5a:03:3f:6e:5d:81:bd:75:
68:9f:2b:19:cc:39:90:4b:ac:e4:80:0a:86:c1:37:5f:f4:f9:
3c:8f:cd:fb:b8:06:3e:e3:10:8c:16:19:6a:c3:ee:ee:f8:a4:
d7:fb:bf:83:c4:43:40:e1:55:65:02:a3:72:e7:69:b2:4c:34:
03:44:a7:35:b4:bc:67:ba:8f:05:ed:fd:63:41:91:84:c8:9c:
c9:32:19:ca:05:ad:e6:f3:74:2d:29:83:e2:4e:ab:eb:c6:70:
b3:6d:b5:24:0a:73:01:5c:41:b4:dd:32:28:0a:30:b7:46:97:
94:d7:17:57:dc:9f:48:a1:4a:43:00:a0:84:01:a1:a5:7a:be:
02:4b:10:2c:4b:e6:86:b0:cd:7d:90:48:66:74:11:ec:1a:78:
63:5b:7e:42:74:a0:c2:c8:27:46:73:e5:84:c1:bc:ef:41:f3:
5e:54:4c:92
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVx19zn5U4pROBwC3mL/RNvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMwZDA0OTVhY2Y5Yzc4YjkxODNiYmEwYzA1YjhhMjk5NzQz
ODJiMTQwHhcNMjMwMTAyMDkzNzMwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MDIxNzUxZmQwOGYwMzFmOGYyYTE1N2Y3ZDRhYTRkNjM4NWZkZjYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAizNm/i2R2zHiH/cgov6og+WwNVoA
tG9x8WQjYv8wHDI4IA86zyy3dt18l0GPriSRjFmGFsIvQ373pX5yn3841DPv5Fur
F3sX421H4zOymvA4HeDJd+bpzxqe00OTm1sntnRgouFOWthYsXETC7U1kKvvViVa
2GFKlJfHzU8Xp2KZFn6eP+1KFiw/kkh/jWOy5henaPIeNCW5f7uJFgh/2HSKo2hA
rDwuz2JocQdN41tPnc8+4rmsVOqXs9AIN5ufbVbQ5GIQ49sWd1qjuqfFp+vdliEm
UJ+MHRGyaDZDc8jIR+sv0oqByLOKlilydd6QzHQ0ThYACTpFFe5iWHBQjQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFGAhdR/QjwMfjyoVf31KpNY4X99gMB8GA1UdIwQY
MBaAFMDQSVrPnHi5GDu6DAW4opl0OCsUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd05CSldzLWNlTGtZTzdvTUJiaWltWFE0S3hRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9jNjUzOTgtYThlYi00ZDE2LTljNGUt
MzU4NGUyYWIxZjBkLzEvWUNGMUg5Q1BBeC1QS2hWX2ZVcWsxamhmMzJBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS9jNjUzOTgtYThlYi00ZDE2LTljNGUtMzU4NGUyYWIxZjBk
LzEvd05CSldzLWNlTGtZTzdvTUJiaWltWFE0S3hRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuTm8MA0E
AgACMAcDBQMqBN5AMA0GCSqGSIb3DQEBCwUAA4IBAQBszkaROlV+LDJKavDrptyE
+w3nZkZMNXNC0Ontg48EnNRTi+CBd1Kc5QG3CRn+TvdeONwz+P/IQstkmAj/buT0
cszGtj3nBg3B3JvF6fdlVM73WgM/bl2BvXVonysZzDmQS6zkgAqGwTdf9Pk8j837
uAY+4xCMFhlqw+7u+KTX+7+DxENA4VVlAqNy52myTDQDRKc1tLxnuo8F7f1jQZGE
yJzJMhnKBa3m83QtKYPiTqvrxnCzbbUkCnMBXEG03TIoCjC3RpeU1xdX3J9IoUpD
AKCEAaGler4CSxAsS+aGsM19kEhmdBHsGnhjW35CdKDCyCdGc+WEwbzvQfNeVEyS
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:04 2024 by rpki-client on console-fra.rpki-client.org