Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/42fb3c-61a6-45ca-a47e-d2d1209c4825/1/YJKRWxdPXobLqtFPfFwy4Y1MJYE.roa
File: YJKRWxdPXobLqtFPfFwy4Y1MJYE.roa (raw, json)
Hash identifier: w6UgOmrNxk0/Yw41Uhg0fWjyQXaz12S6QTVaws8GN7Q=
Subject key identifier: 60:92:91:5B:17:4F:5E:86:CB:AA:D1:4F:7C:5C:32:E1:8D:4C:25:81
Certificate issuer: /CN=c9a7ff012cb72ea84d1b83c002c3203cc024e6a6
Certificate serial: 0187C283F7CDBF26E544F53E7CAE214768A5
Authority key identifier: C9:A7:FF:01:2C:B7:2E:A8:4D:1B:83:C0:02:C3:20:3C:C0:24:E6:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yaf_ASy3LqhNG4PAAsMgPMAk5qY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/42fb3c-61a6-45ca-a47e-d2d1209c4825/1/YJKRWxdPXobLqtFPfFwy4Y1MJYE.roa
Signing time: Thu 27 Apr 2023 11:40:41 +0000
ROA not before: Thu 27 Apr 2023 11:40:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207645
IP address blocks: 193.28.11.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c2:83:f7:cd:bf:26:e5:44:f5:3e:7c:ae:21:47:68:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9a7ff012cb72ea84d1b83c002c3203cc024e6a6
Validity
Not Before: Apr 27 11:40:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6092915b174f5e86cbaad14f7c5c32e18d4c2581
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:17:db:86:26:3a:e5:6b:e6:62:bd:8c:c3:07:
d0:c8:fb:f7:d3:6c:6d:f0:ec:90:30:20:28:90:47:
42:be:4d:39:b2:0b:b3:fa:02:18:9e:95:f1:fa:cd:
3c:90:9e:44:71:75:64:d6:9e:1e:13:7e:4c:3d:09:
7a:d8:67:f2:7d:0d:18:79:4f:92:9e:5e:78:f9:c4:
9e:39:74:21:60:86:9e:a5:43:2e:99:7f:c9:92:f3:
94:02:0a:32:3d:33:bb:5f:0b:18:cf:46:2c:94:4a:
0f:e7:f2:ac:9f:e9:dc:ca:d3:2f:6c:47:90:80:03:
3b:ab:0e:9d:28:49:59:ff:57:00:20:81:32:26:b9:
e5:9a:f7:f3:c4:d0:ec:b0:e4:74:14:0f:87:ab:6e:
19:d5:3b:66:a8:67:8b:07:af:93:d6:bb:0d:bf:72:
bd:e5:ad:77:72:f1:a8:fb:0b:7c:2c:df:25:16:96:
71:3b:51:90:ed:14:24:92:04:6b:01:9f:24:c8:04:
a1:7a:6b:11:f2:12:87:7b:ef:2c:0d:b8:04:b9:e1:
84:9b:60:a9:ed:f5:46:91:5f:bd:ab:e2:7d:05:6c:
4b:8e:7e:49:b2:d6:d6:29:eb:90:01:ef:2f:76:73:
fa:d7:b4:25:0a:73:2f:26:a9:d3:56:2f:02:d0:7b:
30:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:92:91:5B:17:4F:5E:86:CB:AA:D1:4F:7C:5C:32:E1:8D:4C:25:81
X509v3 Authority Key Identifier:
keyid:C9:A7:FF:01:2C:B7:2E:A8:4D:1B:83:C0:02:C3:20:3C:C0:24:E6:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yaf_ASy3LqhNG4PAAsMgPMAk5qY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/42fb3c-61a6-45ca-a47e-d2d1209c4825/1/YJKRWxdPXobLqtFPfFwy4Y1MJYE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/42fb3c-61a6-45ca-a47e-d2d1209c4825/1/yaf_ASy3LqhNG4PAAsMgPMAk5qY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.28.11.0/24
Signature Algorithm: sha256WithRSAEncryption
63:ee:39:72:72:65:1f:72:97:35:e6:ad:7b:a0:75:85:0f:4b:
41:cf:93:1d:64:92:15:3c:f0:68:78:19:34:ec:9b:4b:bd:85:
30:ac:f5:f0:c5:8c:ed:1b:75:46:dc:89:b7:cc:59:58:68:37:
79:8f:c7:6c:30:f5:b3:46:69:5d:ce:f5:1a:e6:b2:ca:cc:f2:
54:79:9a:f0:a6:eb:fc:ab:b3:83:90:0b:a8:29:74:cb:d4:b7:
69:ee:2c:cd:fd:9d:32:31:4c:5e:53:5b:ef:ad:7e:9e:51:bd:
89:4e:4f:2a:5f:39:2d:1a:47:49:c3:8e:68:4c:15:53:ab:39:
39:9f:8f:67:c7:a1:b6:74:2d:18:2a:db:f0:13:35:a0:f9:76:
1f:0e:cc:be:a4:a0:db:36:4b:26:f8:63:02:6f:01:38:aa:fb:
83:7a:bd:18:04:61:ad:21:f4:97:40:34:bd:e8:ca:54:63:d1:
a5:1d:88:eb:84:84:db:df:eb:3a:3e:1e:c5:97:df:46:6c:df:
dd:4b:f6:54:4b:03:a6:cc:ab:fc:2f:8c:62:62:99:f5:82:8b:
50:30:b7:55:7d:76:23:e9:46:16:5c:7c:48:d5:c0:0f:b8:63:
57:bc:db:76:ed:6b:b0:b9:9d:e7:f7:18:50:61:49:f2:83:19:
b1:b4:98:0f
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYfCg/fNvyblRPU+fK4hR2ilMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5YTdmZjAxMmNiNzJlYTg0ZDFiODNjMDAyYzMyMDNjYzAy
NGU2YTYwHhcNMjMwNDI3MTE0MDQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MDkyOTE1YjE3NGY1ZTg2Y2JhYWQxNGY3YzVjMzJlMThkNGMyNTgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzRfbhiY65WvmYr2MwwfQyPv302xt
8OyQMCAokEdCvk05sguz+gIYnpXx+s08kJ5EcXVk1p4eE35MPQl62GfyfQ0YeU+S
nl54+cSeOXQhYIaepUMumX/JkvOUAgoyPTO7XwsYz0YslEoP5/Ksn+ncytMvbEeQ
gAM7qw6dKElZ/1cAIIEyJrnlmvfzxNDssOR0FA+Hq24Z1TtmqGeLB6+T1rsNv3K9
5a13cvGo+wt8LN8lFpZxO1GQ7RQkkgRrAZ8kyAShemsR8hKHe+8sDbgEueGEm2Cp
7fVGkV+9q+J9BWxLjn5JstbWKeuQAe8vdnP617QlCnMvJqnTVi8C0HswDQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGCSkVsXT16Gy6rRT3xcMuGNTCWBMB8GA1UdIwQY
MBaAFMmn/wEsty6oTRuDwALDIDzAJOamMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWFmX0FTeTNMcWhORzRQQUFzTWdQTUFrNXFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy80MmZiM2MtNjFhNi00NWNhLWE0N2Ut
ZDJkMTIwOWM0ODI1LzEvWUpLUld4ZFBYb2JMcXRGUGZGd3k0WTFNSllFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy80MmZiM2MtNjFhNi00NWNhLWE0N2UtZDJkMTIwOWM0ODI1
LzEveWFmX0FTeTNMcWhORzRQQUFzTWdQTUFrNXFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwRwLMA0G
CSqGSIb3DQEBCwUAA4IBAQBj7jlycmUfcpc15q17oHWFD0tBz5MdZJIVPPBoeBk0
7JtLvYUwrPXwxYztG3VG3Im3zFlYaDd5j8dsMPWzRmldzvUa5rLKzPJUeZrwpuv8
q7ODkAuoKXTL1Ldp7izN/Z0yMUxeU1vvrX6eUb2JTk8qXzktGkdJw45oTBVTqzk5
n49nx6G2dC0YKtvwEzWg+XYfDsy+pKDbNksm+GMCbwE4qvuDer0YBGGtIfSXQDS9
6MpUY9GlHYjrhITb3+s6Ph7Fl99GbN/dS/ZUSwOmzKv8L4xiYpn1gotQMLdVfXYj
6UYWXHxI1cAPuGNXvNt27WuwuZ3n9xhQYUnygxmxtJgP
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:34 2024 by rpki-client on console-ams.rpki-client.org