Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/4ypyF6WGqXKJchRypyNyY40A9uk.roa
File: 4ypyF6WGqXKJchRypyNyY40A9uk.roa (raw, json)
Hash identifier: qkU8XvKqN6pZJeg/b891aPbXhBDdbeu5AZqoq+m1TPY=
Subject key identifier: E3:2A:72:17:A5:86:A9:72:89:72:14:72:A7:23:72:63:8D:00:F6:E9
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0187BF01D8B6992869BD82D370121A6A0657
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/4ypyF6WGqXKJchRypyNyY40A9uk.roa
Signing time: Wed 26 Apr 2023 19:19:41 +0000
ROA not before: Wed 26 Apr 2023 19:19:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208328
IP address blocks: 2a0e:97c0:640::/44 maxlen: 48
2a0e:97c0:643::/48 maxlen: 48
2a0e:97c0:642::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 29 Apr 2023 19:48:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:bf:01:d8:b6:99:28:69:bd:82:d3:70:12:1a:6a:06:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Apr 26 19:19:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e32a7217a586a97289721472a72372638d00f6e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:78:57:96:4c:31:c9:12:08:a1:ff:92:dd:fb:
52:f2:01:fc:0c:50:b7:0a:2d:a7:2a:71:8c:0f:06:
6d:dc:2d:b3:71:76:78:fa:33:01:51:b5:e2:45:e0:
3a:05:b2:39:5d:ee:f6:a5:b5:7e:b9:db:2d:8f:0e:
ce:5c:73:2e:91:0f:39:9e:fe:77:ac:59:31:56:25:
ee:18:b0:9f:ec:fb:fe:ab:1f:cc:be:89:ef:57:01:
1e:e4:88:d9:c2:ad:ec:9a:94:47:ae:f2:bc:ff:57:
d9:9f:f5:9a:0b:53:27:b2:cd:47:58:67:94:a1:e2:
db:f2:f0:e2:5a:cd:3d:a6:b2:0d:11:1e:f1:cc:03:
4b:b1:6b:f7:ed:6e:fb:44:e3:79:97:0f:f2:38:11:
68:26:99:2d:09:47:72:02:03:ff:8e:09:57:3e:91:
2f:0b:8b:42:10:cf:3a:b0:b1:ff:ac:5b:0f:5c:6c:
ec:9d:fb:11:b6:92:ae:64:72:f6:a5:60:5f:f1:98:
3e:c1:e9:f4:38:b6:9c:cf:76:d4:00:b2:ad:a7:d2:
fb:27:37:9d:66:f9:97:44:68:39:e2:77:eb:13:28:
e3:1a:bb:14:0d:eb:61:6f:3a:95:70:45:9d:98:73:
c8:12:c8:3e:c2:2f:91:68:d6:1f:39:26:c0:0e:60:
4a:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:2A:72:17:A5:86:A9:72:89:72:14:72:A7:23:72:63:8D:00:F6:E9
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/4ypyF6WGqXKJchRypyNyY40A9uk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:640::/44
Signature Algorithm: sha256WithRSAEncryption
36:80:9c:42:b5:27:ce:a6:2c:5c:33:ec:2e:fc:b1:01:b3:4c:
7b:90:a1:4b:b2:8e:08:53:e6:c1:05:23:fd:30:82:ef:b1:23:
f2:f2:e6:af:ca:9c:ff:02:24:ba:b1:22:3b:bc:63:a6:b2:21:
e4:db:9b:ed:0f:2a:25:ac:99:b2:5d:d2:00:74:e1:cd:25:9d:
28:96:31:fa:b4:b6:ad:e1:51:e3:cf:ab:d8:d4:ef:6f:e0:53:
b0:8d:cf:3b:0d:aa:15:3a:af:ec:0d:08:14:33:1c:b0:63:68:
92:7e:25:cf:88:da:1e:81:ce:2d:50:17:f7:91:9d:50:de:71:
50:d5:98:ab:a3:1e:c9:d6:69:59:4d:55:3a:30:2e:2b:ce:8a:
75:5a:7c:14:98:08:8d:a4:61:82:7d:c7:4a:81:8d:e2:2c:41:
59:d4:b2:07:4c:4f:7a:31:03:8b:2c:af:cc:45:86:7b:2b:a3:
b2:e3:0d:0a:11:57:d3:7f:b3:53:af:08:93:3a:49:11:a9:9a:
1c:5d:0c:54:57:cf:44:84:1b:10:25:f7:05:06:16:8e:ea:24:
69:bd:41:d2:f9:9e:ac:bf:88:20:c0:19:fb:7b:1a:15:86:a5:
53:1c:a2:62:29:4e:ac:ce:96:85:d6:1d:b5:19:bb:33:b4:54:
f0:f7:69:d9
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYe/Adi2mShpvYLTcBIaagZXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMwNDI2MTkxOTQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMzJhNzIxN2E1ODZhOTcyODk3MjE0NzJhNzIzNzI2MzhkMDBmNmU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+XhXlkwxyRIIof+S3ftS8gH8DFC3
Ci2nKnGMDwZt3C2zcXZ4+jMBUbXiReA6BbI5Xe72pbV+udstjw7OXHMukQ85nv53
rFkxViXuGLCf7Pv+qx/MvonvVwEe5IjZwq3smpRHrvK8/1fZn/WaC1Mnss1HWGeU
oeLb8vDiWs09prINER7xzANLsWv37W77RON5lw/yOBFoJpktCUdyAgP/jglXPpEv
C4tCEM86sLH/rFsPXGzsnfsRtpKuZHL2pWBf8Zg+wen0OLacz3bUALKtp9L7Jzed
ZvmXRGg54nfrEyjjGrsUDethbzqVcEWdmHPIEsg+wi+RaNYfOSbADmBKNQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFOMqchelhqlyiXIUcqcjcmONAPbpMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvNHlweUY2V0dxWEtKY2hSeXB5TnlZNDBBOXVrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6XwAZA
MA0GCSqGSIb3DQEBCwUAA4IBAQA2gJxCtSfOpixcM+wu/LEBs0x7kKFLso4IU+bB
BSP9MILvsSPy8uavypz/AiS6sSI7vGOmsiHk25vtDyolrJmyXdIAdOHNJZ0oljH6
tLat4VHjz6vY1O9v4FOwjc87DaoVOq/sDQgUMxywY2iSfiXPiNoegc4tUBf3kZ1Q
3nFQ1Zirox7J1mlZTVU6MC4rzop1WnwUmAiNpGGCfcdKgY3iLEFZ1LIHTE96MQOL
LK/MRYZ7K6Oy4w0KEVfTf7NTrwiTOkkRqZocXQxUV89EhBsQJfcFBhaO6iRpvUHS
+Z6sv4ggwBn7exoVhqVTHKJiKU6szpaF1h21GbsztFTw92nZ
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:53 2024 by rpki-client on console-ams.rpki-client.org