Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/YxbkEuRqmYegLZN4KCiuU14Z4Kg.roa
File: YxbkEuRqmYegLZN4KCiuU14Z4Kg.roa (raw, json)
Hash identifier: 8G4QfrkEgSHNcdHf16uRNiEVeXM3EkGu5W9Ib74Kfnc=
Subject key identifier: 63:16:E4:12:E4:6A:99:87:A0:2D:93:78:28:28:AE:53:5E:19:E0:A8
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018C7D0B5F7532BB2B3878787C06E0A1F1F8
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/YxbkEuRqmYegLZN4KCiuU14Z4Kg.roa
Signing time: Mon 18 Dec 2023 13:09:06 +0000
ROA not before: Mon 18 Dec 2023 13:09:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198055
IP address blocks: 2a0e:b107:1d12::/48 maxlen: 48
2a0e:b107:28a9::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:7d:0b:5f:75:32:bb:2b:38:78:78:7c:06:e0:a1:f1:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Dec 18 13:09:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6316e412e46a9987a02d93782828ae535e19e0a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:76:ea:a1:07:8b:1a:3f:47:2a:11:d6:7f:bb:
78:9e:b3:e1:98:84:2e:6a:3c:93:c2:b7:fb:36:69:
59:5c:1f:a1:b2:09:d7:2e:14:d0:71:cb:7b:09:50:
8a:af:29:7c:2e:07:24:d7:cc:8e:ad:ac:5c:33:9a:
c4:e2:4c:b8:d8:b6:f1:42:f9:6a:b9:49:d4:8f:fe:
3a:b5:99:05:41:81:bf:99:e9:1c:03:af:d4:a7:79:
23:9d:b0:ff:81:7c:a5:75:85:57:5a:25:41:54:ea:
fb:84:ad:bc:5a:11:21:36:fb:cb:07:54:72:1a:39:
b4:84:87:b8:0a:3c:59:95:5d:44:55:43:d6:6e:04:
d9:51:f9:b5:a0:fd:31:1b:4d:da:a7:79:12:90:32:
46:cf:f5:41:4d:c3:63:c8:1b:73:9a:7c:2f:7f:0c:
09:93:b9:b2:5c:ef:0b:14:5a:40:d9:1e:25:38:40:
73:92:b3:58:9a:21:ea:ef:b5:14:94:7c:eb:e6:7b:
45:b6:d6:3f:4c:8f:1e:76:73:08:6c:2e:ad:84:29:
cb:3c:45:22:84:4e:ba:d8:81:bf:8f:ef:34:18:8e:
bf:41:75:13:85:78:6a:97:48:fe:20:e6:20:8f:9d:
4b:85:20:e3:10:a4:51:39:18:77:3b:73:58:c9:e4:
54:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:16:E4:12:E4:6A:99:87:A0:2D:93:78:28:28:AE:53:5E:19:E0:A8
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/YxbkEuRqmYegLZN4KCiuU14Z4Kg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1d12::/48
2a0e:b107:28a9::/48
Signature Algorithm: sha256WithRSAEncryption
22:21:e5:e6:83:96:e8:bd:ec:25:a0:c4:59:9c:fb:b2:e6:65:
5a:ac:6b:b9:28:b7:4e:be:fd:81:26:6d:d9:81:6c:0f:b7:09:
da:dc:b6:03:6e:ef:37:72:15:0c:42:62:7e:20:05:db:b9:e0:
14:5e:5f:06:50:e9:0c:f1:b5:50:ae:60:0d:8d:c1:df:e2:8c:
ab:e6:01:20:cb:d3:b4:74:ac:89:db:1e:9e:19:51:06:f4:e3:
0e:97:ad:3f:61:99:71:ee:9e:92:4e:a8:23:f7:cc:e4:51:80:
94:f4:fc:0e:8b:cc:ee:d9:ab:7f:a2:41:ed:09:09:e1:b7:2a:
bf:0e:2d:6b:fc:3b:91:65:40:ca:0c:a5:48:63:aa:9e:90:7a:
82:da:7e:8d:90:ec:f4:3f:ba:4a:f0:ea:b3:3e:09:78:3d:e9:
50:a1:c8:21:52:e9:ff:6f:60:51:65:04:ca:94:b7:d0:25:b2:
58:b6:cc:dc:91:5c:50:0b:ef:ec:28:c0:a6:8f:42:21:ca:64:
f9:0e:ce:85:d8:c0:dd:e0:ec:c2:d5:6b:39:60:cb:76:6f:bd:
3b:9c:24:0b:e4:9f:52:74:ec:a7:0b:66:b3:4e:5c:c3:c6:98:
bb:95:3a:d0:82:c4:35:ad:85:97:14:15:ea:20:8f:5a:55:41:
59:30:c1:4a
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYx9C191MrsrOHh4fAbgofH4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMxMjE4MTMwOTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MzE2ZTQxMmU0NmE5OTg3YTAyZDkzNzgyODI4YWU1MzVlMTllMGE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvXbqoQeLGj9HKhHWf7t4nrPhmIQu
ajyTwrf7NmlZXB+hsgnXLhTQcct7CVCKryl8Lgck18yOraxcM5rE4ky42LbxQvlq
uUnUj/46tZkFQYG/mekcA6/Up3kjnbD/gXyldYVXWiVBVOr7hK28WhEhNvvLB1Ry
Gjm0hIe4CjxZlV1EVUPWbgTZUfm1oP0xG03ap3kSkDJGz/VBTcNjyBtzmnwvfwwJ
k7myXO8LFFpA2R4lOEBzkrNYmiHq77UUlHzr5ntFttY/TI8ednMIbC6thCnLPEUi
hE662IG/j+80GI6/QXUThXhql0j+IOYgj51LhSDjEKRRORh3O3NYyeRUyQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFGMW5BLkapmHoC2TeCgorlNeGeCoMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvWXhia0V1UnFtWWVnTFpONEtDaXVVMTRaNEtnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKg6xBx0S
AwcAKg6xByipMA0GCSqGSIb3DQEBCwUAA4IBAQAiIeXmg5bovewloMRZnPuy5mVa
rGu5KLdOvv2BJm3ZgWwPtwna3LYDbu83chUMQmJ+IAXbueAUXl8GUOkM8bVQrmAN
jcHf4oyr5gEgy9O0dKyJ2x6eGVEG9OMOl60/YZlx7p6STqgj98zkUYCU9PwOi8zu
2at/okHtCQnhtyq/Di1r/DuRZUDKDKVIY6qekHqC2n6NkOz0P7pK8OqzPgl4PelQ
ocghUun/b2BRZQTKlLfQJbJYtszckVxQC+/sKMCmj0IhymT5Ds6F2MDd4OzC1Ws5
YMt2b707nCQL5J9SdOynC2azTlzDxpi7lTrQgsQ1rYWXFBXqII9aVUFZMMFK
-----END CERTIFICATE-----
Generated at Mon Dec 18 23:35:20 2023 by rpki-client on console-fra.rpki-client.org