Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/y09PlEf6ibPDBMdy86O-kYLcEo8.roa
File: y09PlEf6ibPDBMdy86O-kYLcEo8.roa (raw, json)
Hash identifier: uvNYc1Ce8qsu0NpunsoxePJUkIP9WUbADbmD+6Io0nk=
Subject key identifier: CB:4F:4F:94:47:FA:89:B3:C3:04:C7:72:F3:A3:BE:91:82:DC:12:8F
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E7F3086C29E0E2A87A41991A690337
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/y09PlEf6ibPDBMdy86O-kYLcEo8.roa
Signing time: Mon 02 Jan 2023 05:15:27 +0000
ROA not before: Mon 02 Jan 2023 05:15:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210842
IP address blocks: 2a0e:b107:1600::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:f3:08:6c:29:e0:e2:a8:7a:41:99:1a:69:03:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb4f4f9447fa89b3c304c772f3a3be9182dc128f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ef:0c:d0:59:c9:9e:30:d6:ee:55:a1:ad:aa:
fe:6e:5c:5c:cb:7d:30:e6:d4:fc:0a:a5:7d:5f:2c:
37:f5:82:71:ae:d9:6c:41:25:32:f2:7c:de:46:af:
01:a3:97:d7:6b:f5:33:31:17:19:5c:ab:29:e6:d9:
a5:9a:4e:d0:ec:a4:ee:95:ff:b1:62:6d:ce:06:ee:
77:75:a7:18:55:ba:13:a8:1b:12:e3:fc:3d:fe:04:
ff:d5:f9:f1:f7:15:1a:9d:3d:0f:34:8b:05:76:f2:
fe:76:ea:d4:ac:eb:60:73:b1:14:51:64:31:c8:f2:
eb:b1:b8:87:f0:87:90:5c:c7:08:40:c8:88:67:3d:
e6:51:2a:44:43:ca:42:35:a4:16:8d:1c:ae:08:1b:
eb:ce:ec:66:cd:af:ad:a7:3b:7e:c9:bc:a1:f7:b3:
b0:0a:cb:56:06:e5:1b:67:34:dd:83:70:73:5c:82:
cb:f3:de:dc:23:f9:68:07:e0:ca:e4:e6:9c:26:5e:
67:13:69:a6:62:06:b7:f2:07:eb:4c:f2:44:8c:e3:
f8:14:14:a3:b4:ff:c6:6c:31:11:3c:a5:cd:e0:4e:
f3:18:27:49:12:19:b9:4f:ed:2f:f4:c1:2c:14:b3:
65:20:f4:a8:54:75:84:54:d0:60:26:81:53:0e:f7:
be:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:4F:4F:94:47:FA:89:B3:C3:04:C7:72:F3:A3:BE:91:82:DC:12:8F
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/y09PlEf6ibPDBMdy86O-kYLcEo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1600::/44
Signature Algorithm: sha256WithRSAEncryption
59:86:f2:9a:d3:d4:a1:33:11:92:2e:a5:43:c1:18:4a:3a:6a:
37:80:30:68:6d:3c:77:4a:83:b3:f6:96:91:4f:e6:95:c6:87:
aa:b4:9a:66:15:bf:43:69:80:aa:33:d0:57:a4:a0:8b:a0:29:
d1:5b:d7:67:6a:1d:c0:12:74:96:31:ca:c8:28:09:2a:4f:63:
ac:5d:ad:b4:d0:5b:70:8a:0f:ce:39:a6:61:d6:70:e6:da:f9:
cd:5f:61:2a:31:7c:c2:c8:74:6c:82:8a:8c:47:46:89:1d:18:
ee:a6:08:be:cb:5a:7d:14:ac:38:52:2a:70:6b:a9:b3:31:15:
67:41:e9:41:be:7e:d8:32:c8:e0:ed:76:a9:3d:7f:1d:9c:9f:
95:98:c3:25:b5:a3:77:ae:a6:e8:3c:b3:6d:de:85:06:74:e0:
aa:b9:42:ce:8a:84:90:49:17:b7:89:55:de:6b:48:01:4a:db:
69:4b:87:30:7e:16:ed:27:63:24:27:f0:6d:69:17:e5:28:24:
e0:08:e4:1f:2d:3f:33:7b:fb:cf:c8:af:22:b3:0e:45:11:b0:
2b:ce:ad:cf:63:3b:d4:5f:e0:36:db:ce:5d:08:78:53:f3:b7:
47:fc:3f:11:29:ff:ea:73:05:41:39:79:ae:98:80:8c:3f:c4:
18:6e:2d:89
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVw5/MIbCng4qh6QZkaaQM3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMwMTAyMDUxNTI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYjRmNGY5NDQ3ZmE4OWIzYzMwNGM3NzJmM2EzYmU5MTgyZGMxMjhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq+8M0FnJnjDW7lWhrar+blxcy30w
5tT8CqV9Xyw39YJxrtlsQSUy8nzeRq8Bo5fXa/UzMRcZXKsp5tmlmk7Q7KTulf+x
Ym3OBu53dacYVboTqBsS4/w9/gT/1fnx9xUanT0PNIsFdvL+durUrOtgc7EUUWQx
yPLrsbiH8IeQXMcIQMiIZz3mUSpEQ8pCNaQWjRyuCBvrzuxmza+tpzt+ybyh97Ow
CstWBuUbZzTdg3BzXILL897cI/loB+DK5OacJl5nE2mmYga38gfrTPJEjOP4FBSj
tP/GbDERPKXN4E7zGCdJEhm5T+0v9MEsFLNlIPSoVHWEVNBgJoFTDve+lwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFMtPT5RH+omzwwTHcvOjvpGC3BKPMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEveTA5UGxFZjZpYlBEQk1keTg2Ty1rWUxjRW84LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6xBxYA
MA0GCSqGSIb3DQEBCwUAA4IBAQBZhvKa09ShMxGSLqVDwRhKOmo3gDBobTx3SoOz
9paRT+aVxoeqtJpmFb9DaYCqM9BXpKCLoCnRW9dnah3AEnSWMcrIKAkqT2OsXa20
0Ftwig/OOaZh1nDm2vnNX2EqMXzCyHRsgoqMR0aJHRjupgi+y1p9FKw4Uipwa6mz
MRVnQelBvn7YMsjg7XapPX8dnJ+VmMMltaN3rqboPLNt3oUGdOCquULOioSQSRe3
iVXea0gBSttpS4cwfhbtJ2MkJ/BtaRflKCTgCOQfLT8ze/vPyK8isw5FEbArzq3P
YzvUX+A2285dCHhT87dH/D8RKf/qcwVBOXmumICMP8QYbi2J
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:21 2023 by rpki-client on console-fra.rpki-client.org