Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/47df00-8468-4c39-be95-e10a60596c26/1/YtYDuOLc5sx-fR0rl8yTSat7PUA.roa
File: YtYDuOLc5sx-fR0rl8yTSat7PUA.roa (raw, json)
Hash identifier: wX/0El7Bh96ACMzYq4EF4dOy2EVbebbiHFI5vWSCSt8=
Subject key identifier: 62:D6:03:B8:E2:DC:E6:CC:7E:7D:1D:2B:97:CC:93:49:AB:7B:3D:40
Certificate issuer: /CN=9891c4488699e6d024e39cc4d61eeeabd38010fa
Certificate serial: 01856F9E03CA26425409C823613B197BF37D
Authority key identifier: 98:91:C4:48:86:99:E6:D0:24:E3:9C:C4:D6:1E:EE:AB:D3:80:10:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mJHESIaZ5tAk45zE1h7uq9OAEPo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/47df00-8468-4c39-be95-e10a60596c26/1/YtYDuOLc5sx-fR0rl8yTSat7PUA.roa
Signing time: Sun 01 Jan 2023 23:15:04 +0000
ROA not before: Sun 01 Jan 2023 23:15:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29588
IP address blocks: 2a00:f440:a::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9e:03:ca:26:42:54:09:c8:23:61:3b:19:7b:f3:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9891c4488699e6d024e39cc4d61eeeabd38010fa
Validity
Not Before: Jan 1 23:15:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62d603b8e2dce6cc7e7d1d2b97cc9349ab7b3d40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b3:1b:d4:5f:d1:17:ea:9e:81:b1:66:c9:35:
08:60:55:7b:d6:2d:ce:bf:16:4c:b3:31:47:7b:78:
e4:c8:af:7b:61:89:2b:b6:bc:c9:93:c8:e3:60:b2:
e4:46:ba:69:16:3f:41:08:55:35:ee:58:d8:58:54:
5e:3c:3b:fa:af:7e:b3:a9:de:bd:28:cb:68:30:ad:
98:12:2a:91:e0:49:27:3b:a1:fb:6e:8e:fb:bb:40:
76:98:5c:ff:d4:5e:81:a8:9b:4f:bd:65:0d:04:f6:
5c:bf:a1:58:d2:43:9c:60:e0:54:bc:f4:45:ce:03:
2e:3f:60:d1:fb:61:24:c0:6e:cc:b8:da:fb:2d:40:
a4:4f:9e:89:83:89:34:d2:5d:65:b9:be:22:6a:bf:
4e:50:8e:f0:37:38:c1:72:55:5d:85:f2:78:c8:8a:
3d:c2:d6:ee:fc:b1:b7:5f:dd:1b:35:38:52:f0:58:
4b:e1:80:2d:99:b6:0a:07:60:60:58:44:38:fd:1e:
73:e1:9e:6d:56:53:ec:80:34:a7:2a:a6:d9:27:cb:
b2:a8:d9:32:7d:96:40:f7:ca:3e:ed:98:32:0b:bc:
0b:ca:15:71:e5:e2:63:e2:07:64:e8:76:48:5c:09:
29:93:fa:4a:f2:fa:bd:d6:6b:02:52:bd:9c:6a:63:
2b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:D6:03:B8:E2:DC:E6:CC:7E:7D:1D:2B:97:CC:93:49:AB:7B:3D:40
X509v3 Authority Key Identifier:
keyid:98:91:C4:48:86:99:E6:D0:24:E3:9C:C4:D6:1E:EE:AB:D3:80:10:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mJHESIaZ5tAk45zE1h7uq9OAEPo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/47df00-8468-4c39-be95-e10a60596c26/1/YtYDuOLc5sx-fR0rl8yTSat7PUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/47df00-8468-4c39-be95-e10a60596c26/1/mJHESIaZ5tAk45zE1h7uq9OAEPo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:f440:a::/48
Signature Algorithm: sha256WithRSAEncryption
2f:09:16:2a:34:a0:11:7c:b9:dc:90:db:71:bd:f0:e5:8e:ac:
03:3f:54:2f:0c:81:d7:76:87:5d:8a:f1:61:b8:a8:e4:b4:1d:
17:7c:fc:e7:5b:db:78:00:e6:80:a8:46:1a:a1:a5:ab:41:5e:
62:e2:99:5d:06:a1:71:3b:52:3f:ad:2e:db:53:61:e3:89:87:
4a:79:67:3f:66:cf:38:5e:ea:6b:73:f8:ee:66:80:1d:8b:b5:
af:14:f4:3f:09:94:12:1c:1d:a8:10:63:5e:0f:28:ef:10:15:
ab:7a:26:02:51:43:9a:20:d2:51:68:ef:3e:93:5f:fe:eb:db:
19:d5:17:aa:c6:56:40:9c:df:d7:df:f9:4d:b5:b7:a0:90:85:
44:36:cb:44:9e:f7:64:34:44:ef:9d:0f:9f:c9:74:57:d2:83:
35:ed:04:73:e3:77:bd:77:70:b5:28:4d:7c:63:32:43:e9:27:
80:37:3d:dd:30:05:65:1f:fe:1c:ca:52:02:c7:16:ec:1a:5b:
53:7b:b3:72:2e:2d:c9:dd:04:21:a6:69:ca:14:45:55:42:39:
33:a4:56:10:fc:ab:02:9f:53:92:d2:5e:c0:0d:be:41:f4:f0:
fb:95:95:5a:d3:a5:08:03:b6:77:24:f2:dd:6a:35:8d:04:90:
d3:11:ca:97
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVvngPKJkJUCcgjYTsZe/N9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk4OTFjNDQ4ODY5OWU2ZDAyNGUzOWNjNGQ2MWVlZWFiZDM4
MDEwZmEwHhcNMjMwMTAxMjMxNTA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MmQ2MDNiOGUyZGNlNmNjN2U3ZDFkMmI5N2NjOTM0OWFiN2IzZDQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApLMb1F/RF+qegbFmyTUIYFV71i3O
vxZMszFHe3jkyK97YYkrtrzJk8jjYLLkRrppFj9BCFU17ljYWFRePDv6r36zqd69
KMtoMK2YEiqR4EknO6H7bo77u0B2mFz/1F6BqJtPvWUNBPZcv6FY0kOcYOBUvPRF
zgMuP2DR+2EkwG7MuNr7LUCkT56Jg4k00l1lub4iar9OUI7wNzjBclVdhfJ4yIo9
wtbu/LG3X90bNThS8FhL4YAtmbYKB2BgWEQ4/R5z4Z5tVlPsgDSnKqbZJ8uyqNky
fZZA98o+7ZgyC7wLyhVx5eJj4gdk6HZIXAkpk/pK8vq91msCUr2camMrSwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFGLWA7ji3ObMfn0dK5fMk0mrez1AMB8GA1UdIwQY
MBaAFJiRxEiGmebQJOOcxNYe7qvTgBD6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbUpIRVNJYVo1dEFrNDV6RTFoN3VxOU9BRVBvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi80N2RmMDAtODQ2OC00YzM5LWJlOTUt
ZTEwYTYwNTk2YzI2LzEvWXRZRHVPTGM1c3gtZlIwcmw4eVRTYXQ3UFVBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Mi80N2RmMDAtODQ2OC00YzM5LWJlOTUtZTEwYTYwNTk2YzI2
LzEvbUpIRVNJYVo1dEFrNDV6RTFoN3VxOU9BRVBvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgD0QAAK
MA0GCSqGSIb3DQEBCwUAA4IBAQAvCRYqNKARfLnckNtxvfDljqwDP1QvDIHXdodd
ivFhuKjktB0XfPznW9t4AOaAqEYaoaWrQV5i4pldBqFxO1I/rS7bU2HjiYdKeWc/
Zs84Xuprc/juZoAdi7WvFPQ/CZQSHB2oEGNeDyjvEBWreiYCUUOaINJRaO8+k1/+
69sZ1ReqxlZAnN/X3/lNtbegkIVENstEnvdkNETvnQ+fyXRX0oM17QRz43e9d3C1
KE18YzJD6SeANz3dMAVlH/4cylICxxbsGltTe7NyLi3J3QQhpmnKFEVVQjkzpFYQ
/KsCn1OS0l7ADb5B9PD7lZVa06UIA7Z3JPLdajWNBJDTEcqX
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:44 2024 by rpki-client on console-fra.rpki-client.org