Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/Y0TKzH-oRo6CQpsEWLrj3wQOjac.roa
File: Y0TKzH-oRo6CQpsEWLrj3wQOjac.roa (raw, json)
Hash identifier: SeEf1aL6ALTtWdEzW8pZJsbV6rXGf+mtPURy9Bnwa9E=
Subject key identifier: 63:44:CA:CC:7F:A8:46:8E:82:42:9B:04:58:BA:E3:DF:04:0E:8D:A7
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 01856F9DBC6DBA0F7737535179675C96D4BD
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/Y0TKzH-oRo6CQpsEWLrj3wQOjac.roa
Signing time: Sun 01 Jan 2023 23:14:46 +0000
ROA not before: Sun 01 Jan 2023 23:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 33830
IP address blocks: 213.14.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:bc:6d:ba:0f:77:37:53:51:79:67:5c:96:d4:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 23:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6344cacc7fa8468e82429b0458bae3df040e8da7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b7:c2:ae:ca:1e:33:84:a8:79:6a:2c:4e:09:
ec:75:c8:78:cc:34:8d:f5:0a:aa:f5:c6:9e:80:d8:
ac:c2:8e:e3:e2:f6:8b:83:20:7e:17:37:07:f9:9e:
e5:f6:6e:bf:bb:05:dd:99:88:a8:61:d7:af:ea:60:
d9:c9:1f:dc:8d:59:e9:6d:4e:b7:18:4d:20:3b:92:
c6:5b:cc:39:62:af:fe:ad:0b:c7:1b:56:d4:bd:eb:
18:6e:0b:da:ce:83:89:27:c4:07:54:67:01:5c:9c:
ce:4e:e0:18:c0:54:1e:26:35:fc:a7:97:be:59:78:
54:e2:98:f4:1b:2e:4e:5d:20:d6:3b:4c:c4:6f:a9:
c5:73:3b:05:e3:7e:24:bc:3f:08:ac:4c:f7:b8:80:
e5:29:33:0d:c1:52:ff:29:08:6a:6a:56:82:fb:ad:
aa:20:c4:1e:e1:a9:62:85:95:92:76:bd:34:20:4b:
d0:9f:b4:5e:24:d8:f8:a2:c7:df:f8:5c:cc:2d:77:
1d:27:9c:bf:c8:34:ce:81:c6:92:69:16:28:cc:e8:
f7:e3:f3:07:93:c1:ad:1e:a1:d6:5c:8d:6f:8c:40:
56:d4:75:5e:5e:c9:9a:9a:0c:c8:4f:23:9b:37:6d:
88:00:ad:05:89:19:ad:db:5d:86:ba:4c:63:35:bf:
ac:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:44:CA:CC:7F:A8:46:8E:82:42:9B:04:58:BA:E3:DF:04:0E:8D:A7
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/Y0TKzH-oRo6CQpsEWLrj3wQOjac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.14.215.0/24
Signature Algorithm: sha256WithRSAEncryption
58:d9:23:ea:cc:51:6a:b1:56:3a:ba:a2:62:f9:46:83:c2:19:
56:2d:37:a0:34:a5:83:bd:2d:6a:dc:8f:ea:ec:87:7b:63:ec:
92:ea:80:cf:1b:ca:9e:0b:7a:6a:2b:10:3b:a2:83:16:dd:b7:
1b:90:e8:b5:01:21:3d:6b:6e:9a:02:d4:35:bc:84:7f:38:56:
84:b1:a0:f4:7d:2b:ab:ec:88:0d:f3:9f:5b:ed:fd:37:c8:05:
22:e2:48:22:6c:74:9d:90:8e:f5:81:64:67:6a:94:00:e2:03:
df:34:be:39:c0:f3:ef:7a:a1:37:e1:2c:57:97:2d:f6:f4:23:
85:48:1b:9c:52:f4:57:66:89:72:e3:af:91:61:13:2c:88:c3:
1a:e2:ac:e4:b9:11:cf:a9:3a:b7:9d:06:2a:77:62:59:b8:8b:
49:c8:39:53:45:09:e7:62:27:67:f9:5d:eb:c0:b7:d0:81:6c:
f9:bc:31:51:7d:ed:0a:00:77:68:65:f7:c8:3c:2e:53:37:34:
0d:27:a4:73:d7:d9:4b:9f:af:53:7d:a2:dd:b9:ca:f2:fa:71:
e7:ca:4e:e2:70:7f:b9:00:c5:fd:c9:cd:2d:11:11:04:d5:85:
d8:d2:f9:13:f7:c0:ac:d7:84:a9:81:a7:e0:cb:d3:db:21:0b:
65:28:d5:a3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvnbxtug93N1NReWdcltS9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkNTljNDMyM2Y3NjdjZTRmZmM4NWRhYWQyMDhiOTBjMDRm
YmQzZTkwHhcNMjMwMTAxMjMxNDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MzQ0Y2FjYzdmYTg0NjhlODI0MjliMDQ1OGJhZTNkZjA0MGU4ZGE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmrfCrsoeM4SoeWosTgnsdch4zDSN
9Qqq9caegNiswo7j4vaLgyB+FzcH+Z7l9m6/uwXdmYioYdev6mDZyR/cjVnpbU63
GE0gO5LGW8w5Yq/+rQvHG1bUvesYbgvazoOJJ8QHVGcBXJzOTuAYwFQeJjX8p5e+
WXhU4pj0Gy5OXSDWO0zEb6nFczsF434kvD8IrEz3uIDlKTMNwVL/KQhqalaC+62q
IMQe4alihZWSdr00IEvQn7ReJNj4osff+FzMLXcdJ5y/yDTOgcaSaRYozOj34/MH
k8GtHqHWXI1vjEBW1HVeXsmamgzITyObN22IAK0FiRmt212GukxjNb+sSwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGNEysx/qEaOgkKbBFi6498EDo2nMB8GA1UdIwQY
MBaAFI1ZxDI/dnzk/8hdqtIIuQwE+9PpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvalZuRU1qOTJmT1RfeUYycTBnaTVEQVQ3MC1rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9mMDllY2YtZTgwNS00MTU4LWIzMTUt
ZjJiZTlmNmM2NjRjLzEvWTBUS3pILW9SbzZDUXBzRVdMcmozd1FPamFjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni9mMDllY2YtZTgwNS00MTU4LWIzMTUtZjJiZTlmNmM2NjRj
LzEvalZuRU1qOTJmT1RfeUYycTBnaTVEQVQ3MC1rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1Q7XMA0G
CSqGSIb3DQEBCwUAA4IBAQBY2SPqzFFqsVY6uqJi+UaDwhlWLTegNKWDvS1q3I/q
7Id7Y+yS6oDPG8qeC3pqKxA7ooMW3bcbkOi1ASE9a26aAtQ1vIR/OFaEsaD0fSur
7IgN859b7f03yAUi4kgibHSdkI71gWRnapQA4gPfNL45wPPveqE34SxXly329COF
SBucUvRXZoly46+RYRMsiMMa4qzkuRHPqTq3nQYqd2JZuItJyDlTRQnnYidn+V3r
wLfQgWz5vDFRfe0KAHdoZffIPC5TNzQNJ6Rz19lLn69TfaLducry+nHnyk7icH+5
AMX9yc0tEREE1YXY0vkT98Cs14Spgafgy9PbIQtlKNWj
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:22 2024 by rpki-client on console-ams.rpki-client.org