Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/5ddee9-c1c4-4b57-b6b8-d49916b5f2b4/1/YqJVAyojOjFbJVK9xRMTa9WLYHM.roa
File: YqJVAyojOjFbJVK9xRMTa9WLYHM.roa (raw, json)
Hash identifier: VHe+MyhjYsNFfRBnucEWlYDnvQxPiJGwtRcRH6qAp0A=
Subject key identifier: 62:A2:55:03:2A:23:3A:31:5B:25:52:BD:C5:13:13:6B:D5:8B:60:73
Certificate issuer: /CN=3b0bf18d6bbdb33da82fe61a28624ba72e235040
Certificate serial: 018F9BB95151E64FFA6709DFE6AFEBD216AB
Authority key identifier: 3B:0B:F1:8D:6B:BD:B3:3D:A8:2F:E6:1A:28:62:4B:A7:2E:23:50:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OwvxjWu9sz2oL-YaKGJLpy4jUEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/5ddee9-c1c4-4b57-b6b8-d49916b5f2b4/1/YqJVAyojOjFbJVK9xRMTa9WLYHM.roa
Signing time: Tue 21 May 2024 15:16:04 +0000
ROA not before: Tue 21 May 2024 15:16:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 63150
IP address blocks: 2a14:4900:2000::/36 maxlen: 48
Validation: Failed, certificate revoked on Thu 30 May 2024 05:03:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:9b:b9:51:51:e6:4f:fa:67:09:df:e6:af:eb:d2:16:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b0bf18d6bbdb33da82fe61a28624ba72e235040
Validity
Not Before: May 21 15:16:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=62a255032a233a315b2552bdc513136bd58b6073
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:be:46:cb:23:1c:30:79:af:5f:81:55:b7:dd:
a7:81:66:c9:86:6a:46:f1:65:12:55:4d:4e:8b:04:
07:a8:51:07:98:5b:cd:6a:7d:19:46:02:1b:34:30:
aa:33:d7:92:c2:1c:5f:95:c2:da:3a:45:7b:fb:8a:
a4:ed:69:80:0d:8e:60:9a:23:11:54:e4:d9:2a:07:
cc:31:69:6f:34:9f:97:aa:be:11:42:fd:a5:c9:0a:
08:ba:d2:3b:4e:db:f5:0d:d4:1e:2b:36:64:f0:55:
54:e4:21:a0:f6:16:37:39:6e:c4:9e:11:36:75:59:
5e:2c:07:6c:1a:47:18:22:0b:01:dd:89:68:80:00:
b9:a5:df:4f:b3:d2:d4:88:2b:a9:56:b1:84:2a:74:
40:76:d7:4b:84:2a:64:9c:fd:5d:3a:38:4e:50:c4:
05:b7:b3:8c:13:8c:3e:91:a2:d9:83:ce:b1:1d:9a:
6b:72:86:16:54:88:2e:88:07:4f:f4:fc:3d:d8:92:
0a:e1:bd:c4:13:35:fc:0b:28:f3:01:b2:2b:75:f5:
20:cb:30:d2:b1:98:bb:a6:3c:2a:f8:32:e1:c8:2b:
52:1f:79:6e:f1:d5:71:d9:db:9e:89:70:80:54:85:
29:21:12:6b:67:e9:9d:f0:97:5a:6b:73:01:2f:fe:
8c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:A2:55:03:2A:23:3A:31:5B:25:52:BD:C5:13:13:6B:D5:8B:60:73
X509v3 Authority Key Identifier:
keyid:3B:0B:F1:8D:6B:BD:B3:3D:A8:2F:E6:1A:28:62:4B:A7:2E:23:50:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OwvxjWu9sz2oL-YaKGJLpy4jUEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/5ddee9-c1c4-4b57-b6b8-d49916b5f2b4/1/YqJVAyojOjFbJVK9xRMTa9WLYHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/5ddee9-c1c4-4b57-b6b8-d49916b5f2b4/1/OwvxjWu9sz2oL-YaKGJLpy4jUEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:4900:2000::/36
Signature Algorithm: sha256WithRSAEncryption
90:96:72:69:59:70:bb:b0:78:8d:74:b4:a5:95:01:6e:b0:89:
5e:be:aa:2b:87:9b:69:4d:5c:f3:52:ca:8f:57:35:bc:2b:ff:
dc:03:9f:a8:b5:db:e1:c6:79:1b:85:32:ad:55:71:69:27:ba:
c5:84:31:01:17:55:9a:0c:25:64:07:ea:74:39:d2:e2:c4:8a:
4e:d8:60:a8:4d:a2:b7:8e:23:3a:a8:1c:9b:f4:56:2d:cc:71:
a6:16:06:b7:00:f9:54:1b:bb:6f:c1:46:1b:bb:48:81:4a:ea:
4d:e0:6f:c6:98:f8:84:bc:d9:11:64:a6:15:49:89:3d:32:9d:
d5:ae:b9:e5:28:ab:4f:b0:1e:ce:a0:80:88:51:0a:88:19:68:
64:87:0b:2e:cb:47:51:99:20:1e:6e:a4:c9:5d:16:73:47:73:
a5:fc:fa:c1:ae:71:c0:e7:5c:5b:46:dd:17:a7:a8:50:3a:9e:
10:f2:68:ea:91:c4:78:3c:a0:9d:d4:b7:f4:99:f4:70:aa:bd:
60:7e:cd:83:ab:6e:0f:06:b9:5d:f2:34:ed:22:25:0b:c8:fd:
38:68:92:e5:cc:a0:5e:ed:34:03:e1:3b:0c:17:f5:2f:e8:f0:
22:fb:3a:0f:ea:0e:c8:4f:b0:ec:90:fd:38:00:27:84:c5:3b:
dc:02:49:b4
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAY+buVFR5k/6Zwnf5q/r0harMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiMGJmMThkNmJiZGIzM2RhODJmZTYxYTI4NjI0YmE3MmUy
MzUwNDAwHhcNMjQwNTIxMTUxNjA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MmEyNTUwMzJhMjMzYTMxNWIyNTUyYmRjNTEzMTM2YmQ1OGI2MDczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoL5GyyMcMHmvX4FVt92ngWbJhmpG
8WUSVU1OiwQHqFEHmFvNan0ZRgIbNDCqM9eSwhxflcLaOkV7+4qk7WmADY5gmiMR
VOTZKgfMMWlvNJ+Xqr4RQv2lyQoIutI7Ttv1DdQeKzZk8FVU5CGg9hY3OW7EnhE2
dVleLAdsGkcYIgsB3YlogAC5pd9Ps9LUiCupVrGEKnRAdtdLhCpknP1dOjhOUMQF
t7OME4w+kaLZg86xHZprcoYWVIguiAdP9Pw92JIK4b3EEzX8CyjzAbIrdfUgyzDS
sZi7pjwq+DLhyCtSH3lu8dVx2dueiXCAVIUpIRJrZ+md8Jdaa3MBL/6MpwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFGKiVQMqIzoxWyVSvcUTE2vVi2BzMB8GA1UdIwQY
MBaAFDsL8Y1rvbM9qC/mGihiS6cuI1BAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3d2eGpXdTlzejJvTC1ZYUtHSkxweTRqVUVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS81ZGRlZTktYzFjNC00YjU3LWI2Yjgt
ZDQ5OTE2YjVmMmI0LzEvWXFKVkF5b2pPakZiSlZLOXhSTVRhOVdMWUhNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OS81ZGRlZTktYzFjNC00YjU3LWI2YjgtZDQ5OTE2YjVmMmI0
LzEvT3d2eGpXdTlzejJvTC1ZYUtHSkxweTRqVUVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEKhRJACAw
DQYJKoZIhvcNAQELBQADggEBAJCWcmlZcLuweI10tKWVAW6wiV6+qiuHm2lNXPNS
yo9XNbwr/9wDn6i12+HGeRuFMq1VcWknusWEMQEXVZoMJWQH6nQ50uLEik7YYKhN
oreOIzqoHJv0Vi3McaYWBrcA+VQbu2/BRhu7SIFK6k3gb8aY+IS82RFkphVJiT0y
ndWuueUoq0+wHs6ggIhRCogZaGSHCy7LR1GZIB5upMldFnNHc6X8+sGuccDnXFtG
3RenqFA6nhDyaOqRxHg8oJ3Ut/SZ9HCqvWB+zYOrbg8GuV3yNO0iJQvI/ThokuXM
oF7tNAPhOwwX9S/o8CL7Og/qDshPsOyQ/TgAJ4TFO9wCSbQ=
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:55:04 2025 by rpki-client