Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/YbQIs6L8L6wn3O3ciE-de7HN5sk.roa
File: YbQIs6L8L6wn3O3ciE-de7HN5sk.roa (raw, json)
Hash identifier: BMJoA0dbDpMf6XOyViYFv/BRSp6wTaemgx8p4qaHSYM=
Subject key identifier: 61:B4:08:B3:A2:FC:2F:AC:27:DC:ED:DC:88:4F:9D:7B:B1:CD:E6:C9
Certificate issuer: /CN=d673d849b7d5047376d57e6f796f0018b70b4506
Certificate serial: 01856D418BC219BEE107C66E5CCA30CAC279
Authority key identifier: D6:73:D8:49:B7:D5:04:73:76:D5:7E:6F:79:6F:00:18:B7:0B:45:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/YbQIs6L8L6wn3O3ciE-de7HN5sk.roa
Signing time: Sun 01 Jan 2023 12:14:50 +0000
ROA not before: Sun 01 Jan 2023 12:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28848
IP address blocks: 2a01:190:15e9::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:41:8b:c2:19:be:e1:07:c6:6e:5c:ca:30:ca:c2:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d673d849b7d5047376d57e6f796f0018b70b4506
Validity
Not Before: Jan 1 12:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=61b408b3a2fc2fac27dceddc884f9d7bb1cde6c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:74:43:32:aa:c2:5d:f5:d2:14:69:38:bf:84:
09:82:0b:2c:a1:01:83:25:d9:27:38:11:43:aa:a1:
b1:2c:4f:8d:58:52:a0:de:e8:e8:84:15:c7:c1:f4:
12:84:06:29:be:98:bc:8c:bf:7c:d8:3c:a9:fe:d9:
01:13:6a:95:0f:66:62:89:12:e4:f5:b2:3f:0c:0b:
e7:22:a6:40:e6:2e:f0:61:ff:5a:4b:7f:6f:c6:ae:
14:40:53:43:6b:0a:f5:91:ea:06:26:76:b4:3b:0e:
50:e2:e0:bc:ec:05:bb:48:00:68:1d:01:8d:e5:de:
87:c8:ca:1c:1c:b2:b0:55:2b:65:3a:a4:9d:79:44:
46:50:a5:c2:83:8c:c1:0b:dc:b9:98:2e:63:79:12:
67:71:91:76:66:bd:4e:21:87:6f:38:b9:c1:0e:b2:
d4:1b:e8:1b:4e:6c:68:f8:aa:5a:58:60:e4:d0:24:
53:32:8f:3f:25:99:1c:49:9c:80:45:b7:80:9f:ea:
20:87:a1:73:01:06:17:08:83:ba:e0:85:90:21:81:
57:45:b5:5c:b7:ce:e0:c0:91:0e:28:5c:48:2d:4e:
65:57:11:28:f6:0a:2e:9d:08:82:e8:1f:e7:1f:55:
e1:26:7e:36:c6:38:fb:05:e6:69:24:3f:98:5a:1a:
48:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:B4:08:B3:A2:FC:2F:AC:27:DC:ED:DC:88:4F:9D:7B:B1:CD:E6:C9
X509v3 Authority Key Identifier:
keyid:D6:73:D8:49:B7:D5:04:73:76:D5:7E:6F:79:6F:00:18:B7:0B:45:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/YbQIs6L8L6wn3O3ciE-de7HN5sk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/1nPYSbfVBHN21X5veW8AGLcLRQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:190:15e9::/48
Signature Algorithm: sha256WithRSAEncryption
b4:60:1b:70:55:24:b0:70:ce:76:25:82:8f:d5:6a:33:da:50:
35:5e:36:bd:18:73:23:23:80:91:c6:95:3e:90:b2:af:05:9c:
ca:7e:5a:06:5a:d5:26:d0:9f:c7:c3:69:80:3c:a2:fb:25:fd:
ec:b6:58:e0:fb:4f:d3:30:0a:95:bc:b6:ad:0c:83:f2:0a:f0:
fb:57:08:16:05:1f:e2:32:40:da:b6:cf:04:5d:dd:8b:55:b2:
b5:24:08:ce:35:19:63:92:8c:98:98:2b:e9:97:66:c8:b2:06:
12:01:c9:6f:e0:68:aa:fc:0c:92:15:7c:12:85:47:ba:8b:49:
f9:03:41:df:f4:a6:fd:59:4e:74:f2:3e:34:cb:63:6a:0f:7e:
41:c0:db:d9:79:9d:0c:32:bf:23:b3:6e:fb:40:1e:e3:2d:36:
d0:02:5e:f8:4a:44:35:47:bd:e9:60:35:4b:02:6f:58:a5:d7:
07:90:55:3d:a0:26:2d:68:0d:41:17:cb:4d:19:83:7f:2a:50:
30:74:fa:d2:99:68:ab:f2:a4:91:67:f6:9e:8f:7b:03:de:2d:
f2:da:41:c1:22:e8:c6:24:da:93:53:df:2e:07:c6:37:5d:7e:
6f:f3:8c:80:a9:f1:80:42:7b:ac:61:e4:2c:bc:fa:ef:1b:68:
bd:7f:5b:26
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVtQYvCGb7hB8ZuXMowysJ5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ2NzNkODQ5YjdkNTA0NzM3NmQ1N2U2Zjc5NmYwMDE4Yjcw
YjQ1MDYwHhcNMjMwMTAxMTIxNDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MWI0MDhiM2EyZmMyZmFjMjdkY2VkZGM4ODRmOWQ3YmIxY2RlNmM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs3RDMqrCXfXSFGk4v4QJggssoQGD
JdknOBFDqqGxLE+NWFKg3ujohBXHwfQShAYpvpi8jL982Dyp/tkBE2qVD2ZiiRLk
9bI/DAvnIqZA5i7wYf9aS39vxq4UQFNDawr1keoGJna0Ow5Q4uC87AW7SABoHQGN
5d6HyMocHLKwVStlOqSdeURGUKXCg4zBC9y5mC5jeRJncZF2Zr1OIYdvOLnBDrLU
G+gbTmxo+KpaWGDk0CRTMo8/JZkcSZyARbeAn+ogh6FzAQYXCIO64IWQIYFXRbVc
t87gwJEOKFxILU5lVxEo9gounQiC6B/nH1XhJn42xjj7BeZpJD+YWhpIWwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFGG0CLOi/C+sJ9zt3IhPnXuxzebJMB8GA1UdIwQY
MBaAFNZz2Em31QRzdtV+b3lvABi3C0UGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMW5QWVNiZlZCSE4yMVg1dmVXOEFHTGNMUlFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS8yZWNlNjItMWQ4Yy00NTBjLTkxZTgt
OGVlYjc1N2NmNTQ1LzEvWWJRSXM2TDhMNnduM08zY2lFLWRlN0hONXNrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS8yZWNlNjItMWQ4Yy00NTBjLTkxZTgtOGVlYjc1N2NmNTQ1
LzEvMW5QWVNiZlZCSE4yMVg1dmVXOEFHTGNMUlFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgEBkBXp
MA0GCSqGSIb3DQEBCwUAA4IBAQC0YBtwVSSwcM52JYKP1Woz2lA1Xja9GHMjI4CR
xpU+kLKvBZzKfloGWtUm0J/Hw2mAPKL7Jf3stljg+0/TMAqVvLatDIPyCvD7VwgW
BR/iMkDats8EXd2LVbK1JAjONRljkoyYmCvpl2bIsgYSAclv4Giq/AySFXwShUe6
i0n5A0Hf9Kb9WU508j40y2NqD35BwNvZeZ0MMr8js277QB7jLTbQAl74SkQ1R73p
YDVLAm9YpdcHkFU9oCYtaA1BF8tNGYN/KlAwdPrSmWir8qSRZ/aej3sD3i3y2kHB
IujGJNqTU98uB8Y3XX5v84yAqfGAQnusYeQsvPrvG2i9f1sm
-----END CERTIFICATE-----
Generated at Mon Jan 1 13:11:26 2024 by rpki-client on console-ams.rpki-client.org