Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/Ydw0IXfsQDyFHGmfj8RSDIbcPR8.roa
File: Ydw0IXfsQDyFHGmfj8RSDIbcPR8.roa (raw, json)
Hash identifier: /pfV4reS3LQdQbAOJbZJKNHpkEnQ99jlYPSkYtSQAdI=
Subject key identifier: 61:DC:34:21:77:EC:40:3C:85:1C:69:9F:8F:C4:52:0C:86:DC:3D:1F
Certificate issuer: /CN=d673d849b7d5047376d57e6f796f0018b70b4506
Certificate serial: 01856D41904B0FF8675C557B086DF463C247
Authority key identifier: D6:73:D8:49:B7:D5:04:73:76:D5:7E:6F:79:6F:00:18:B7:0B:45:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/Ydw0IXfsQDyFHGmfj8RSDIbcPR8.roa
Signing time: Sun 01 Jan 2023 12:14:51 +0000
ROA not before: Sun 01 Jan 2023 12:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206159
IP address blocks: 2a01:190:1500::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:41:90:4b:0f:f8:67:5c:55:7b:08:6d:f4:63:c2:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d673d849b7d5047376d57e6f796f0018b70b4506
Validity
Not Before: Jan 1 12:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=61dc342177ec403c851c699f8fc4520c86dc3d1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:25:e9:34:fc:4e:2b:30:d7:3d:10:14:73:31:
90:2f:58:c3:9b:80:f1:b8:21:b2:f1:38:dd:42:a0:
aa:31:b1:e2:29:b3:b3:81:5e:83:25:66:20:b9:ca:
27:7b:e4:89:a4:68:1f:5b:4c:2e:25:0e:8f:82:fa:
5e:cf:27:dc:f7:4f:19:5c:d2:4b:ef:7d:f3:bd:20:
95:f6:e1:ba:e0:4f:1a:d8:58:b2:a0:40:df:74:2a:
87:12:21:5e:25:e8:9b:fd:c2:da:42:ed:ce:88:28:
a8:8b:17:f6:44:84:08:00:44:5c:a1:47:d3:6e:f2:
80:f9:06:5f:1f:07:30:b0:9c:e8:f2:ec:11:dc:da:
b9:02:5a:90:1e:be:65:f3:4e:8c:e6:ee:db:16:43:
31:8c:ae:00:df:f6:2f:9a:7f:78:7a:84:01:03:d3:
42:3d:b8:38:8e:d9:c8:ca:1b:b3:da:6f:ec:be:ce:
a3:96:ce:29:49:7e:ba:92:25:f7:f8:86:14:44:89:
7e:c0:46:e9:ae:59:e1:00:5e:57:55:e5:62:68:d9:
5a:09:37:66:6d:7e:df:00:62:d7:e8:15:e6:2b:e5:
c5:8d:2c:b8:98:64:53:16:d6:29:5a:67:8e:87:1c:
09:d7:bc:bd:7b:1b:32:2b:cd:34:54:9e:ea:3c:ef:
e4:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:DC:34:21:77:EC:40:3C:85:1C:69:9F:8F:C4:52:0C:86:DC:3D:1F
X509v3 Authority Key Identifier:
keyid:D6:73:D8:49:B7:D5:04:73:76:D5:7E:6F:79:6F:00:18:B7:0B:45:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1nPYSbfVBHN21X5veW8AGLcLRQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/Ydw0IXfsQDyFHGmfj8RSDIbcPR8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2ece62-1d8c-450c-91e8-8eeb757cf545/1/1nPYSbfVBHN21X5veW8AGLcLRQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:190:1500::/48
Signature Algorithm: sha256WithRSAEncryption
53:72:83:da:cd:b2:12:33:86:5e:f2:53:da:e9:b5:c6:be:b3:
fd:15:5a:ad:64:e2:10:3c:78:48:0d:94:17:86:35:0e:27:98:
47:a3:b1:38:54:e6:6a:01:29:74:22:7a:73:bd:33:0e:cd:2e:
6d:af:70:c4:b8:cf:d3:48:97:90:2c:a0:e0:1c:f4:1b:bf:25:
64:be:50:5e:13:6b:c5:4f:36:b1:e4:a4:ad:b8:a2:cd:c5:17:
a9:74:66:5b:d0:56:e2:45:c4:63:3a:ad:23:89:b2:11:b9:61:
8a:cf:c4:cf:0e:9d:4c:d8:85:2b:db:f4:fe:1f:36:a3:48:e2:
9c:34:ce:7f:be:d6:d3:92:83:9d:6e:3b:01:1f:7c:b3:0a:bc:
a2:8a:09:64:40:ce:54:2c:bc:67:55:f9:74:55:33:fa:69:5f:
84:ce:d9:ac:2e:36:26:09:34:f3:04:7a:10:e7:b7:49:dd:3f:
44:27:c5:e9:93:db:b1:6a:77:c0:55:84:5c:a5:64:f5:5c:a1:
3f:54:c6:8f:2f:6c:24:2b:72:80:7a:1f:ee:17:e0:80:71:37:
de:03:fa:f9:dd:03:db:01:19:9f:6e:85:f5:06:6c:d8:ea:72:
b5:44:19:13:e8:c1:22:5e:20:c4:92:f5:58:af:a6:3e:eb:71:
60:26:45:cc
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVtQZBLD/hnXFV7CG30Y8JHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ2NzNkODQ5YjdkNTA0NzM3NmQ1N2U2Zjc5NmYwMDE4Yjcw
YjQ1MDYwHhcNMjMwMTAxMTIxNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MWRjMzQyMTc3ZWM0MDNjODUxYzY5OWY4ZmM0NTIwYzg2ZGMzZDFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApCXpNPxOKzDXPRAUczGQL1jDm4Dx
uCGy8TjdQqCqMbHiKbOzgV6DJWYgucone+SJpGgfW0wuJQ6Pgvpezyfc908ZXNJL
733zvSCV9uG64E8a2FiyoEDfdCqHEiFeJeib/cLaQu3OiCioixf2RIQIAERcoUfT
bvKA+QZfHwcwsJzo8uwR3Nq5AlqQHr5l806M5u7bFkMxjK4A3/Yvmn94eoQBA9NC
Pbg4jtnIyhuz2m/svs6jls4pSX66kiX3+IYURIl+wEbprlnhAF5XVeViaNlaCTdm
bX7fAGLX6BXmK+XFjSy4mGRTFtYpWmeOhxwJ17y9exsyK800VJ7qPO/kzQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFGHcNCF37EA8hRxpn4/EUgyG3D0fMB8GA1UdIwQY
MBaAFNZz2Em31QRzdtV+b3lvABi3C0UGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMW5QWVNiZlZCSE4yMVg1dmVXOEFHTGNMUlFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS8yZWNlNjItMWQ4Yy00NTBjLTkxZTgt
OGVlYjc1N2NmNTQ1LzEvWWR3MElYZnNRRHlGSEdtZmo4UlNESWJjUFI4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS8yZWNlNjItMWQ4Yy00NTBjLTkxZTgtOGVlYjc1N2NmNTQ1
LzEvMW5QWVNiZlZCSE4yMVg1dmVXOEFHTGNMUlFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgEBkBUA
MA0GCSqGSIb3DQEBCwUAA4IBAQBTcoPazbISM4Ze8lPa6bXGvrP9FVqtZOIQPHhI
DZQXhjUOJ5hHo7E4VOZqASl0InpzvTMOzS5tr3DEuM/TSJeQLKDgHPQbvyVkvlBe
E2vFTzax5KStuKLNxRepdGZb0FbiRcRjOq0jibIRuWGKz8TPDp1M2IUr2/T+Hzaj
SOKcNM5/vtbTkoOdbjsBH3yzCryiiglkQM5ULLxnVfl0VTP6aV+EztmsLjYmCTTz
BHoQ57dJ3T9EJ8Xpk9uxanfAVYRcpWT1XKE/VMaPL2wkK3KAeh/uF+CAcTfeA/r5
3QPbARmfboX1BmzY6nK1RBkT6MEiXiDEkvVYr6Y+63FgJkXM
-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:27 2024 by rpki-client on console-fra.rpki-client.org