Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8fcbe9-9b9b-4987-95be-25904ba9a355/1/YeFypwe-BgjUwsV62SMgpSe57HE.roa
File: YeFypwe-BgjUwsV62SMgpSe57HE.roa (raw, json)
Hash identifier: PmbavqjVw3oPveX5ME54j+udd92p2D6jHm0GInIvKVQ=
Subject key identifier: 61:E1:72:A7:07:BE:06:08:D4:C2:C5:7A:D9:23:20:A5:27:B9:EC:71
Certificate issuer: /CN=c0f69d2f474474dbb57f6bec8c2d65d5e0c29661
Certificate serial: 0185700271C24402523DE4770487C1575A1B
Authority key identifier: C0:F6:9D:2F:47:44:74:DB:B5:7F:6B:EC:8C:2D:65:D5:E0:C2:96:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wPadL0dEdNu1f2vsjC1l1eDClmE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8fcbe9-9b9b-4987-95be-25904ba9a355/1/YeFypwe-BgjUwsV62SMgpSe57HE.roa
Signing time: Mon 02 Jan 2023 01:04:46 +0000
ROA not before: Mon 02 Jan 2023 01:04:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25285
IP address blocks: 81.89.32.0/20 maxlen: 20
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:71:c2:44:02:52:3d:e4:77:04:87:c1:57:5a:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0f69d2f474474dbb57f6bec8c2d65d5e0c29661
Validity
Not Before: Jan 2 01:04:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=61e172a707be0608d4c2c57ad92320a527b9ec71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:33:c8:b4:5d:7e:b6:a8:4f:4d:a6:ad:68:11:
79:4e:43:74:de:7b:48:15:74:90:e1:52:aa:84:af:
56:df:6a:dd:c1:7b:17:2c:db:89:07:1a:87:18:9f:
b2:2b:79:fe:8b:14:b2:87:08:3c:36:17:2c:d8:12:
b5:61:c4:ea:a6:cb:6e:76:92:2b:fa:4d:1c:e8:e1:
cd:0c:03:e3:35:75:83:50:6a:12:5d:c3:45:6f:31:
0b:4a:ac:c6:8b:4a:13:d0:35:94:27:e1:74:6d:e6:
f6:95:26:6b:98:33:89:66:2e:cd:90:70:c7:6e:1f:
59:40:ab:b1:16:9d:78:9a:7b:58:d6:e8:d7:07:6f:
77:2a:cb:1d:e2:09:b3:4d:77:56:25:d1:b7:4d:1f:
4c:c8:14:20:b1:74:6a:8a:e9:2e:0d:0d:a1:d3:79:
51:38:df:e1:13:ff:c5:56:d6:fc:13:cc:f7:96:59:
ab:0c:d6:6b:1a:62:0a:5c:a2:e5:9a:ee:ec:b7:05:
98:b9:68:c6:7f:68:c0:0f:1b:94:e0:c8:4f:a1:28:
66:03:6b:78:d5:71:84:c9:4b:8b:7b:22:f9:cb:c6:
3e:66:36:21:40:ae:ce:b0:d0:ef:9c:8b:dc:d9:b3:
ee:31:83:b8:c6:1c:eb:16:c0:b6:fa:21:d9:10:3e:
21:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:E1:72:A7:07:BE:06:08:D4:C2:C5:7A:D9:23:20:A5:27:B9:EC:71
X509v3 Authority Key Identifier:
keyid:C0:F6:9D:2F:47:44:74:DB:B5:7F:6B:EC:8C:2D:65:D5:E0:C2:96:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wPadL0dEdNu1f2vsjC1l1eDClmE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8fcbe9-9b9b-4987-95be-25904ba9a355/1/YeFypwe-BgjUwsV62SMgpSe57HE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8fcbe9-9b9b-4987-95be-25904ba9a355/1/wPadL0dEdNu1f2vsjC1l1eDClmE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.89.32.0/20
Signature Algorithm: sha256WithRSAEncryption
6b:eb:0c:2e:30:9d:52:4a:b2:9a:eb:58:70:d6:45:47:7f:7e:
2b:33:fa:46:7f:98:ef:b3:63:c6:74:a0:53:d0:30:e6:39:03:
65:de:bd:ec:00:ec:69:df:dd:9a:2b:d1:3f:4e:8d:76:4a:a8:
01:d9:0b:27:9f:03:28:06:20:73:60:56:9d:43:45:16:8d:85:
6c:2b:9b:b5:7e:62:66:59:00:21:8c:fe:29:50:61:fb:7e:ee:
76:82:d9:bd:4a:c5:29:04:01:1e:af:5d:ee:ce:06:f6:e8:5f:
03:f9:a3:fb:d5:9f:46:f4:98:2a:1a:76:bd:c2:d4:88:cb:cc:
d1:e2:06:f5:4d:5d:71:4b:22:5a:b3:d4:47:85:b7:9b:c8:bf:
38:ec:00:8e:ff:e7:87:4d:48:c7:62:02:0f:55:08:ae:96:3f:
3e:28:7f:3a:67:a2:52:8f:07:0e:f0:30:6d:0a:e7:ce:fa:61:
6b:8d:31:4a:d8:ba:6b:b2:88:aa:1e:20:cf:42:a1:da:b5:6a:
ec:c8:ca:c1:27:65:c0:f1:f0:bf:ef:ca:b4:04:29:d3:09:8c:
83:77:cf:1d:bd:ae:f0:16:d6:58:c1:1f:6d:3b:9b:a1:9c:ed:
51:b9:a3:fc:50:fc:f0:a9:99:47:b7:5e:58:02:3f:ca:ba:5d:
f4:53:fa:a2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwAnHCRAJSPeR3BIfBV1obMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMwZjY5ZDJmNDc0NDc0ZGJiNTdmNmJlYzhjMmQ2NWQ1ZTBj
Mjk2NjEwHhcNMjMwMTAyMDEwNDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MWUxNzJhNzA3YmUwNjA4ZDRjMmM1N2FkOTIzMjBhNTI3YjllYzcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsTPItF1+tqhPTaataBF5TkN03ntI
FXSQ4VKqhK9W32rdwXsXLNuJBxqHGJ+yK3n+ixSyhwg8Nhcs2BK1YcTqpstudpIr
+k0c6OHNDAPjNXWDUGoSXcNFbzELSqzGi0oT0DWUJ+F0beb2lSZrmDOJZi7NkHDH
bh9ZQKuxFp14mntY1ujXB293Kssd4gmzTXdWJdG3TR9MyBQgsXRqiukuDQ2h03lR
ON/hE//FVtb8E8z3llmrDNZrGmIKXKLlmu7stwWYuWjGf2jADxuU4MhPoShmA2t4
1XGEyUuLeyL5y8Y+ZjYhQK7OsNDvnIvc2bPuMYO4xhzrFsC2+iHZED4heQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGHhcqcHvgYI1MLFetkjIKUnuexxMB8GA1UdIwQY
MBaAFMD2nS9HRHTbtX9r7IwtZdXgwpZhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd1BhZEwwZEVkTnUxZjJ2c2pDMWwxZURDbG1FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy84ZmNiZTktOWI5Yi00OTg3LTk1YmUt
MjU5MDRiYTlhMzU1LzEvWWVGeXB3ZS1CZ2pVd3NWNjJTTWdwU2U1N0hFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy84ZmNiZTktOWI5Yi00OTg3LTk1YmUtMjU5MDRiYTlhMzU1
LzEvd1BhZEwwZEVkTnUxZjJ2c2pDMWwxZURDbG1FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEUVkgMA0G
CSqGSIb3DQEBCwUAA4IBAQBr6wwuMJ1SSrKa61hw1kVHf34rM/pGf5jvs2PGdKBT
0DDmOQNl3r3sAOxp392aK9E/To12SqgB2QsnnwMoBiBzYFadQ0UWjYVsK5u1fmJm
WQAhjP4pUGH7fu52gtm9SsUpBAEer13uzgb26F8D+aP71Z9G9JgqGna9wtSIy8zR
4gb1TV1xSyJas9RHhbebyL847ACO/+eHTUjHYgIPVQiulj8+KH86Z6JSjwcO8DBt
CufO+mFrjTFK2LprsoiqHiDPQqHatWrsyMrBJ2XA8fC/78q0BCnTCYyDd88dva7w
FtZYwR9tO5uhnO1RuaP8UPzwqZlHt15YAj/Kul30U/qi
-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:35 2024 by rpki-client on console-fra.rpki-client.org