Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/2fdd56-ba2c-46fb-9882-9b257f4fea8d/1/YKH1y1oenkRl2jC0HeTRNviL_ac.roa
File: YKH1y1oenkRl2jC0HeTRNviL_ac.roa (raw, json)
Hash identifier: XPVI/MFo1SL5yRpOuZpWmEjLyP+8/ImhcGLC7g9NMCA=
Subject key identifier: 60:A1:F5:CB:5A:1E:9E:44:65:DA:30:B4:1D:E4:D1:36:F8:8B:FD:A7
Certificate issuer: /CN=77bc534ba44e9d3cba2f2446d4a3dd6eea9b8f61
Certificate serial: 01926BE2175B599D53182A7F9A234F6746F5
Authority key identifier: 77:BC:53:4B:A4:4E:9D:3C:BA:2F:24:46:D4:A3:DD:6E:EA:9B:8F:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d7xTS6ROnTy6LyRG1KPdbuqbj2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/2fdd56-ba2c-46fb-9882-9b257f4fea8d/1/YKH1y1oenkRl2jC0HeTRNviL_ac.roa
Signing time: Tue 08 Oct 2024 11:27:12 +0000
ROA not before: Tue 08 Oct 2024 11:27:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 46.253.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 09:50:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:6b:e2:17:5b:59:9d:53:18:2a:7f:9a:23:4f:67:46:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77bc534ba44e9d3cba2f2446d4a3dd6eea9b8f61
Validity
Not Before: Oct 8 11:27:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=60a1f5cb5a1e9e4465da30b41de4d136f88bfda7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:6f:ed:3e:41:a0:a2:fc:1a:26:fb:9f:a8:fa:
d1:91:3c:42:89:25:29:01:e8:4b:fe:fb:da:03:93:
e5:14:b3:72:10:68:5c:2e:d1:34:9c:5e:4a:5d:49:
82:02:e6:6a:de:32:b6:63:17:75:84:55:26:08:cb:
cb:5e:c2:7c:d7:9b:a7:2c:fb:4a:bd:fa:39:c2:57:
52:26:c4:4e:fb:15:84:9d:d7:06:a9:ea:35:02:09:
61:4d:81:3b:b3:cd:59:4d:e2:61:43:52:bc:30:ea:
2e:52:61:31:e5:0e:48:66:b2:a0:89:39:a3:b7:0f:
68:28:63:8c:c8:ba:fd:c5:9e:8d:a0:83:da:20:d2:
15:50:86:80:28:01:06:81:cf:bd:57:41:9c:ed:12:
57:e8:99:b9:f2:ce:93:c3:e3:47:61:29:ed:cd:04:
39:89:f8:e9:2c:f5:4b:20:bf:c7:8c:86:45:2e:bc:
95:09:97:bc:e1:de:56:5e:40:d3:b6:2a:4d:1f:65:
60:cb:c6:ad:e5:c3:64:74:be:d5:5a:a4:c6:80:08:
bf:4c:92:86:79:be:2d:32:9e:d5:ed:64:da:71:70:
06:ac:eb:08:2f:69:a6:42:29:20:ad:95:84:82:32:
da:bf:f1:05:74:59:88:ed:cf:b7:9c:09:07:13:10:
41:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:A1:F5:CB:5A:1E:9E:44:65:DA:30:B4:1D:E4:D1:36:F8:8B:FD:A7
X509v3 Authority Key Identifier:
keyid:77:BC:53:4B:A4:4E:9D:3C:BA:2F:24:46:D4:A3:DD:6E:EA:9B:8F:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7xTS6ROnTy6LyRG1KPdbuqbj2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/2fdd56-ba2c-46fb-9882-9b257f4fea8d/1/YKH1y1oenkRl2jC0HeTRNviL_ac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/2fdd56-ba2c-46fb-9882-9b257f4fea8d/1/d7xTS6ROnTy6LyRG1KPdbuqbj2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.253.129.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:ab:18:27:59:2f:16:88:86:d3:cb:2a:b6:06:6d:2a:ff:ed:
45:e7:55:77:a3:76:d4:da:55:71:bf:11:1b:c3:c2:fe:a2:f1:
36:e3:5d:3d:90:86:16:9a:32:38:f4:d5:88:03:1e:b4:34:f7:
a7:63:52:c3:0a:01:d6:6f:d9:46:bc:4e:3c:9a:2d:7e:63:0b:
ff:e7:e9:59:ce:61:02:89:b0:0a:6d:6d:f9:16:ca:0b:51:02:
9a:44:f6:f4:d5:87:18:4f:4b:08:e7:c9:09:c0:a5:7f:c9:4d:
a6:b7:ee:6d:19:fe:e2:2a:f8:7e:35:71:e1:fa:59:84:bc:98:
aa:8c:30:a9:57:54:bf:40:c6:6b:d8:a0:ae:17:19:cb:db:b3:
cf:49:f1:9d:f5:02:e1:0d:40:24:fb:1b:25:01:23:19:36:a0:
91:21:a5:64:f2:ea:ab:0f:65:4f:84:d9:65:d5:58:e8:2c:22:
7e:a3:85:2c:ad:73:bd:8d:2d:a2:8a:14:92:b2:46:0e:85:c8:
f7:66:f6:f7:ee:4d:a7:74:93:27:ac:a7:d3:8a:4b:90:9b:c6:
86:0d:7b:ef:47:98:f8:85:8a:c3:fb:01:6e:41:ca:f1:e4:93:
44:17:22:cd:7f:04:3e:c7:d5:c8:ef:18:df:f7:b9:71:7a:f7:
08:21:a1:12
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZJr4hdbWZ1TGCp/miNPZ0b1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3YmM1MzRiYTQ0ZTlkM2NiYTJmMjQ0NmQ0YTNkZDZlZWE5
YjhmNjEwHhcNMjQxMDA4MTEyNzEyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MGExZjVjYjVhMWU5ZTQ0NjVkYTMwYjQxZGU0ZDEzNmY4OGJmZGE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzm/tPkGgovwaJvufqPrRkTxCiSUp
AehL/vvaA5PlFLNyEGhcLtE0nF5KXUmCAuZq3jK2Yxd1hFUmCMvLXsJ815unLPtK
vfo5wldSJsRO+xWEndcGqeo1AglhTYE7s81ZTeJhQ1K8MOouUmEx5Q5IZrKgiTmj
tw9oKGOMyLr9xZ6NoIPaINIVUIaAKAEGgc+9V0Gc7RJX6Jm58s6Tw+NHYSntzQQ5
ifjpLPVLIL/HjIZFLryVCZe84d5WXkDTtipNH2Vgy8at5cNkdL7VWqTGgAi/TJKG
eb4tMp7V7WTacXAGrOsIL2mmQikgrZWEgjLav/EFdFmI7c+3nAkHExBBiwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGCh9ctaHp5EZdowtB3k0Tb4i/2nMB8GA1UdIwQY
MBaAFHe8U0ukTp08ui8kRtSj3W7qm49hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDd4VFM2Uk9uVHk2THlSRzFLUGRidXFiajJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi8yZmRkNTYtYmEyYy00NmZiLTk4ODIt
OWIyNTdmNGZlYThkLzEvWUtIMXkxb2Vua1JsMmpDMEhlVFJOdmlMX2FjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi8yZmRkNTYtYmEyYy00NmZiLTk4ODItOWIyNTdmNGZlYThk
LzEvZDd4VFM2Uk9uVHk2THlSRzFLUGRidXFiajJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALv2BMA0G
CSqGSIb3DQEBCwUAA4IBAQAKqxgnWS8WiIbTyyq2Bm0q/+1F51V3o3bU2lVxvxEb
w8L+ovE24109kIYWmjI49NWIAx60NPenY1LDCgHWb9lGvE48mi1+Ywv/5+lZzmEC
ibAKbW35FsoLUQKaRPb01YcYT0sI58kJwKV/yU2mt+5tGf7iKvh+NXHh+lmEvJiq
jDCpV1S/QMZr2KCuFxnL27PPSfGd9QLhDUAk+xslASMZNqCRIaVk8uqrD2VPhNll
1VjoLCJ+o4UsrXO9jS2iihSSskYOhcj3Zvb37k2ndJMnrKfTikuQm8aGDXvvR5j4
hYrD+wFuQcrx5JNEFyLNfwQ+x9XI7xjf97lxevcIIaES
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:48:20 2025 by rpki-client