Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/yyqJskUQyEk__Of15-YTUStTrBE.roa
File: yyqJskUQyEk__Of15-YTUStTrBE.roa (raw, json)
Hash identifier: iRSNw0Ad3a8wT/OYEWBTPmt84kSlKV4rFEwEWMYfaBQ=
Subject key identifier: CB:2A:89:B2:45:10:C8:49:3F:FC:E7:F5:E7:E6:13:51:2B:53:AC:11
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 018ED19F138A1D077EB1AD0A9BAD75620CC3
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/yyqJskUQyEk__Of15-YTUStTrBE.roa
Signing time: Fri 12 Apr 2024 09:24:07 +0000
ROA not before: Fri 12 Apr 2024 09:24:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 152598
IP address blocks: 2a0e:15c0:6::/48 maxlen: 48
2a0f:3d86:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 21 May 2024 08:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:d1:9f:13:8a:1d:07:7e:b1:ad:0a:9b:ad:75:62:0c:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Apr 12 09:24:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cb2a89b24510c8493ffce7f5e7e613512b53ac11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:66:fa:44:1e:f8:aa:1b:f3:c9:ab:6e:ed:99:
a4:f0:6d:7f:fa:ec:f7:2f:e9:2b:8b:2f:68:ec:f6:
68:ec:c8:d5:a8:9f:83:eb:05:4a:2e:d6:cc:3a:43:
0b:21:71:b4:08:a7:f8:bb:da:e2:93:1d:31:a3:67:
da:31:60:62:b7:94:c5:a4:0b:44:09:e0:28:12:d8:
7b:09:e9:92:2b:11:51:fb:7e:01:df:46:41:9b:a8:
48:17:58:55:ca:a8:74:e8:4b:7d:7c:7f:4c:5a:00:
fe:21:b7:7f:f8:98:9c:67:92:58:e6:4c:0f:65:52:
b3:67:c2:14:cc:a4:f5:56:14:82:37:94:37:f7:65:
13:8f:11:77:e0:d3:06:25:f1:bb:1b:e5:9f:f2:bc:
a8:06:c3:ab:28:9b:72:db:02:02:f5:4a:ca:9f:cc:
5a:16:b0:a2:34:15:a0:b3:65:12:79:0d:85:97:ea:
66:1d:55:6a:2e:ee:51:26:9c:40:21:ee:a2:43:a4:
0c:de:0d:dc:f4:7d:92:9b:44:f4:9f:c6:ba:bc:ff:
27:2e:d6:46:d6:73:90:5b:42:19:9e:25:ad:c0:bd:
45:4b:fe:7e:42:47:b7:15:20:b9:d7:96:15:ab:00:
12:8d:85:6c:2d:ee:8f:19:fe:a8:61:9b:a5:19:83:
7c:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:2A:89:B2:45:10:C8:49:3F:FC:E7:F5:E7:E6:13:51:2B:53:AC:11
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/yyqJskUQyEk__Of15-YTUStTrBE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:15c0:6::/48
2a0f:3d86:1::/48
Signature Algorithm: sha256WithRSAEncryption
18:97:5d:4b:07:b2:bd:46:13:19:b1:79:f8:b7:eb:ef:88:b8:
04:0d:b4:8c:48:cd:bf:62:02:37:a5:ea:be:fc:df:e6:ce:92:
0e:82:58:65:50:40:77:bb:39:72:37:08:0e:30:f9:d9:7f:fd:
d8:66:51:44:7d:8b:7f:44:de:a3:30:25:ad:0f:ba:f5:7d:f5:
36:8f:19:81:9d:20:c9:4e:12:e7:b1:52:10:94:4c:d1:29:e0:
70:15:cf:19:e9:f3:bf:52:e6:24:fc:8e:83:b2:44:fe:a7:ba:
06:a5:64:1c:34:f7:e1:38:7f:a1:ca:bf:49:ba:8b:4e:77:02:
c6:0d:df:49:b1:cf:08:db:ea:44:b2:4a:62:8d:97:96:d2:d9:
6e:1c:b9:1d:3b:50:9c:b0:41:41:7c:39:7e:6f:95:89:52:ef:
4e:ea:6a:26:2f:74:d2:cd:93:e9:79:8e:f9:24:6f:69:ef:62:
09:07:06:5a:4a:f7:ef:a9:51:1d:03:35:3c:90:bf:df:71:62:
b5:7a:82:55:9e:23:2a:bb:0f:ac:d8:a2:fb:e2:b0:f0:2b:86:
52:05:32:1e:b4:f0:a2:43:6f:8c:37:73:79:a0:c4:13:60:e8:
3b:6a:65:a9:a6:60:8a:79:b6:63:9d:80:a5:93:84:b9:41:4b:
b7:a0:2a:09
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAY7RnxOKHQd+sa0Km611YgzDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkNTU5YWFmYmZjMDkzMTI0MmUxZDYzNzI5OGNmMWRkMjIz
ZTRjMjYwHhcNMjQwNDEyMDkyNDA3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYjJhODliMjQ1MTBjODQ5M2ZmY2U3ZjVlN2U2MTM1MTJiNTNhYzExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxmb6RB74qhvzyatu7Zmk8G1/+uz3
L+kriy9o7PZo7MjVqJ+D6wVKLtbMOkMLIXG0CKf4u9rikx0xo2faMWBit5TFpAtE
CeAoEth7CemSKxFR+34B30ZBm6hIF1hVyqh06Et9fH9MWgD+Ibd/+JicZ5JY5kwP
ZVKzZ8IUzKT1VhSCN5Q392UTjxF34NMGJfG7G+Wf8ryoBsOrKJty2wIC9UrKn8xa
FrCiNBWgs2USeQ2Fl+pmHVVqLu5RJpxAIe6iQ6QM3g3c9H2Sm0T0n8a6vP8nLtZG
1nOQW0IZniWtwL1FS/5+Qke3FSC515YVqwASjYVsLe6PGf6oYZulGYN82wIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFMsqibJFEMhJP/zn9efmE1ErU6wRMB8GA1UdIwQY
MBaAFH1Vmq+/wJMSQuHWNymM8d0iPkwmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTkt
OGM1MDA3YzJhNGI2LzEveXlxSnNrVVF5RWtfX09mMTUtWVRVU3RUckJFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC80OWFkYzYtYmE4OS00MDNmLWFkYTktOGM1MDA3YzJhNGI2
LzEvZlZXYXI3X0FreEpDNGRZM0tZengzU0ktVENZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKg4VwAAG
AwcAKg89hgABMA0GCSqGSIb3DQEBCwUAA4IBAQAYl11LB7K9RhMZsXn4t+vviLgE
DbSMSM2/YgI3peq+/N/mzpIOglhlUEB3uzlyNwgOMPnZf/3YZlFEfYt/RN6jMCWt
D7r1ffU2jxmBnSDJThLnsVIQlEzRKeBwFc8Z6fO/UuYk/I6DskT+p7oGpWQcNPfh
OH+hyr9JuotOdwLGDd9Jsc8I2+pEskpijZeW0tluHLkdO1CcsEFBfDl+b5WJUu9O
6momL3TSzZPpeY75JG9p72IJBwZaSvfvqVEdAzU8kL/fcWK1eoJVniMquw+s2KL7
4rDwK4ZSBTIetPCiQ2+MN3N5oMQTYOg7amWppmCKebZjnYClk4S5QUu3oCoJ
-----END CERTIFICATE-----
Generated at Tue May 21 12:18:06 2024 by rpki-client on console-ams.rpki-client.org