Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/efc172-4b94-4c55-9d36-08111103ccf9/1/s-YL73a1pSp0d72IlM4qCGvAadI.roa
File: s-YL73a1pSp0d72IlM4qCGvAadI.roa (raw, json)
Hash identifier: i0Vqu1Pakp47DpCrokwo1yPC5XyrHzSncCLQRnU5ZZM=
Subject key identifier: B3:E6:0B:EF:76:B5:A5:2A:74:77:BD:88:94:CE:2A:08:6B:C0:69:D2
Certificate issuer: /CN=c03c29566ef59fcf1a90d82d08ae10c630f94b88
Certificate serial: 01857042A5B4EA1BC4B24A4EA9BC9EE85125
Authority key identifier: C0:3C:29:56:6E:F5:9F:CF:1A:90:D8:2D:08:AE:10:C6:30:F9:4B:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wDwpVm71n88akNgtCK4QxjD5S4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/efc172-4b94-4c55-9d36-08111103ccf9/1/s-YL73a1pSp0d72IlM4qCGvAadI.roa
Signing time: Mon 02 Jan 2023 02:14:53 +0000
ROA not before: Mon 02 Jan 2023 02:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25545
IP address blocks: 217.15.240.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:a5:b4:ea:1b:c4:b2:4a:4e:a9:bc:9e:e8:51:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c03c29566ef59fcf1a90d82d08ae10c630f94b88
Validity
Not Before: Jan 2 02:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b3e60bef76b5a52a7477bd8894ce2a086bc069d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:12:6e:42:de:10:3a:ce:96:16:ee:ae:df:17:
9e:3b:71:46:f1:e3:f3:ce:84:22:d7:57:dd:27:7b:
84:ee:53:b4:13:a6:7c:5e:88:8d:d1:cb:14:aa:e9:
01:6a:32:1e:34:fa:82:5c:11:8e:7b:54:f2:01:fe:
d2:8a:36:e4:7b:22:8c:4c:09:02:c3:19:0b:c2:20:
1f:4d:f3:f0:8c:2a:6a:31:19:7f:d6:3a:2d:a5:37:
f7:7b:1c:cd:b6:99:49:bf:6a:cf:ce:2e:30:b1:22:
99:ac:48:14:4d:1e:a3:dd:13:32:93:4f:73:21:0f:
11:7e:52:93:df:f8:43:d9:e8:51:7b:bd:97:bd:87:
4f:c3:f1:7b:0b:ea:c5:7c:ec:ef:ee:45:79:23:92:
21:5b:58:9b:e8:b4:e4:c2:53:54:e9:f1:6f:51:f1:
41:96:37:98:bc:15:0b:10:b8:a5:47:0c:dd:58:e0:
88:72:81:28:95:7e:46:18:b8:33:a5:ee:58:7b:8d:
f6:72:1c:b0:1c:32:34:dd:54:df:e8:5e:e3:a1:8c:
e7:5e:1f:34:e6:9b:9d:e0:26:f8:1d:4e:c9:16:9b:
e2:fc:03:e5:13:a2:26:f7:c8:92:9b:be:2e:3b:41:
9f:51:c4:9f:4c:7a:02:79:6a:ba:ac:de:91:b1:a5:
f6:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:E6:0B:EF:76:B5:A5:2A:74:77:BD:88:94:CE:2A:08:6B:C0:69:D2
X509v3 Authority Key Identifier:
keyid:C0:3C:29:56:6E:F5:9F:CF:1A:90:D8:2D:08:AE:10:C6:30:F9:4B:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wDwpVm71n88akNgtCK4QxjD5S4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/efc172-4b94-4c55-9d36-08111103ccf9/1/s-YL73a1pSp0d72IlM4qCGvAadI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/efc172-4b94-4c55-9d36-08111103ccf9/1/wDwpVm71n88akNgtCK4QxjD5S4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.15.240.0/20
Signature Algorithm: sha256WithRSAEncryption
3a:80:2f:32:7f:98:b7:bb:ce:c1:1b:5b:81:57:90:e3:4a:f2:
7f:63:e2:fa:d9:dc:bd:16:76:f1:ee:51:6d:47:a8:03:ae:65:
32:6a:11:17:1a:b6:f9:98:30:fa:b8:00:11:c2:57:ee:45:1e:
84:2b:06:6f:48:51:76:0b:78:9f:c9:c8:c0:a3:e7:b3:5e:04:
6a:4c:57:74:b6:c5:bd:c1:c4:26:a3:41:6d:fe:94:8e:61:91:
a6:25:98:90:dd:20:61:2e:bc:1c:22:bf:5d:b9:c2:12:53:09:
b7:86:cd:be:96:98:3e:d0:e5:09:52:43:40:27:b6:49:54:35:
1d:c8:0b:3b:dc:76:c5:9b:21:b0:6d:4a:cd:84:35:c8:64:43:
35:19:3d:3a:68:f5:98:91:ae:5d:a8:ac:25:e2:f3:dd:08:c5:
91:c4:0b:4d:ec:f9:3d:24:c4:3d:49:77:1c:cc:b3:6a:80:90:
75:9f:e1:b5:61:9d:f3:67:49:46:d7:1d:d5:44:0c:e0:0a:81:
78:b4:8f:06:18:51:61:81:98:46:03:05:b5:4f:b0:b2:83:7f:
4f:d4:e5:d6:39:bd:d3:f7:48:0f:14:b1:99:7b:a6:50:f8:d4:
12:4c:27:df:33:41:ce:d5:f5:5d:b3:64:b4:df:8a:9f:35:90:
a5:5c:9a:97
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwQqW06hvEskpOqbye6FElMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMwM2MyOTU2NmVmNTlmY2YxYTkwZDgyZDA4YWUxMGM2MzBm
OTRiODgwHhcNMjMwMTAyMDIxNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiM2U2MGJlZjc2YjVhNTJhNzQ3N2JkODg5NGNlMmEwODZiYzA2OWQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkRJuQt4QOs6WFu6u3xeeO3FG8ePz
zoQi11fdJ3uE7lO0E6Z8XoiN0csUqukBajIeNPqCXBGOe1TyAf7SijbkeyKMTAkC
wxkLwiAfTfPwjCpqMRl/1jotpTf3exzNtplJv2rPzi4wsSKZrEgUTR6j3RMyk09z
IQ8RflKT3/hD2ehRe72XvYdPw/F7C+rFfOzv7kV5I5IhW1ib6LTkwlNU6fFvUfFB
ljeYvBULELilRwzdWOCIcoEolX5GGLgzpe5Ye432chywHDI03VTf6F7joYznXh80
5pud4Cb4HU7JFpvi/APlE6Im98iSm74uO0GfUcSfTHoCeWq6rN6RsaX2awIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLPmC+92taUqdHe9iJTOKghrwGnSMB8GA1UdIwQY
MBaAFMA8KVZu9Z/PGpDYLQiuEMYw+UuIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd0R3cFZtNzFuODhha05ndENLNFF4akQ1UzRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9lZmMxNzItNGI5NC00YzU1LTlkMzYt
MDgxMTExMDNjY2Y5LzEvcy1ZTDczYTFwU3AwZDcySWxNNHFDR3ZBYWRJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi9lZmMxNzItNGI5NC00YzU1LTlkMzYtMDgxMTExMDNjY2Y5
LzEvd0R3cFZtNzFuODhha05ndENLNFF4akQ1UzRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE2Q/wMA0G
CSqGSIb3DQEBCwUAA4IBAQA6gC8yf5i3u87BG1uBV5DjSvJ/Y+L62dy9Fnbx7lFt
R6gDrmUyahEXGrb5mDD6uAARwlfuRR6EKwZvSFF2C3ifycjAo+ezXgRqTFd0tsW9
wcQmo0Ft/pSOYZGmJZiQ3SBhLrwcIr9ducISUwm3hs2+lpg+0OUJUkNAJ7ZJVDUd
yAs73HbFmyGwbUrNhDXIZEM1GT06aPWYka5dqKwl4vPdCMWRxAtN7Pk9JMQ9SXcc
zLNqgJB1n+G1YZ3zZ0lG1x3VRAzgCoF4tI8GGFFhgZhGAwW1T7Cyg39P1OXWOb3T
90gPFLGZe6ZQ+NQSTCffM0HO1fVds2S034qfNZClXJqX
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:05 2024 by rpki-client on console-fra.rpki-client.org