Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/501e8f-c7e1-4aa4-8583-66d74e73f254/1/_YC5LQTWcj34YmqXWIEkcarycbI.roa
File: _YC5LQTWcj34YmqXWIEkcarycbI.roa (raw, json)
Hash identifier: tBvo8MY5TDZssjLyNkCng3l9cZzFbbR0VSE14n+YTy4=
Subject key identifier: FD:80:B9:2D:04:D6:72:3D:F8:62:6A:97:58:81:24:71:AA:F2:71:B2
Certificate issuer: /CN=93c244be6b3affb6d4e547f2e1e3c5eac1b26ab2
Certificate serial: 018BAA5A2A984931F1DD205C986F14676D6A
Authority key identifier: 93:C2:44:BE:6B:3A:FF:B6:D4:E5:47:F2:E1:E3:C5:EA:C1:B2:6A:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k8JEvms6_7bU5Ufy4ePF6sGyarI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/501e8f-c7e1-4aa4-8583-66d74e73f254/1/_YC5LQTWcj34YmqXWIEkcarycbI.roa
Signing time: Tue 07 Nov 2023 15:15:17 +0000
ROA not before: Tue 07 Nov 2023 15:15:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 193.134.98.0/24 maxlen: 24
193.134.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:aa:5a:2a:98:49:31:f1:dd:20:5c:98:6f:14:67:6d:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93c244be6b3affb6d4e547f2e1e3c5eac1b26ab2
Validity
Not Before: Nov 7 15:15:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fd80b92d04d6723df8626a9758812471aaf271b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:b6:3c:d6:d3:a6:15:85:3a:85:5f:d2:ec:62:
1f:19:50:f1:c1:d6:e1:cc:5b:d8:20:25:0b:09:1a:
a3:9b:5e:88:d3:89:91:4f:72:bc:05:25:ce:f4:e6:
1e:c8:30:24:5d:a0:bc:07:d4:f8:8c:e2:ee:f6:f5:
5c:fd:6b:50:24:d0:65:94:e0:23:b1:1c:c0:98:95:
f3:a7:62:98:cb:d9:b4:d1:b4:2a:ce:f1:8f:89:19:
df:2d:cc:e6:16:44:68:3a:2b:b5:6d:2b:64:4e:26:
c9:24:92:c2:e5:57:30:55:e8:cd:f1:3f:e3:0c:e5:
08:1d:96:7c:2c:4f:98:bf:d3:f0:83:73:d5:7e:79:
24:a6:a1:82:8b:13:cf:c6:0e:f9:8d:fb:fc:2d:dc:
85:fd:a5:7c:b6:b7:7c:e2:46:db:a1:59:75:d2:3e:
2f:cd:56:99:9e:67:e3:a4:07:52:3d:dd:44:85:48:
6e:c5:cb:d0:09:20:85:50:5e:d9:f9:48:fb:4f:d5:
a7:c6:6a:ab:a7:df:4c:d2:f0:da:c9:1a:7e:11:02:
13:30:f6:f9:85:61:53:16:43:02:55:72:22:f9:a5:
a4:5c:8d:af:c5:5b:62:44:ba:37:5e:19:3a:0f:b4:
0d:7b:73:69:44:6b:52:bb:12:81:b0:72:db:25:65:
69:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:80:B9:2D:04:D6:72:3D:F8:62:6A:97:58:81:24:71:AA:F2:71:B2
X509v3 Authority Key Identifier:
keyid:93:C2:44:BE:6B:3A:FF:B6:D4:E5:47:F2:E1:E3:C5:EA:C1:B2:6A:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k8JEvms6_7bU5Ufy4ePF6sGyarI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/501e8f-c7e1-4aa4-8583-66d74e73f254/1/_YC5LQTWcj34YmqXWIEkcarycbI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/501e8f-c7e1-4aa4-8583-66d74e73f254/1/k8JEvms6_7bU5Ufy4ePF6sGyarI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.134.96.0/24
193.134.98.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:f4:b6:d7:f9:e2:df:50:7c:3d:f0:0c:42:e2:b8:e4:6e:3b:
74:c4:4d:98:63:c5:d2:84:e0:3a:ac:c4:f9:f7:90:7a:47:fd:
99:11:6e:91:c3:62:b9:d7:89:13:e3:02:55:50:2d:7d:0e:6c:
a3:55:63:66:56:d5:4a:6a:90:fb:be:8c:fd:ff:04:12:ee:5b:
0a:77:35:08:66:8b:ac:2b:cb:b6:ea:37:3c:9d:19:57:8b:86:
1d:ea:f0:fd:03:48:b1:4d:6f:d6:2b:7f:e8:53:2f:cb:27:ca:
06:9f:72:31:6b:64:5a:aa:e6:11:5a:4b:15:1e:cb:17:d4:92:
00:44:ff:1a:4f:68:67:61:c9:b6:51:39:8b:94:a4:27:22:60:
63:e2:38:bd:54:98:66:2d:fb:aa:6a:c7:42:02:7e:2e:2e:31:
04:ae:60:2c:3f:1e:ca:2e:73:ff:74:7c:67:d0:89:d5:97:08:
f8:00:1b:25:57:d2:f8:8b:52:37:97:66:35:66:35:32:07:ff:
27:a1:f3:80:86:6d:52:e4:87:56:48:db:9e:7b:5e:e7:d8:3d:
58:82:43:e1:3b:34:0d:f7:f9:81:da:d1:25:7b:09:bf:6b:99:
c8:d1:aa:b0:81:d4:8f:17:d4:4b:49:fd:60:f1:88:f8:5b:b6:
50:ae:c7:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:02 2024 by rpki-client on console-ams.rpki-client.org