Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/yb-8XvAMWZET9aYRuLs5tle_Ub4.roa
File: yb-8XvAMWZET9aYRuLs5tle_Ub4.roa (raw, json)
Hash identifier: DiMHNZLI4fUXTtkOCey5DCmWJYlQj3ssF0IIqR4gyRU=
Subject key identifier: C9:BF:BC:5E:F0:0C:59:91:13:F5:A6:11:B8:BB:39:B6:57:BF:51:BE
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 018EF07420200771B704A02BD8E0771D91CB
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/yb-8XvAMWZET9aYRuLs5tle_Ub4.roa
Signing time: Thu 18 Apr 2024 09:05:25 +0000
ROA not before: Thu 18 Apr 2024 09:05:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 93.186.69.0/24 maxlen: 24
109.121.41.0/24 maxlen: 24
109.121.43.0/24 maxlen: 24
185.47.91.0/24 maxlen: 24
188.255.128.0/24 maxlen: 24
188.255.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 Apr 2024 09:07:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:f0:74:20:20:07:71:b7:04:a0:2b:d8:e0:77:1d:91:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Apr 18 09:05:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c9bfbc5ef00c599113f5a611b8bb39b657bf51be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:97:ef:87:4d:9a:56:05:8a:41:09:e2:0e:7a:
0f:b8:5b:36:ce:20:44:45:63:4d:4f:32:a6:06:0e:
dc:14:ca:5e:42:7a:fe:4c:63:b3:0f:37:7f:8e:30:
3d:37:dd:30:4b:d7:e7:c5:7a:35:29:94:97:7a:06:
1e:63:88:c7:4e:7c:26:d4:5d:36:99:cd:1a:96:84:
6b:87:52:33:4d:19:f3:5e:71:02:18:0c:8d:7f:35:
e3:47:c2:86:3b:54:3f:a9:fb:7a:21:ff:cc:3a:4b:
f8:55:a2:2d:82:bb:88:f4:4e:af:93:0f:f7:9f:8c:
19:24:3c:82:32:5a:05:00:90:82:d8:66:6a:60:bd:
e6:db:5a:f6:71:a7:1b:0e:77:8f:9f:1c:29:6f:9d:
65:56:26:ac:cf:12:a9:a4:d5:85:be:5c:1c:14:40:
eb:85:3e:40:16:9b:ee:6b:b8:fd:64:c4:0d:f6:e4:
48:a1:15:fd:86:81:bc:75:c3:90:5e:13:2d:63:38:
f6:43:cb:3f:7e:00:7b:d0:99:f2:98:1d:3b:39:2d:
ef:0f:87:90:c9:bd:26:4b:7d:d0:85:fa:ab:07:d4:
79:b3:2e:a7:d7:8a:75:a7:43:93:9c:a0:4e:e6:7a:
41:42:63:0a:15:b8:40:27:38:61:f0:a7:9f:67:f2:
a6:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:BF:BC:5E:F0:0C:59:91:13:F5:A6:11:B8:BB:39:B6:57:BF:51:BE
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/yb-8XvAMWZET9aYRuLs5tle_Ub4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.186.69.0/24
109.121.41.0/24
109.121.43.0/24
185.47.91.0/24
188.255.128.0/24
188.255.200.0/24
Signature Algorithm: sha256WithRSAEncryption
24:9e:87:26:62:8c:a4:ed:12:8d:8a:9b:31:1e:6a:46:e1:c2:
02:d7:a8:0c:eb:b6:47:15:e2:55:27:04:b0:8e:17:0d:61:32:
83:06:0e:5c:59:fe:06:84:c8:9f:f4:53:02:2c:51:f2:60:f1:
92:40:11:8e:b7:ed:8d:7c:e6:4d:7c:08:59:51:7f:c0:f5:af:
0a:45:7c:56:93:ca:53:af:af:82:ce:19:47:89:e1:f2:60:08:
c1:fe:70:bd:2a:91:98:3b:af:ed:f2:b4:15:a8:81:8c:17:bd:
c7:e2:b4:31:ba:e8:63:92:91:ed:bf:97:4b:30:25:ea:ff:92:
5e:fa:d9:2f:45:8e:3e:a6:de:bd:c6:44:d9:da:93:28:d5:52:
aa:33:7f:63:ca:c6:25:ab:69:05:b2:5a:a5:f4:21:d3:6f:b4:
e6:17:8a:27:39:e9:16:4a:29:76:b5:47:04:70:3c:57:1d:f2:
9b:a2:98:35:dc:b6:8c:50:9b:05:eb:29:7d:1e:21:0e:1d:83:
8f:1a:24:6b:25:d9:f3:ba:95:f2:73:aa:3f:f3:de:74:2d:23:
af:cf:f1:2c:99:b4:25:bf:d5:26:ca:01:06:f5:d6:13:40:3f:
81:8c:cf:b4:07:4a:35:09:6f:f2:6a:f7:4f:24:12:2b:79:bd:
5c:1f:4a:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 29 14:03:27 2024 by rpki-client on console-fra.rpki-client.org