Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/725a6f-0f29-492d-b231-9771b268f0ef/1/YHFJgjPA6t3PIye8iwiGaL5Damk.roa
File: YHFJgjPA6t3PIye8iwiGaL5Damk.roa (raw, json)
Hash identifier: clGBgsalomaM1Nva5QiYvxgoIRF6BagN5Dfsfp0lRv8=
Subject key identifier: 60:71:49:82:33:C0:EA:DD:CF:23:27:BC:8B:08:86:68:BE:43:6A:69
Certificate issuer: /CN=ad9ef3c5b03ffc56dd30fc1d060d1588f264b2b3
Certificate serial: 018843D7EEB73A6BF98704A13DBEA7110E63
Authority key identifier: AD:9E:F3:C5:B0:3F:FC:56:DD:30:FC:1D:06:0D:15:88:F2:64:B2:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rZ7zxbA__FbdMPwdBg0ViPJksrM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/725a6f-0f29-492d-b231-9771b268f0ef/1/YHFJgjPA6t3PIye8iwiGaL5Damk.roa
Signing time: Mon 22 May 2023 14:23:24 +0000
ROA not before: Mon 22 May 2023 14:23:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 185.137.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 May 2023 15:02:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:43:d7:ee:b7:3a:6b:f9:87:04:a1:3d:be:a7:11:0e:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad9ef3c5b03ffc56dd30fc1d060d1588f264b2b3
Validity
Not Before: May 22 14:23:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6071498233c0eaddcf2327bc8b088668be436a69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:6c:cf:3f:1e:9f:9e:1a:3f:f6:83:af:74:12:
74:9c:88:e0:cd:42:2a:8b:b5:f4:24:21:2b:e4:15:
6f:8a:b2:06:70:e2:58:84:8f:29:5b:ce:c0:76:c5:
64:cf:81:36:64:10:24:f9:e3:ab:88:a6:42:1a:dc:
fb:6c:e2:4b:a5:01:30:44:55:42:eb:ff:d1:24:7a:
52:0f:d7:3a:a6:f0:64:44:7d:02:21:4b:6e:c5:6b:
27:a1:b8:ab:3d:f7:e4:91:84:f8:71:ca:9a:96:bf:
cb:32:80:04:33:e2:c6:94:26:eb:df:94:d7:a7:1f:
7d:80:4e:da:ee:4c:e2:a0:3d:1d:c2:fa:ae:d9:11:
14:4c:2e:24:43:cd:d1:61:01:84:5e:59:8d:42:7d:
50:42:0b:65:26:86:07:ae:b3:e4:50:dc:57:f9:b8:
5c:60:82:2d:6b:9b:0a:bd:2a:6f:48:9d:be:1c:75:
37:70:f0:26:ac:3a:2e:a1:54:69:b3:b7:1e:71:22:
26:fc:c7:66:ee:ce:8c:73:02:5d:82:c1:4d:c8:07:
c6:28:a3:72:69:2b:cd:60:3d:49:1d:45:17:3b:c2:
b0:03:b3:9f:64:7f:ad:a2:b9:a0:d8:df:71:7d:d0:
9f:95:d7:65:31:92:15:0c:3b:6a:82:90:36:63:6d:
5f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:71:49:82:33:C0:EA:DD:CF:23:27:BC:8B:08:86:68:BE:43:6A:69
X509v3 Authority Key Identifier:
keyid:AD:9E:F3:C5:B0:3F:FC:56:DD:30:FC:1D:06:0D:15:88:F2:64:B2:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rZ7zxbA__FbdMPwdBg0ViPJksrM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/725a6f-0f29-492d-b231-9771b268f0ef/1/YHFJgjPA6t3PIye8iwiGaL5Damk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/725a6f-0f29-492d-b231-9771b268f0ef/1/rZ7zxbA__FbdMPwdBg0ViPJksrM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.137.157.0/24
Signature Algorithm: sha256WithRSAEncryption
de:39:9e:46:17:4c:a4:9b:0c:c4:9b:6a:62:0e:82:b7:5b:9a:
54:d5:51:f1:96:05:54:42:5b:a6:c4:14:84:01:bc:84:10:0d:
a2:d3:89:fd:c0:c2:3f:ae:4c:5a:56:68:9a:c0:fe:cc:65:af:
19:d3:0e:49:d6:7b:2e:47:80:07:f7:bc:74:d5:7c:68:38:90:
9f:6f:24:11:8b:df:68:04:27:6e:51:9d:83:5f:1e:b9:24:8d:
68:2d:82:c0:0a:0f:80:7e:f9:48:f2:c2:21:e5:cd:d6:a7:9b:
47:1c:06:be:8e:e0:e8:87:f1:b2:26:c3:23:48:4c:63:84:bc:
3b:2e:44:ad:38:d2:b3:35:a7:f7:9a:66:bc:e7:c0:a6:6c:ce:
1d:39:33:d0:67:38:c9:aa:a2:44:77:73:2a:95:03:95:7b:45:
47:a7:21:28:e6:b1:7c:10:68:bf:1d:e2:b0:b6:00:35:0b:e4:
4a:12:8c:02:d5:f5:da:d4:c2:e3:a0:b8:44:51:48:62:24:d8:
1a:48:24:76:26:fb:10:99:66:d4:c4:e8:25:e8:f3:ea:bb:51:
2d:e6:0b:06:c5:3f:35:6b:5a:b3:16:e8:b0:a1:fe:b3:51:37:
9e:d2:1c:7e:55:1d:99:81:8a:2f:4b:44:0b:9f:b9:e9:5d:71:
27:83:a8:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:46 2024 by rpki-client on console-ams.rpki-client.org