Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/0961f9-d85d-4976-a4cd-a18ed19c49e3/1/n4vZulonVGWW8pBCAUMrvVk_JsY.roa
File: n4vZulonVGWW8pBCAUMrvVk_JsY.roa (raw, json)
Hash identifier: q3l2bQ/fEk3rmxjvxTA7bxoa3OqkW1OXq8n0Hk8ZqTo=
Subject key identifier: 9F:8B:D9:BA:5A:27:54:65:96:F2:90:42:01:43:2B:BD:59:3F:26:C6
Certificate issuer: /CN=605522e37de26b0d56895ac18ab07d7c784ab93c
Certificate serial: 0185715537A1889B98B126AB03796D606C47
Authority key identifier: 60:55:22:E3:7D:E2:6B:0D:56:89:5A:C1:8A:B0:7D:7C:78:4A:B9:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFUi433iaw1WiVrBirB9fHhKuTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/0961f9-d85d-4976-a4cd-a18ed19c49e3/1/n4vZulonVGWW8pBCAUMrvVk_JsY.roa
Signing time: Mon 02 Jan 2023 07:14:48 +0000
ROA not before: Mon 02 Jan 2023 07:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210462
IP address blocks: 188.68.64.0/20 maxlen: 24
2a12:df00::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:55:37:a1:88:9b:98:b1:26:ab:03:79:6d:60:6c:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=605522e37de26b0d56895ac18ab07d7c784ab93c
Validity
Not Before: Jan 2 07:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f8bd9ba5a27546596f2904201432bbd593f26c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:4f:cf:1c:41:49:3b:15:b4:7b:58:13:5e:d6:
a9:a6:4f:a7:a3:88:de:e6:00:63:20:06:ea:c1:2f:
47:57:79:86:a9:0a:0a:cd:63:14:16:37:8d:dd:1d:
e9:d6:99:72:e4:7c:90:b2:0c:e6:cd:e3:20:79:24:
11:6f:d4:07:7a:65:7c:a5:8d:89:d0:af:c3:1a:40:
b8:77:cf:0b:11:21:28:7b:e3:80:69:3a:56:dd:76:
66:0b:06:c5:69:9b:aa:1a:23:ee:a7:3a:d3:ca:a2:
0f:cc:6e:17:ce:0a:cf:7b:34:7b:f8:f1:f1:b5:c8:
5c:2b:39:a3:ad:c4:c0:43:d9:fa:db:6d:27:6b:0e:
57:6d:29:a2:2a:33:9e:9e:fb:12:ba:ff:ed:2c:33:
f3:3e:d9:a7:fc:37:67:96:87:95:c8:2e:8d:fe:d5:
8e:c0:d7:23:a9:40:31:19:dc:4e:d0:ea:fe:ff:71:
55:66:fb:d1:e2:ab:7c:13:1b:86:7c:b6:81:c6:b2:
8e:e4:df:cf:86:ac:d0:62:f6:db:6e:66:f0:35:36:
b2:1e:d6:a5:92:76:c5:ff:b7:f1:dc:f8:19:1d:c3:
2f:e9:0d:05:9a:cf:5a:c0:07:1a:fe:6c:12:51:ce:
1c:18:28:11:56:71:24:e7:90:45:e8:61:45:2a:c0:
9e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:8B:D9:BA:5A:27:54:65:96:F2:90:42:01:43:2B:BD:59:3F:26:C6
X509v3 Authority Key Identifier:
keyid:60:55:22:E3:7D:E2:6B:0D:56:89:5A:C1:8A:B0:7D:7C:78:4A:B9:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFUi433iaw1WiVrBirB9fHhKuTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/0961f9-d85d-4976-a4cd-a18ed19c49e3/1/n4vZulonVGWW8pBCAUMrvVk_JsY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/0961f9-d85d-4976-a4cd-a18ed19c49e3/1/YFUi433iaw1WiVrBirB9fHhKuTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.68.64.0/20
IPv6:
2a12:df00::/32
Signature Algorithm: sha256WithRSAEncryption
af:fe:eb:ab:80:2e:92:39:a0:de:b8:8b:6c:1b:e2:53:a2:4e:
67:39:94:e4:3f:99:1b:05:72:f5:32:47:b3:71:2b:ac:40:42:
7c:c4:8a:ad:b5:03:6c:3e:1f:4d:53:c8:99:52:66:d1:51:28:
96:48:52:98:f3:16:c8:dd:11:8a:ef:59:80:52:2b:ab:ec:5d:
e7:7a:82:0c:d2:0c:59:ae:4e:47:78:19:2b:aa:1d:dc:f1:7b:
4d:80:30:e7:c8:94:78:34:59:1c:e7:2e:c7:59:ee:80:f9:9a:
21:3c:45:a5:9b:a2:78:37:f5:75:9a:1b:bf:62:44:7e:87:87:
3f:81:c1:c6:67:71:0f:bf:5e:48:c2:43:a0:49:d1:b7:da:ad:
9c:5d:2b:2c:ed:29:cf:73:57:8f:03:07:6e:b0:4d:43:c3:49:
8f:e2:3c:a0:4b:cc:61:40:20:92:e1:2a:e7:b4:54:7f:c7:52:
dd:a1:c4:3a:7b:23:19:f9:5b:17:fa:3c:38:81:d8:dc:c5:3d:
6d:3b:d9:c8:5d:5e:f8:b5:9b:32:24:e4:ff:c3:a4:80:cc:29:
68:a1:c1:0c:8f:9a:ad:ca:33:39:00:da:bd:57:ea:ec:30:49:
c1:9b:29:d7:58:74:cf:7a:8e:b8:15:a9:48:f6:01:ee:8e:24:
f0:12:d2:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:09 2024 by rpki-client on console-fra.rpki-client.org