Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/a3e3bb-fd9f-4042-b2cb-d9476665755a/1/ybOel0pJudngm-x8eVBE4PY8UNY.roa
File: ybOel0pJudngm-x8eVBE4PY8UNY.roa (raw, json)
Hash identifier: 3aiBesBq3lFquxk+G1E7U79gWcZYNhLcG7VARzu+Pfc=
Subject key identifier: C9:B3:9E:97:4A:49:B9:D9:E0:9B:EC:7C:79:50:44:E0:F6:3C:50:D6
Certificate issuer: /CN=d423a5be5e21ca460732ae48f385a3ea150a2be1
Certificate serial: 018A1CD9083D0F82DCDDE57F729EFBFF4CDE
Authority key identifier: D4:23:A5:BE:5E:21:CA:46:07:32:AE:48:F3:85:A3:EA:15:0A:2B:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1COlvl4hykYHMq5I84Wj6hUKK-E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/a3e3bb-fd9f-4042-b2cb-d9476665755a/1/ybOel0pJudngm-x8eVBE4PY8UNY.roa
Signing time: Tue 22 Aug 2023 10:45:00 +0000
ROA not before: Tue 22 Aug 2023 10:45:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 81.31.128.0/20 maxlen: 24
Validation: Failed, certificate revoked on Fri 10 Nov 2023 16:58:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:1c:d9:08:3d:0f:82:dc:dd:e5:7f:72:9e:fb:ff:4c:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d423a5be5e21ca460732ae48f385a3ea150a2be1
Validity
Not Before: Aug 22 10:45:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c9b39e974a49b9d9e09bec7c795044e0f63c50d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:cc:34:48:8a:c1:e8:90:06:e7:71:01:a6:ee:
32:c4:a2:c2:13:7b:14:b9:b3:1c:fb:51:1e:eb:49:
b2:28:b1:eb:3e:64:6e:ea:dc:0e:de:77:0a:50:82:
e6:07:dd:16:6b:96:84:b9:18:51:d8:0a:75:18:11:
cf:8b:cc:4f:dc:dc:7a:5e:f1:ec:29:3b:79:6d:65:
ed:8d:47:7c:72:46:a4:0f:62:77:29:fb:b3:fa:1a:
c1:0d:3d:e2:07:48:1b:28:bd:ae:d6:5c:cd:10:dd:
10:5c:f1:b3:9d:a4:29:fc:a6:a0:fd:36:b6:2d:9b:
18:5b:8b:3a:4f:f2:35:f6:1c:32:75:bb:fa:8c:8f:
cd:0b:b6:23:28:b8:9b:11:e5:d6:15:fc:a6:bb:60:
3f:65:8d:05:db:e3:1a:70:b6:c6:d1:4a:44:70:d6:
13:9e:ce:95:9a:72:d5:f8:f5:cc:1b:67:5b:07:b7:
ef:62:72:6e:02:a5:69:5a:ee:66:53:70:1e:0b:a3:
55:db:f9:84:a3:6b:7e:24:1c:e3:67:07:3a:a2:4b:
82:2a:0f:bf:a0:52:41:82:9c:66:de:cb:d7:4f:0d:
f1:e5:4d:02:7c:78:df:82:1f:4c:8e:cf:1f:f9:df:
2c:e7:0a:1e:c2:c8:82:f6:84:3f:b5:08:7d:98:24:
79:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:B3:9E:97:4A:49:B9:D9:E0:9B:EC:7C:79:50:44:E0:F6:3C:50:D6
X509v3 Authority Key Identifier:
keyid:D4:23:A5:BE:5E:21:CA:46:07:32:AE:48:F3:85:A3:EA:15:0A:2B:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1COlvl4hykYHMq5I84Wj6hUKK-E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/a3e3bb-fd9f-4042-b2cb-d9476665755a/1/ybOel0pJudngm-x8eVBE4PY8UNY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/a3e3bb-fd9f-4042-b2cb-d9476665755a/1/1COlvl4hykYHMq5I84Wj6hUKK-E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
54:15:26:6e:0a:01:fd:61:3a:cf:9d:1c:66:93:21:5f:b3:0a:
36:6d:11:40:55:c3:d1:81:3a:1f:19:89:7d:ba:ee:29:c6:b8:
69:a3:e5:b8:7f:58:97:08:7d:ac:58:06:33:28:63:15:50:ed:
9d:56:a2:94:7d:10:14:84:8e:f2:4f:1c:2b:c2:6b:03:6d:08:
e0:bb:f0:73:ed:90:fa:73:00:28:94:da:1f:90:88:01:88:01:
c7:77:5d:eb:98:35:5a:b2:f5:03:3e:17:ac:75:3c:eb:2f:3a:
85:80:3a:b9:92:9e:22:09:71:cf:ef:cb:1e:8c:4f:43:06:4f:
0b:6e:4e:bf:a8:a6:ac:ea:6a:d4:8f:fa:97:72:c2:e0:77:d7:
99:44:34:33:ed:79:c9:69:ea:11:b8:12:cc:46:f7:3b:1f:da:
d9:e8:48:88:a2:e6:70:08:93:9f:f5:fe:0e:f5:e2:d1:4b:ae:
7b:65:00:81:3a:b9:07:29:2e:a6:3c:b0:97:b6:01:ba:80:01:
68:a6:11:4d:a7:ec:a5:64:9f:0e:55:c7:8a:df:c2:36:c9:e9:
7e:a4:52:31:b6:00:55:9e:8d:2f:ca:c7:0f:18:a3:2f:6b:dd:
03:80:da:4c:16:ec:9c:b8:bc:25:5f:73:92:fc:e2:33:d8:31:
f9:e8:31:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:48 2024 by rpki-client on console-fra.rpki-client.org