Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/9521e1-7610-4d43-8683-51be2f9608bc/1/Ysp6Q9WW23kqRgg1TV30V-KsKLY.roa
File: Ysp6Q9WW23kqRgg1TV30V-KsKLY.roa (raw, json)
Hash identifier: eSbsunLRLTgnMFTlsM4VABIu7eK3J9CN/RiqJMc/LO8=
Subject key identifier: 62:CA:7A:43:D5:96:DB:79:2A:46:08:35:4D:5D:F4:57:E2:AC:28:B6
Certificate issuer: /CN=dbc7840920d1c709ff299aed3682c23fb432767d
Certificate serial: 01856E0AFA4FB471E2F2DE75D9EEF69300D6
Authority key identifier: DB:C7:84:09:20:D1:C7:09:FF:29:9A:ED:36:82:C2:3F:B4:32:76:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/28eECSDRxwn_KZrtNoLCP7Qydn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/9521e1-7610-4d43-8683-51be2f9608bc/1/Ysp6Q9WW23kqRgg1TV30V-KsKLY.roa
Signing time: Sun 01 Jan 2023 15:54:50 +0000
ROA not before: Sun 01 Jan 2023 15:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43350
IP address blocks: 141.98.80.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:0a:fa:4f:b4:71:e2:f2:de:75:d9:ee:f6:93:00:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbc7840920d1c709ff299aed3682c23fb432767d
Validity
Not Before: Jan 1 15:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62ca7a43d596db792a4608354d5df457e2ac28b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:41:79:a8:52:d5:c4:a5:a6:d5:f7:b2:7c:36:
57:34:d1:0b:3d:84:79:72:05:cd:14:6c:17:40:62:
e5:2b:36:5d:11:45:96:b6:66:e9:a6:d7:fb:ff:42:
d7:51:26:a1:a9:6c:9b:82:96:17:92:43:f4:bc:00:
af:a9:e0:33:06:9a:97:6a:09:ac:12:d8:dc:1d:72:
10:d2:32:19:73:84:8b:81:b4:a8:dc:a0:5d:f0:65:
12:e3:c8:c6:85:7c:b2:79:7b:a3:c5:9e:fe:16:b5:
60:47:8a:8e:fb:ca:c6:b5:a0:0b:88:6b:fc:52:3e:
8c:e7:6a:67:20:8a:b8:7b:6a:50:c8:74:4a:f6:a7:
87:3f:ae:5b:e6:6c:e3:a5:db:b4:7c:8e:a6:b3:37:
bf:de:ea:1f:c5:22:ca:5c:65:e3:e5:1d:08:cd:01:
4a:aa:d1:be:ef:51:cc:76:45:0d:21:18:da:7c:d6:
97:f4:f5:c0:a1:7c:43:b8:7a:4b:1d:89:50:44:bf:
35:07:65:64:f5:f6:f5:0d:33:f8:7a:c5:6e:87:5f:
d1:62:3d:84:58:a1:4b:5c:98:0c:c9:5c:86:fd:a6:
89:3d:ff:e3:52:85:08:c5:fd:ce:e3:a7:99:53:d2:
28:b5:7d:75:f9:ff:b7:1a:87:e5:ea:3e:9d:c8:7a:
2b:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:CA:7A:43:D5:96:DB:79:2A:46:08:35:4D:5D:F4:57:E2:AC:28:B6
X509v3 Authority Key Identifier:
keyid:DB:C7:84:09:20:D1:C7:09:FF:29:9A:ED:36:82:C2:3F:B4:32:76:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28eECSDRxwn_KZrtNoLCP7Qydn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/9521e1-7610-4d43-8683-51be2f9608bc/1/Ysp6Q9WW23kqRgg1TV30V-KsKLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/9521e1-7610-4d43-8683-51be2f9608bc/1/28eECSDRxwn_KZrtNoLCP7Qydn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.80.0/24
Signature Algorithm: sha256WithRSAEncryption
68:04:69:e2:f2:65:a7:23:8c:20:97:71:50:45:a1:5d:01:ca:
cf:f1:4e:ca:d5:1d:4c:67:6b:10:47:e8:91:c4:ee:11:e1:9b:
4f:b3:db:81:7e:fc:96:61:93:7c:94:76:03:71:21:fb:57:5b:
1b:26:7f:80:87:39:3e:e1:03:6f:85:0b:e2:76:78:a1:42:5f:
f4:fc:5b:2b:82:2c:84:36:78:b0:e6:1b:75:d5:41:dc:44:b8:
64:f2:ba:b5:86:d5:c6:4f:48:20:dc:75:ef:65:b3:7e:7c:63:
93:09:43:d6:9c:13:e1:df:45:85:37:93:93:e6:33:59:d4:7a:
8c:69:30:3d:e6:e2:59:e6:43:ca:41:83:63:02:2f:f0:c9:d6:
8a:c4:9f:e3:23:05:94:95:15:02:bd:76:d5:87:dc:86:5a:4d:
f6:6a:44:c2:f9:4f:16:17:7c:df:48:83:6e:fe:f0:9b:fb:85:
b4:54:d4:f3:a3:f8:44:67:89:a9:fe:a3:af:94:f4:dd:51:94:
21:b1:0c:9c:4d:43:24:4e:ce:70:11:8d:62:5f:5d:7d:d5:ed:
89:48:0d:bc:33:bd:75:b2:81:47:11:1a:70:ec:75:5d:ad:67:
c3:ff:59:be:a0:29:d7:86:6e:c0:c1:15:43:75:0f:cd:d6:8c:
48:92:6d:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:07 2024 by rpki-client on console-ams.rpki-client.org