Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/998296-9464-4fb2-98e6-ca8af4f5356c/1/YggaDQua0mOEuJ7OeWx8Yy_cIiI.roa
File: YggaDQua0mOEuJ7OeWx8Yy_cIiI.roa (raw, json)
Hash identifier: anfSvBR5Y2doLP1fK9po7bA4INo+a5iFIpdJYZ8Wd0g=
Subject key identifier: 62:08:1A:0D:0B:9A:D2:63:84:B8:9E:CE:79:6C:7C:63:2F:DC:22:22
Certificate issuer: /CN=83c6ca86519b56d4d1873af6e257de7e97f3c8ac
Certificate serial: 0185715E66D3B1A87B58C69279E31541F03A
Authority key identifier: 83:C6:CA:86:51:9B:56:D4:D1:87:3A:F6:E2:57:DE:7E:97:F3:C8:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g8bKhlGbVtTRhzr24lfefpfzyKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/998296-9464-4fb2-98e6-ca8af4f5356c/1/YggaDQua0mOEuJ7OeWx8Yy_cIiI.roa
Signing time: Mon 02 Jan 2023 07:24:50 +0000
ROA not before: Mon 02 Jan 2023 07:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15699
IP address blocks: 46.226.40.0/21 maxlen: 21
2a0b:9d80::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:5e:66:d3:b1:a8:7b:58:c6:92:79:e3:15:41:f0:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83c6ca86519b56d4d1873af6e257de7e97f3c8ac
Validity
Not Before: Jan 2 07:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62081a0d0b9ad26384b89ece796c7c632fdc2222
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:61:fd:a7:ef:18:43:af:74:e5:52:0e:59:bc:
dc:25:9c:f9:fa:3b:1c:5b:4b:97:0b:55:e4:a7:3f:
2c:f9:47:94:b9:e9:b7:20:40:69:4b:f9:45:1a:f5:
55:35:84:d4:56:8c:16:b3:64:35:9a:ce:7d:14:64:
fd:2e:a4:c5:f5:1c:89:70:62:cc:8c:97:79:d3:c0:
ce:05:13:35:89:fa:4b:25:e7:bb:d8:ce:a7:b8:8d:
20:66:fb:ab:34:0d:32:9c:23:d5:45:df:e2:87:0a:
15:ce:8d:c6:29:91:3b:50:c3:8c:93:87:7a:3d:06:
76:f4:21:ed:54:5f:71:bf:6d:84:64:11:85:07:5b:
1a:10:dc:24:c0:0c:92:62:e6:4e:37:fd:d5:6f:7e:
ad:10:7f:a7:13:b6:92:1f:53:7d:0b:d9:85:f4:08:
00:c8:37:55:c3:19:f0:61:47:50:c3:9d:e7:75:70:
d2:54:a4:e0:dc:6e:0f:ec:23:02:c3:40:39:30:dc:
90:4f:0e:d9:ae:16:8c:c9:ab:2f:75:74:90:b5:49:
66:00:da:ba:79:f0:32:b4:16:5f:1a:76:5e:97:c8:
1e:96:f9:e3:17:0d:77:85:99:3c:b5:ce:9d:06:53:
d5:3a:95:a3:81:bf:f0:1a:f3:dd:8a:98:92:23:e3:
d7:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:08:1A:0D:0B:9A:D2:63:84:B8:9E:CE:79:6C:7C:63:2F:DC:22:22
X509v3 Authority Key Identifier:
keyid:83:C6:CA:86:51:9B:56:D4:D1:87:3A:F6:E2:57:DE:7E:97:F3:C8:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g8bKhlGbVtTRhzr24lfefpfzyKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/998296-9464-4fb2-98e6-ca8af4f5356c/1/YggaDQua0mOEuJ7OeWx8Yy_cIiI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/998296-9464-4fb2-98e6-ca8af4f5356c/1/g8bKhlGbVtTRhzr24lfefpfzyKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.226.40.0/21
IPv6:
2a0b:9d80::/32
Signature Algorithm: sha256WithRSAEncryption
3e:92:be:d2:ab:d5:49:bf:4a:a6:df:6e:cc:d0:42:b5:96:b8:
5a:22:4f:16:a4:fe:10:f0:4e:d9:fc:49:0b:32:bc:47:46:c8:
f3:15:05:56:4c:29:dc:42:8f:44:e2:ad:c1:c2:95:e0:97:11:
19:a4:d4:5a:5e:b1:5e:f4:6b:fc:86:00:e5:ab:30:66:2b:29:
7b:d9:b4:66:1a:13:cd:54:2f:b6:2b:db:9c:80:8d:06:35:60:
88:e0:6a:cf:72:6a:b3:62:56:c0:a6:d6:e8:5e:c3:a0:2f:cb:
74:4a:0f:75:df:9c:b8:39:8d:98:63:ad:51:db:c5:eb:aa:55:
f6:93:0e:25:7d:c6:77:a5:b7:ce:95:da:5f:bc:d6:e2:aa:a7:
8f:da:a0:09:ce:02:b4:26:83:f8:68:aa:f4:76:4e:dc:c7:dd:
ad:c3:b8:26:43:d7:c9:1d:a5:78:44:17:49:6d:08:34:8f:9d:
0e:05:f8:8b:9e:00:de:a2:97:13:7a:75:a7:b7:61:24:a7:6f:
ca:7b:82:a9:e3:61:99:08:d8:12:a6:0c:74:75:e2:bc:08:ae:
5a:52:45:9f:6c:cc:a4:ee:c7:91:61:51:f3:b8:04:d9:e3:4c:
95:87:eb:11:d6:a5:ab:7a:bf:ad:c9:a0:54:24:3e:a9:18:24:
04:a5:33:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:14 2024 by rpki-client on console-fra.rpki-client.org