Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/dffa9b-1d69-4869-9dc4-867d1d877140/1/YsR8QxwL24boChaCPDKhVlX4G4U.roa
File: YsR8QxwL24boChaCPDKhVlX4G4U.roa (raw, json)
Hash identifier: f6wlAk0rCHgMFTyaVtTOuDMSTlKcsRGJ2NaK5FggHlk=
Subject key identifier: 62:C4:7C:43:1C:0B:DB:86:E8:0A:16:82:3C:32:A1:56:55:F8:1B:85
Certificate issuer: /CN=a0a8631e6e5a7ac66da4fb160fd5b4fca9378805
Certificate serial: 0187D13F0684590FC435C98B6B13255F8F65
Authority key identifier: A0:A8:63:1E:6E:5A:7A:C6:6D:A4:FB:16:0F:D5:B4:FC:A9:37:88:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oKhjHm5aesZtpPsWD9W0_Kk3iAU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/dffa9b-1d69-4869-9dc4-867d1d877140/1/YsR8QxwL24boChaCPDKhVlX4G4U.roa
Signing time: Sun 30 Apr 2023 08:19:41 +0000
ROA not before: Sun 30 Apr 2023 08:19:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 46.17.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:d1:3f:06:84:59:0f:c4:35:c9:8b:6b:13:25:5f:8f:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0a8631e6e5a7ac66da4fb160fd5b4fca9378805
Validity
Not Before: Apr 30 08:19:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62c47c431c0bdb86e80a16823c32a15655f81b85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:41:59:5d:12:e9:c5:e3:74:b3:fb:d2:1b:48:
0e:94:15:24:43:ed:2b:30:57:ba:a4:df:e2:54:f8:
ac:a2:04:14:72:1a:d5:1d:e3:06:97:1f:40:e6:60:
cf:eb:6a:94:ee:14:a8:24:b1:4e:b1:1e:ea:37:61:
54:10:46:37:7e:f5:1d:a5:d6:13:87:70:ef:fd:57:
8a:a1:72:ae:b4:49:4e:92:e4:43:af:91:c5:52:d3:
34:bd:d0:01:03:bf:ec:07:95:5b:cf:50:da:26:98:
09:c9:25:5e:dd:23:91:3f:46:63:6f:63:0e:74:a5:
34:1f:9b:8e:16:07:30:43:29:01:ce:0a:94:0b:6c:
f3:6a:82:a6:23:d8:5b:f9:48:eb:5a:4b:e3:93:09:
0a:33:d7:6b:6c:3e:b7:60:c7:9c:de:00:1c:c4:d7:
f3:0a:5e:64:67:52:aa:d1:8e:1a:8a:20:6b:d4:67:
f5:5f:30:64:fa:f7:df:de:7a:a5:f1:5f:70:9c:1d:
70:7f:5d:cf:d0:aa:c3:60:e6:ec:00:a3:ae:18:73:
55:69:4a:35:14:68:11:36:7c:fa:13:ba:ba:18:07:
32:ce:64:4e:fc:4a:d2:18:be:11:cf:8b:fb:77:1d:
c2:40:a5:a5:8b:93:3d:f6:57:df:1c:45:1f:65:73:
a2:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:C4:7C:43:1C:0B:DB:86:E8:0A:16:82:3C:32:A1:56:55:F8:1B:85
X509v3 Authority Key Identifier:
keyid:A0:A8:63:1E:6E:5A:7A:C6:6D:A4:FB:16:0F:D5:B4:FC:A9:37:88:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oKhjHm5aesZtpPsWD9W0_Kk3iAU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/dffa9b-1d69-4869-9dc4-867d1d877140/1/YsR8QxwL24boChaCPDKhVlX4G4U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/dffa9b-1d69-4869-9dc4-867d1d877140/1/oKhjHm5aesZtpPsWD9W0_Kk3iAU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.17.216.0/24
Signature Algorithm: sha256WithRSAEncryption
43:88:3f:3f:7d:b6:ea:db:d1:b0:43:82:ba:d5:fd:31:ae:20:
e6:61:c9:d3:bc:af:e9:24:46:7e:f9:42:de:08:7d:e9:c5:36:
4a:0e:9c:16:14:c4:0a:37:44:76:ba:c8:a4:34:77:c7:13:11:
73:d2:8d:37:1d:43:11:2e:c1:e5:de:3a:72:8f:dd:ee:28:9b:
40:15:d7:0e:8f:cf:73:8e:0e:13:6d:73:88:4b:f0:18:de:37:
20:83:58:3c:b9:ee:4b:a6:c5:fd:b3:76:5a:f1:00:86:2a:06:
a8:f8:fc:e6:80:75:be:6d:27:3b:1e:4d:06:16:91:86:03:07:
e9:3c:fd:ec:c8:7a:17:dd:51:ba:cf:ff:9b:41:a6:e6:6a:8c:
41:d3:e3:dd:1f:cc:51:e9:3e:ef:fe:73:9f:8b:17:d8:f7:92:
a3:b4:90:5a:37:d2:5e:65:63:80:97:04:d5:b8:3f:fe:ba:1f:
3e:ba:54:80:9b:b3:77:a1:45:36:1e:12:a8:50:e2:e4:8a:ca:
d3:f5:36:bd:4a:48:4b:7c:80:a2:60:e0:13:f6:fc:a8:4f:81:
a4:9d:de:97:36:4e:97:a5:af:c7:65:bc:e9:f1:de:70:c6:83:
b7:11:55:67:ac:26:2c:58:6f:67:01:8f:ed:e4:1e:2a:79:e9:
4d:f9:6d:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:21 2024 by rpki-client on console-ams.rpki-client.org