Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/YVpxf2p9HJHpPRCI7ljW4LSmKgM.roa
File: YVpxf2p9HJHpPRCI7ljW4LSmKgM.roa (raw, json)
Hash identifier: b0g01yFEAeCO/juHAmRAtVFOY7B+Ez7i0U+FFIO8dEk=
Subject key identifier: 61:5A:71:7F:6A:7D:1C:91:E9:3D:10:88:EE:58:D6:E0:B4:A6:2A:03
Certificate issuer: /CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Certificate serial: 018BB3396D98AF6C5E291619C663E4984A66
Authority key identifier: D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/YVpxf2p9HJHpPRCI7ljW4LSmKgM.roa
Signing time: Thu 09 Nov 2023 08:36:07 +0000
ROA not before: Thu 09 Nov 2023 08:36:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25369
IP address blocks: 185.136.32.0/22 maxlen: 32
Validation: Failed, certificate revoked on Mon 27 Nov 2023 15:59:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b3:39:6d:98:af:6c:5e:29:16:19:c6:63:e4:98:4a:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Validity
Not Before: Nov 9 08:36:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=615a717f6a7d1c91e93d1088ee58d6e0b4a62a03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:da:f4:ae:25:68:a2:b2:fe:93:35:27:9a:70:
33:ff:40:a0:0a:5b:bc:87:a3:47:63:de:14:8c:51:
79:5f:fe:ac:65:21:59:82:1d:41:72:47:77:49:d6:
e2:da:bd:97:d8:06:b6:14:5d:fc:a8:13:8e:0c:bd:
58:5c:08:28:f4:0e:4b:da:12:47:8e:20:ef:bb:a6:
aa:49:e5:de:c9:8c:b4:56:1b:0c:bc:a0:fe:6a:d4:
b2:19:98:7a:77:e2:9c:b1:5d:b3:8f:18:93:e3:48:
82:78:6e:41:1f:80:c0:b5:80:3d:47:a0:ac:fd:17:
b0:79:14:ad:22:61:8e:93:3a:0b:5f:c9:a7:63:98:
11:ef:9f:a9:48:59:16:8e:34:40:ce:9d:e7:e9:d4:
a0:f2:44:99:fc:af:db:0d:5d:af:25:f6:61:7a:7f:
2b:be:cb:40:6b:33:8d:15:2b:9d:e6:6f:c4:b9:9f:
7d:a0:e3:a9:cf:b7:2a:c0:6b:a4:1a:2e:a6:7e:04:
a1:19:14:d7:8e:e6:ac:a4:f1:1c:00:bc:01:57:2b:
67:e3:58:04:8b:8c:f6:30:e9:57:51:5d:6c:d1:e6:
66:65:d2:e2:39:32:97:a5:44:fb:f4:45:e9:b4:59:
a0:26:cd:66:f2:1b:8b:9c:74:23:de:dd:e9:fa:6d:
e9:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:5A:71:7F:6A:7D:1C:91:E9:3D:10:88:EE:58:D6:E0:B4:A6:2A:03
X509v3 Authority Key Identifier:
keyid:D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/YVpxf2p9HJHpPRCI7ljW4LSmKgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/0-lwM6NqqbzAwvFn5iDXyhSTy-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.136.32.0/22
Signature Algorithm: sha256WithRSAEncryption
53:fa:51:85:d4:ed:6f:25:4a:b6:12:d5:a3:f0:26:96:04:a8:
8d:1d:2a:7d:7d:39:86:65:d7:e2:29:46:84:6d:ad:26:61:ab:
26:ad:aa:87:af:51:d5:2c:d5:14:31:45:a4:6f:47:3d:5c:45:
87:54:c6:f8:0a:83:07:4c:e6:c4:c4:a4:4e:48:31:a9:58:86:
59:21:2c:08:ad:78:6c:fb:c0:8c:7c:24:b7:fd:1d:eb:ff:4b:
31:17:f2:15:95:71:cd:88:e3:84:a4:97:2a:94:e9:9a:ed:77:
c2:ff:fc:a1:66:1d:a6:e3:72:ec:4d:31:af:96:51:16:25:b2:
56:b5:b8:67:d2:a3:fd:53:79:74:3d:bb:38:27:97:4c:a6:30:
f8:3b:31:b0:ba:81:55:1f:1b:90:c3:fe:bc:1e:b9:1b:82:2b:
a9:92:f6:6f:1c:3f:fe:df:da:14:a4:1b:0c:52:a6:d2:0e:bb:
75:c5:8e:d2:72:cf:a0:9a:56:fd:97:9a:40:ef:8b:08:14:aa:
4e:bd:0a:08:0b:71:b3:76:49:ae:9b:05:3a:fe:ae:af:92:0d:
c2:31:3b:85:b6:fa:01:ab:4c:64:9f:f2:ae:86:7d:03:84:01:
cd:61:80:50:fb:a9:46:4e:32:0b:d3:a4:db:c7:5e:54:33:9a:
d7:63:3b:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:44 2024 by rpki-client on console-fra.rpki-client.org