Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/YH_fCMYc6k6egZqoP-YSpWzkkig.roa
File: YH_fCMYc6k6egZqoP-YSpWzkkig.roa (raw, json)
Hash identifier: GWNV0e4LrbNr0+yE5hh89FbrfuMzoajbNeinEytJRPg=
Subject key identifier: 60:7F:DF:08:C6:1C:EA:4E:9E:81:9A:A8:3F:E6:12:A5:6C:E4:92:28
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 01856CB8309D5C63A682CE26C4A9AC8A8FBC
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/YH_fCMYc6k6egZqoP-YSpWzkkig.roa
Signing time: Sun 01 Jan 2023 09:44:48 +0000
ROA not before: Sun 01 Jan 2023 09:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 215
IP address blocks: 90.83.218.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:30:9d:5c:63:a6:82:ce:26:c4:a9:ac:8a:8f:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 09:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=607fdf08c61cea4e9e819aa83fe612a56ce49228
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:be:11:90:78:ac:ac:46:49:a6:71:4e:d8:61:
4e:49:e4:4e:cf:19:19:b6:a8:38:2d:07:8f:73:0b:
08:74:52:81:89:93:05:a5:e1:4b:e8:6b:18:de:53:
4c:60:4a:db:de:46:da:55:77:cf:2f:09:94:34:f9:
37:c8:c8:fc:f9:32:fa:1e:22:e3:04:74:85:16:b4:
ae:ba:6f:d8:71:c9:2f:b0:24:47:83:01:f1:66:f6:
39:fc:81:e7:00:1e:e2:b2:f2:4e:16:1e:08:61:cb:
92:84:35:65:cd:71:8b:5a:41:09:cc:35:ae:76:62:
13:1f:8a:9c:22:1b:4f:fb:b0:a3:2f:0a:f6:4e:47:
8e:90:c5:fb:ce:a3:2e:b7:0b:8d:15:23:c7:fa:b3:
a8:35:bc:8e:55:39:41:08:7a:16:5b:48:42:ca:60:
22:1d:9f:5e:16:21:a5:e7:8e:91:27:25:87:c8:c5:
2b:74:5b:ad:6b:24:e2:ad:ca:ea:2c:66:37:e3:d0:
d4:03:98:6d:a2:d9:b7:67:34:0c:7a:8e:af:b5:41:
29:67:eb:16:66:0a:a3:64:5b:bb:b8:2f:89:25:0e:
9f:cf:18:0d:ca:ba:3a:3c:38:18:d5:0b:64:96:f8:
14:65:f0:80:48:a3:6c:a3:4b:27:5a:9d:b9:75:d5:
3c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:7F:DF:08:C6:1C:EA:4E:9E:81:9A:A8:3F:E6:12:A5:6C:E4:92:28
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/YH_fCMYc6k6egZqoP-YSpWzkkig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
90.83.218.0/24
Signature Algorithm: sha256WithRSAEncryption
25:f2:9f:4e:68:c5:ad:4c:0a:05:56:bd:4f:e2:2e:5a:00:7a:
f3:8a:01:7d:80:7c:39:61:c3:17:82:36:3a:e0:d9:fd:e4:06:
46:44:f0:27:ab:7a:21:93:29:2c:2a:23:b9:93:bd:9a:62:cd:
b7:d8:3c:cb:ad:62:49:32:45:04:23:53:aa:5b:c7:68:bf:25:
b4:b3:a9:3d:f2:f2:d6:cd:9f:fb:b7:57:c6:b2:f6:7a:21:ee:
3c:ff:35:40:d9:ed:78:80:44:28:50:7e:34:00:6d:93:ce:ca:
6e:51:7e:9b:ec:62:66:72:4d:68:3b:b2:53:1e:7f:e6:d2:7f:
45:b0:c7:31:f4:13:bb:d0:51:0d:f0:ef:3b:61:59:fc:b5:c8:
de:21:9c:c1:08:d1:83:04:2a:c5:f9:68:53:97:5f:5b:48:e6:
04:5b:f1:85:b6:f4:7b:6e:23:06:92:86:82:40:4e:81:9c:7a:
06:5a:4f:62:f2:b4:8d:7b:74:3b:ef:8c:e5:5e:93:7d:d3:a9:
75:f1:75:37:f5:a9:ed:07:c1:5e:f9:18:36:23:61:c2:e8:b1:
38:1d:37:d1:02:57:e6:1c:1b:1b:11:f6:96:84:02:25:67:0f:
cf:d3:2f:5a:49:97:9d:04:02:a3:1e:8a:33:ae:5a:48:51:6f:
09:f8:e7:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:51 2024 by rpki-client on console-fra.rpki-client.org