Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/YpItuQsU3OP15Fs-ZnoaisWNPFM.roa
File: YpItuQsU3OP15Fs-ZnoaisWNPFM.roa (raw, json)
Hash identifier: jkqSgxfhDQ0V5t5UF0aobCGkP8cBo8gJYsXUqmZDOEI=
Subject key identifier: 62:92:2D:B9:0B:14:DC:E3:F5:E4:5B:3E:66:7A:1A:8A:C5:8D:3C:53
Certificate issuer: /CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Certificate serial: 01856D0AD4E210BBC1FC9A7238C20C5BE973
Authority key identifier: A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/YpItuQsU3OP15Fs-ZnoaisWNPFM.roa
Signing time: Sun 01 Jan 2023 11:15:04 +0000
ROA not before: Sun 01 Jan 2023 11:15:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41334
IP address blocks: 91.88.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:d4:e2:10:bb:c1:fc:9a:72:38:c2:0c:5b:e9:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0ef5fbbfca7a93cfee965eeb6bdee6fb43c403e
Validity
Not Before: Jan 1 11:15:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62922db90b14dce3f5e45b3e667a1a8ac58d3c53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:ef:35:64:fb:eb:39:fd:51:e8:48:00:df:8f:
5e:9c:7a:ea:a3:e8:61:f9:4a:4a:31:14:b2:b2:20:
bc:19:d1:d8:08:57:62:03:b9:38:ba:13:35:43:4f:
e4:c4:9e:00:9b:88:86:0c:17:5b:0a:ae:75:b8:0a:
3a:54:ea:33:ba:66:d8:04:53:5c:eb:12:39:f5:2b:
db:d5:c8:86:f5:24:60:e5:8c:cb:7f:ac:6a:0e:89:
8c:b3:cb:1d:c6:9c:2f:00:46:fe:42:18:ef:2c:38:
cd:6b:5c:26:16:c7:a5:d0:68:e2:6c:f1:f1:02:f1:
02:71:d9:c3:fa:00:1a:d0:ea:ef:45:07:88:14:bb:
45:d8:31:a7:95:9d:8d:e8:51:3b:31:f8:5d:45:62:
7f:f0:38:b6:1f:ea:a1:d3:b0:c0:cb:6d:13:0c:97:
1d:74:d3:bc:fc:de:50:a6:10:31:b4:48:0a:6a:73:
7e:cc:99:b9:6b:c6:33:e0:cf:ec:de:17:c7:e8:a9:
4c:3e:70:c0:fa:0c:0f:03:f8:48:5c:96:dc:2f:74:
02:90:24:46:a9:c4:14:ec:d7:f1:0e:15:74:a4:07:
07:7a:19:a8:b0:07:ab:96:f6:30:71:d1:de:e1:a2:
05:e7:f2:30:bb:b7:6e:ae:24:42:b0:df:23:d4:23:
f3:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:92:2D:B9:0B:14:DC:E3:F5:E4:5B:3E:66:7A:1A:8A:C5:8D:3C:53
X509v3 Authority Key Identifier:
keyid:A0:EF:5F:BB:FC:A7:A9:3C:FE:E9:65:EE:B6:BD:EE:6F:B4:3C:40:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oO9fu_ynqTz-6WXutr3ub7Q8QD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/YpItuQsU3OP15Fs-ZnoaisWNPFM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/fe915c-bf70-4602-8a3c-0292b020150a/1/oO9fu_ynqTz-6WXutr3ub7Q8QD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.88.0.0/16
Signature Algorithm: sha256WithRSAEncryption
32:76:ab:d4:9b:bc:e5:5d:50:85:48:92:37:51:c7:16:a8:07:
40:05:c6:19:f9:ab:50:f3:0e:73:de:85:36:dc:16:9b:e9:0e:
28:ad:3c:16:c3:f0:86:24:06:a5:41:9f:ae:b8:f4:0a:19:0a:
b8:d9:f5:74:ad:2b:19:0e:1c:8e:25:7a:5f:a1:f4:e1:ab:db:
94:2c:85:61:37:d1:48:64:03:ac:5b:6b:a2:34:8f:fa:93:31:
c8:46:a3:34:94:46:fe:19:79:33:15:9c:79:e1:77:dc:5b:c6:
dc:7a:00:0f:11:1a:08:33:ca:46:9a:d7:b7:ff:b8:ce:b9:36:
b3:15:1b:25:b8:11:6b:af:68:12:a1:04:12:64:e2:1d:ab:49:
03:dd:fb:3c:ee:ab:8d:5c:8e:fa:37:0f:40:22:21:4b:c6:19:
23:3f:ab:be:13:6d:e3:c0:5f:df:45:cd:26:26:9c:e4:6d:22:
e8:f9:0c:07:32:8d:f4:0e:c6:d8:67:f3:19:43:c4:b3:8f:b3:
5d:89:99:a3:3d:fd:ed:e6:79:6d:ba:f3:72:d7:48:78:99:af:
53:be:78:4b:b5:a8:bc:a0:74:f1:81:bc:ce:af:de:9b:1e:e6:
89:59:9c:97:08:5d:8c:b2:60:4b:8e:e3:ab:27:87:25:8e:e9:
aa:90:dc:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:55 2024 by rpki-client on console-fra.rpki-client.org