Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/4fa4b4-7c96-4eb7-9940-3f2316b553f5/1/YfJ5AFlcLwWCLab2L7EHS9Hd_4A.roa
File: YfJ5AFlcLwWCLab2L7EHS9Hd_4A.roa (raw, json)
Hash identifier: r3nWTHhG52RUkeeXelI9btT0Ypr7LBo3ow/EVm8Jfq8=
Subject key identifier: 61:F2:79:00:59:5C:2F:05:82:2D:A6:F6:2F:B1:07:4B:D1:DD:FF:80
Certificate issuer: /CN=f9503c075a690556bd462122b24699e1b6b19278
Certificate serial: 01856CB82B90A93AE6B9578A7362C8CE8827
Authority key identifier: F9:50:3C:07:5A:69:05:56:BD:46:21:22:B2:46:99:E1:B6:B1:92:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-VA8B1ppBVa9RiEiskaZ4baxkng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/4fa4b4-7c96-4eb7-9940-3f2316b553f5/1/YfJ5AFlcLwWCLab2L7EHS9Hd_4A.roa
Signing time: Sun 01 Jan 2023 09:44:47 +0000
ROA not before: Sun 01 Jan 2023 09:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60207
IP address blocks: 193.105.141.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:2b:90:a9:3a:e6:b9:57:8a:73:62:c8:ce:88:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f9503c075a690556bd462122b24699e1b6b19278
Validity
Not Before: Jan 1 09:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=61f27900595c2f05822da6f62fb1074bd1ddff80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:2a:6a:c5:b9:5c:46:66:71:79:98:3d:f7:d7:
35:9c:98:29:42:17:00:2a:bf:3c:cc:cd:8d:d5:0e:
e6:17:38:3f:bc:5b:f9:15:cc:36:00:35:21:40:81:
0b:d2:fd:78:2c:b0:00:5a:60:ed:c1:91:56:0a:f8:
44:a4:06:be:cd:5a:a6:c7:0d:bf:ba:8d:ba:c4:af:
79:7a:83:b2:6d:77:2c:4b:af:eb:15:c1:f8:4c:df:
73:7c:76:c2:d3:8d:5a:8e:1e:97:eb:de:c0:20:e9:
a7:75:5d:2d:6c:e9:bf:17:57:74:74:67:f7:7d:c2:
81:fb:ff:8f:72:82:e9:cc:8a:57:24:03:80:a7:e9:
1c:9b:66:53:6e:d7:4f:e2:c2:d1:ba:83:fc:85:ca:
24:ff:87:11:de:0b:d2:4b:cf:d9:98:dc:cb:49:ba:
7f:c7:b7:97:32:37:9c:97:91:1c:b4:14:22:5e:3b:
fa:51:fb:4d:4e:08:b6:49:b2:02:22:d1:aa:20:c8:
d5:bc:70:bd:35:65:f8:67:f8:db:71:15:19:fc:67:
57:c9:e6:3b:a3:d2:49:55:04:dd:2e:72:05:94:26:
f5:a9:00:f1:e9:68:5d:9e:a2:93:6a:16:89:a8:06:
fe:d7:1b:bb:a6:ae:6c:a4:29:81:af:aa:9f:2a:93:
a3:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:F2:79:00:59:5C:2F:05:82:2D:A6:F6:2F:B1:07:4B:D1:DD:FF:80
X509v3 Authority Key Identifier:
keyid:F9:50:3C:07:5A:69:05:56:BD:46:21:22:B2:46:99:E1:B6:B1:92:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-VA8B1ppBVa9RiEiskaZ4baxkng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/4fa4b4-7c96-4eb7-9940-3f2316b553f5/1/YfJ5AFlcLwWCLab2L7EHS9Hd_4A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/4fa4b4-7c96-4eb7-9940-3f2316b553f5/1/1-VA8B1ppBVa9RiEiskaZ4baxkng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.141.0/24
Signature Algorithm: sha256WithRSAEncryption
43:50:b3:c0:ee:c7:55:a7:8a:03:16:35:fb:06:4d:9f:20:dc:
6e:04:0e:c9:5b:87:cf:54:20:16:31:55:63:d9:72:45:62:bf:
fc:e4:3d:9e:ee:17:87:a0:3f:e0:9c:16:96:3a:6c:01:1a:81:
f3:11:1c:30:11:9a:6f:99:b4:cc:e1:da:96:63:eb:c9:c1:d5:
6f:94:71:9e:36:8f:10:23:e8:2d:bc:58:7d:22:6c:a8:f6:33:
c4:60:13:fd:01:1a:53:90:20:2c:5b:2b:13:f1:12:80:2e:0f:
32:1e:d3:53:28:62:b8:37:17:76:7f:f2:08:7e:b7:a5:9a:dd:
7c:b4:80:4c:99:c1:0d:65:f9:ab:70:d6:3d:60:fc:b3:89:d9:
e4:17:ca:0c:f1:15:48:2a:a5:04:72:9b:61:16:fb:7c:d5:76:
c8:9a:f7:5e:8c:5b:0f:c3:18:69:05:c5:4d:5b:07:1b:5f:3a:
fe:65:04:45:85:d3:cc:69:75:ea:a7:fd:5b:b0:ee:c2:f6:41:
59:df:8d:ff:3b:db:cb:c9:29:d4:ce:1f:88:f0:e1:4f:38:82:
44:43:1e:da:6a:af:6a:19:86:c4:34:fb:5d:bf:e3:ea:97:df:
e5:48:87:af:1b:a6:e5:60:58:a8:37:ed:fe:62:9d:44:40:f3:
dc:dd:c7:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:12 2024 by rpki-client on console-fra.rpki-client.org