Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/878a1c-a7a0-4fd1-98a0-33e44621db07/1/YePMthe35Qon8xYsVZCuoP95GeI.roa
File: YePMthe35Qon8xYsVZCuoP95GeI.roa (raw, json)
Hash identifier: Tt+KoG8fiFPkL/upNpIAEAroKPOAhzsSBEjL9TBT3yg=
Subject key identifier: 61:E3:CC:B6:17:B7:E5:0A:27:F3:16:2C:55:90:AE:A0:FF:79:19:E2
Certificate issuer: /CN=b31f0671f399e4da20a48bd327c47afa4a41ffc3
Certificate serial: 01856E6FA8CF0C0BFA79A05D48D9389D3EC9
Authority key identifier: B3:1F:06:71:F3:99:E4:DA:20:A4:8B:D3:27:C4:7A:FA:4A:41:FF:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sx8GcfOZ5NogpIvTJ8R6-kpB_8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/878a1c-a7a0-4fd1-98a0-33e44621db07/1/YePMthe35Qon8xYsVZCuoP95GeI.roa
Signing time: Sun 01 Jan 2023 17:44:49 +0000
ROA not before: Sun 01 Jan 2023 17:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2852
IP address blocks: 147.231.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:6f:a8:cf:0c:0b:fa:79:a0:5d:48:d9:38:9d:3e:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b31f0671f399e4da20a48bd327c47afa4a41ffc3
Validity
Not Before: Jan 1 17:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=61e3ccb617b7e50a27f3162c5590aea0ff7919e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:9c:7d:76:21:d3:f6:8a:32:e0:8b:12:f2:4f:
2e:90:08:95:29:4a:0c:36:ab:a8:d1:3c:a5:90:43:
84:dc:fd:17:68:1b:b1:ea:d5:7d:33:e2:8f:5d:94:
a4:76:80:0e:46:3c:38:48:1f:14:bf:7d:48:a9:98:
d3:95:0f:39:e0:e4:d1:f9:7b:d8:52:f0:c4:81:fc:
8a:96:46:fe:c1:fa:fb:b2:16:5b:7c:96:d7:fb:d2:
86:7f:53:6a:ce:8d:58:72:9e:33:35:8f:07:27:eb:
0a:d8:e4:a5:30:f2:37:d6:9f:df:62:d5:f3:b6:00:
ac:ca:0c:de:ef:17:c3:c2:85:7e:bc:24:6d:57:e4:
65:a9:47:57:3a:85:4c:4a:63:88:65:36:0f:06:5e:
49:6c:b8:ce:f2:09:44:c7:4a:65:a7:3d:24:00:9b:
dc:09:bc:a0:66:f9:14:10:61:5a:09:28:99:22:29:
3b:db:5e:93:d0:c8:28:fc:0c:ba:a3:33:63:d1:57:
e1:0e:7e:0f:41:10:91:1f:0a:43:12:82:3c:cb:9e:
f1:ba:7a:b0:6a:95:39:f4:1b:3b:c3:7e:9d:00:18:
a5:a4:0d:e7:55:b4:8d:79:9d:2e:19:25:1a:e7:64:
4b:91:96:6d:23:5c:6d:80:cc:33:26:5c:dc:64:f2:
23:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:E3:CC:B6:17:B7:E5:0A:27:F3:16:2C:55:90:AE:A0:FF:79:19:E2
X509v3 Authority Key Identifier:
keyid:B3:1F:06:71:F3:99:E4:DA:20:A4:8B:D3:27:C4:7A:FA:4A:41:FF:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sx8GcfOZ5NogpIvTJ8R6-kpB_8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/878a1c-a7a0-4fd1-98a0-33e44621db07/1/YePMthe35Qon8xYsVZCuoP95GeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/878a1c-a7a0-4fd1-98a0-33e44621db07/1/sx8GcfOZ5NogpIvTJ8R6-kpB_8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.231.0.0/16
Signature Algorithm: sha256WithRSAEncryption
52:55:58:d6:bf:4d:55:da:78:bf:d1:4f:e5:7e:6f:5a:b6:5d:
f4:52:77:85:ec:29:fb:e2:97:a9:b4:bd:83:be:c0:03:1c:12:
e5:41:8e:a5:d9:ae:d4:05:27:8e:48:82:da:e1:86:9b:38:2f:
4f:8a:39:55:a6:c1:e0:38:97:ab:a1:76:4b:a3:61:ca:54:fc:
6a:8b:a5:98:85:ae:07:d1:70:b5:1f:a1:62:2c:f9:da:75:d3:
ba:46:5f:62:84:05:4d:1a:05:c0:88:d0:62:d8:21:29:c7:37:
7c:f7:46:54:57:ae:64:0b:42:eb:27:e9:45:d8:37:f4:1f:80:
e5:42:c0:e6:a2:ac:43:08:a8:8f:ac:05:f0:5a:3d:40:5b:63:
6e:8c:1f:52:0a:eb:60:b8:2b:6e:89:46:6c:78:37:af:64:ab:
db:86:8a:69:95:5b:d9:77:b4:25:6d:3f:77:bd:cc:90:df:23:
0e:4b:39:33:2b:27:c3:70:6d:83:2a:30:a2:4d:03:1d:f7:38:
7d:79:a9:5c:6b:21:d2:b2:2f:a9:af:8d:e8:7b:be:8f:06:5f:
3b:69:e0:c1:96:2d:39:95:48:38:26:76:c2:4f:6b:c4:de:79:
9f:39:64:8c:7e:b6:0f:40:a2:10:19:fd:92:4b:95:02:56:09:
bf:e2:c8:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:23 2024 by rpki-client on console-fra.rpki-client.org