Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/yrskofwAW_7SpAqvlZJHfUT7_k8.roa
File: yrskofwAW_7SpAqvlZJHfUT7_k8.roa (raw, json)
Hash identifier: A41FM3oZyvniveFBORoKoXJpMOTJ2fd2Eo2oqFVlxkQ=
Subject key identifier: CA:BB:24:A1:FC:00:5B:FE:D2:A4:0A:AF:95:92:47:7D:44:FB:FE:4F
Certificate issuer: /CN=2378a4a9c52325a85920809ba1a4d89e21c02f17
Certificate serial: 01856F9DCCB821C6762FA5970C41F4D9D6C4
Authority key identifier: 23:78:A4:A9:C5:23:25:A8:59:20:80:9B:A1:A4:D8:9E:21:C0:2F:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/yrskofwAW_7SpAqvlZJHfUT7_k8.roa
Signing time: Sun 01 Jan 2023 23:14:50 +0000
ROA not before: Sun 01 Jan 2023 23:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205364
IP address blocks: 195.230.148.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:cc:b8:21:c6:76:2f:a5:97:0c:41:f4:d9:d6:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2378a4a9c52325a85920809ba1a4d89e21c02f17
Validity
Not Before: Jan 1 23:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cabb24a1fc005bfed2a40aaf9592477d44fbfe4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e8:cc:06:49:75:dc:62:cb:ca:ed:c6:b5:65:
47:af:22:b9:52:9c:85:30:8d:df:d2:7d:33:b0:e8:
35:9c:c1:f3:fe:aa:10:ca:c9:3e:33:6c:8f:aa:e1:
ef:c7:58:95:d2:6d:3a:70:3d:31:18:20:84:d0:3f:
06:94:16:b9:3b:2d:f6:af:08:37:16:d0:9c:bf:61:
6c:b5:f4:bb:0e:af:f6:8d:aa:09:44:6e:c8:31:c8:
36:a6:f4:90:79:6d:fb:a1:39:54:da:5c:4e:9a:ca:
6c:68:f1:0b:b1:44:8d:94:e1:e1:d3:af:b8:ce:68:
03:52:7a:d2:41:20:b8:8e:10:30:0a:1f:f1:9c:06:
ea:ea:de:9d:2a:04:50:5c:59:57:f5:25:8f:29:18:
54:4e:b8:f0:90:63:68:2b:e3:79:06:e1:f3:72:0e:
a6:ca:ab:20:2e:72:43:51:57:31:91:1b:4f:17:4d:
3c:49:45:4a:8e:e2:10:6f:74:6f:3e:70:ee:a2:b2:
01:08:fe:21:16:c2:4d:ad:35:e5:7e:3c:19:8a:4f:
1e:13:3b:4f:b1:d6:40:4a:96:12:a9:e2:77:e4:43:
bc:89:cb:67:2a:3b:d1:97:a9:c9:71:48:f0:25:f9:
fb:b0:13:13:b2:0c:71:3f:e4:c5:2c:3a:70:3d:18:
9e:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:BB:24:A1:FC:00:5B:FE:D2:A4:0A:AF:95:92:47:7D:44:FB:FE:4F
X509v3 Authority Key Identifier:
keyid:23:78:A4:A9:C5:23:25:A8:59:20:80:9B:A1:A4:D8:9E:21:C0:2F:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/yrskofwAW_7SpAqvlZJHfUT7_k8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.230.148.0/24
Signature Algorithm: sha256WithRSAEncryption
86:3e:8b:7d:71:4f:99:88:d9:7a:87:67:ae:44:3d:84:21:0b:
ee:c8:fb:85:5e:2a:82:35:62:c7:c0:91:cf:bc:36:2f:2d:7c:
fa:62:57:11:e4:60:de:c0:6c:3c:c0:01:87:70:69:ad:bb:02:
ec:c9:8a:0a:ff:b3:fd:c7:e1:f5:2f:e1:43:e3:a6:ce:2f:f5:
25:c0:c3:e5:50:35:d3:44:43:03:94:90:8e:b0:9d:4e:ec:4d:
98:91:6f:0e:20:ba:6a:7e:dc:21:bc:20:74:50:89:80:f6:6a:
0c:cb:b7:d1:76:0e:c7:26:98:a2:6f:41:1c:28:a2:4f:d0:33:
01:4b:77:c5:92:cc:6c:d9:0d:5b:f6:8e:3d:3c:39:56:df:a1:
45:9a:9c:82:09:68:6f:cc:fb:f1:ae:22:cb:79:a8:a5:55:4e:
42:4c:6d:2c:d2:49:b3:81:7f:9c:1e:01:2b:92:6e:f1:15:9d:
c5:c1:05:25:6e:0b:a3:a0:54:f7:39:f0:cd:c2:92:da:3e:4e:
95:41:04:b6:7f:e7:8c:93:99:6e:49:8d:e1:5b:1a:12:de:50:
15:0f:77:b2:1e:e5:40:3a:51:d4:b6:ab:ba:cf:ab:c9:40:57:
9c:2c:d0:91:49:99:1c:d3:29:15:17:27:30:a0:6f:55:09:3c:
57:3d:b7:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:47 2024 by rpki-client on console-fra.rpki-client.org