Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/c3174a-a794-44ee-8d26-bc5b69144587/1/y1c1jlLBF0RFyJXz0F-xrMO3lUE.roa
File: y1c1jlLBF0RFyJXz0F-xrMO3lUE.roa (raw, json)
Hash identifier: vT0bpPO2f9yR5DMx56iAvD+RMotptEyqKTaLTiTxbHk=
Subject key identifier: CB:57:35:8E:52:C1:17:44:45:C8:95:F3:D0:5F:B1:AC:C3:B7:95:41
Certificate issuer: /CN=af0dc12b0f1b533d8d04ec6117d6b9e512fcaa9f
Certificate serial: 01856FC297A435407C997A9BBF340682A785
Authority key identifier: AF:0D:C1:2B:0F:1B:53:3D:8D:04:EC:61:17:D6:B9:E5:12:FC:AA:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rw3BKw8bUz2NBOxhF9a55RL8qp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/c3174a-a794-44ee-8d26-bc5b69144587/1/y1c1jlLBF0RFyJXz0F-xrMO3lUE.roa
Signing time: Sun 01 Jan 2023 23:55:01 +0000
ROA not before: Sun 01 Jan 2023 23:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39729
IP address blocks: 213.158.64.0/19 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:97:a4:35:40:7c:99:7a:9b:bf:34:06:82:a7:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af0dc12b0f1b533d8d04ec6117d6b9e512fcaa9f
Validity
Not Before: Jan 1 23:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb57358e52c1174445c895f3d05fb1acc3b79541
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b7:8a:6b:72:fb:b5:6d:09:37:c2:42:df:af:
3a:51:5f:46:f9:0d:4a:71:3c:f2:3d:3d:bb:53:b6:
2b:9b:9c:24:17:73:4d:45:e0:3c:16:8d:7c:c5:8a:
de:a8:f4:d9:37:bc:0f:b5:8d:2a:63:ed:7b:d0:28:
7b:ec:31:00:f3:40:9d:d6:2f:ad:fa:76:a0:ec:9c:
1f:00:a1:72:65:3d:7d:12:ff:60:c3:e3:e2:30:c7:
c7:48:d4:6a:b0:93:b6:1a:55:9c:30:c8:9a:d6:af:
33:9c:23:75:6e:15:3a:24:fe:f0:08:3a:40:7d:ee:
87:9a:08:85:0f:a0:e3:74:0b:e5:1a:3a:1f:b6:2b:
04:2b:87:20:27:5a:1f:28:bf:5c:02:98:71:f7:6d:
ee:97:5f:d1:ee:15:9f:f3:52:0d:64:ce:f4:00:df:
7d:64:9d:17:96:c3:02:e0:04:e0:f8:20:48:c7:40:
cc:33:30:cc:e1:96:0d:77:8e:13:6e:53:1d:5a:15:
ab:02:81:04:a2:e7:d1:3e:dd:d3:68:ff:b2:27:37:
9b:fc:6c:bc:a7:ec:5e:4d:a0:b8:ee:36:6b:d1:ad:
5e:91:42:de:07:c6:06:38:2e:73:09:02:2d:17:86:
ef:89:a5:51:b7:39:ec:5f:48:7d:bf:99:f5:aa:b1:
cd:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:57:35:8E:52:C1:17:44:45:C8:95:F3:D0:5F:B1:AC:C3:B7:95:41
X509v3 Authority Key Identifier:
keyid:AF:0D:C1:2B:0F:1B:53:3D:8D:04:EC:61:17:D6:B9:E5:12:FC:AA:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rw3BKw8bUz2NBOxhF9a55RL8qp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/c3174a-a794-44ee-8d26-bc5b69144587/1/y1c1jlLBF0RFyJXz0F-xrMO3lUE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/c3174a-a794-44ee-8d26-bc5b69144587/1/rw3BKw8bUz2NBOxhF9a55RL8qp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.158.64.0/19
Signature Algorithm: sha256WithRSAEncryption
25:f9:f8:e3:cc:40:0e:06:59:db:ca:26:d5:e6:bd:97:86:d7:
75:90:e6:ce:1e:06:40:a4:0b:9e:a6:06:0f:7d:72:83:cd:97:
4f:bd:49:42:ba:69:45:7e:97:55:43:81:9d:17:69:a3:61:4c:
b8:b6:a5:16:cd:8a:1c:dc:67:c6:86:9e:3a:15:a7:cb:9f:a1:
e1:f4:eb:4c:47:5a:6b:1e:c9:9a:45:fd:0a:08:eb:40:07:25:
cb:0b:fa:e1:ae:34:6d:e1:25:82:aa:95:0f:d5:b5:45:e7:9b:
f6:1b:13:ff:1d:4b:24:51:13:d0:3d:d6:50:fa:e9:58:03:3f:
c5:03:73:1c:b0:c2:7a:22:01:f3:cb:d0:77:2f:17:18:b8:63:
18:7e:ea:1c:57:cd:98:df:87:b6:77:ee:98:23:4d:b0:f6:40:
87:4c:34:6a:2f:02:2d:0b:c3:9a:3e:64:30:a7:09:c8:c4:8e:
f6:58:a0:2c:0d:d9:13:ff:6e:e9:5e:d4:4a:29:8c:fb:de:92:
db:03:c0:66:5c:a5:56:47:a1:75:58:8a:e3:b3:45:12:84:0a:
99:d6:5a:71:c4:1d:6e:c3:f0:67:a3:25:b9:1a:56:95:8d:e0:
10:ec:40:17:5f:9b:e7:09:2f:8e:36:29:d5:4c:a8:1c:6d:fc:
73:56:07:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:33 2024 by rpki-client on console-ams.rpki-client.org