Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/YmNUT7_YTn0umY949pLBiYupFpI.roa
File: YmNUT7_YTn0umY949pLBiYupFpI.roa (raw, json)
Hash identifier: WS9Z7y9OatyU0Y384SUoUviG+6eUVtblsBEat8382v4=
Subject key identifier: 62:63:54:4F:BF:D8:4E:7D:2E:99:8F:78:F6:92:C1:89:8B:A9:16:92
Certificate issuer: /CN=359f0f5ff620e0db5311f64736909973ac60f6f3
Certificate serial: 018DC553866238FE5A3AEC191A35F122DFC9
Authority key identifier: 35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/YmNUT7_YTn0umY949pLBiYupFpI.roa
Signing time: Tue 20 Feb 2024 07:03:21 +0000
ROA not before: Tue 20 Feb 2024 07:03:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50338
IP address blocks: 5.39.202.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 06 Mar 2024 06:15:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c5:53:86:62:38:fe:5a:3a:ec:19:1a:35:f1:22:df:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=359f0f5ff620e0db5311f64736909973ac60f6f3
Validity
Not Before: Feb 20 07:03:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6263544fbfd84e7d2e998f78f692c1898ba91692
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:fa:8f:db:bc:5f:13:37:52:ca:44:73:b5:bb:
cd:26:90:18:02:4b:94:46:a8:fb:53:6e:2a:ae:d1:
ab:b5:f4:ae:ab:e0:a4:45:ba:4a:19:84:d1:74:54:
88:54:df:f4:9e:59:97:43:84:66:7d:99:ee:1a:26:
24:42:68:c2:82:c3:b5:ce:d4:ad:a6:0b:c1:55:4a:
20:af:d7:db:be:88:49:87:56:e1:43:9d:90:d8:e3:
b5:1a:2a:f6:05:86:71:1c:52:7c:99:27:b2:22:db:
0c:b9:06:46:53:8e:8e:ff:56:74:09:ec:3e:23:5a:
1c:74:d3:65:1e:44:c5:d5:84:ac:2c:eb:55:f2:ae:
e9:65:cf:1a:51:70:6f:2b:60:32:39:d8:6a:63:f3:
ed:e3:58:df:0b:ea:39:8a:8a:9c:8d:b6:16:e0:70:
9a:1e:47:d8:dd:db:c5:3f:99:83:16:58:f2:54:54:
34:e9:1a:51:95:c2:7c:aa:5f:c7:b6:37:6b:22:74:
d0:f3:b9:41:2d:7c:d2:e0:11:85:ea:67:bf:da:75:
9a:8a:a7:5f:02:6f:4b:04:46:09:91:78:c6:e1:61:
a3:32:eb:5e:15:e7:3d:90:78:34:12:24:b4:63:91:
4d:ee:dc:a7:54:7c:c6:02:5b:94:e1:f1:41:65:4e:
d3:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:63:54:4F:BF:D8:4E:7D:2E:99:8F:78:F6:92:C1:89:8B:A9:16:92
X509v3 Authority Key Identifier:
keyid:35:9F:0F:5F:F6:20:E0:DB:53:11:F6:47:36:90:99:73:AC:60:F6:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/YmNUT7_YTn0umY949pLBiYupFpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/40d9a5-2566-49e1-a57b-d1abf4ee32cb/1/NZ8PX_Yg4NtTEfZHNpCZc6xg9vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.39.202.0/23
Signature Algorithm: sha256WithRSAEncryption
6a:bd:f1:16:98:b6:db:70:a3:ab:d9:e3:e6:90:e7:16:f9:27:
a1:46:51:4a:48:f7:c7:4e:b5:d7:41:03:36:fd:ed:1f:8b:39:
69:33:8e:f8:ac:69:91:ba:84:cf:e7:cf:b2:36:97:55:22:49:
0a:d6:48:1e:59:3a:f7:dc:60:6e:1b:1a:91:17:db:12:5d:e7:
98:ce:01:39:f2:f6:dc:d8:0d:e0:19:96:d7:cf:2c:30:a9:06:
ab:9a:fb:6c:10:4d:ad:2f:74:bd:fd:17:cd:4c:fb:c3:b0:11:
0e:3b:d2:5b:88:0d:a3:21:cf:3e:fb:9b:5e:90:e4:21:1e:05:
32:9e:56:6e:12:65:af:9b:57:96:87:88:5e:df:97:cb:25:97:
af:fa:54:53:2f:cc:32:c7:d9:af:99:d6:da:33:e4:ad:50:e4:
34:a7:2c:24:23:b6:a7:b1:a6:24:82:2d:7f:01:d7:77:e6:0b:
e5:8f:56:4f:93:16:be:b7:da:a3:c5:2d:56:f6:5f:8a:e9:fa:
62:03:3f:2c:64:44:7d:aa:74:b0:39:8c:89:e3:6b:7b:54:02:
d7:f1:8f:9e:ca:1c:3d:48:c0:d4:c8:1d:eb:d7:ff:40:03:49:
1f:48:87:be:12:5b:2b:d6:2f:26:1e:79:98:bc:d6:71:cd:9d:
1b:c0:65:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:32 2024 by rpki-client on console-ams.rpki-client.org