Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/YapcSf8m77JiWzDYi5A5cgbG4Ks.roa
File: YapcSf8m77JiWzDYi5A5cgbG4Ks.roa (raw, json)
Hash identifier: 85+RJ/7PiAI54N/4YZ+Syhth2aIsJ8FcwTP5T/Dj++k=
Subject key identifier: 61:AA:5C:49:FF:26:EF:B2:62:5B:30:D8:8B:90:39:72:06:C6:E0:AB
Certificate issuer: /CN=a849204ca4f0eb4e56e08e099fe3785ce06ffeaa
Certificate serial: 01856FCB8BCB6C04EFC63487F5D8442D9867
Authority key identifier: A8:49:20:4C:A4:F0:EB:4E:56:E0:8E:09:9F:E3:78:5C:E0:6F:FE:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qEkgTKTw605W4I4Jn-N4XOBv_qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/YapcSf8m77JiWzDYi5A5cgbG4Ks.roa
Signing time: Mon 02 Jan 2023 00:04:48 +0000
ROA not before: Mon 02 Jan 2023 00:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207702
IP address blocks: 185.226.230.0/24 maxlen: 24
185.220.164.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 06 Mar 2023 07:46:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:8b:cb:6c:04:ef:c6:34:87:f5:d8:44:2d:98:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a849204ca4f0eb4e56e08e099fe3785ce06ffeaa
Validity
Not Before: Jan 2 00:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=61aa5c49ff26efb2625b30d88b90397206c6e0ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:4e:45:01:5e:20:59:3f:a8:1e:38:49:2b:e9:
e4:72:c3:3f:b7:f5:26:ca:92:2f:0f:26:6e:25:d4:
1d:b7:bb:84:cb:d7:a9:25:86:31:56:cb:73:ea:de:
c2:9f:6d:30:2f:ec:c7:c7:8e:f6:27:74:da:92:88:
4d:0e:d6:3a:e1:8e:78:08:52:54:c3:c1:f5:66:4a:
50:87:3e:b2:b2:e5:4f:88:6e:76:4d:28:1a:fd:14:
39:e1:f3:7d:20:03:3d:db:36:b3:50:98:67:05:42:
b8:67:6d:ff:be:93:2a:a3:ff:f3:b7:96:32:1c:b0:
b0:4c:79:d9:bc:6b:5b:77:cf:41:40:67:79:0a:e4:
f1:16:94:b7:05:04:b3:01:00:17:7e:22:50:6d:db:
81:b9:f0:53:cb:f3:96:16:08:d1:ef:84:5c:de:be:
20:fc:16:e7:f7:78:62:a8:5b:6a:50:11:e4:14:b9:
d1:9d:9f:bb:a3:f4:33:e9:db:f8:8e:97:43:8e:fa:
e4:59:4b:0a:19:af:73:56:38:53:42:84:67:99:95:
e3:10:0e:13:dd:e5:77:bf:48:cd:1a:fd:e8:1c:97:
b0:78:df:5e:82:80:73:32:34:df:8a:6e:6b:08:98:
54:7f:85:52:58:1a:69:a1:0f:59:31:02:98:c3:04:
37:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:AA:5C:49:FF:26:EF:B2:62:5B:30:D8:8B:90:39:72:06:C6:E0:AB
X509v3 Authority Key Identifier:
keyid:A8:49:20:4C:A4:F0:EB:4E:56:E0:8E:09:9F:E3:78:5C:E0:6F:FE:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qEkgTKTw605W4I4Jn-N4XOBv_qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/YapcSf8m77JiWzDYi5A5cgbG4Ks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/45b23f-302b-41f2-9496-9ccbb08428fa/1/qEkgTKTw605W4I4Jn-N4XOBv_qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.164.0/23
185.226.230.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:a1:3d:b8:37:0c:2f:7b:df:f4:a8:0e:04:2c:e5:1f:bb:fd:
3d:e8:3f:df:91:8b:8a:d9:05:2f:28:38:52:2d:c3:65:05:86:
94:89:54:6a:14:49:4f:6c:09:45:73:05:4a:ec:aa:2c:a7:fe:
93:07:6f:08:14:93:ea:45:33:fc:c9:6c:5e:29:65:cd:01:7d:
ee:3c:44:66:fe:96:60:11:53:81:ab:ce:50:d2:3d:0e:20:7f:
34:dc:82:d7:22:8d:ba:94:e3:a6:35:27:96:1f:b7:02:00:ce:
52:69:f6:08:15:be:c7:6f:27:4c:b7:7d:b2:25:ca:a9:2b:4a:
8b:23:28:24:71:da:9c:4f:53:87:86:a4:d3:f4:9a:c6:e3:94:
21:ab:14:f1:4b:5a:3e:dd:4b:2a:3c:ce:95:62:9a:4c:89:02:
73:9a:95:15:63:42:19:3e:be:03:89:bc:7d:8a:ef:f4:d6:00:
a1:b5:8c:a5:75:83:51:9e:41:34:ce:04:28:98:11:7d:a7:5b:
40:bf:91:6d:44:2e:55:a8:ff:5e:3a:3f:15:cf:78:57:56:f8:
89:d0:c4:98:7c:b3:b1:40:97:35:9f:3a:ca:fc:7b:e2:cd:15:
a2:ef:41:cf:86:a6:01:6b:b7:02:0f:0b:57:a7:92:fd:f9:02:
54:97:0a:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:02 2024 by rpki-client on console-fra.rpki-client.org