Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/c7a68f-7bf8-4f80-a9a2-815d2c026646/1/YbqlzEQlQKg1R61mqp3gyiz3zN8.roa
File: YbqlzEQlQKg1R61mqp3gyiz3zN8.roa (raw, json)
Hash identifier: xz4eqYFL/lcuQ9ZNo/ob12wma4CeWMUesuzW769rtus=
Subject key identifier: 61:BA:A5:CC:44:25:40:A8:35:47:AD:66:AA:9D:E0:CA:2C:F7:CC:DF
Certificate issuer: /CN=01335442514d5249b5143cfdf821216bb5c52940
Certificate serial: 018CC5DC2F407E4292AB1F4C6429822A85D7
Authority key identifier: 01:33:54:42:51:4D:52:49:B5:14:3C:FD:F8:21:21:6B:B5:C5:29:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ATNUQlFNUkm1FDz9-CEha7XFKUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/c7a68f-7bf8-4f80-a9a2-815d2c026646/1/YbqlzEQlQKg1R61mqp3gyiz3zN8.roa
Signing time: Mon 01 Jan 2024 16:29:50 +0000
ROA not before: Mon 01 Jan 2024 16:29:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203153
IP address blocks: 88.212.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 19:49:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:2f:40:7e:42:92:ab:1f:4c:64:29:82:2a:85:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01335442514d5249b5143cfdf821216bb5c52940
Validity
Not Before: Jan 1 16:29:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=61baa5cc442540a83547ad66aa9de0ca2cf7ccdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f2:83:27:13:70:86:1e:c8:0c:02:5e:5b:62:
b7:fa:0f:da:e7:1c:e8:c0:aa:ec:69:85:49:a5:3c:
1a:42:1b:ca:d9:7d:0f:62:62:b2:9f:05:02:e1:1f:
34:81:d6:73:17:02:62:dc:12:bb:b1:8c:d8:84:18:
3e:ce:c9:86:fb:33:04:93:8e:f2:10:11:c8:31:7b:
22:d0:cb:21:24:f7:ae:20:c0:92:5b:75:48:d4:2b:
36:dc:e3:9a:8f:18:6d:5e:93:95:39:9a:1a:c3:31:
1a:39:b5:96:e7:95:91:a2:b0:52:c5:0b:a5:9d:97:
41:6f:01:a5:67:11:4e:b7:12:89:a5:95:38:76:79:
2b:2c:c2:29:70:8c:78:7e:04:ed:1f:8b:fe:d4:31:
f3:92:0f:a4:c7:1f:b5:6f:04:39:69:50:ce:0a:0c:
a4:65:2f:95:ce:5c:33:99:a8:a0:69:74:69:1d:f0:
e8:ea:fd:b7:b5:f0:82:4d:56:1d:32:22:15:22:a8:
a6:3e:2b:91:0a:c7:b1:3e:12:a5:08:59:a8:3f:c4:
bb:7d:16:69:38:dc:5b:e7:13:f3:d9:4c:7c:4f:4d:
96:79:e2:3e:24:78:a5:36:71:69:04:6f:20:41:61:
34:7e:ca:17:a1:8d:00:75:e4:6a:01:9c:51:c4:cf:
38:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:BA:A5:CC:44:25:40:A8:35:47:AD:66:AA:9D:E0:CA:2C:F7:CC:DF
X509v3 Authority Key Identifier:
keyid:01:33:54:42:51:4D:52:49:B5:14:3C:FD:F8:21:21:6B:B5:C5:29:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ATNUQlFNUkm1FDz9-CEha7XFKUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/c7a68f-7bf8-4f80-a9a2-815d2c026646/1/YbqlzEQlQKg1R61mqp3gyiz3zN8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/c7a68f-7bf8-4f80-a9a2-815d2c026646/1/ATNUQlFNUkm1FDz9-CEha7XFKUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.212.228.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:05:98:b8:ae:93:20:0c:3c:10:81:1b:fb:65:01:72:d5:60:
a7:e4:ed:af:52:37:57:e2:47:5e:cb:81:76:c8:74:2b:f7:93:
2d:e1:e9:94:5d:4e:fe:cb:f1:5e:41:e8:a8:c5:3e:ce:ad:d9:
ce:38:94:fa:cc:2c:ef:4a:35:40:24:7e:12:c1:35:9a:ed:7c:
ab:40:2a:39:0a:1f:97:27:09:20:bd:ec:9a:a6:14:75:83:86:
c2:bc:8c:69:33:14:6b:0b:79:37:0d:1a:8c:ab:2d:c7:ab:cb:
7f:d5:3a:81:e5:9c:f0:9a:4c:07:95:2a:73:66:d0:60:5b:64:
f3:ce:b1:63:7f:d8:12:a4:8d:b1:25:93:07:d7:9d:c2:02:aa:
e3:75:17:d5:b4:a1:b3:7d:75:9b:93:81:ad:04:bf:bb:90:bc:
77:b8:e8:26:1b:d6:ca:f0:f3:ab:28:bd:f5:f2:ec:c9:cb:86:
1c:69:59:1a:2d:d3:85:24:84:cf:ff:e0:8b:6d:36:31:5b:ed:
4b:e6:5c:c5:d0:7b:01:75:e2:1b:ac:86:bc:0e:af:81:f6:1a:
28:10:79:1f:15:8c:71:f9:93:60:1e:41:c9:82:6a:e6:58:90:
d4:62:05:19:28:4f:b4:41:ad:6e:68:44:e3:a9:fe:6d:b3:91:
fd:33:40:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:22:55 2025 by rpki-client