Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/beb97e-0957-4480-8b40-daa9f2a33baf/1/ynoc2LDBAK-ZtHjEHTfjH5gMlIo.roa
File: ynoc2LDBAK-ZtHjEHTfjH5gMlIo.roa (raw, json)
Hash identifier: E9zIZnp9rOVsQFAPh+HGKTlKT1mxDeTijezIZ/gi5+E=
Subject key identifier: CA:7A:1C:D8:B0:C1:00:AF:99:B4:78:C4:1D:37:E3:1F:98:0C:94:8A
Certificate issuer: /CN=4100e4b4a97882c1798c470e3abd805e325dd595
Certificate serial: 018A265FFEE264A29855DB5CF014F441D672
Authority key identifier: 41:00:E4:B4:A9:78:82:C1:79:8C:47:0E:3A:BD:80:5E:32:5D:D5:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QQDktKl4gsF5jEcOOr2AXjJd1ZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/beb97e-0957-4480-8b40-daa9f2a33baf/1/ynoc2LDBAK-ZtHjEHTfjH5gMlIo.roa
Signing time: Thu 24 Aug 2023 07:08:59 +0000
ROA not before: Thu 24 Aug 2023 07:08:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39700
IP address blocks: 185.72.132.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:26:5f:fe:e2:64:a2:98:55:db:5c:f0:14:f4:41:d6:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4100e4b4a97882c1798c470e3abd805e325dd595
Validity
Not Before: Aug 24 07:08:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ca7a1cd8b0c100af99b478c41d37e31f980c948a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:a9:06:fd:09:dd:15:9f:24:ff:27:8c:8e:62:
76:5a:6c:e6:a5:e8:91:c0:41:ba:a8:71:93:ad:7a:
1e:3e:46:fc:d4:76:73:d3:66:30:b4:47:5d:b4:76:
cd:b8:2f:12:c7:b4:62:ab:36:27:dd:8a:48:9f:dc:
68:92:dc:99:3c:fc:38:93:81:d9:09:a5:b7:e4:98:
2c:7a:f6:d9:aa:29:51:5f:27:2e:21:0c:e3:21:5c:
98:7d:2b:ab:5e:3f:6d:30:73:f7:6d:2e:58:47:7a:
f9:56:36:d1:f7:6a:08:56:41:07:51:4e:bc:99:7a:
36:2c:5c:7f:9e:9b:c2:23:b1:0b:68:e6:80:32:18:
08:a5:4c:1e:db:68:69:9c:2b:33:80:63:3c:4e:1a:
9a:df:97:7a:91:0b:bf:4e:ad:b3:61:b8:f1:45:1b:
4b:52:12:a5:fe:69:f1:73:a2:f2:e8:8a:48:5e:56:
29:72:26:a0:25:94:05:25:7c:fa:21:90:04:c4:0b:
43:b9:8c:04:0c:a8:d4:cc:50:d0:08:26:a6:d5:1e:
3f:b8:4b:f7:2f:60:7e:95:d6:f9:8c:87:3d:95:05:
f5:7d:4d:4b:97:ec:ad:15:b3:e6:a9:81:56:58:ce:
f4:b3:6a:bf:49:ff:13:f6:46:5f:a1:1c:d5:00:d2:
84:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:7A:1C:D8:B0:C1:00:AF:99:B4:78:C4:1D:37:E3:1F:98:0C:94:8A
X509v3 Authority Key Identifier:
keyid:41:00:E4:B4:A9:78:82:C1:79:8C:47:0E:3A:BD:80:5E:32:5D:D5:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QQDktKl4gsF5jEcOOr2AXjJd1ZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/beb97e-0957-4480-8b40-daa9f2a33baf/1/ynoc2LDBAK-ZtHjEHTfjH5gMlIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/beb97e-0957-4480-8b40-daa9f2a33baf/1/QQDktKl4gsF5jEcOOr2AXjJd1ZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.72.132.0/22
Signature Algorithm: sha256WithRSAEncryption
46:cc:63:5a:5f:fb:eb:ed:ee:72:17:90:36:ff:38:a3:c0:8b:
1f:b6:d5:0d:e6:10:d0:e4:4b:f7:44:93:e4:e9:8e:87:28:5b:
eb:3a:dd:90:70:ad:f8:22:f8:0f:95:a3:76:be:10:30:8c:19:
eb:b7:b0:39:7f:51:91:43:af:4a:e7:d7:eb:1d:57:2e:86:9a:
55:60:8c:1e:f5:46:f2:1b:ce:e5:1b:e7:d8:2c:f7:1a:4e:12:
e9:18:c2:cd:ca:35:85:6b:fb:3b:d4:b4:87:f6:aa:88:94:31:
2e:7e:92:40:a2:0e:d2:89:5f:ed:68:02:61:1f:a5:20:80:60:
fe:6d:38:d3:0b:31:fd:73:42:21:7a:ba:b0:eb:a5:97:79:c8:
29:50:8b:51:82:56:64:33:96:6f:76:8a:cd:63:cd:14:b7:ec:
6f:3d:ae:2e:f7:21:95:61:65:b3:14:6f:6c:6a:fb:49:05:28:
7c:65:af:1e:1d:de:61:32:f2:5c:29:a7:0b:81:5b:67:ca:2e:
53:7b:a1:91:4e:02:83:16:98:6b:09:e6:e0:20:25:21:48:08:
60:15:5e:93:7c:ab:17:9c:50:49:02:f8:24:f5:61:90:be:66:
ff:c8:bb:35:e5:87:55:32:24:55:fa:a9:37:ed:b7:27:45:93:
da:23:0e:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:10 2024 by rpki-client on console-fra.rpki-client.org