Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/ylObDBsPXl8yWhtSIXiJeXQyicE.roa
File: ylObDBsPXl8yWhtSIXiJeXQyicE.roa (raw, json)
Hash identifier: 7KBqc9my3ctvPHFem3MRpMWC5jVBXOVDRkOUxt02vKk=
Subject key identifier: CA:53:9B:0C:1B:0F:5E:5F:32:5A:1B:52:21:78:89:79:74:32:89:C1
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 01857139C7942FB26677ED09262C5EE3DCE2
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/ylObDBsPXl8yWhtSIXiJeXQyicE.roa
Signing time: Mon 02 Jan 2023 06:44:50 +0000
ROA not before: Mon 02 Jan 2023 06:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49999
IP address blocks: 31.43.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 14 Jan 2023 05:41:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:c7:94:2f:b2:66:77:ed:09:26:2c:5e:e3:dc:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Jan 2 06:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ca539b0c1b0f5e5f325a1b5221788979743289c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:e4:39:f2:b0:d4:0e:0f:ea:64:5d:69:54:c0:
13:3c:41:de:d2:d9:ee:76:f9:ab:db:94:2b:b9:54:
36:dc:de:95:ec:e2:27:29:42:ba:1b:85:f0:f6:5d:
8d:be:c9:e2:36:7c:9b:dc:99:1f:d7:f6:ac:b8:09:
21:f3:44:b9:c6:88:98:6f:b8:34:81:30:94:76:94:
fb:9f:47:7b:42:82:be:d4:b1:ea:91:f0:bc:65:06:
09:13:2d:ef:88:af:86:28:9e:49:fe:2b:3a:ff:e5:
0a:09:43:b0:03:4b:66:1e:d5:39:1d:be:de:41:05:
e4:0f:f9:f5:b3:15:a7:c0:8e:2c:77:ff:1f:40:32:
a0:5c:af:0a:79:9a:d5:d5:e0:e0:c7:b9:ac:12:63:
22:42:cd:91:0a:1c:8d:c6:33:71:de:5d:29:6e:e9:
33:58:45:a7:07:0e:10:3a:f7:d9:a0:32:76:a3:ca:
be:c4:6a:74:81:f2:fa:ad:77:3b:a2:5c:10:4f:97:
61:e5:35:43:0d:09:78:41:1c:a2:aa:24:40:69:5f:
e8:c9:ed:8f:d0:60:b3:3e:56:52:4b:a3:40:ad:bd:
b9:89:04:6e:f2:2b:cb:df:94:15:52:5b:d1:72:d5:
b1:80:d5:35:77:5a:26:1b:42:3d:be:93:42:bf:c8:
31:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:53:9B:0C:1B:0F:5E:5F:32:5A:1B:52:21:78:89:79:74:32:89:C1
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/ylObDBsPXl8yWhtSIXiJeXQyicE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.43.167.0/24
Signature Algorithm: sha256WithRSAEncryption
61:32:3c:28:91:bc:c4:50:d9:5a:6f:bb:ce:72:1e:5c:29:6b:
16:fe:21:6a:1f:58:26:82:2a:6b:0f:48:d9:e0:15:5b:a4:6c:
61:9a:4f:fa:5a:12:30:12:72:45:57:f4:fa:33:c7:98:45:b5:
d6:7d:21:ad:8d:e0:59:0d:85:d0:b5:2f:55:34:a0:22:24:8c:
86:f4:b1:f6:74:64:3f:ba:a7:eb:34:c7:89:d4:ab:59:ca:fe:
36:29:9f:40:c6:5b:ec:c5:01:ce:59:d0:a5:24:13:80:5d:c1:
e5:ea:a0:43:8a:37:52:fd:2c:95:18:a0:12:fc:8c:da:af:65:
d4:36:39:c2:4e:cc:6b:2e:07:6a:b4:7c:6c:2b:91:5c:be:fb:
7f:ed:c9:54:be:96:6b:c0:b7:f9:05:7b:56:ab:60:06:f3:04:
aa:9d:01:00:58:e0:66:61:7f:f1:0f:a0:00:c8:a8:41:8e:bc:
5b:29:c2:4f:22:8e:5b:f1:35:a9:88:71:50:b2:e4:9a:41:51:
38:ad:6a:bd:ea:11:40:3e:2c:b9:83:01:16:86:08:5f:df:20:
c5:fa:f6:cd:6d:a0:58:8a:46:4a:56:f1:44:b9:53:8e:b7:42:
c1:d1:f5:cd:5d:42:4d:18:51:31:59:a8:3e:3a:d5:fe:83:8a:
a2:4d:81:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org