Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/YLZi4BfC5bvDVrdO5NK270SOUQk.roa
File: YLZi4BfC5bvDVrdO5NK270SOUQk.roa (raw, json)
Hash identifier: UkP1UGVnFDQEFJO6LV3Z6RnpmtTbIBnXyDfBnr9Yfws=
Subject key identifier: 60:B6:62:E0:17:C2:E5:BB:C3:56:B7:4E:E4:D2:B6:EF:44:8E:51:09
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 018570F0AD0B3F868E2982C6F980ED023AAF
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/YLZi4BfC5bvDVrdO5NK270SOUQk.roa
Signing time: Mon 02 Jan 2023 05:24:59 +0000
ROA not before: Mon 02 Jan 2023 05:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48266
IP address blocks: 45.67.200.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Aug 2023 10:20:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:ad:0b:3f:86:8e:29:82:c6:f9:80:ed:02:3a:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Jan 2 05:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=60b662e017c2e5bbc356b74ee4d2b6ef448e5109
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:60:20:99:c9:7c:9e:9a:c7:b1:f1:1b:87:69:
8f:20:f9:10:00:a2:7c:4e:0c:83:38:f6:77:39:67:
19:57:7f:43:b8:2d:46:97:10:f5:d6:3e:86:e7:50:
44:97:85:5c:4a:3f:e0:f2:d2:1a:79:50:66:91:99:
d1:50:71:cb:a9:1b:ba:5d:28:78:0f:62:70:ef:92:
fc:4e:11:9e:cc:27:1d:84:0f:88:8e:e5:af:32:29:
6c:6a:e4:0f:50:89:42:de:57:6d:4c:21:c1:3e:49:
52:46:ce:9b:25:2f:c8:9b:7f:bc:a4:06:07:40:cb:
32:fc:3c:23:63:67:65:d6:4f:6a:d0:b0:5b:7e:3e:
7d:3b:d5:53:53:04:bb:89:94:cf:70:6c:3a:ba:d5:
7d:cd:c5:8d:f0:1d:37:0e:b3:11:4a:88:cc:7f:72:
a2:f2:8e:10:fc:36:0c:89:28:f4:9f:72:50:89:1a:
bc:42:ea:99:1b:44:ae:37:2b:38:21:fb:a7:82:c1:
10:4c:9f:0c:98:63:e2:70:88:31:29:60:a3:7e:17:
9e:c5:dc:27:16:8b:7d:da:84:e2:50:76:0a:67:fb:
86:3e:56:4c:4d:55:35:ad:8c:55:72:26:db:6f:1c:
2a:02:2f:af:88:9f:48:37:72:21:12:64:35:c5:3f:
33:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:B6:62:E0:17:C2:E5:BB:C3:56:B7:4E:E4:D2:B6:EF:44:8E:51:09
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/YLZi4BfC5bvDVrdO5NK270SOUQk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.200.0/23
Signature Algorithm: sha256WithRSAEncryption
84:d2:dd:32:92:9f:2a:eb:13:07:0e:e5:6e:87:58:dc:ee:46:
a8:29:8f:34:48:c7:18:ab:3d:90:39:3e:41:d6:74:4c:9c:85:
e1:bf:f1:1e:37:89:23:05:1a:e9:86:77:c5:25:81:ce:80:c1:
53:dc:51:17:75:f2:94:bd:c6:a6:2d:93:76:bf:72:88:e0:2e:
06:b4:94:53:a6:5a:a2:9b:93:4a:02:a1:4f:32:56:9d:5b:43:
59:1a:d8:3b:ad:7e:b5:e0:86:12:97:fc:ea:b3:e0:fe:1c:64:
bd:0c:ae:d9:6f:58:64:e5:0e:08:10:38:6c:6e:7e:00:88:04:
7a:9d:cf:da:92:95:97:47:cf:02:56:f2:f6:90:3a:4e:58:ec:
7b:c0:2f:0d:cc:4c:97:80:8d:db:84:76:f6:7c:0f:4f:90:83:
27:6d:52:57:b0:b3:a7:15:0b:c0:ca:79:da:c2:ff:2a:31:cc:
4c:9a:97:54:a1:a5:86:3b:64:b2:29:fa:50:4a:02:4c:ed:f9:
36:96:ef:22:27:38:3c:26:d0:f5:aa:a9:74:85:bd:21:9d:3a:
66:09:91:0a:70:91:9e:e8:94:a5:46:85:3a:98:af:57:50:af:
1b:2a:4d:f8:71:8a:cc:52:95:56:66:4a:cf:7b:67:bc:57:f1:
3e:d3:14:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:48 2024 by rpki-client on console-ams.rpki-client.org