Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/yhcssC08mmYbrAUAAVjFbkC093M.roa
File: yhcssC08mmYbrAUAAVjFbkC093M.roa (raw, json)
Hash identifier: pFc3ot38avF3JjecaSdMyLthNJ16I6uNJSJ82qN2lq8=
Subject key identifier: CA:17:2C:B0:2D:3C:9A:66:1B:AC:05:00:01:58:C5:6E:40:B4:F7:73
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 018610BDB131D5A16F737BA65D7D364C21A0
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/yhcssC08mmYbrAUAAVjFbkC093M.roa
Signing time: Thu 02 Feb 2023 06:08:32 +0000
ROA not before: Thu 02 Feb 2023 06:08:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209260
IP address blocks: 45.67.202.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 01 Aug 2023 05:32:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:10:bd:b1:31:d5:a1:6f:73:7b:a6:5d:7d:36:4c:21:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Feb 2 06:08:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ca172cb02d3c9a661bac05000158c56e40b4f773
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:0f:c9:fd:2a:a1:c5:27:54:6d:1e:3b:17:20:
dc:dc:13:b3:3f:85:4b:be:64:18:39:41:4b:5b:fd:
c0:a1:68:05:cf:84:ce:9f:b5:fa:74:1c:ea:1b:19:
24:4f:3e:68:e1:0c:2f:a1:d9:fa:c0:63:5d:e8:e0:
17:13:30:ce:7d:50:fd:80:ea:d7:b6:ad:08:a0:a8:
26:c3:92:8a:b7:bf:bc:e3:5f:31:cd:de:9f:b0:04:
73:f5:fc:6c:d9:fb:de:38:30:fe:d4:f8:9e:bd:25:
d4:77:dd:6c:b5:b4:1d:06:9b:e5:78:a7:ed:5f:c7:
82:49:eb:68:5b:fe:10:73:ba:20:51:f1:c6:1d:5c:
fd:74:34:4f:eb:33:1c:9e:92:8d:39:18:5a:f7:bd:
e2:83:d4:17:c9:63:0f:d0:3e:9b:13:b8:07:a3:bd:
a0:be:e8:f7:55:4c:79:71:af:15:b3:f1:37:6a:cf:
97:a8:04:a8:e9:7e:19:fd:23:fa:4a:ad:90:d4:30:
cf:a0:0d:39:b4:a5:4a:2b:a2:97:be:e5:c5:7f:48:
c2:f4:45:13:d1:4d:e7:1d:1a:04:1a:45:5d:46:69:
20:95:54:b8:cc:4c:fa:54:2d:00:0f:28:f1:59:32:
00:55:f1:a4:c4:d1:f4:a0:22:fa:11:c8:61:2f:a7:
68:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:17:2C:B0:2D:3C:9A:66:1B:AC:05:00:01:58:C5:6E:40:B4:F7:73
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/yhcssC08mmYbrAUAAVjFbkC093M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.202.0/24
Signature Algorithm: sha256WithRSAEncryption
37:ea:c0:49:23:2b:c4:be:51:99:25:3c:a9:df:4c:86:eb:e0:
dd:c5:84:38:4f:eb:1e:93:98:ba:c3:dd:d1:8f:45:e2:70:5d:
87:a6:f3:47:6e:16:dc:66:ce:d4:c3:84:78:16:2a:c7:c9:3a:
7d:c0:d5:47:c0:e1:dd:4b:d1:d9:1c:c1:f7:86:16:ff:62:43:
35:38:51:06:27:4c:7d:d0:ea:13:2e:65:37:82:7b:fa:c7:22:
46:80:5d:88:21:ec:82:48:29:39:37:7c:a0:e5:e4:74:84:50:
1e:ae:bc:14:60:c1:15:8a:b7:78:bd:f9:6f:e6:5e:52:74:f0:
20:79:6b:5d:0e:73:3c:0c:62:ff:ee:48:11:e5:0d:1b:5e:7d:
ec:2a:e6:18:0c:33:20:da:2c:db:2b:f5:da:59:7f:0b:70:dc:
28:1c:0d:cc:71:ba:33:38:e4:f4:92:1f:fa:95:dd:46:4b:2e:
be:58:7f:56:33:d8:5e:5a:4f:0d:b8:2f:22:9b:c6:e7:a3:e7:
a5:76:67:fe:4f:cb:02:73:bd:a2:50:07:42:ba:ac:ab:0e:f3:
a1:ad:1c:11:10:0f:ce:cf:9f:8c:58:c3:99:bb:08:04:71:af:
4e:ef:0c:ab:29:ad:a7:61:b5:2e:aa:ce:82:fa:4e:7d:38:8d:
58:54:eb:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org