Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/yuF5BMej9qUytPdul1-AaXJskY8.roa
File: yuF5BMej9qUytPdul1-AaXJskY8.roa (raw, json)
Hash identifier: sjfN2Tza3LCDromR2PpXtwO2hgZOrC/I7tsYu14JgSk=
Subject key identifier: CA:E1:79:04:C7:A3:F6:A5:32:B4:F7:6E:97:5F:80:69:72:6C:91:8F
Certificate issuer: /CN=a4f8436003d37602026b65531755ca8fcd31bed2
Certificate serial: 018572311A9079B20996510B1C60F7B3ADCB
Authority key identifier: A4:F8:43:60:03:D3:76:02:02:6B:65:53:17:55:CA:8F:CD:31:BE:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/yuF5BMej9qUytPdul1-AaXJskY8.roa
Signing time: Mon 02 Jan 2023 11:14:58 +0000
ROA not before: Mon 02 Jan 2023 11:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 33916
IP address blocks: 78.109.208.0/20 maxlen: 20
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:31:1a:90:79:b2:09:96:51:0b:1c:60:f7:b3:ad:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4f8436003d37602026b65531755ca8fcd31bed2
Validity
Not Before: Jan 2 11:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cae17904c7a3f6a532b4f76e975f8069726c918f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:4d:e0:ea:52:d7:cb:b0:1a:bf:f5:b4:87:79:
78:de:33:4c:89:aa:2c:74:b6:ee:53:a0:53:c2:b7:
22:e6:bc:1f:c5:ae:63:32:02:1e:70:23:2d:ca:6a:
ba:e7:0a:5f:d3:58:58:b5:54:f8:9b:2b:cc:56:aa:
da:3d:a7:bf:cf:98:78:1d:2e:db:79:09:c9:8a:3b:
2b:c6:3b:2a:93:4a:cc:1d:cb:bb:5e:67:4c:2e:e9:
eb:c2:02:27:85:7e:d2:26:1b:f7:c5:2f:3e:77:10:
8c:9e:38:8c:3a:ea:9c:73:d2:1f:78:08:0c:7b:69:
82:66:37:86:e7:3d:55:b6:28:a4:24:75:b9:7b:c1:
9f:71:41:9a:df:25:43:ae:5e:38:61:73:f4:39:cc:
74:2b:6e:ae:0f:df:16:c8:19:59:f2:2a:93:6e:4d:
60:c1:7e:36:1a:af:ac:48:f0:a3:ac:91:cd:fa:e0:
52:3e:2b:71:af:79:b9:c2:cd:79:af:99:95:81:4d:
5a:93:dc:e1:7f:38:8d:55:c2:9f:7b:24:c3:e1:23:
66:96:f8:e3:c4:3a:e7:ea:ff:6a:0f:86:53:f9:fc:
70:0f:fa:9f:a2:84:72:8e:4d:a7:89:30:1b:70:46:
e7:76:d1:4d:d6:d3:0c:ec:28:5d:bf:16:ff:15:ed:
fb:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:E1:79:04:C7:A3:F6:A5:32:B4:F7:6E:97:5F:80:69:72:6C:91:8F
X509v3 Authority Key Identifier:
keyid:A4:F8:43:60:03:D3:76:02:02:6B:65:53:17:55:CA:8F:CD:31:BE:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pPhDYAPTdgICa2VTF1XKj80xvtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/yuF5BMej9qUytPdul1-AaXJskY8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/515608-5012-4a40-b324-27bf83cded6b/1/pPhDYAPTdgICa2VTF1XKj80xvtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.109.208.0/20
Signature Algorithm: sha256WithRSAEncryption
9e:c4:d9:c0:28:82:3c:a9:29:4e:60:b0:58:ff:c8:27:fa:a7:
ee:01:41:a7:f0:70:9d:67:f8:87:7a:83:49:d7:4a:69:a1:08:
2f:e3:bf:12:0c:66:d2:35:79:32:79:4f:ec:0d:ef:3f:e8:81:
69:70:86:7b:50:db:d8:a6:2d:fd:ee:79:ac:2d:9a:23:78:9f:
86:b3:d3:8e:d7:3e:17:1d:a2:4b:a2:a9:63:f7:31:7b:e8:be:
d1:cc:f2:23:66:5b:ff:10:37:1a:81:7f:49:ce:1a:43:35:43:
de:64:1f:15:1b:6e:09:e9:7b:0f:67:51:b0:e5:d5:58:e3:bb:
47:24:f7:7a:ea:c3:49:e1:f3:76:6a:97:6d:c6:4a:e4:94:32:
18:97:c9:56:48:e1:e8:44:9f:e3:67:df:5a:29:f1:50:fd:18:
54:f7:05:dd:53:20:de:e9:bc:35:f8:4c:75:07:a6:6b:6e:4f:
93:97:c9:73:69:51:d8:f8:2f:36:4a:22:5a:ea:bb:c2:e4:d3:
07:26:2f:f0:ec:51:b1:d9:7f:55:f2:d9:38:88:a3:3b:2e:3c:
18:13:66:1f:56:5d:62:16:4b:f9:55:e2:b0:a2:bc:73:70:f6:
65:96:35:f4:bf:b2:a5:c5:7e:7c:68:46:3f:fe:0d:03:dd:3d:
63:51:72:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:25 2024 by rpki-client on console-ams.rpki-client.org