Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/4377d6-515c-420a-9134-69e337884cc9/1/Y1_hiKYYSyxpox6G20Rpz2gk2hA.roa
File: Y1_hiKYYSyxpox6G20Rpz2gk2hA.roa (raw, json)
Hash identifier: CNb0RQGMB3oYIFMB4um7GBeW5t6aj9xVKq7rC4ItlAw=
Subject key identifier: 63:5F:E1:88:A6:18:4B:2C:69:A3:1E:86:DB:44:69:CF:68:24:DA:10
Certificate issuer: /CN=de92a1ac8910cf5c865de5b0231b09d04e1132f3
Certificate serial: 0185708CD01E3967974CF1759F4C52EB6621
Authority key identifier: DE:92:A1:AC:89:10:CF:5C:86:5D:E5:B0:23:1B:09:D0:4E:11:32:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3pKhrIkQz1yGXeWwIxsJ0E4RMvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/4377d6-515c-420a-9134-69e337884cc9/1/Y1_hiKYYSyxpox6G20Rpz2gk2hA.roa
Signing time: Mon 02 Jan 2023 03:35:54 +0000
ROA not before: Mon 02 Jan 2023 03:35:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210512
IP address blocks: 138.124.186.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:d0:1e:39:67:97:4c:f1:75:9f:4c:52:eb:66:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de92a1ac8910cf5c865de5b0231b09d04e1132f3
Validity
Not Before: Jan 2 03:35:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=635fe188a6184b2c69a31e86db4469cf6824da10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:73:fa:9d:51:e6:4c:a1:09:c0:a1:e2:e8:7d:
e7:47:ca:33:61:6c:ba:93:b2:5a:7c:4a:3f:c5:59:
74:03:ee:30:95:bf:43:c2:75:d7:e4:1b:da:cf:07:
57:29:02:9b:53:69:3f:6c:86:76:f3:5d:f5:36:76:
e8:8f:51:e5:65:ee:e2:e6:2f:59:ff:30:ea:a0:75:
7f:d6:ed:e6:e9:10:b4:f8:98:b5:72:88:3d:fe:7c:
d7:b7:ba:52:fc:45:a5:17:af:a0:1e:02:54:62:bf:
a8:8d:ee:b0:98:a6:c2:0a:5f:55:d2:bc:bb:bb:f3:
b9:fd:ad:4c:50:ea:19:31:2a:0a:84:9a:15:a4:c4:
ec:14:a3:3f:12:8b:38:f5:58:b0:dc:41:4b:dc:dd:
c1:41:04:ce:34:d6:8a:4f:f2:bb:ff:01:40:d0:ce:
56:68:ac:7f:ce:41:0e:24:7a:1b:5c:5e:e2:ff:7e:
39:6b:2c:69:f0:5d:46:cf:5b:e3:3d:85:97:f3:46:
81:ad:8b:cd:15:0e:c4:99:c9:e8:21:2e:d0:af:5b:
f4:27:7b:4a:7d:aa:70:1d:b2:e2:76:22:67:ac:0d:
43:81:e7:69:2a:0f:99:72:83:6f:be:6e:db:4e:7a:
45:23:9f:c3:b4:68:75:82:f3:11:4d:dd:a2:77:1c:
b4:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:5F:E1:88:A6:18:4B:2C:69:A3:1E:86:DB:44:69:CF:68:24:DA:10
X509v3 Authority Key Identifier:
keyid:DE:92:A1:AC:89:10:CF:5C:86:5D:E5:B0:23:1B:09:D0:4E:11:32:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3pKhrIkQz1yGXeWwIxsJ0E4RMvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/4377d6-515c-420a-9134-69e337884cc9/1/Y1_hiKYYSyxpox6G20Rpz2gk2hA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/4377d6-515c-420a-9134-69e337884cc9/1/3pKhrIkQz1yGXeWwIxsJ0E4RMvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.124.186.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:b6:b5:db:c8:b6:7d:30:00:d5:b1:1c:29:6f:42:61:68:31:
7d:5e:90:c6:09:c5:72:88:e4:f3:83:b3:db:00:c2:97:7e:0f:
49:4b:c2:bb:08:8f:34:16:2b:bc:09:6a:d4:75:d9:50:06:7d:
0f:6f:bb:9a:51:1b:6c:79:5f:e1:d7:a7:23:b4:2f:18:c5:18:
9b:7e:ca:ff:80:f7:d6:f5:64:ce:71:cb:00:f6:f5:14:ea:c6:
5a:61:c0:8f:40:dd:87:d5:ac:e3:6f:ec:5a:e2:e1:f7:7c:9a:
cf:6e:a0:34:e5:5d:6a:9e:7b:6b:2f:34:32:f9:5a:01:bb:e7:
52:b3:a3:b5:17:54:89:4e:e0:72:c2:c1:5f:39:d4:1c:27:dd:
e9:b2:b6:70:7e:96:b1:90:51:11:ca:16:19:76:c1:bf:bf:5b:
61:e4:17:96:3a:1b:19:4d:73:aa:06:bb:7f:2e:f4:ab:ea:b2:
47:41:cc:ae:05:95:90:5e:6e:81:57:8a:37:48:4b:f4:5b:31:
05:c9:7c:ae:ff:94:49:79:ed:7c:d3:0b:33:d6:a0:e0:24:60:
82:62:87:2a:d4:27:b6:70:4d:36:e1:32:f9:c4:c5:40:8d:63:
89:a7:45:52:5b:ab:71:b3:45:9c:21:15:8e:3e:7e:3a:81:4b:
13:46:8f:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:45 2024 by rpki-client on console-ams.rpki-client.org