Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/61025f-43da-437d-b010-cc49e534db00/1/Y_vuvApy5DbtifrULiH6wuynzTM.roa
File: Y_vuvApy5DbtifrULiH6wuynzTM.roa (raw, json)
Hash identifier: d20U1ydui8sveydFEvoU3UHaU5t7TqhaatOaVoAIGpg=
Subject key identifier: 63:FB:EE:BC:0A:72:E4:36:ED:89:FA:D4:2E:21:FA:C2:EC:A7:CD:33
Certificate issuer: /CN=875fc80242d2e69ebd0f22b5e3cc457594ae90ac
Certificate serial: 01856DAF53AF97D8417640A5B93C89EDC2C6
Authority key identifier: 87:5F:C8:02:42:D2:E6:9E:BD:0F:22:B5:E3:CC:45:75:94:AE:90:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h1_IAkLS5p69DyK148xFdZSukKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/61025f-43da-437d-b010-cc49e534db00/1/Y_vuvApy5DbtifrULiH6wuynzTM.roa
Signing time: Sun 01 Jan 2023 14:14:44 +0000
ROA not before: Sun 01 Jan 2023 14:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212808
IP address blocks: 185.175.88.0/24 maxlen: 24
2a10:45c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:af:53:af:97:d8:41:76:40:a5:b9:3c:89:ed:c2:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=875fc80242d2e69ebd0f22b5e3cc457594ae90ac
Validity
Not Before: Jan 1 14:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=63fbeebc0a72e436ed89fad42e21fac2eca7cd33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:97:e5:d8:61:87:8e:6b:11:76:26:fe:30:74:
72:47:bc:96:27:77:2a:3e:fd:09:f6:5e:75:92:16:
19:f2:b1:a8:b6:c6:08:91:c1:3c:f6:a4:2c:a6:e4:
9d:d5:bc:cc:9e:da:01:8a:20:d0:be:65:a9:3d:0d:
47:c7:52:da:ca:fb:9e:65:64:53:a2:1e:6d:25:9d:
ee:a2:61:2b:20:ef:b0:89:e4:55:5b:26:12:f9:f4:
3e:e4:c3:6f:20:61:0d:77:b2:81:7f:46:cd:73:35:
c3:f5:5e:a2:69:fb:bc:c5:4d:de:6e:31:87:41:0b:
3c:59:26:ea:95:9d:a3:10:3d:fd:0d:5c:85:1d:bb:
9b:8b:88:d2:a5:a4:a7:74:ae:54:8b:ce:99:af:cb:
b1:c3:dc:8c:ac:71:1c:02:3e:8b:66:2c:8f:39:94:
95:e7:ee:cf:5d:15:1e:77:d6:7c:cb:13:e7:35:ba:
9f:cf:6d:cd:30:85:1f:0d:63:c5:33:30:9b:29:61:
8f:d9:65:31:00:0c:1e:e5:80:d0:3d:19:ee:fe:aa:
6a:7a:29:a5:11:b0:54:c0:b7:c4:ab:ca:71:ac:12:
fd:7a:82:03:3f:b6:28:cb:4f:47:dc:b8:11:98:3c:
22:79:65:76:2f:89:17:a5:78:3c:a7:10:52:4c:21:
f2:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:FB:EE:BC:0A:72:E4:36:ED:89:FA:D4:2E:21:FA:C2:EC:A7:CD:33
X509v3 Authority Key Identifier:
keyid:87:5F:C8:02:42:D2:E6:9E:BD:0F:22:B5:E3:CC:45:75:94:AE:90:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h1_IAkLS5p69DyK148xFdZSukKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/61025f-43da-437d-b010-cc49e534db00/1/Y_vuvApy5DbtifrULiH6wuynzTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/61025f-43da-437d-b010-cc49e534db00/1/h1_IAkLS5p69DyK148xFdZSukKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.175.88.0/24
IPv6:
2a10:45c0::/32
Signature Algorithm: sha256WithRSAEncryption
53:c0:23:b9:85:b5:e2:84:a6:e3:4b:1d:f2:e6:1c:71:1a:98:
bd:32:31:08:fb:a5:cd:89:9a:eb:c9:76:76:0d:1f:69:e1:98:
ac:00:43:d1:d5:63:e4:44:9a:4e:03:98:03:80:4a:79:f4:45:
da:df:86:5f:90:df:87:65:9b:85:4a:f1:f7:80:47:65:68:3e:
97:84:a8:32:1c:fb:70:20:5d:d3:94:6f:c8:b3:01:9d:29:02:
ba:7c:0a:42:35:be:d3:4d:dc:e5:29:7e:62:08:3a:18:e4:49:
94:8c:95:da:b8:e6:59:b9:97:b1:88:08:06:9a:b3:40:25:2f:
e7:3a:bd:dd:e8:84:74:c6:29:1d:ae:2b:7b:2f:18:98:e4:d3:
a6:1f:5b:06:a8:b0:6a:5c:50:56:ba:c9:3f:db:30:44:11:e1:
09:28:d1:3c:70:76:48:25:2a:d0:fc:d1:c9:0f:15:dd:12:5b:
ab:b6:e8:5d:7c:0c:0e:70:37:4e:74:99:dc:61:95:f5:4f:0d:
2a:03:25:1d:39:0c:76:4d:ad:61:0e:86:3c:ed:95:f3:8a:69:
eb:4c:41:b3:18:fd:7d:42:e4:77:e8:74:6f:b4:3d:83:6b:bd:
ec:71:d1:22:f5:2c:4e:30:2b:c0:97:40:2d:3e:92:a6:dd:18:
5b:a8:d4:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:58 2024 by rpki-client on console-ams.rpki-client.org