Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/Y51ZkVulH3fRi898fiogak06tXo.roa
File: Y51ZkVulH3fRi898fiogak06tXo.roa (raw, json)
Hash identifier: AhUKf0paHA62OgfqQC/5LURxRZcGxdX45zemBwkPW1c=
Subject key identifier: 63:9D:59:91:5B:A5:1F:77:D1:8B:CF:7C:7E:2A:20:6A:4D:3A:B5:7A
Certificate issuer: /CN=b043e621fe1009701f6366843c0abc41e180c144
Certificate serial: 018572CCCCD0F86AEF628E5ABFF196A4571F
Authority key identifier: B0:43:E6:21:FE:10:09:70:1F:63:66:84:3C:0A:BC:41:E1:80:C1:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/Y51ZkVulH3fRi898fiogak06tXo.roa
Signing time: Mon 02 Jan 2023 14:05:02 +0000
ROA not before: Mon 02 Jan 2023 14:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8708
IP address blocks: 193.111.161.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:cc:cc:d0:f8:6a:ef:62:8e:5a:bf:f1:96:a4:57:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b043e621fe1009701f6366843c0abc41e180c144
Validity
Not Before: Jan 2 14:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=639d59915ba51f77d18bcf7c7e2a206a4d3ab57a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f3:cc:82:46:13:ae:1e:3a:cd:e8:e8:a8:b0:
2e:81:46:ff:ab:45:d1:53:57:e7:10:95:57:0d:4b:
b4:a3:1b:88:3f:ab:c8:6b:c6:7f:c8:3a:06:9b:a4:
eb:85:20:69:be:58:4a:36:c9:bb:16:98:2a:ec:93:
62:82:42:89:49:89:8c:bf:4e:d5:a3:be:4d:c7:d5:
81:79:be:0c:52:bd:aa:ce:96:36:50:a0:17:4c:5f:
c5:83:33:27:18:30:c7:63:96:65:20:19:97:06:d3:
31:9d:33:14:d6:54:eb:77:0b:30:f6:2f:cb:8c:8d:
0b:33:94:9b:c6:89:1d:35:4e:8a:17:52:28:3f:2a:
29:2e:f1:c3:83:8d:63:40:97:e4:fa:4d:c0:36:8e:
19:e3:2c:02:36:e3:ff:f1:99:23:19:23:64:5e:5e:
aa:3f:af:34:87:0d:ab:59:c2:91:ba:1b:49:12:91:
b7:f2:09:f5:b9:8d:c9:c4:10:05:a8:f9:0a:50:3d:
65:fa:36:05:7b:85:97:3a:cb:53:c5:d6:6e:ff:74:
3c:16:00:2b:01:a5:25:a4:f6:67:ad:ca:80:e8:c9:
02:17:98:28:df:be:2a:0f:25:ea:9b:d6:19:f4:9c:
12:57:44:ab:ff:9d:9b:26:09:dd:44:6e:a9:41:57:
d6:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:9D:59:91:5B:A5:1F:77:D1:8B:CF:7C:7E:2A:20:6A:4D:3A:B5:7A
X509v3 Authority Key Identifier:
keyid:B0:43:E6:21:FE:10:09:70:1F:63:66:84:3C:0A:BC:41:E1:80:C1:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/Y51ZkVulH3fRi898fiogak06tXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/395684-c872-4217-b27c-8b5ea6648176/1/sEPmIf4QCXAfY2aEPAq8QeGAwUQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.111.161.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:ba:10:a9:f4:f1:09:93:18:88:4e:61:81:2a:92:9b:27:57:
0c:5f:71:4a:e4:28:6f:f0:56:d7:db:b3:c6:e8:e3:9c:b2:08:
bb:90:51:62:e6:d2:e2:f4:1f:5e:60:45:59:8c:bc:01:25:7d:
3e:75:10:e3:17:a3:1b:4a:c7:95:15:82:1c:70:26:b2:21:57:
21:8b:f5:db:f7:5c:9a:cd:c6:36:62:31:a6:b0:13:80:ab:db:
69:7b:12:53:ad:de:34:c4:2b:fc:97:d3:c8:97:20:5d:e0:6d:
be:23:00:7c:c2:57:58:52:39:22:44:59:4e:d4:0a:a7:f4:db:
cd:b8:4c:a2:6b:9e:8c:67:df:20:54:f9:cd:4c:da:df:71:b6:
d5:69:3f:fb:a9:d4:0e:9e:a9:31:4d:8b:46:b7:86:a4:ce:b0:
ac:bd:e5:9b:82:f5:0c:74:26:c6:a3:aa:05:aa:b3:09:a5:f7:
b9:7d:5b:3d:bf:b6:1b:b7:8d:87:57:3f:4d:29:a9:bc:33:8f:
f2:a0:4c:f1:74:94:7f:48:6f:cd:ee:4a:7a:c9:9e:13:6d:04:
10:f3:1e:f8:87:b2:3c:7b:d0:a8:b5:bd:ac:49:d7:8a:3b:fc:
fe:12:4b:15:1b:7b:17:d5:5f:65:e9:55:a8:09:7c:b2:38:62:
80:f7:3d:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:40:09 2024 by rpki-client on console-ams.rpki-client.org