Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/YOkkVj-RYp-VXjOEGyWR0y0FEmY.roa
File: YOkkVj-RYp-VXjOEGyWR0y0FEmY.roa (raw, json)
Hash identifier: ciu8yHL1qciJeLJ3FTWhvFf1Is6bP569eE4sLb6OTTg=
Subject key identifier: 60:E9:24:56:3F:91:62:9F:95:5E:33:84:1B:25:91:D3:2D:05:12:66
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01856F66E8CD00E5913637C8B0417E0BEC3B
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/YOkkVj-RYp-VXjOEGyWR0y0FEmY.roa
Signing time: Sun 01 Jan 2023 22:14:53 +0000
ROA not before: Sun 01 Jan 2023 22:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6939
IP address blocks: 212.193.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Jan 2023 07:06:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:66:e8:cd:00:e5:91:36:37:c8:b0:41:7e:0b:ec:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 1 22:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=60e924563f91629f955e33841b2591d32d051266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:df:f5:40:58:e5:6b:33:d1:86:81:84:52:a5:
42:a1:28:8a:32:29:fb:8b:f9:1e:74:a1:cd:6c:1f:
f1:74:de:dd:e8:3e:1b:8d:78:0a:5c:41:29:08:b9:
c9:56:0f:67:26:83:e9:88:e2:c1:18:5d:3d:b5:90:
a3:65:1a:d4:6c:e2:c0:53:eb:c4:5c:97:0a:be:42:
0c:0f:5a:07:be:ed:a9:ca:71:05:2a:cc:77:54:57:
e2:76:e9:89:5d:63:d7:10:bd:3f:d9:c0:97:f8:55:
10:26:15:26:f7:bf:f4:db:8f:54:44:0e:bc:8d:0a:
d0:9b:d4:49:5f:66:48:94:e2:73:b7:3a:a7:00:01:
79:7f:5b:a9:fc:9d:39:c7:0c:43:51:f6:e6:aa:d1:
f6:2c:7b:86:f8:92:eb:85:c6:5f:bc:83:78:f1:f6:
2f:fa:63:28:f6:0d:35:f3:75:d5:e9:76:b2:05:00:
eb:69:0d:ef:d0:fc:c2:16:7c:31:bf:58:8d:39:14:
04:c9:39:f4:b2:bf:c3:7f:e8:0e:fc:11:64:59:47:
7c:da:f8:e6:b3:b6:04:9e:38:50:67:3c:4d:85:2b:
1c:b7:63:a8:a7:c9:ba:a6:22:15:6e:1a:4c:9b:b5:
c5:f3:ce:ad:a4:18:98:78:a0:eb:82:c7:9b:8e:6a:
58:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:E9:24:56:3F:91:62:9F:95:5E:33:84:1B:25:91:D3:2D:05:12:66
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/YOkkVj-RYp-VXjOEGyWR0y0FEmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.193.9.0/24
Signature Algorithm: sha256WithRSAEncryption
13:88:33:56:1b:71:7f:d1:89:a1:86:4c:b0:82:1b:49:bd:db:
c2:e5:9e:fc:4d:40:f1:ff:8e:c3:40:f2:c4:50:12:f8:8a:ee:
36:d1:f9:47:e5:3c:cd:15:a9:93:55:3f:7f:2e:00:0c:02:81:
9f:73:ed:6d:db:54:6f:4e:56:50:de:a9:c3:d1:ca:63:23:8a:
76:22:67:65:c5:7a:2f:bf:13:a3:83:7d:e4:70:2b:00:65:34:
f8:a7:f7:e8:c6:38:0e:92:50:20:6a:59:e5:0e:8b:54:f7:d8:
b1:b8:56:cf:5d:09:35:a2:e8:a0:ba:72:5e:ec:a7:f8:38:4c:
62:9b:9f:0f:68:15:cd:01:de:24:c8:09:11:17:1b:b8:5e:ff:
ce:dc:e1:3f:b2:d4:74:f6:1a:e9:1b:8b:9d:b2:fb:e1:e8:ca:
e6:64:20:20:70:cd:35:2e:35:18:b4:5b:cd:87:f8:71:0b:02:
7e:e2:ea:78:89:35:ef:ac:f3:6e:36:9b:66:4d:d2:4f:d7:ea:
20:3d:5a:7f:d8:32:30:07:27:1a:4f:d2:21:d8:47:ce:72:73:
48:6b:d2:fa:f4:46:b6:ad:72:3c:ea:49:8a:85:6d:32:e2:de:
c5:32:35:57:e4:b7:2a:30:f5:54:51:4b:99:b3:f6:05:c4:0c:
c5:97:23:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:19 2024 by rpki-client on console-fra.rpki-client.org