Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/yavoFAAs6Tjauix1MTglK0qcPEc.roa
File: yavoFAAs6Tjauix1MTglK0qcPEc.roa (raw, json)
Hash identifier: wbWpQQR3pizBVFs4wpI8yyQYjOXiN9OAMsaMBUpJ7vc=
Subject key identifier: C9:AB:E8:14:00:2C:E9:38:DA:BA:2C:75:31:38:25:2B:4A:9C:3C:47
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018CCA2A6E26A6F57FAC736AB9B312E5A21E
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/yavoFAAs6Tjauix1MTglK0qcPEc.roa
Signing time: Tue 02 Jan 2024 12:33:47 +0000
ROA not before: Tue 02 Jan 2024 12:33:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9002
IP address blocks: 193.124.92.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 May 2024 11:02:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:6e:26:a6:f5:7f:ac:73:6a:b9:b3:12:e5:a2:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 2 12:33:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c9abe814002ce938daba2c753138252b4a9c3c47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:25:66:32:11:6d:74:d7:53:3f:c1:62:ea:8c:
ef:10:72:3b:53:3e:8d:4c:c6:fd:45:c6:ba:3d:ff:
ef:2f:b2:37:c3:ae:54:c7:a7:cd:69:0f:b5:dc:e7:
54:14:9a:c5:a5:c1:23:9a:d4:2d:c9:4b:c5:0b:f3:
b2:81:a3:72:e4:db:e0:22:b4:9e:f1:3f:ce:b5:66:
2a:ed:81:cf:fa:4f:87:74:c5:5d:24:c8:96:4e:2c:
c2:4b:b0:0a:95:cd:53:ee:f9:31:cd:f1:54:b2:7d:
88:e6:92:95:4d:9e:dc:8a:f5:a0:b8:ac:eb:4e:4c:
06:59:31:74:0d:a9:7e:7c:ba:9f:67:b0:46:39:0d:
3e:28:52:96:c2:ac:11:18:4e:9d:ff:66:90:65:42:
05:4e:b5:bf:9e:e4:51:62:ab:a6:3b:ea:27:81:e6:
86:1c:df:c0:19:21:fb:02:ed:17:72:2c:0a:68:17:
66:9a:63:39:c9:6c:a8:98:4a:eb:59:d7:12:96:c7:
a3:1c:40:70:cb:3d:e8:f3:e5:37:35:fc:c7:2a:ee:
9d:3f:33:96:6d:82:42:6c:5f:a2:9b:83:85:27:b3:
2d:6f:39:2c:cb:26:bc:e0:2a:db:17:1a:a5:95:82:
66:f8:d0:ff:25:5d:ca:56:3e:3e:f7:8e:60:17:7f:
cc:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:AB:E8:14:00:2C:E9:38:DA:BA:2C:75:31:38:25:2B:4A:9C:3C:47
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/yavoFAAs6Tjauix1MTglK0qcPEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.124.92.0/24
Signature Algorithm: sha256WithRSAEncryption
56:f4:8f:2d:97:04:f5:b7:57:32:2f:b5:e5:7d:38:0d:c4:a4:
19:f6:25:60:15:8f:fc:60:1b:db:ad:b6:07:e8:2e:51:22:c4:
f4:83:6d:8f:1c:2e:c5:b0:1c:e0:ca:59:7e:2b:dc:3b:3d:dc:
5d:52:b3:4e:e8:21:e8:06:9e:35:e4:12:de:6a:d7:18:03:8e:
02:36:84:71:9a:fe:ef:91:1e:45:f4:8c:e3:f5:5d:ca:a7:ee:
2a:9d:11:60:a8:31:56:73:ac:2b:88:62:bf:0f:05:a7:ad:e7:
b9:ef:bd:2c:46:43:01:a1:da:3d:1b:3a:4a:54:e5:a3:f9:84:
6c:c2:0e:f2:89:e1:53:48:de:0c:81:42:34:df:c6:16:4b:1b:
ba:53:6e:17:4d:8e:5e:fe:8a:62:b3:f5:0f:b6:06:9a:9d:56:
3e:b0:f4:10:a5:fd:a0:55:fb:24:08:95:2d:0f:76:14:7f:27:
70:4d:34:39:d7:df:b7:ba:27:9f:17:2a:ea:5c:b1:7f:a7:fa:
5a:69:70:20:11:3b:d5:1d:7c:05:07:d6:8b:f3:3a:55:73:36:
04:1c:60:56:f1:63:da:6a:96:bc:0c:c8:2d:9d:a0:5e:38:9d:
e5:c1:37:81:d0:02:0e:2b:4e:85:bb:c1:45:2a:49:e1:8c:11:
eb:95:ec:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 15 14:14:13 2024 by rpki-client on console-fra.rpki-client.org