Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/yeey6Wt09NcDPmk2ZWtiFvJA504.roa
File: yeey6Wt09NcDPmk2ZWtiFvJA504.roa (raw, json)
Hash identifier: yMrjUFVvN8VCGCl6U+B1KlRX1Lu/TlE5lBtaNFM7SGo=
Subject key identifier: C9:E7:B2:E9:6B:74:F4:D7:03:3E:69:36:65:6B:62:16:F2:40:E7:4E
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0189B0B790666AB8572EA9F1007EDC804042
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/yeey6Wt09NcDPmk2ZWtiFvJA504.roa
Signing time: Tue 01 Aug 2023 10:49:27 +0000
ROA not before: Tue 01 Aug 2023 10:49:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57494
IP address blocks: 195.58.53.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Sep 2023 07:55:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b0:b7:90:66:6a:b8:57:2e:a9:f1:00:7e:dc:80:40:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 1 10:49:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c9e7b2e96b74f4d7033e6936656b6216f240e74e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c4:e4:f2:1a:47:e7:18:90:8c:c7:1c:17:15:
56:ce:6e:b0:a2:33:60:73:da:40:c9:21:79:95:ac:
08:81:2d:ee:28:ae:4e:09:2d:1b:da:8a:1f:18:01:
ca:c7:90:6a:be:b5:3b:7e:5c:62:8e:58:26:26:d1:
49:6d:74:c7:dd:db:3a:c9:3c:91:47:ac:20:c2:d4:
f9:c5:f2:79:dd:3e:5b:8b:10:5a:8d:db:50:90:34:
4a:90:7a:47:de:93:da:b0:c2:1f:82:f0:07:4b:a6:
29:87:30:e3:4b:cb:b1:ce:a0:29:41:bc:45:ec:71:
2a:b4:6f:c4:0e:63:28:66:3d:4e:ff:03:28:a7:d4:
0e:ae:13:68:80:97:23:47:bf:48:8f:41:87:3b:98:
61:81:2a:7a:12:b3:0d:09:32:c3:a4:e8:0d:ef:4b:
3c:c1:a5:5c:be:6e:93:07:46:d7:74:88:2f:8e:a1:
43:e7:c9:25:64:6b:d1:82:7e:4f:1b:16:35:4f:ec:
67:b3:60:08:cf:74:5f:54:b7:b9:0c:64:95:0b:a0:
54:a3:89:0e:17:73:ec:ab:8f:d0:d7:63:97:92:98:
8f:c8:eb:1a:83:8f:59:b4:36:8c:ee:e4:97:25:0f:
b2:d5:77:a6:75:d3:39:49:ef:cc:10:1e:33:67:4f:
27:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:E7:B2:E9:6B:74:F4:D7:03:3E:69:36:65:6B:62:16:F2:40:E7:4E
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/yeey6Wt09NcDPmk2ZWtiFvJA504.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.58.53.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:9e:ea:2b:59:db:8c:24:1c:26:f5:9a:dc:e6:d9:51:9d:84:
18:86:ef:9b:49:34:12:11:2a:2d:ad:be:19:ae:f3:6c:6a:42:
b4:77:a3:00:52:44:3e:25:d3:21:3d:c4:34:02:6c:ae:b3:17:
30:61:be:77:fd:78:c2:d3:86:0d:4c:36:41:5a:25:84:d1:5e:
b0:1e:53:ab:c1:a5:b1:60:42:f8:3a:c3:50:f4:3d:2b:1d:6b:
35:59:d5:3b:65:ac:59:1d:f4:0e:5f:f6:b8:3e:c9:ee:6e:db:
c9:77:e8:9e:0b:b8:4e:46:c0:17:a4:49:99:64:da:30:96:b5:
6d:ec:fe:f8:d8:51:dd:20:4b:1f:e8:01:3b:c7:7b:fc:35:4f:
83:d0:6f:20:a1:7a:ee:b4:49:ba:df:99:74:cd:eb:cd:27:94:
90:e5:3d:47:b0:73:ae:07:09:40:57:50:4c:16:15:79:5e:ab:
c8:b9:f7:22:14:ec:ac:1d:ff:4b:6d:e1:71:6b:32:3e:71:64:
b8:0d:a2:34:a4:ee:8c:b1:f5:06:28:b7:f4:97:d0:4e:93:1a:
f1:6d:1f:d1:b8:41:46:5b:8f:08:18:11:b1:03:44:a8:fe:2e:
97:e6:83:be:00:7e:c1:32:90:ce:d3:26:5a:75:5c:ff:76:df:
9e:0c:57:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:31 2024 by rpki-client on console-fra.rpki-client.org