Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/931278-9c5c-4935-a4f1-a3507dc674c2/1/YI0bz89I0oy1mG3qbQFsnI_LEKA.roa
File: YI0bz89I0oy1mG3qbQFsnI_LEKA.roa (raw, json)
Hash identifier: 5nCDVVz6m00ZpgpuDWEbDMgzzfwKfkNcSJSLqxKUPDQ=
Subject key identifier: 60:8D:1B:CF:CF:48:D2:8C:B5:98:6D:EA:6D:01:6C:9C:8F:CB:10:A0
Certificate issuer: /CN=412abb114f32570c5dd52066259bdc80c98768fd
Certificate serial: 018570F0AF3B8664A18E540DE378DF4EE3A1
Authority key identifier: 41:2A:BB:11:4F:32:57:0C:5D:D5:20:66:25:9B:DC:80:C9:87:68:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QSq7EU8yVwxd1SBmJZvcgMmHaP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/931278-9c5c-4935-a4f1-a3507dc674c2/1/YI0bz89I0oy1mG3qbQFsnI_LEKA.roa
Signing time: Mon 02 Jan 2023 05:24:59 +0000
ROA not before: Mon 02 Jan 2023 05:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197684
IP address blocks: 91.201.202.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:af:3b:86:64:a1:8e:54:0d:e3:78:df:4e:e3:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=412abb114f32570c5dd52066259bdc80c98768fd
Validity
Not Before: Jan 2 05:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=608d1bcfcf48d28cb5986dea6d016c9c8fcb10a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:45:0a:cb:39:fd:0d:a4:68:68:b2:ba:b0:11:
0f:07:a8:37:31:a4:8b:f9:13:94:36:ca:a2:13:0b:
ea:a7:c0:91:cd:15:de:0c:e2:be:40:21:af:38:bc:
48:a7:7a:16:51:3e:74:63:4a:7a:1f:e3:73:5e:92:
c0:0e:cd:2e:bd:d3:42:01:31:10:73:f4:84:c8:c0:
5c:ca:2c:46:0d:1d:5b:ae:9b:db:0f:d7:d3:ef:4c:
19:65:15:70:ab:2c:fd:d8:5e:e9:47:5d:ac:81:0e:
6c:ca:07:eb:f0:01:6e:3a:6e:96:af:80:ce:08:a0:
08:05:1a:21:c5:3a:d1:b3:b0:4c:56:2f:d3:2f:89:
e4:ed:be:75:f2:ec:2c:0f:86:83:c2:09:c0:b2:21:
7b:ea:63:b6:ba:a2:dc:a3:b5:32:ad:4f:c4:a4:49:
67:74:7a:73:4d:b1:a5:f6:fb:55:5b:0d:26:b8:4e:
63:25:a8:04:c0:4f:77:dc:93:2e:4d:4e:ea:82:91:
8c:0a:ee:1d:0c:89:be:47:6b:b3:da:78:11:1e:ce:
61:d6:7e:02:a3:35:ef:f2:47:a7:fe:28:88:c2:dd:
bf:6f:d8:8b:75:e8:c6:d5:54:24:69:3d:88:66:13:
bf:dd:43:13:6a:3e:0a:52:59:39:05:a3:9f:dc:0f:
ff:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:8D:1B:CF:CF:48:D2:8C:B5:98:6D:EA:6D:01:6C:9C:8F:CB:10:A0
X509v3 Authority Key Identifier:
keyid:41:2A:BB:11:4F:32:57:0C:5D:D5:20:66:25:9B:DC:80:C9:87:68:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QSq7EU8yVwxd1SBmJZvcgMmHaP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/931278-9c5c-4935-a4f1-a3507dc674c2/1/YI0bz89I0oy1mG3qbQFsnI_LEKA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/931278-9c5c-4935-a4f1-a3507dc674c2/1/QSq7EU8yVwxd1SBmJZvcgMmHaP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.201.202.0/23
Signature Algorithm: sha256WithRSAEncryption
b5:7a:1e:24:e9:8f:9c:6e:cf:2b:00:7c:5d:d2:68:2f:b4:66:
a8:22:31:39:fe:ba:07:f7:a5:65:08:63:fd:fb:61:1c:49:10:
23:da:1f:98:a8:fe:f2:07:72:c6:5b:57:d7:67:38:6e:32:4e:
50:5e:2b:f0:bd:38:bf:02:f1:3a:42:55:95:bc:d0:93:bc:1e:
40:a7:44:b3:4a:c7:df:1e:f7:af:aa:3a:2f:63:25:26:0f:f2:
32:c2:cb:10:b1:c6:04:86:8c:93:9f:17:0b:33:53:76:49:f7:
88:91:90:e9:d2:13:6c:f6:d8:d7:6c:89:46:42:0c:cd:88:fa:
62:5b:f5:a2:bf:1a:12:d5:06:bf:24:7e:88:ff:5f:a2:55:89:
e6:c0:51:2c:95:87:4e:1c:61:4c:da:2a:4b:db:6c:b2:f7:08:
d8:a9:2f:2a:bf:df:56:35:1f:75:fe:1d:28:62:3f:e9:e0:ae:
68:97:0f:65:b8:c2:2d:32:9a:0b:47:ba:42:22:96:cd:b2:7a:
49:42:90:13:1a:24:f3:d5:da:e7:9d:33:27:32:75:ab:60:64:
7d:d5:21:e9:aa:6f:69:2f:ac:fe:cf:60:b7:1a:47:4e:a7:23:
f9:78:1a:a8:ec:ad:8a:ec:7e:12:51:0d:77:c2:1a:04:74:72:
e2:71:77:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:46 2024 by rpki-client on console-fra.rpki-client.org