Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/YLqv7-HSBrbBKkunqKPlwMjDWeU.roa
File: YLqv7-HSBrbBKkunqKPlwMjDWeU.roa (raw, json)
Hash identifier: CryRzUrS65ApxVIKyhIBDf03IEsgjFhZ7oROBD/D/+g=
Subject key identifier: 60:BA:AF:EF:E1:D2:06:B6:C1:2A:4B:A7:A8:A3:E5:C0:C8:C3:59:E5
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018B94D396138238452B414BD1839964CE42
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/YLqv7-HSBrbBKkunqKPlwMjDWeU.roa
Signing time: Fri 03 Nov 2023 10:56:16 +0000
ROA not before: Fri 03 Nov 2023 10:56:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216156
IP address blocks: 87.121.84.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 23 Nov 2023 07:25:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:94:d3:96:13:82:38:45:2b:41:4b:d1:83:99:64:ce:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Nov 3 10:56:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=60baafefe1d206b6c12a4ba7a8a3e5c0c8c359e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ff:60:4e:bb:98:a4:5c:57:51:b8:bf:46:a8:
bd:23:4b:d5:28:c2:35:ae:f5:df:6d:e0:2e:81:34:
54:19:7e:bd:43:e6:25:d9:7b:53:7f:b2:c9:c5:de:
4f:58:ff:bb:7c:2e:2b:00:c2:93:78:9a:55:1e:7e:
51:2a:29:60:8c:9e:ad:a6:5b:52:dc:56:fd:8e:48:
d8:6f:da:8a:45:bf:59:29:af:a2:53:c3:5f:45:ca:
ff:f0:1a:6d:7a:e6:f8:c5:f5:e9:03:0a:f5:be:2b:
5b:b0:4a:5f:9f:53:01:52:a6:c5:0e:5a:83:a2:90:
be:0d:1c:80:63:42:96:88:07:95:b6:0f:8c:2d:87:
f6:bf:38:13:94:1c:33:c5:bd:9e:ea:1e:bd:58:25:
91:bd:13:ab:62:02:67:a5:05:b1:38:d7:20:fc:05:
2a:66:18:93:00:10:85:fc:cb:f3:7a:f1:c9:3a:98:
b8:4f:30:50:02:de:0c:91:e0:a7:61:c6:1c:f0:12:
09:ca:08:bd:b7:b8:45:83:13:3c:da:45:bf:6e:7c:
44:86:9d:be:87:fa:b8:32:0e:0e:a0:0a:70:43:a8:
24:3c:e8:c8:37:6c:e5:43:83:17:d0:81:ce:57:3b:
0c:50:ae:fe:51:95:23:64:f0:6f:79:22:7a:dd:a2:
f1:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:BA:AF:EF:E1:D2:06:B6:C1:2A:4B:A7:A8:A3:E5:C0:C8:C3:59:E5
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/YLqv7-HSBrbBKkunqKPlwMjDWeU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.121.84.0/23
Signature Algorithm: sha256WithRSAEncryption
43:02:74:71:13:b6:7d:b7:b6:a3:6d:ef:5d:a0:bf:08:db:dc:
45:16:9c:83:dc:d7:91:08:84:58:92:f4:21:03:32:ed:b5:f4:
2d:e8:2b:01:f0:63:70:48:93:8f:0e:da:39:c5:01:0d:10:3b:
8c:dc:a1:8d:99:7f:4c:b4:f4:00:3c:0d:33:2e:cc:28:da:6e:
f3:8f:c8:29:c7:c8:45:79:29:36:ee:90:01:11:e5:02:66:db:
a6:3e:f7:86:8c:d7:55:be:c0:28:9b:70:03:64:00:53:91:a0:
ae:4e:42:25:3a:b2:b1:f4:54:40:6b:a1:90:f3:46:6b:e1:93:
1c:6e:01:3b:e5:d1:7d:f2:1e:fb:ea:52:16:ff:c9:a6:e9:a7:
b1:8f:d7:72:ff:30:98:a8:d1:02:03:9a:d7:9c:eb:e7:5a:25:
8e:de:e3:39:ef:62:5a:68:c5:18:82:39:b2:24:74:48:36:75:
e0:2a:25:52:c9:24:e1:69:fc:30:25:88:33:57:c3:31:6c:2a:
cf:f2:dd:47:3b:b9:e7:03:c1:71:12:e6:67:6f:53:56:75:58:
e1:57:cd:f6:96:ec:6f:92:22:9f:86:69:23:aa:78:66:0b:95:
5b:09:30:74:36:43:24:82:0d:4f:aa:c7:2f:92:7f:35:56:00:
e9:f3:f7:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:13 2024 by rpki-client on console-fra.rpki-client.org