Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/yyTsr5iFcxrkhU-Wup7ZIymhi1s.roa
File: yyTsr5iFcxrkhU-Wup7ZIymhi1s.roa (raw, json)
Hash identifier: CQQUAzNZaUIkvBn2m/s4TpuVYABSRX1P/y5VTp5hPp0=
Subject key identifier: CB:24:EC:AF:98:85:73:1A:E4:85:4F:96:BA:9E:D9:23:29:A1:8B:5B
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01905978AC164E34C4E10BABEBE501A4C3E4
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/yyTsr5iFcxrkhU-Wup7ZIymhi1s.roa
Signing time: Thu 27 Jun 2024 11:33:18 +0000
ROA not before: Thu 27 Jun 2024 11:33:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215261
IP address blocks: 212.73.137.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:50:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:59:78:ac:16:4e:34:c4:e1:0b:ab:eb:e5:01:a4:c3:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jun 27 11:33:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cb24ecaf9885731ae4854f96ba9ed92329a18b5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d3:11:3b:4e:df:a9:2c:3b:31:60:18:c3:b4:
45:d8:52:fd:c0:d2:a5:83:f5:68:81:14:cf:6b:bd:
63:41:55:ec:7e:03:0c:4a:04:ac:7a:7f:c4:d6:d4:
51:7d:1e:95:a8:5d:38:5f:06:f3:e2:c9:b7:ff:24:
5f:ee:4f:58:a7:d9:7c:63:67:e3:f6:f2:27:83:94:
b2:07:d5:48:eb:ce:7b:c1:92:af:a3:b0:b3:10:4e:
52:77:9c:e4:f5:a6:a2:fd:5e:e8:13:90:8d:f8:8f:
f3:d7:3d:29:78:43:2c:1e:44:a8:a0:d9:80:e3:e0:
40:c1:f1:89:1c:6c:5f:4a:5f:f5:2d:a4:8d:ec:8c:
47:d7:f8:76:68:c6:01:15:d1:df:09:23:5c:8a:d6:
28:f1:86:c4:fb:64:1b:6e:14:2b:fd:3f:64:1a:cc:
cb:88:12:82:47:b0:9d:2b:5e:e1:ce:87:b6:c4:c3:
cb:c0:fb:fc:d8:99:8a:7f:49:9b:51:8f:2d:62:a3:
ce:45:b5:75:16:55:28:55:ea:af:11:3c:22:9d:85:
c7:96:26:19:8b:0a:5e:b1:19:bf:00:dd:1f:5a:03:
c6:fa:7e:69:ad:4c:14:48:f0:3c:44:bd:0b:43:b1:
df:60:26:81:0f:13:63:ab:05:ef:bd:d8:90:39:90:
b0:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:24:EC:AF:98:85:73:1A:E4:85:4F:96:BA:9E:D9:23:29:A1:8B:5B
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/yyTsr5iFcxrkhU-Wup7ZIymhi1s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.73.137.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:c8:43:67:a7:76:e8:06:d5:21:cf:e9:c8:8d:a8:aa:52:60:
a5:a3:72:96:e5:60:ea:b4:96:72:64:88:01:f3:a7:cf:cd:10:
2a:ad:f1:12:65:d6:32:1e:1b:47:12:56:6c:c6:8b:87:de:e0:
cd:3f:a6:d8:bd:66:90:4c:c1:3e:a7:84:b8:a9:26:c1:b1:12:
b8:df:97:81:26:f3:dd:01:a1:24:b0:43:7a:fa:18:51:54:f3:
0d:d6:56:c7:ab:a8:a1:b7:8a:c7:15:e0:fa:74:5e:72:98:ce:
96:cd:e9:d1:40:70:60:7c:3f:2c:5e:22:24:0a:ba:63:25:e0:
d0:21:c0:eb:86:4c:d4:71:f6:eb:af:36:65:a2:8b:8c:fa:02:
ce:1f:0a:af:71:77:47:31:53:c2:8c:93:90:21:93:70:19:c0:
5d:78:fd:d8:78:4d:e7:02:b8:7a:77:4d:72:b8:2e:87:7c:c7:
f3:70:90:12:b7:1d:8f:df:a0:6e:25:18:cc:6c:9f:6b:32:7f:
6e:8b:7d:7d:a4:28:39:d1:91:1f:b4:1a:5c:fc:22:f2:27:22:
62:ab:d0:7b:62:e0:c8:51:c0:ec:7b:61:46:b3:e9:b0:d5:00:
55:ef:39:d5:b4:46:ed:e9:01:b0:14:63:d2:20:a8:93:da:7f:
28:fe:42:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:37:44 2025 by rpki-client