Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/9b240c-0d28-4690-89b4-1a8a4a38a805/1/YTOzaDNUPUYcWKQMLIWPO2fEpYI.roa
File: YTOzaDNUPUYcWKQMLIWPO2fEpYI.roa (raw, json)
Hash identifier: XsD0HQW3HQlSj1eI/pwUc3Xcx7B9DpnuFQ3iqkX1hQ0=
Subject key identifier: 61:33:B3:68:33:54:3D:46:1C:58:A4:0C:2C:85:8F:3B:67:C4:A5:82
Certificate issuer: /CN=747c2e3a51489f1b01b4371758099bc85dd90f07
Certificate serial: 0187C2E2457BC0A978627570116BF130BCF1
Authority key identifier: 74:7C:2E:3A:51:48:9F:1B:01:B4:37:17:58:09:9B:C8:5D:D9:0F:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dHwuOlFInxsBtDcXWAmbyF3ZDwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/9b240c-0d28-4690-89b4-1a8a4a38a805/1/YTOzaDNUPUYcWKQMLIWPO2fEpYI.roa
Signing time: Thu 27 Apr 2023 13:23:41 +0000
ROA not before: Thu 27 Apr 2023 13:23:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 185.74.222.0/24 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c2:e2:45:7b:c0:a9:78:62:75:70:11:6b:f1:30:bc:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=747c2e3a51489f1b01b4371758099bc85dd90f07
Validity
Not Before: Apr 27 13:23:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6133b36833543d461c58a40c2c858f3b67c4a582
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:5e:7b:7f:3a:cb:d4:44:7f:c7:21:d9:00:56:
ee:d7:2f:cd:bc:2d:2b:b9:98:20:47:a4:ff:a0:af:
3c:bc:c3:bb:c3:e8:22:b3:3a:76:47:ce:a2:b8:a0:
d9:c2:98:fa:18:04:2c:9f:69:b5:8b:11:e9:47:34:
12:39:19:98:bb:52:8c:05:d1:1e:35:a6:c6:3e:09:
24:e7:2d:73:fd:c5:1f:17:80:87:ac:12:65:b3:ec:
26:64:b1:24:1c:67:3a:4e:26:f8:e9:4f:20:7b:03:
ed:82:13:e8:b2:aa:97:31:89:bc:fe:20:a3:4d:b8:
b7:88:4d:9b:71:85:19:27:d6:ac:ff:20:83:7a:82:
9e:61:b9:d3:83:67:6a:45:25:bf:e4:7b:77:f3:84:
a8:e0:eb:c3:a8:de:c7:0b:bc:e4:fc:26:95:03:73:
ba:fd:9e:dd:b4:ca:80:be:b0:01:18:83:16:0a:ba:
73:a9:65:17:68:af:42:39:b5:94:c0:97:22:37:77:
06:36:ad:f0:06:cf:d5:2a:50:0a:ec:21:5e:cc:82:
3d:c2:16:08:30:7c:5a:e9:b0:9b:1c:78:23:65:bb:
bd:04:20:28:4c:fc:fe:c2:ea:80:6a:b9:35:ff:04:
06:00:94:55:a4:18:e3:75:61:b7:a2:10:7b:f6:87:
41:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:33:B3:68:33:54:3D:46:1C:58:A4:0C:2C:85:8F:3B:67:C4:A5:82
X509v3 Authority Key Identifier:
keyid:74:7C:2E:3A:51:48:9F:1B:01:B4:37:17:58:09:9B:C8:5D:D9:0F:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dHwuOlFInxsBtDcXWAmbyF3ZDwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/9b240c-0d28-4690-89b4-1a8a4a38a805/1/YTOzaDNUPUYcWKQMLIWPO2fEpYI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/9b240c-0d28-4690-89b4-1a8a4a38a805/1/dHwuOlFInxsBtDcXWAmbyF3ZDwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.74.222.0/24
Signature Algorithm: sha256WithRSAEncryption
08:e7:36:5e:2c:97:6a:5a:98:96:94:e9:de:bc:94:6f:f1:f0:
69:a1:41:6a:b4:fc:52:60:02:22:27:1d:b0:c8:82:4e:3c:76:
91:d3:74:bc:5f:15:af:62:79:45:63:bd:7a:1c:34:11:fd:af:
1d:9a:f7:0a:74:00:dc:28:d0:c1:31:01:bd:f6:1e:00:19:4c:
97:f9:12:f4:6c:e0:74:19:25:10:89:8a:72:18:97:a1:8a:ff:
28:38:c4:12:ab:81:65:79:e9:4e:09:09:f6:1f:89:c3:e5:00:
3b:82:cd:a7:85:a5:83:ce:53:11:90:f7:84:6e:2f:b6:d2:b1:
a7:12:8f:54:08:52:67:c2:04:ca:31:ae:d8:fd:e4:00:ac:17:
12:4b:93:b5:de:b1:a6:5b:9c:74:9b:7d:12:e1:ed:7e:da:e4:
d0:e0:43:01:8d:c6:82:d9:4b:da:bc:eb:0c:ed:81:e6:52:a2:
0d:26:8b:25:ec:66:77:7e:50:a0:51:11:c2:88:ca:f6:25:7e:
ee:45:eb:2a:68:d7:b4:2f:9a:2f:85:1b:68:73:c5:d3:23:c1:
f1:cc:60:09:6a:dc:a1:01:02:30:82:24:99:51:8d:bb:f3:1c:
69:39:1d:9c:0f:5b:41:41:12:63:a9:19:de:6a:ac:24:93:82:
a4:ac:5f:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:22 2024 by rpki-client on console-fra.rpki-client.org