Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/b31586-3566-47b0-95cc-144d7473ea59/1/ysf2z0V4O42KYtDsrvgq7e-1zkk.roa
File: ysf2z0V4O42KYtDsrvgq7e-1zkk.roa (raw, json)
Hash identifier: MIuUvciLw0lYR/CtGIWoYILefpmyRmsvNNno8lJkAjw=
Subject key identifier: CA:C7:F6:CF:45:78:3B:8D:8A:62:D0:EC:AE:F8:2A:ED:EF:B5:CE:49
Certificate issuer: /CN=19b390b62d09950d500cd6bbbd78d0390560ec42
Certificate serial: 0193278C5AD53DB876947CB9E616BD6CF1D6
Authority key identifier: 19:B3:90:B6:2D:09:95:0D:50:0C:D6:BB:BD:78:D0:39:05:60:EC:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GbOQti0JlQ1QDNa7vXjQOQVg7EI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/b31586-3566-47b0-95cc-144d7473ea59/1/ysf2z0V4O42KYtDsrvgq7e-1zkk.roa
Signing time: Wed 13 Nov 2024 22:02:09 +0000
ROA not before: Wed 13 Nov 2024 22:02:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7029
IP address blocks: 185.133.242.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 03:48:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:27:8c:5a:d5:3d:b8:76:94:7c:b9:e6:16:bd:6c:f1:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19b390b62d09950d500cd6bbbd78d0390560ec42
Validity
Not Before: Nov 13 22:02:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cac7f6cf45783b8d8a62d0ecaef82aedefb5ce49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:61:9d:28:04:7f:35:13:e2:78:0f:00:6f:10:
3b:85:9e:6a:92:4e:00:9f:1f:57:96:51:52:88:c8:
cd:2f:7a:1f:1a:8d:ac:23:45:e7:fe:7f:fb:1f:d3:
3e:53:e7:02:1a:31:c8:b3:6b:96:8e:4a:97:9a:2d:
29:70:a7:b4:34:88:28:a8:78:05:0a:bb:64:c4:a4:
cd:ed:58:35:92:4b:e6:dd:ba:b6:3c:76:99:fd:35:
41:9e:35:48:0b:55:24:2c:11:d4:e2:42:5e:53:c1:
aa:f6:ab:ae:60:c9:18:4a:89:4f:fe:44:85:4a:ce:
d2:18:d9:57:cb:a2:d6:3d:51:0e:a1:72:ef:e5:fd:
90:87:5e:95:a9:75:79:d4:27:77:c3:f1:b5:11:89:
26:6c:29:97:7d:3b:de:6c:01:14:87:92:1f:02:dc:
ee:99:0a:09:cf:8c:5e:c7:3b:0f:76:f3:52:b9:0a:
06:bf:b1:cc:84:51:be:89:cb:73:f8:72:df:65:20:
7f:0e:e0:9e:ae:c1:71:a3:38:a3:62:e1:a1:44:ef:
72:10:e1:0d:4c:a4:14:d6:6c:97:93:d7:10:84:2d:
8f:44:3b:f6:25:e2:75:1c:2e:8f:72:7f:85:f9:c4:
eb:2d:55:6e:2b:81:02:99:34:63:ce:84:87:64:75:
62:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:C7:F6:CF:45:78:3B:8D:8A:62:D0:EC:AE:F8:2A:ED:EF:B5:CE:49
X509v3 Authority Key Identifier:
keyid:19:B3:90:B6:2D:09:95:0D:50:0C:D6:BB:BD:78:D0:39:05:60:EC:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GbOQti0JlQ1QDNa7vXjQOQVg7EI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/b31586-3566-47b0-95cc-144d7473ea59/1/ysf2z0V4O42KYtDsrvgq7e-1zkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/b31586-3566-47b0-95cc-144d7473ea59/1/GbOQti0JlQ1QDNa7vXjQOQVg7EI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.133.242.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:24:13:b3:2b:cc:2f:32:52:cd:62:18:f8:b4:d4:04:27:c2:
b6:cd:4f:7e:4a:b2:ff:e1:5f:4c:1c:76:40:c6:49:e2:75:51:
dd:0b:45:9c:7a:0c:19:9c:8e:e3:46:d9:ca:be:3a:2e:37:c9:
4e:09:e5:c8:20:4a:47:ad:e5:a3:6b:d4:f3:a2:83:d2:fc:c5:
7b:f3:3a:41:cc:aa:4f:ed:87:6b:20:18:ef:51:09:e3:02:df:
51:dd:28:7b:a4:8f:1b:16:d2:39:ba:0b:ed:69:22:e8:ef:35:
42:44:c8:0f:b3:cd:79:d8:04:7d:f6:54:87:00:69:58:f9:76:
ee:6c:57:d4:e2:18:15:26:43:d7:fa:64:ff:79:77:7b:05:58:
96:33:d4:79:1a:3b:e4:60:5e:32:bc:22:b6:fd:95:74:78:10:
1c:6d:63:72:03:b1:04:c7:fd:88:3a:d8:b6:70:ec:ef:51:39:
d8:49:69:3a:4c:15:e2:64:7a:59:0f:48:0b:8a:2a:20:43:eb:
be:7e:94:78:bb:e9:c0:02:1c:fd:c8:57:d9:ba:35:b6:e0:80:
aa:f1:e6:71:30:22:fc:49:09:ee:db:98:82:33:74:01:a6:d0:
07:13:11:d6:a1:38:f0:46:0b:b7:71:a6:b0:0e:0e:3e:01:14:
93:b8:29:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:08:39 2025 by rpki-client