Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/YuXZ1A_4dsDzVa9FFjOC8bYgBw0.roa
File: YuXZ1A_4dsDzVa9FFjOC8bYgBw0.roa (raw, json)
Hash identifier: QhgMxpmFjS6xNL2FD27fNearV9ysmIf9Hx/9xHPjL1I=
Subject key identifier: 62:E5:D9:D4:0F:F8:76:C0:F3:55:AF:45:16:33:82:F1:B6:20:07:0D
Certificate issuer: /CN=e85b83c87c4a3d8315025379f72987520bb5d046
Certificate serial: 018A4593204C910A63DC05B179C9DAFBBFE7
Authority key identifier: E8:5B:83:C8:7C:4A:3D:83:15:02:53:79:F7:29:87:52:0B:B5:D0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/YuXZ1A_4dsDzVa9FFjOC8bYgBw0.roa
Signing time: Wed 30 Aug 2023 08:33:04 +0000
ROA not before: Wed 30 Aug 2023 08:33:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5065
IP address blocks: 188.64.176.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:45:93:20:4c:91:0a:63:dc:05:b1:79:c9:da:fb:bf:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e85b83c87c4a3d8315025379f72987520bb5d046
Validity
Not Before: Aug 30 08:33:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62e5d9d40ff876c0f355af45163382f1b620070d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:df:14:a1:68:97:06:59:a4:63:8c:e4:b0:d9:
27:db:66:46:2f:da:c5:94:ea:a9:67:54:99:ad:05:
e3:a0:be:8d:ee:79:d2:8c:cb:ec:84:bb:07:f9:60:
19:33:ff:52:eb:e5:a4:62:4d:0f:03:8b:54:6a:4f:
e0:fa:6e:22:b7:d8:95:e0:81:83:a3:1d:af:b5:f9:
fe:46:ce:61:4f:30:25:06:b9:69:6f:53:91:28:b0:
92:b9:12:bf:46:53:10:a8:41:ef:fa:99:01:02:01:
1f:b2:3e:db:02:4f:83:1a:2b:bd:a5:c2:ad:4a:d6:
24:6b:ca:0f:6b:3d:aa:1e:00:b1:d2:8f:65:83:2d:
94:a3:74:9e:e0:09:8e:57:9d:91:51:e1:a2:ef:d1:
f5:c4:b3:94:1c:e7:64:c0:23:d7:66:d1:22:f5:9f:
2f:36:cc:02:d0:71:be:f4:97:95:cd:68:b0:7b:6e:
fa:6a:55:92:7b:60:a5:37:35:12:27:38:9c:43:1c:
da:4c:31:e6:0b:23:0e:dc:5f:a2:ec:ef:17:26:9c:
24:c4:6f:e6:9c:0f:e7:a6:7c:f4:df:28:4d:41:f8:
2e:c3:38:6a:28:bb:68:eb:12:e3:f4:fc:ee:64:34:
46:16:c4:32:f7:de:ed:d8:fd:18:be:42:a7:82:5e:
9d:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:E5:D9:D4:0F:F8:76:C0:F3:55:AF:45:16:33:82:F1:B6:20:07:0D
X509v3 Authority Key Identifier:
keyid:E8:5B:83:C8:7C:4A:3D:83:15:02:53:79:F7:29:87:52:0B:B5:D0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6FuDyHxKPYMVAlN59ymHUgu10EY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/YuXZ1A_4dsDzVa9FFjOC8bYgBw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3394e3-736e-4879-b8db-89aaea36285e/1/6FuDyHxKPYMVAlN59ymHUgu10EY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.64.176.0/21
Signature Algorithm: sha256WithRSAEncryption
70:8c:ce:71:b6:b1:50:f0:d5:04:19:2d:13:2b:94:5a:2b:5a:
03:44:88:02:91:3d:5b:e1:ce:a5:8e:d9:95:82:ad:8a:f6:5d:
de:92:d9:7e:fd:ca:23:af:19:04:9e:f8:b2:de:e0:8b:36:d4:
cd:68:c7:e0:e7:16:7e:47:48:c5:78:89:e6:71:1c:c7:f8:f9:
9c:32:4e:b3:ac:a4:73:5c:cf:c7:45:a7:38:92:96:97:c7:23:
34:37:87:eb:50:f7:1b:43:d1:42:a4:77:f7:6a:27:b7:ee:6e:
53:14:b7:a5:61:80:48:ce:80:22:13:5c:62:32:f5:14:a9:0e:
3d:63:0b:10:fe:e7:70:5d:64:91:2f:21:a4:68:25:ca:3b:cb:
e1:f0:d0:24:95:0c:93:86:ef:86:11:31:fb:ba:2b:1b:f1:07:
79:3d:f8:e8:06:47:ed:1b:bd:3f:58:20:72:ac:c5:2a:15:c5:
ac:f9:83:3b:41:64:bc:98:8d:9a:3e:01:90:6e:1a:ce:58:90:
aa:ad:00:b3:c1:89:f5:24:eb:2e:32:a8:99:66:e0:9f:42:78:
91:ae:97:bb:80:43:1e:e0:6a:d5:e2:20:fd:8b:7d:e2:9b:31:
74:d1:6e:76:4d:b0:4b:f0:9c:5e:03:e0:c0:80:9a:0d:f6:1c:
0d:aa:c5:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:27 2024 by rpki-client on console-fra.rpki-client.org