Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/42dfc0-a764-4d5d-a634-3454f490fd96/1/Y01OaF5il_YfDyhji3owgZ6LBSE.roa
File: Y01OaF5il_YfDyhji3owgZ6LBSE.roa (raw, json)
Hash identifier: DE2nREClHZ7/sfczrKDrmB0OoNfqiE8E7bkY1226xjM=
Subject key identifier: 63:4D:4E:68:5E:62:97:F6:1F:0F:28:63:8B:7A:30:81:9E:8B:05:21
Certificate issuer: /CN=6278a768c910badcd5c4aef7c172a9f061547e8c
Certificate serial: 01856D5CF03B43697C7AB1E90B42ED04A76B
Authority key identifier: 62:78:A7:68:C9:10:BA:DC:D5:C4:AE:F7:C1:72:A9:F0:61:54:7E:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YninaMkQutzVxK73wXKp8GFUfow.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/42dfc0-a764-4d5d-a634-3454f490fd96/1/Y01OaF5il_YfDyhji3owgZ6LBSE.roa
Signing time: Sun 01 Jan 2023 12:44:45 +0000
ROA not before: Sun 01 Jan 2023 12:44:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56452
IP address blocks: 91.223.162.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:5c:f0:3b:43:69:7c:7a:b1:e9:0b:42:ed:04:a7:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6278a768c910badcd5c4aef7c172a9f061547e8c
Validity
Not Before: Jan 1 12:44:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=634d4e685e6297f61f0f28638b7a30819e8b0521
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:07:ed:2b:62:cb:2c:67:24:42:16:56:14:00:
41:81:9d:ea:59:84:85:77:55:cb:df:f6:03:80:e8:
24:08:88:be:b8:04:cc:1a:fa:ac:e2:ef:55:91:49:
b9:f2:0e:23:52:5c:1f:a3:4d:42:7e:24:78:6c:2a:
71:e8:4b:20:97:24:3c:a6:18:ec:ef:d7:ff:b8:6a:
07:38:fa:70:7e:0b:5b:42:aa:b5:e2:78:79:60:01:
c0:08:a8:54:5f:cb:d2:ac:40:a0:97:e7:2c:5b:f3:
40:6a:41:5f:61:76:7e:50:b6:ee:ad:87:e5:6e:ac:
a3:de:68:45:76:ba:9c:0a:a6:83:4f:a8:4b:28:d4:
f4:62:4f:65:bb:fa:f5:82:8a:04:2c:66:a9:88:37:
ba:00:77:97:71:c3:8f:77:0b:a0:69:b0:cd:0a:89:
a9:a1:22:4b:43:ec:e6:99:96:73:76:28:2f:60:6a:
db:d0:b2:cf:a6:01:60:d3:36:e9:d6:84:ac:0e:85:
c7:13:45:47:25:80:44:da:af:16:a4:0e:be:84:99:
0d:f3:38:39:81:6c:51:d0:27:70:9b:b1:40:fc:d2:
86:8a:da:3d:7f:2e:5a:a8:11:b8:a0:a1:c0:70:86:
6b:68:8d:a0:5c:58:4f:15:d1:56:58:5b:ba:47:8d:
44:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:4D:4E:68:5E:62:97:F6:1F:0F:28:63:8B:7A:30:81:9E:8B:05:21
X509v3 Authority Key Identifier:
keyid:62:78:A7:68:C9:10:BA:DC:D5:C4:AE:F7:C1:72:A9:F0:61:54:7E:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YninaMkQutzVxK73wXKp8GFUfow.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/42dfc0-a764-4d5d-a634-3454f490fd96/1/Y01OaF5il_YfDyhji3owgZ6LBSE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/42dfc0-a764-4d5d-a634-3454f490fd96/1/YninaMkQutzVxK73wXKp8GFUfow.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.162.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:af:fa:1e:d2:e5:bf:12:0b:46:85:23:7f:c8:2b:4f:0e:db:
f8:ea:20:ce:95:f3:8a:b4:fa:82:b4:97:05:4f:82:01:e8:68:
85:9b:31:7d:73:e1:4d:e7:eb:72:af:4d:18:28:16:0e:0c:eb:
31:50:72:5b:4c:d5:47:e5:f6:a2:41:d1:83:4f:87:ea:9b:02:
92:d2:0e:99:35:ad:a9:fb:68:4c:d3:d5:da:8d:10:f4:12:49:
9e:b9:cb:e7:f3:76:65:1c:4c:4f:ee:56:57:d1:44:37:c7:f5:
24:3a:8a:64:52:08:e7:6d:c5:2b:cf:c5:77:e7:a2:e6:5a:1b:
84:cd:75:b8:ac:13:c1:df:70:f3:c0:29:e9:4a:9f:0d:f2:70:
5d:7b:c0:0c:a2:7f:38:79:1e:60:e3:33:76:4e:01:38:0d:d8:
c7:d0:ad:56:04:6d:b9:29:5e:f8:52:e3:5c:76:eb:d5:89:99:
1f:74:70:a9:2d:a0:cc:f4:63:b9:2f:05:8c:08:fd:88:97:87:
4b:b8:1e:48:96:f0:e8:20:45:91:9b:f6:f3:2b:cc:da:db:ba:
63:75:af:aa:fb:34:3c:dd:5c:32:3b:d7:86:7d:a6:b3:2f:05:
6a:7a:86:fa:e6:ea:5d:72:df:16:a5:df:4b:c7:9b:56:ce:f7:
cf:6b:14:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:19 2024 by rpki-client on console-ams.rpki-client.org