Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/a68dbc-3f94-4fed-8d9d-e9c3649c1218/1/YLwruZbcmMY_tk2WReD1PbykcQc.roa
File: YLwruZbcmMY_tk2WReD1PbykcQc.roa (raw, json)
Hash identifier: zBsdlhi8nTqJ6hmieo7tOIz/ojbCStXGBWnkRxqgZTE=
Subject key identifier: 60:BC:2B:B9:96:DC:98:C6:3F:B6:4D:96:45:E0:F5:3D:BC:A4:71:07
Certificate issuer: /CN=1214a7e2a8c7012325ae973ed1a2bba05b2bb9c1
Certificate serial: 0185703967A68E783F961C59792934440899
Authority key identifier: 12:14:A7:E2:A8:C7:01:23:25:AE:97:3E:D1:A2:BB:A0:5B:2B:B9:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EhSn4qjHASMlrpc-0aK7oFsrucE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/a68dbc-3f94-4fed-8d9d-e9c3649c1218/1/YLwruZbcmMY_tk2WReD1PbykcQc.roa
Signing time: Mon 02 Jan 2023 02:04:48 +0000
ROA not before: Mon 02 Jan 2023 02:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48806
IP address blocks: 185.114.32.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:67:a6:8e:78:3f:96:1c:59:79:29:34:44:08:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1214a7e2a8c7012325ae973ed1a2bba05b2bb9c1
Validity
Not Before: Jan 2 02:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=60bc2bb996dc98c63fb64d9645e0f53dbca47107
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:cb:c3:7d:ce:cc:5d:5e:0c:c3:19:91:d3:4e:
05:0e:fd:af:a0:8b:1e:f0:5b:31:5e:bb:bc:31:94:
20:36:74:e8:17:11:30:7f:7a:1e:36:5c:cb:2a:36:
28:a5:ea:9d:63:6b:e4:ae:a8:10:e1:39:57:50:67:
92:0d:af:d6:e9:a3:77:51:14:e6:34:4e:01:01:ec:
f4:ea:a1:4c:2f:f5:5d:42:17:ee:fe:89:6f:a3:72:
01:23:c1:98:5b:49:5a:2c:3b:7f:e7:9a:02:8f:d3:
77:0a:06:33:0e:a8:0b:48:f7:2f:ad:ae:55:82:9f:
3a:81:82:41:b3:7a:a2:21:7f:06:5c:41:dc:f7:08:
cc:e5:68:24:2d:d7:93:02:ea:db:c2:5e:75:ff:4f:
f3:20:77:ab:a5:7e:13:77:31:65:66:20:59:fc:b0:
e9:44:02:66:98:2b:1f:7d:90:ed:78:d7:90:29:50:
d6:2d:31:24:2d:b6:ff:49:f0:f5:1e:9a:00:5d:83:
3d:ab:c3:45:66:08:cc:6b:5e:82:0e:62:65:b7:f4:
f5:2e:5f:c7:a6:35:e8:77:f5:f6:2a:9a:08:73:c6:
3e:41:c0:ab:6f:bc:11:a2:81:e3:d0:fd:ae:b0:7d:
fd:2d:1e:9e:a1:f9:6c:a8:0c:52:75:f1:73:8f:84:
a2:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:BC:2B:B9:96:DC:98:C6:3F:B6:4D:96:45:E0:F5:3D:BC:A4:71:07
X509v3 Authority Key Identifier:
keyid:12:14:A7:E2:A8:C7:01:23:25:AE:97:3E:D1:A2:BB:A0:5B:2B:B9:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EhSn4qjHASMlrpc-0aK7oFsrucE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/a68dbc-3f94-4fed-8d9d-e9c3649c1218/1/YLwruZbcmMY_tk2WReD1PbykcQc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/a68dbc-3f94-4fed-8d9d-e9c3649c1218/1/EhSn4qjHASMlrpc-0aK7oFsrucE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.114.32.0/24
Signature Algorithm: sha256WithRSAEncryption
44:38:db:ed:c7:8b:57:d9:a0:0c:07:bd:cd:a6:4f:cc:3e:d7:
b5:c1:e1:52:59:16:51:b3:66:d6:a3:c9:b2:b9:d7:3c:e4:18:
b8:d0:ff:73:60:91:cc:8e:7b:1d:60:63:84:ac:8b:09:6c:a9:
e2:ab:35:6b:18:3d:86:0d:69:16:f9:e0:74:cb:76:c2:ab:e0:
da:fd:b7:5d:4b:4e:f4:3b:41:55:1c:c5:45:47:76:76:78:43:
18:a9:06:5b:2b:1c:ce:a2:11:97:07:7b:b3:8b:9f:4d:8e:11:
07:41:45:40:81:c9:40:da:cf:76:27:cd:07:69:52:9b:b2:72:
97:ba:1b:95:75:40:1b:97:75:42:3e:63:79:8b:f2:76:1f:8c:
c2:fe:d0:18:c5:7c:76:de:93:87:74:bb:c4:67:09:b5:0e:73:
93:e4:c6:b2:bf:b0:fd:8d:39:27:17:80:9f:08:db:5a:2b:98:
cb:f7:2b:3f:0b:1b:d1:a4:3f:52:d6:8c:78:9b:b6:22:0b:86:
1e:54:ff:58:42:fc:c4:62:a3:6c:93:01:76:a9:26:64:cb:ba:
85:16:5d:69:e0:bf:44:75:a0:f7:5e:6f:98:aa:8d:7f:d3:06:
b5:f6:d7:30:0b:fe:f0:4f:95:04:de:13:25:b4:90:32:30:e6:
11:61:b0:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:18:46 2024 by rpki-client on console-ams.rpki-client.org