Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/YeoyFz17vSHi82Z3REDQi9CvJk4.roa
File: YeoyFz17vSHi82Z3REDQi9CvJk4.roa (raw, json)
Hash identifier: VQIrth1iFaQRJyOqi08MhxFxrJIEQNg5HBuv6fDWK/Y=
Subject key identifier: 61:EA:32:17:3D:7B:BD:21:E2:F3:66:77:44:40:D0:8B:D0:AF:26:4E
Certificate issuer: /CN=d0299cf12b38ff12d95ffc0d13ac12c69fe2c1ca
Certificate serial: 0188D91BE6FB57676231AB8339E5B03FA668
Authority key identifier: D0:29:9C:F1:2B:38:FF:12:D9:5F:FC:0D:13:AC:12:C6:9F:E2:C1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/YeoyFz17vSHi82Z3REDQi9CvJk4.roa
Signing time: Tue 20 Jun 2023 14:01:04 +0000
ROA not before: Tue 20 Jun 2023 14:01:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59956
IP address blocks: 176.117.80.0/22 maxlen: 22
176.117.88.0/21 maxlen: 21
Validation: Failed, certificate revoked on Wed 21 Jun 2023 15:26:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d9:1b:e6:fb:57:67:62:31:ab:83:39:e5:b0:3f:a6:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0299cf12b38ff12d95ffc0d13ac12c69fe2c1ca
Validity
Not Before: Jun 20 14:01:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=61ea32173d7bbd21e2f366774440d08bd0af264e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:9d:b1:e8:42:5d:6b:3c:cd:11:f6:c3:6d:b6:
ef:95:53:d7:2e:dc:3a:43:24:8c:c7:91:38:df:25:
41:82:c2:c2:d7:31:d7:dc:8b:b9:2e:e1:7f:ec:ea:
e2:3e:94:5c:11:13:c8:50:85:3d:54:c9:d5:5f:d5:
a6:74:fd:42:01:a0:21:f3:5e:7e:ed:9b:8c:43:e3:
25:4b:02:ef:5a:14:ad:c1:f9:2f:a4:35:97:3f:93:
f1:b5:79:ad:b3:82:57:43:be:37:48:64:d6:b9:4f:
1f:e6:16:0f:14:35:c6:98:22:cb:46:6c:12:86:15:
d4:86:b2:a2:3d:c2:f7:ca:61:bd:48:74:eb:65:d7:
c9:5d:6b:c7:72:81:c9:7e:3d:a6:2a:f3:fd:30:dd:
8f:22:94:f0:18:84:08:c1:35:48:80:7c:33:a6:15:
d2:a4:ab:8f:94:57:f3:b1:9b:22:33:3f:65:a1:6d:
a8:92:f0:75:bf:36:11:80:04:ce:9c:83:ec:25:0f:
43:1a:14:c5:87:9f:37:68:73:b8:e7:a3:b6:33:d5:
0b:43:5f:03:4e:27:00:d3:01:f4:f6:fb:90:16:b2:
ce:a2:72:1e:24:96:8f:56:26:4e:fd:b1:1b:2f:9b:
c1:22:3d:66:d3:f8:33:b5:33:16:ca:5d:2d:13:f6:
40:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:EA:32:17:3D:7B:BD:21:E2:F3:66:77:44:40:D0:8B:D0:AF:26:4E
X509v3 Authority Key Identifier:
keyid:D0:29:9C:F1:2B:38:FF:12:D9:5F:FC:0D:13:AC:12:C6:9F:E2:C1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/YeoyFz17vSHi82Z3REDQi9CvJk4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.117.80.0/22
176.117.88.0/21
Signature Algorithm: sha256WithRSAEncryption
83:3f:6e:80:e6:37:fd:00:d7:29:da:7e:06:67:d5:d7:a4:35:
df:64:61:bc:94:02:d7:c0:26:09:bb:0b:b1:6e:71:79:2e:14:
3c:99:29:5f:a2:98:58:d2:9d:a1:c9:60:f5:f8:33:a8:4f:8b:
e4:90:63:c4:74:3c:62:2a:dc:ee:e8:73:2a:0a:4d:9d:23:3d:
78:4b:ed:90:6c:77:ad:c9:7d:80:d7:79:59:9c:3d:63:f7:4f:
e1:2c:06:29:20:fd:81:c1:80:d1:de:2f:f9:50:c1:c6:6b:40:
f5:68:47:8d:59:63:91:b2:85:4c:b8:b2:c2:e7:4e:23:c3:49:
a8:52:9d:e9:f8:25:2e:9b:5c:7b:10:29:51:d6:ae:4f:0d:4b:
83:0a:71:9e:a6:4b:cc:95:31:a6:b6:e3:2c:eb:7e:0e:23:d6:
37:a2:56:04:80:b8:a1:52:66:88:77:e0:47:cd:9e:e6:59:57:
81:7d:9b:23:2c:4c:a5:74:55:71:9b:27:6b:5e:68:5f:2e:06:
04:48:7f:8e:46:1a:58:d6:9b:db:b2:62:5f:aa:b8:f5:fa:22:
75:78:7a:da:b6:2a:d3:a4:b1:22:93:7c:54:a8:e9:36:82:e3:
3e:b1:7c:4a:b6:3a:a5:d4:5b:e3:bf:aa:6e:13:56:c6:01:3a:
29:34:b1:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:21 2024 by rpki-client on console-ams.rpki-client.org