Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/y-ACZcsCqSncV-pcPcU9dARjkfA.roa
File: y-ACZcsCqSncV-pcPcU9dARjkfA.roa (raw, json)
Hash identifier: YQHwe1iLzTmIMbI+Wnh2PKxka7d1BpYw8if306SZvT4=
Subject key identifier: CB:E0:02:65:CB:02:A9:29:DC:57:EA:5C:3D:C5:3D:74:04:63:91:F0
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 018573284363EDD77E1509EF25A0EF2AB382
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/y-ACZcsCqSncV-pcPcU9dARjkfA.roa
Signing time: Mon 02 Jan 2023 15:44:56 +0000
ROA not before: Mon 02 Jan 2023 15:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200032
IP address blocks: 5.83.136.0/24 maxlen: 32
2a00:cdc0:11::/48 maxlen: 128
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:28:43:63:ed:d7:7e:15:09:ef:25:a0:ef:2a:b3:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 2 15:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cbe00265cb02a929dc57ea5c3dc53d74046391f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:46:82:ac:1b:d6:36:dc:1b:89:5c:19:15:0d:
8f:0b:40:d1:fc:24:75:d3:b4:26:44:fc:98:86:e8:
a6:e0:15:b6:e3:71:2a:16:21:5e:19:c0:1c:27:65:
9b:8d:92:a3:a5:42:38:e7:b8:2a:3b:3e:4c:eb:10:
98:96:1a:af:6a:ea:09:dd:49:f2:95:03:45:fa:6c:
f8:e4:67:da:8a:e9:c8:7d:c9:3c:e0:c1:ac:6b:e0:
95:d2:59:3f:fd:03:6b:61:c1:e8:24:84:69:df:f3:
05:1d:f9:05:38:50:5b:9b:51:e0:ec:5b:18:ac:b0:
01:b3:30:0f:60:df:66:e5:c4:5d:64:46:cd:b5:a7:
00:16:74:8f:85:f3:88:63:97:d8:11:f9:f2:20:0f:
d5:5b:d1:e7:b2:58:8a:73:fb:c3:06:d2:33:f8:ba:
68:42:f6:20:d2:28:4f:02:26:a2:f3:ce:c5:db:c5:
45:bf:f5:a9:eb:2f:df:13:f9:51:ac:01:84:6c:af:
bb:a3:d2:be:cd:c8:29:35:c4:c9:7f:c8:bb:e9:e3:
49:b2:d3:0c:29:3f:67:60:94:24:09:0e:04:a1:7a:
88:7c:53:b7:06:6a:9b:d5:86:21:9d:70:2e:4b:7d:
0a:8e:4f:0f:69:28:ee:19:31:17:8e:00:2e:7e:7a:
d3:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:E0:02:65:CB:02:A9:29:DC:57:EA:5C:3D:C5:3D:74:04:63:91:F0
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/y-ACZcsCqSncV-pcPcU9dARjkfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.136.0/24
IPv6:
2a00:cdc0:11::/48
Signature Algorithm: sha256WithRSAEncryption
b2:5c:47:64:2e:37:1e:36:39:cd:c7:fa:5e:76:46:34:9d:14:
d9:76:09:bb:11:1a:b5:f6:4b:31:0a:ca:c4:bb:35:38:77:7c:
9e:fc:bc:86:8e:e8:5e:5c:db:2d:69:a0:7e:2c:3d:54:3a:57:
c6:65:3a:e9:15:2f:b4:5f:fe:1e:57:a7:a0:60:21:82:10:53:
a1:e9:f1:00:5c:8c:91:ea:33:0c:10:b8:5a:ab:cd:03:75:66:
70:9a:98:1b:f0:8d:13:84:47:f5:43:68:8a:cf:37:c4:e2:03:
c0:49:c0:29:a8:9d:ac:6f:f7:cf:50:57:30:98:2d:92:cd:82:
24:1b:d6:16:bd:6d:5c:9b:d2:23:1d:22:e8:93:e5:32:c0:a3:
0c:12:d2:11:7f:8a:09:70:06:f9:86:65:13:7e:6b:08:80:28:
d7:d7:2c:da:92:9c:29:9f:9c:3a:d5:48:3f:6c:63:df:06:ad:
a6:d3:d1:10:e4:39:cc:a1:9c:cc:d4:de:23:2a:d4:a3:2e:c0:
66:50:e1:24:7c:5d:24:13:3e:a5:6d:92:6f:97:d6:6a:ff:ad:
ba:b4:40:42:8f:4f:de:e0:cb:9d:a8:04:39:c8:81:16:7b:ab:
6e:77:8c:e6:62:81:6e:b8:48:fe:44:5c:d9:0e:ad:c0:69:b3:
48:e6:40:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:54 2024 by rpki-client on console-ams.rpki-client.org