Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/23322a-a356-469b-87a6-546e2f5d7d26/1/YqW1v-Ok7_culw7970nabuFofuY.roa
File: YqW1v-Ok7_culw7970nabuFofuY.roa (raw, json)
Hash identifier: ipPfYsNcmBTar/ZyXzqjKNGRdiGMA+2StTPex8LO2KA=
Subject key identifier: 62:A5:B5:BF:E3:A4:EF:F7:2E:97:0E:FD:EF:49:DA:6E:E1:68:7E:E6
Certificate issuer: /CN=ea60327c9e2a4e3e37d547b536143500d0a5dcb9
Certificate serial: 0187180AB2A52CBE24F4FDDCBFEED7B82553
Authority key identifier: EA:60:32:7C:9E:2A:4E:3E:37:D5:47:B5:36:14:35:00:D0:A5:DC:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6mAyfJ4qTj431Ue1NhQ1ANCl3Lk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/23322a-a356-469b-87a6-546e2f5d7d26/1/YqW1v-Ok7_culw7970nabuFofuY.roa
Signing time: Sat 25 Mar 2023 09:12:46 +0000
ROA not before: Sat 25 Mar 2023 09:12:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62166
IP address blocks: 185.65.106.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:18:0a:b2:a5:2c:be:24:f4:fd:dc:bf:ee:d7:b8:25:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea60327c9e2a4e3e37d547b536143500d0a5dcb9
Validity
Not Before: Mar 25 09:12:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62a5b5bfe3a4eff72e970efdef49da6ee1687ee6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:1e:32:73:49:24:13:ca:e5:77:8f:17:8d:c1:
51:a8:47:e3:6c:1d:3d:ff:f9:af:a7:3f:57:3c:d5:
2d:44:31:9a:e3:3a:e2:c3:c0:14:bc:7e:25:c5:fa:
f4:89:1f:0b:a0:5d:c8:37:20:3f:eb:8d:f3:20:f6:
39:d6:05:93:12:07:42:10:f9:a2:ca:a8:2c:62:96:
9a:cd:50:0b:75:3f:0b:55:50:ab:ec:f6:12:08:23:
3a:56:4f:7f:70:98:14:de:db:cc:59:cc:88:1b:18:
67:7b:cd:14:2c:df:e2:33:94:57:e6:fa:9e:25:3e:
70:ea:a0:9d:78:86:1a:ab:a5:05:83:27:f5:e0:87:
27:e1:5e:68:40:f5:42:3b:b1:12:2e:54:e8:c2:59:
5a:1e:98:38:d8:e4:c8:f5:f0:15:18:39:ba:a1:80:
54:df:21:1e:d1:b0:ae:ff:1c:5e:0e:c3:b0:4a:22:
14:e5:5a:50:9b:1d:59:ea:73:88:fe:c1:a8:ec:43:
f0:cb:53:b1:f7:79:cc:4c:27:14:92:bc:eb:85:52:
64:92:da:fc:10:87:7a:56:fc:44:ad:01:50:84:df:
73:65:72:f1:c4:1f:8c:2d:3b:da:34:fe:cd:28:0d:
1b:93:f7:b8:db:c0:6a:4e:c4:57:f4:c9:9b:10:27:
d1:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:A5:B5:BF:E3:A4:EF:F7:2E:97:0E:FD:EF:49:DA:6E:E1:68:7E:E6
X509v3 Authority Key Identifier:
keyid:EA:60:32:7C:9E:2A:4E:3E:37:D5:47:B5:36:14:35:00:D0:A5:DC:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6mAyfJ4qTj431Ue1NhQ1ANCl3Lk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/23322a-a356-469b-87a6-546e2f5d7d26/1/YqW1v-Ok7_culw7970nabuFofuY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/23322a-a356-469b-87a6-546e2f5d7d26/1/6mAyfJ4qTj431Ue1NhQ1ANCl3Lk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.106.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:e0:4a:5d:3b:b0:51:5a:30:95:1f:75:8e:8b:e9:16:cb:8c:
7b:68:16:c7:a4:7c:f4:10:14:02:07:99:5b:72:bf:7d:f5:e2:
e2:59:00:3f:3d:2a:50:33:fb:c7:07:8d:87:3a:97:0a:6b:19:
27:3d:57:ec:cc:1e:ba:32:90:73:ea:dc:ed:e2:88:ff:dc:70:
32:49:1a:79:9f:00:25:96:b9:8b:10:63:9c:a0:87:64:47:eb:
c8:14:66:66:b3:59:87:ba:fe:4d:29:1c:62:91:a4:0c:50:f4:
82:ac:fa:70:56:19:f4:87:31:7c:61:c8:ae:f8:04:c5:39:60:
aa:79:f7:01:c6:c7:eb:b6:80:e4:92:23:41:6a:76:40:2b:21:
38:0b:2c:fe:6c:c2:f9:9b:07:9a:71:88:d4:ad:30:04:2e:ed:
52:ea:c3:c9:d4:74:12:08:82:7f:80:97:70:84:7a:2a:57:35:
fe:06:fe:b5:b7:29:e4:c6:5c:ac:96:40:7f:cc:30:35:d0:12:
62:da:41:fd:86:c9:7d:20:21:1c:a4:2b:45:8f:a3:e0:c1:5f:
e3:b1:f1:49:c3:19:df:a3:ad:03:fe:71:cf:09:15:90:b4:f5:
40:49:83:89:f6:da:3d:fe:4f:12:9d:cb:2f:a8:94:46:eb:2b:
ee:af:51:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:33:39 2024 by rpki-client on console-fra.rpki-client.org