Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/yS8dypoG63VKrAjj4iuQdtvPsd0.roa
File: yS8dypoG63VKrAjj4iuQdtvPsd0.roa (raw, json)
Hash identifier: LEjyQ8NgOOOUqw9YtHISH8/saWWXTaNd3k06u5DbLJE=
Subject key identifier: C9:2F:1D:CA:9A:06:EB:75:4A:AC:08:E3:E2:2B:90:76:DB:CF:B1:DD
Certificate issuer: /CN=1224e5eff1abc0e6d8bf029e4f732e0ab71bc16a
Certificate serial: 01856C0A68E6DFA5DF9C8A36B7C0A3EF6153
Authority key identifier: 12:24:E5:EF:F1:AB:C0:E6:D8:BF:02:9E:4F:73:2E:0A:B7:1B:C1:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EiTl7_GrwObYvwKeT3MuCrcbwWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/yS8dypoG63VKrAjj4iuQdtvPsd0.roa
Signing time: Sun 01 Jan 2023 06:34:59 +0000
ROA not before: Sun 01 Jan 2023 06:34:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49043
IP address blocks: 86.117.18.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:0a:68:e6:df:a5:df:9c:8a:36:b7:c0:a3:ef:61:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1224e5eff1abc0e6d8bf029e4f732e0ab71bc16a
Validity
Not Before: Jan 1 06:34:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c92f1dca9a06eb754aac08e3e22b9076dbcfb1dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:83:6b:8d:f1:92:2b:3f:d6:54:08:6f:4e:b1:
a7:89:c6:bb:36:d5:07:d8:d0:e6:e9:21:6e:72:fc:
0d:19:44:44:42:c0:20:0e:3b:35:aa:c5:b6:aa:07:
7a:51:26:4f:ad:fd:b5:48:73:80:6b:7d:74:d9:66:
e6:f4:de:e6:49:d4:ec:80:17:ec:f3:5c:84:99:e6:
cf:5e:d0:e3:f2:e2:64:d6:82:48:e3:b9:09:b2:89:
d7:28:b9:cc:71:69:41:3f:0c:36:07:8c:b1:b8:82:
58:c9:bc:20:e2:b5:65:30:1c:d8:e9:f1:e6:20:0c:
e6:1f:93:c7:95:7b:3e:81:1f:bc:81:b4:fe:c2:82:
ab:4e:11:e2:9c:00:ce:74:9c:f5:41:d1:18:e6:ca:
98:5e:eb:56:39:3a:b7:15:85:95:11:2a:4f:22:3c:
11:1f:78:50:0f:e9:cf:50:d8:72:54:ac:0a:65:73:
7a:d8:01:e5:a7:14:7c:ef:e4:0b:23:60:3b:79:f1:
10:a0:ba:c6:94:0c:a2:b3:8e:8f:4d:f9:00:6a:46:
2c:fa:3e:d7:73:cf:22:b4:81:82:6d:4c:d5:cf:aa:
54:da:b0:53:e1:28:53:6b:b6:0a:61:e8:62:12:38:
5a:34:29:46:09:b0:9a:40:41:20:f6:2f:14:1a:66:
53:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:2F:1D:CA:9A:06:EB:75:4A:AC:08:E3:E2:2B:90:76:DB:CF:B1:DD
X509v3 Authority Key Identifier:
keyid:12:24:E5:EF:F1:AB:C0:E6:D8:BF:02:9E:4F:73:2E:0A:B7:1B:C1:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EiTl7_GrwObYvwKeT3MuCrcbwWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/yS8dypoG63VKrAjj4iuQdtvPsd0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/11be23-3be6-4881-a3d1-5386b1d963bc/1/EiTl7_GrwObYvwKeT3MuCrcbwWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.117.18.0/23
Signature Algorithm: sha256WithRSAEncryption
30:2a:0a:5f:b1:cd:9b:cb:86:89:49:a5:8c:74:a2:c7:e4:c0:
96:2c:c0:05:6b:99:02:2c:16:61:65:42:53:0f:4d:cd:6f:ac:
c2:b8:c6:48:54:17:b0:8f:00:6e:ce:31:2b:db:1b:0c:64:c5:
42:ab:cc:93:e4:22:bd:44:41:93:3b:3b:6c:ad:1e:be:50:9b:
4a:6e:74:db:7a:f5:e6:bc:6c:10:45:e4:e3:33:03:da:b9:00:
58:c6:89:5f:04:78:41:67:62:5d:9a:67:b0:9b:55:e5:64:e4:
42:8c:b2:4c:72:de:d5:47:9e:55:ea:49:0b:42:9a:b2:94:f1:
9d:1d:1e:30:e2:3e:e1:bc:1f:c6:73:11:35:e7:49:7c:2a:a7:
6d:29:83:0c:35:6a:93:ff:e2:35:84:a0:84:5c:47:eb:9a:95:
40:2f:79:87:1e:7f:d5:f0:72:99:86:2e:1c:1c:e7:77:2f:96:
bd:78:fd:83:8f:8d:db:db:f0:dd:5a:f3:6c:12:e8:12:81:08:
27:06:fa:c2:58:eb:de:16:10:99:ba:11:33:82:90:3e:81:c5:
59:97:a7:80:c3:c0:fe:5c:96:3b:bc:6f:d0:c1:9c:20:c0:70:
bf:bd:d7:5c:1a:b8:70:ce:19:9a:d2:dd:88:da:85:3e:9f:fd:
d0:26:3e:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:14 2024 by rpki-client on console-ams.rpki-client.org