Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/yhyS8WkmkQdnQIEaxgmZ8s8pMxs.roa
File: yhyS8WkmkQdnQIEaxgmZ8s8pMxs.roa (raw, json)
Hash identifier: KMjlsUxMCgs32NkICbsjg3AYj5H5q9XKqoMUuawx1Ec=
Subject key identifier: CA:1C:92:F1:69:26:91:07:67:40:81:1A:C6:09:99:F2:CF:29:33:1B
Certificate issuer: /CN=99715406e7217bfc13812a4704c62ae099e7c8ff
Certificate serial: 01924CADC1A8FFAD3F731A9E2E45788F0465
Authority key identifier: 99:71:54:06:E7:21:7B:FC:13:81:2A:47:04:C6:2A:E0:99:E7:C8:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mXFUBuche_wTgSpHBMYq4JnnyP8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/yhyS8WkmkQdnQIEaxgmZ8s8pMxs.roa
Signing time: Wed 02 Oct 2024 10:01:48 +0000
ROA not before: Wed 02 Oct 2024 10:01:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396982
IP address blocks: 185.254.211.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 15 Oct 2024 07:33:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:4c:ad:c1:a8:ff:ad:3f:73:1a:9e:2e:45:78:8f:04:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99715406e7217bfc13812a4704c62ae099e7c8ff
Validity
Not Before: Oct 2 10:01:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ca1c92f1692691076740811ac60999f2cf29331b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:65:de:e0:2b:9f:6e:49:1f:e0:72:df:5e:36:
c5:a8:f3:e5:48:44:6a:ba:5d:e4:c4:e9:09:0e:1b:
4d:b4:41:6a:30:1b:24:37:78:50:98:f4:96:c6:24:
1c:86:2b:1c:6d:53:49:b9:47:67:87:25:93:0a:2e:
63:da:50:59:51:cc:07:42:94:22:eb:1a:90:f6:e8:
9a:76:a5:a0:79:43:5a:10:1a:5e:c6:a6:e2:e0:ea:
c6:2f:ac:46:77:6a:ef:6f:5a:f1:5f:a5:21:96:db:
bd:d1:85:81:53:04:1b:a7:b5:6e:43:2c:b3:a7:14:
36:ea:3d:50:2a:8e:36:61:65:47:c2:53:26:29:5b:
b9:a5:b6:cb:1a:a4:94:1c:ee:c2:dd:38:96:73:f4:
49:f0:b2:0b:53:e4:32:da:68:ea:36:76:5b:80:7f:
37:b1:d5:16:46:ac:b8:f3:7b:d1:af:38:e9:9b:8f:
3d:e4:55:b5:55:58:d7:97:05:73:9a:97:57:7e:8e:
d8:e7:c2:9b:d1:1c:22:44:ca:51:c8:24:c2:d8:b4:
a5:78:c7:e1:db:2f:5a:01:5e:6b:65:38:74:24:0b:
fa:10:16:c3:00:e3:e2:00:ba:0f:b8:f9:90:f2:41:
40:ba:fa:89:1c:75:d3:1b:e5:86:da:7d:ef:4b:ce:
9d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:1C:92:F1:69:26:91:07:67:40:81:1A:C6:09:99:F2:CF:29:33:1B
X509v3 Authority Key Identifier:
keyid:99:71:54:06:E7:21:7B:FC:13:81:2A:47:04:C6:2A:E0:99:E7:C8:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mXFUBuche_wTgSpHBMYq4JnnyP8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/yhyS8WkmkQdnQIEaxgmZ8s8pMxs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/4e9e37-6e66-41b1-aa99-1516b6d82e2d/1/mXFUBuche_wTgSpHBMYq4JnnyP8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.254.211.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:25:5c:e9:9d:b8:5e:d5:ff:81:73:f0:e0:ff:90:20:21:4a:
7c:ae:e9:9e:79:60:0e:c2:d0:4f:54:c2:88:07:46:e0:30:e4:
a2:4f:43:5b:b7:c0:3d:fe:aa:99:d7:86:d2:03:38:87:0a:b4:
2d:ca:d2:9b:2b:ea:02:28:ef:cc:08:73:3f:db:8d:ac:8e:f9:
6d:9b:93:30:e1:e2:b8:e5:8e:d0:a0:11:8a:7c:20:95:92:1b:
b1:e5:85:22:65:1d:f3:8a:50:b9:3b:5b:94:54:5c:b9:66:3b:
7f:76:c8:1f:3e:35:ad:33:9a:7b:aa:d5:bd:8a:5f:69:c2:d7:
f9:09:8c:e9:e6:28:8a:57:87:83:9c:fb:68:52:cb:f0:5f:f6:
9c:09:ef:34:a7:7b:dd:34:d5:6c:7b:18:19:b8:96:c0:bc:c0:
38:68:94:4a:52:40:f1:b3:9f:22:b2:02:83:9f:d2:f2:29:4c:
8f:58:9b:8e:5f:e1:22:ae:b5:c2:5d:ec:0a:b5:7f:26:07:a9:
a7:a0:db:c2:04:3d:45:ca:58:f1:56:f4:13:8d:b5:e6:9c:0c:
f9:bb:70:4c:0d:0c:66:3d:90:39:e4:87:31:81:60:aa:97:a6:
82:56:f1:fe:8b:d4:9b:f1:fa:9d:3b:06:1c:b5:00:07:16:48:
95:a2:5a:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:21:28 2025 by rpki-client