Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/YrTAWHQAEmM4ADr2TTLJUR8Z3Qk.roa
File: YrTAWHQAEmM4ADr2TTLJUR8Z3Qk.roa (raw, json)
Hash identifier: xHzvntCoxyAtk2xmpqrnN9pbir2f5znI3kciUsDMfaE=
Subject key identifier: 62:B4:C0:58:74:00:12:63:38:00:3A:F6:4D:32:C9:51:1F:19:DD:09
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 01876968B41EDB10261B53E717C0946B42AC
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/YrTAWHQAEmM4ADr2TTLJUR8Z3Qk.roa
Signing time: Mon 10 Apr 2023 04:24:42 +0000
ROA not before: Mon 10 Apr 2023 04:24:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 89.251.24.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Apr 2023 11:21:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:69:68:b4:1e:db:10:26:1b:53:e7:17:c0:94:6b:42:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Apr 10 04:24:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62b4c0587400126338003af64d32c9511f19dd09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:61:2d:72:86:84:ae:d8:d0:15:78:84:07:f6:
54:ee:1a:ca:41:41:40:63:90:e9:69:c9:95:fa:c0:
6e:6d:3d:65:af:b8:dc:c8:39:af:0e:e1:f2:e7:3d:
a2:f7:f1:ed:4c:0c:1e:80:54:94:83:7e:fc:9e:79:
c5:4f:0d:07:b1:d1:cb:4e:76:46:e8:61:63:57:b5:
a3:c7:b1:0e:10:83:1e:73:dd:c0:1c:01:56:ac:09:
b0:98:47:7d:51:15:fd:d6:95:0c:ec:a3:db:c1:5f:
f8:13:fe:7e:81:9b:39:93:3c:2e:2c:3b:97:85:cd:
f1:f5:70:93:d9:cf:f1:c9:0c:f4:75:be:ba:66:13:
22:44:b5:ec:3a:7e:2e:84:ee:c1:e3:5a:de:4f:08:
aa:dc:3c:fd:0e:94:cd:d3:39:63:bd:de:ba:d3:ad:
b6:72:af:ad:34:b0:91:23:fb:38:3c:b3:49:21:4c:
1f:94:b6:4d:83:ef:7c:f6:95:f2:50:22:c1:cd:ba:
1c:56:5c:16:e4:46:69:3f:e8:26:52:7c:8c:f0:7d:
96:7a:c7:f5:1f:7d:cb:48:c6:ca:b3:7a:ed:89:2c:
1c:c6:21:28:80:d5:4f:e8:09:16:6c:ad:13:57:b2:
9c:82:c2:0f:71:ef:e8:0d:9a:42:60:ac:e7:8e:e9:
3e:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:B4:C0:58:74:00:12:63:38:00:3A:F6:4D:32:C9:51:1F:19:DD:09
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/YrTAWHQAEmM4ADr2TTLJUR8Z3Qk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.251.24.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:1f:ed:18:7c:20:71:a5:31:14:1c:bd:14:5e:e2:02:39:a7:
b6:42:f9:87:0b:5d:aa:31:88:53:3a:c6:24:d3:32:c9:d6:bb:
53:60:13:a3:fa:53:e0:f1:b2:11:45:ea:6e:6b:ca:1a:31:e8:
39:11:84:5f:7a:22:c3:1a:0e:00:29:4c:94:9a:93:fa:5c:82:
96:13:57:5d:28:a2:5d:53:62:aa:c7:10:af:13:3b:3e:00:80:
81:6f:3b:8a:ad:59:98:0d:b2:62:d7:e0:98:bc:dd:b8:d7:b3:
33:79:1c:f7:59:52:3b:44:75:da:e3:4d:db:34:55:3e:b2:92:
c3:c3:4e:5b:a3:03:37:67:2d:dc:9d:ba:cb:c0:8d:76:8a:93:
7c:3e:ac:4f:92:5f:31:eb:d7:59:b7:88:9c:2a:44:0a:2d:38:
c4:b6:51:92:9c:ea:7e:27:6b:e5:d9:d8:b3:69:af:c9:73:c1:
e4:78:ce:00:aa:ff:f0:57:8e:36:df:c8:f7:af:bb:3b:6e:49:
54:7d:25:4f:73:71:25:3a:a2:fc:60:4c:67:d0:e5:f4:cc:6d:
db:68:a1:89:33:62:9e:07:08:02:04:6e:21:fa:3a:5d:55:5d:
4a:b9:5e:15:89:64:d1:c9:f2:ed:4c:bc:33:21:92:71:ce:5a:
b1:b5:3a:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:06 2024 by rpki-client on console-ams.rpki-client.org