Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/29ca77-876a-4beb-8cfd-35f6faa1500e/1/YO0OSJtH3GaPn4kqJZsgdZGtlcs.roa
File: YO0OSJtH3GaPn4kqJZsgdZGtlcs.roa (raw, json)
Hash identifier: VEC0ISTMmW8hrNbEYLYwvJwdAePCKu3MJo5rLZ/EtmY=
Subject key identifier: 60:ED:0E:48:9B:47:DC:66:8F:9F:89:2A:25:9B:20:75:91:AD:95:CB
Certificate issuer: /CN=eb81f2566177790fad880d610e37cdd209847207
Certificate serial: 01856DEF79A6FE0815A9E71C201695B2F9D3
Authority key identifier: EB:81:F2:56:61:77:79:0F:AD:88:0D:61:0E:37:CD:D2:09:84:72:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/64HyVmF3eQ-tiA1hDjfN0gmEcgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/29ca77-876a-4beb-8cfd-35f6faa1500e/1/YO0OSJtH3GaPn4kqJZsgdZGtlcs.roa
Signing time: Sun 01 Jan 2023 15:24:48 +0000
ROA not before: Sun 01 Jan 2023 15:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7029
IP address blocks: 185.217.39.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ef:79:a6:fe:08:15:a9:e7:1c:20:16:95:b2:f9:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb81f2566177790fad880d610e37cdd209847207
Validity
Not Before: Jan 1 15:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=60ed0e489b47dc668f9f892a259b207591ad95cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:15:28:8a:a1:99:d1:ca:98:c0:4a:c4:66:89:
f9:8c:fe:56:93:65:32:02:76:57:9e:e0:98:23:34:
e9:a5:63:af:30:b6:8a:f9:19:0d:0a:ed:30:d8:f0:
72:76:24:bf:2d:0e:12:62:ea:f7:5f:53:6c:4c:ad:
ec:0f:33:4f:8f:d1:12:e5:5d:a8:a5:a7:06:b6:e6:
e0:2f:5b:69:b1:1c:92:af:39:55:ea:85:43:49:dc:
84:01:00:7b:47:04:f9:ec:c9:a9:52:84:88:ea:54:
45:8a:b4:88:f2:fe:95:3a:f5:fc:97:e0:e5:1a:a7:
7e:47:8d:96:b7:55:59:81:57:9d:42:68:01:1a:9c:
8c:e7:dc:68:b8:fe:5d:b9:34:65:69:ad:dc:42:ce:
35:11:ed:b8:f6:90:3a:b1:5c:9d:6c:34:68:06:49:
59:57:2a:e9:29:87:62:09:f1:52:b5:43:b6:17:57:
37:1f:e7:d7:c5:72:c9:ab:79:47:da:c3:12:5d:96:
a0:e6:fa:12:25:2b:5c:b7:34:c8:08:3f:4a:76:e9:
c7:45:bb:c9:44:6c:bf:74:f3:21:1d:03:de:a4:cc:
17:e8:aa:3b:0f:28:4b:1a:00:e3:95:d9:12:cd:de:
b1:5e:25:c9:b6:8e:63:eb:43:c3:67:2f:fa:bd:41:
eb:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:ED:0E:48:9B:47:DC:66:8F:9F:89:2A:25:9B:20:75:91:AD:95:CB
X509v3 Authority Key Identifier:
keyid:EB:81:F2:56:61:77:79:0F:AD:88:0D:61:0E:37:CD:D2:09:84:72:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/64HyVmF3eQ-tiA1hDjfN0gmEcgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/29ca77-876a-4beb-8cfd-35f6faa1500e/1/YO0OSJtH3GaPn4kqJZsgdZGtlcs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/29ca77-876a-4beb-8cfd-35f6faa1500e/1/64HyVmF3eQ-tiA1hDjfN0gmEcgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.39.0/24
Signature Algorithm: sha256WithRSAEncryption
17:7c:60:46:63:6b:3d:f2:65:5e:f2:c3:48:40:f3:61:52:7e:
9e:06:76:a3:32:c5:7a:7b:e3:88:3d:10:0e:34:1b:6b:00:02:
6e:5f:a8:9f:93:b0:15:93:8f:07:6f:c1:5a:ab:71:8e:38:42:
f2:98:df:bb:b7:fb:c4:a4:6c:65:1b:91:c7:0d:59:ff:f4:b6:
0c:bd:e8:5e:3a:96:6f:5f:e3:34:9b:0d:4f:4c:62:99:9f:b4:
25:5b:66:e3:6d:38:bc:55:b7:80:9d:98:1e:ac:03:bd:c9:78:
eb:26:9c:19:aa:6e:e8:16:f8:8a:5f:ec:4e:4b:f5:c6:dd:67:
6b:0b:9d:8e:dd:30:26:2a:cd:36:ca:99:c9:ca:e2:e8:8c:cd:
b7:f7:bd:94:58:24:08:95:3e:2f:8a:1d:8f:b6:c6:a8:93:87:
27:de:e1:85:27:18:d6:37:c7:0f:b6:f8:bc:78:62:0e:d8:7a:
92:f0:a4:0b:b3:ac:70:46:53:d1:78:a7:31:f0:01:ad:5d:81:
9e:d9:39:d6:e1:57:18:7a:10:50:e4:19:50:a5:d3:0a:d9:55:
31:40:3a:1d:4a:63:50:ed:46:71:eb:aa:13:0d:ea:1b:c7:5c:
a6:a9:47:87:eb:fc:7b:54:73:7c:52:52:99:e1:56:90:e7:33:
43:73:11:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:00 2023 by rpki-client on console-fra.rpki-client.org