Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/fc7545-c5fa-43bd-8839-d185dec06012/1/yJg50kypIin1FA-g1LCG5z9I8Zw.roa
File: yJg50kypIin1FA-g1LCG5z9I8Zw.roa (raw, json)
Hash identifier: Vj9v7KZmGdOalQd8G0LYj2+BcX/Ie9QbzMBRG9S00Fg=
Subject key identifier: C8:98:39:D2:4C:A9:22:29:F5:14:0F:A0:D4:B0:86:E7:3F:48:F1:9C
Certificate issuer: /CN=366a9d542297577b37aa0c423195afe2a98e135d
Certificate serial: 0185730CA5378F3A4E8D0D443AE8705FB042
Authority key identifier: 36:6A:9D:54:22:97:57:7B:37:AA:0C:42:31:95:AF:E2:A9:8E:13:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NmqdVCKXV3s3qgxCMZWv4qmOE10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/fc7545-c5fa-43bd-8839-d185dec06012/1/yJg50kypIin1FA-g1LCG5z9I8Zw.roa
Signing time: Mon 02 Jan 2023 15:14:46 +0000
ROA not before: Mon 02 Jan 2023 15:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 143.55.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:0c:a5:37:8f:3a:4e:8d:0d:44:3a:e8:70:5f:b0:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=366a9d542297577b37aa0c423195afe2a98e135d
Validity
Not Before: Jan 2 15:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c89839d24ca92229f5140fa0d4b086e73f48f19c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:6b:e3:8d:a7:ca:6c:34:ba:52:eb:0c:11:a9:
3b:de:55:d7:ae:40:a5:99:35:7a:b7:e7:f5:18:06:
ee:f4:89:fe:05:59:ab:6a:94:3a:98:73:45:7c:92:
ea:b9:1f:c8:1c:bb:97:0c:fc:53:60:c2:45:d8:04:
21:df:1d:51:98:01:29:d5:60:98:d9:49:b0:5f:1b:
33:98:de:a2:d1:3d:48:0e:11:d5:87:71:9d:37:19:
b4:9e:db:3d:8e:75:8f:d6:7f:cb:89:04:e6:c8:6c:
cc:2d:3c:da:83:aa:91:c6:e6:8a:0e:27:65:e1:b3:
88:cb:9a:26:d2:f1:2c:30:f3:e5:94:53:34:8d:4e:
c3:5d:45:70:93:55:37:84:ff:81:72:13:c3:02:d6:
53:8f:b5:eb:de:c7:10:b3:ba:42:31:f2:db:15:ad:
8d:4d:64:cc:af:b4:88:fb:26:1b:bf:e5:42:ed:58:
b2:7d:43:88:af:7c:ff:ff:e9:df:d5:bf:d0:f8:a6:
9f:3d:dd:bb:ec:5b:ae:d7:05:ca:6b:71:7b:72:5e:
9e:a1:89:fb:52:b4:32:e1:98:10:2b:c0:d7:51:d4:
af:b0:28:44:42:74:b6:98:4b:89:79:b2:4c:da:ed:
9e:c8:fa:b0:b4:55:69:f6:b2:3e:3f:cb:10:37:c8:
4c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:98:39:D2:4C:A9:22:29:F5:14:0F:A0:D4:B0:86:E7:3F:48:F1:9C
X509v3 Authority Key Identifier:
keyid:36:6A:9D:54:22:97:57:7B:37:AA:0C:42:31:95:AF:E2:A9:8E:13:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NmqdVCKXV3s3qgxCMZWv4qmOE10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/fc7545-c5fa-43bd-8839-d185dec06012/1/yJg50kypIin1FA-g1LCG5z9I8Zw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/fc7545-c5fa-43bd-8839-d185dec06012/1/NmqdVCKXV3s3qgxCMZWv4qmOE10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
143.55.151.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:44:46:4b:8b:a5:8b:85:4b:d9:57:87:bb:f0:f1:38:0e:3c:
ce:1f:06:75:98:20:1e:a9:01:3b:9c:a1:e3:d9:1a:06:ba:2c:
35:32:5e:c4:27:55:1e:2e:0d:e4:29:a7:34:76:fa:e1:81:7a:
16:8b:8e:9f:84:b4:3c:d4:4c:8f:f0:99:cd:9a:1b:d0:87:e9:
e2:d5:fb:5f:ff:4f:cf:fc:a4:a2:ef:c0:58:73:f3:95:34:c5:
09:5f:86:1e:94:8f:ea:9c:7c:c9:8c:24:cd:0d:f5:da:fb:ee:
6d:31:30:79:f8:72:72:51:85:8d:dc:f1:6a:71:95:c1:af:ed:
39:54:bd:2d:68:88:6e:c7:94:09:10:c6:14:b3:8e:ff:57:2c:
30:ba:fa:38:14:44:33:28:a1:01:55:30:18:4d:76:f7:4f:b2:
0d:c2:9f:57:f1:ae:3a:08:4b:1d:5c:6c:9c:82:68:51:3b:11:
0b:84:aa:82:6e:51:08:e8:5f:bb:cd:49:9f:61:c7:4c:72:be:
1b:f2:48:85:a6:02:7b:48:78:2b:17:3e:e2:fc:de:58:17:ea:
2f:00:12:6b:05:21:78:e7:5d:d0:46:a1:27:19:89:b1:5a:00:
4a:dc:48:96:59:57:45:92:9e:34:a9:0e:b1:e3:f3:fe:39:22:
f1:ba:40:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:50 2024 by rpki-client on console-fra.rpki-client.org