Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/433127-e2cf-41a1-9913-7a0f72cbb2d5/1/YwuKu1LuL6Q73JhPQ17WcJE1IEM.roa
File: YwuKu1LuL6Q73JhPQ17WcJE1IEM.roa (raw, json)
Hash identifier: kEvwsCfIN+vqU71V36hGrXnkfYwyPoCP6lH18V4TFeg=
Subject key identifier: 63:0B:8A:BB:52:EE:2F:A4:3B:DC:98:4F:43:5E:D6:70:91:35:20:43
Certificate issuer: /CN=38b59daedd43cc9575ac35953e3f396e21bb6d80
Certificate serial: 0185727134BD96DE6C1E1E0228D2F3492D58
Authority key identifier: 38:B5:9D:AE:DD:43:CC:95:75:AC:35:95:3E:3F:39:6E:21:BB:6D:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLWdrt1DzJV1rDWVPj85biG7bYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/433127-e2cf-41a1-9913-7a0f72cbb2d5/1/YwuKu1LuL6Q73JhPQ17WcJE1IEM.roa
Signing time: Mon 02 Jan 2023 12:24:59 +0000
ROA not before: Mon 02 Jan 2023 12:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61309
IP address blocks: 45.147.42.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:34:bd:96:de:6c:1e:1e:02:28:d2:f3:49:2d:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b59daedd43cc9575ac35953e3f396e21bb6d80
Validity
Not Before: Jan 2 12:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=630b8abb52ee2fa43bdc984f435ed67091352043
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:5c:44:5c:97:04:11:e2:3a:0c:0c:48:3e:25:
f1:c2:d7:3e:92:d8:8b:ca:a2:b4:32:22:c8:7c:64:
ce:4d:21:9a:a8:af:14:e8:ed:a3:27:9f:36:57:29:
c0:ba:b3:36:34:5b:aa:99:07:49:02:0d:cd:55:18:
bb:d1:9f:a4:25:41:ec:61:e4:d1:a7:a0:18:31:d9:
c5:be:7a:73:a6:1c:46:8c:49:a3:91:82:a6:87:cb:
d4:ba:6c:be:53:41:d5:71:cb:2d:44:83:fc:a5:cb:
e9:43:d7:c5:ee:b3:3e:fd:ea:52:9d:38:2d:37:c6:
eb:c7:63:f7:f5:c9:89:44:f2:c9:5c:0b:6b:e2:97:
54:04:37:7d:09:81:c8:9b:be:35:69:27:1f:be:ae:
a1:b1:d6:ee:cb:5f:41:47:9d:d3:22:9b:34:19:98:
34:8a:4b:2d:25:a8:ed:a4:0d:37:ef:85:20:53:cd:
02:3d:a0:51:af:f9:b7:26:38:2a:66:87:72:ff:33:
7f:58:19:b3:53:aa:76:a4:06:46:f4:21:c4:6f:75:
18:43:71:2b:9e:90:c4:b9:b7:8d:be:44:0a:26:66:
ba:ab:f0:6e:2a:b5:dd:d5:85:58:5a:9e:60:f5:08:
d7:62:d1:c2:e2:bb:1a:25:58:72:5d:39:c8:7a:30:
b2:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:0B:8A:BB:52:EE:2F:A4:3B:DC:98:4F:43:5E:D6:70:91:35:20:43
X509v3 Authority Key Identifier:
keyid:38:B5:9D:AE:DD:43:CC:95:75:AC:35:95:3E:3F:39:6E:21:BB:6D:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLWdrt1DzJV1rDWVPj85biG7bYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/433127-e2cf-41a1-9913-7a0f72cbb2d5/1/YwuKu1LuL6Q73JhPQ17WcJE1IEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/433127-e2cf-41a1-9913-7a0f72cbb2d5/1/OLWdrt1DzJV1rDWVPj85biG7bYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.42.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:c1:54:39:78:04:2e:02:4d:22:64:02:ae:f7:86:1e:cf:c6:
28:0a:86:ac:28:e7:6e:57:98:b5:85:63:8e:2d:1d:bc:c4:1f:
b1:75:eb:cc:c0:c2:d4:5f:2a:7b:1a:15:41:76:78:ed:fc:30:
78:08:f2:aa:ac:cf:67:26:19:67:cb:35:5f:33:16:fc:f2:37:
b7:45:55:22:6e:7e:3a:da:ac:3b:24:84:5e:f2:93:e4:4e:ef:
67:6d:af:e0:b7:e4:a1:5e:7c:74:b6:68:2e:ae:4e:4a:9d:5e:
45:3f:10:88:dc:ff:d0:8e:86:e2:c5:8b:00:5e:cb:89:df:b8:
f4:f2:a8:c3:d9:c5:a9:15:32:98:f4:61:b5:14:e9:dc:94:e3:
ad:33:4e:89:12:0c:04:0d:3a:47:f8:2d:16:84:23:b8:8e:e7:
19:d9:97:44:b3:19:e3:af:3c:47:bd:60:7c:92:d1:8c:51:bc:
df:52:8d:88:94:1e:c9:4b:5b:aa:87:61:9e:ec:a5:fd:6d:81:
18:e0:36:c7:fb:dc:61:fe:a0:06:e9:5a:7d:15:7a:fe:98:63:
9f:be:a3:84:7a:62:9f:2b:b9:59:5c:55:4d:f0:bf:ce:24:0a:
58:fc:dc:32:7e:35:0f:29:7f:5b:b5:03:77:ac:34:39:40:7d:
d6:69:38:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:23 2024 by rpki-client on console-ams.rpki-client.org