Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/YpL2FcJgGQ10x-Os6kC6bGflVAE.roa
File: YpL2FcJgGQ10x-Os6kC6bGflVAE.roa (raw, json)
Hash identifier: eP/06aOCVPn9+C3MZaWysXhsuQomRSlWvztLCRH0zfI=
Subject key identifier: 62:92:F6:15:C2:60:19:0D:74:C7:E3:AC:EA:40:BA:6C:67:E5:54:01
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018CC16FCAB966138BF16417B973FF2F3F2D
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/YpL2FcJgGQ10x-Os6kC6bGflVAE.roa
Signing time: Sun 31 Dec 2023 19:52:58 +0000
ROA not before: Sun 31 Dec 2023 19:52:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44620
IP address blocks: 5.144.177.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c1:6f:ca:b9:66:13:8b:f1:64:17:b9:73:ff:2f:3f:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Dec 31 19:52:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6292f615c260190d74c7e3acea40ba6c67e55401
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:74:db:50:49:81:5c:b4:22:15:f1:94:0c:cb:
23:9f:4e:2f:3c:06:95:a7:0b:fd:42:6a:ea:13:a2:
73:9e:3c:27:5e:fd:1e:63:3c:b3:e6:bd:94:1e:dc:
52:cf:91:c0:27:a4:2c:42:01:3f:1d:de:e8:73:9f:
8d:03:9d:6b:9b:fa:e5:8e:06:fc:7b:3b:67:c9:e6:
05:9b:40:ca:64:7d:7e:a9:12:22:64:7b:8c:40:d6:
d1:7d:0d:ae:ef:c6:6f:7c:89:81:7f:fd:32:83:9c:
99:12:ed:2a:61:1f:ab:b7:1a:1d:71:57:8c:68:82:
02:68:c2:80:de:01:3d:86:ce:72:07:a0:36:10:8e:
46:28:dd:73:ad:3b:1f:f8:49:8f:a9:68:b8:02:0d:
dc:58:0a:ca:cc:10:34:e0:d7:f4:a4:42:88:50:09:
13:17:f8:e2:61:38:07:8a:72:8a:7e:d6:d5:a6:84:
09:58:a6:28:34:15:99:cd:63:e2:e1:e7:e0:1f:bb:
f7:54:fe:b8:54:20:e3:35:88:a0:f3:f7:a2:92:8d:
7d:67:76:e0:54:e6:0b:87:46:6a:eb:09:12:76:45:
5c:5b:23:31:a2:b8:d4:d7:e8:41:1d:eb:04:d4:bd:
2a:30:09:e7:fe:cf:be:fb:cd:0b:70:3e:7b:23:89:
d0:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:92:F6:15:C2:60:19:0D:74:C7:E3:AC:EA:40:BA:6C:67:E5:54:01
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/YpL2FcJgGQ10x-Os6kC6bGflVAE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.177.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:ef:a5:6b:78:9c:c1:ad:dd:53:c1:7e:fc:74:2e:0f:77:f7:
3f:9a:77:f5:f2:83:04:26:de:6c:9e:80:c4:54:d5:2e:83:cf:
bc:9d:91:06:b5:13:03:9a:06:b0:94:cd:fe:ab:a8:fc:fd:4c:
9e:61:bd:a7:bc:53:54:84:ec:be:08:9a:b7:6f:bb:23:dd:5b:
15:8c:32:b1:1f:65:79:8f:6a:87:dc:48:ff:b9:3e:65:be:96:
2f:35:d1:4e:67:db:3f:dd:d9:21:3f:7f:ff:90:17:b8:1f:a8:
78:9a:67:b6:88:9e:2a:8b:e6:bb:a8:d4:4f:4e:9d:bb:2b:14:
d9:e3:ab:2e:2d:f2:84:b7:c6:ec:17:5e:5c:ed:64:08:5c:ec:
df:f5:26:57:54:c6:04:51:a5:1a:d7:f0:bc:89:0c:c8:2e:4c:
fd:4e:ff:d5:40:ab:20:a3:a8:7e:6c:2b:e7:07:85:69:31:ac:
41:78:93:98:cc:a1:a8:7b:aa:c1:6f:96:d5:84:10:54:e9:1e:
0a:ab:29:a7:8f:a5:a1:85:6f:6e:b2:3a:50:05:cd:d0:40:e6:
bc:05:3b:03:b7:f2:01:96:ae:e5:dc:ca:f8:5b:1b:72:9c:7c:
71:c8:66:45:fc:eb:8e:41:ea:a6:02:a9:56:a0:08:9a:33:ee:
c0:7d:df:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:33 2024 by rpki-client on console-fra.rpki-client.org