Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/Y_oxVaMfrnHlmKGcCdFxuGPt1sk.roa
File: Y_oxVaMfrnHlmKGcCdFxuGPt1sk.roa (raw, json)
Hash identifier: 96AJhQompNoobzelHuQQT2ID9ORlOpigqhBnM2Qj6dg=
Subject key identifier: 63:FA:31:55:A3:1F:AE:71:E5:98:A1:9C:09:D1:71:B8:63:ED:D6:C9
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 01856F42ADC8471ED15CACCF010DB08C2274
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/Y_oxVaMfrnHlmKGcCdFxuGPt1sk.roa
Signing time: Sun 01 Jan 2023 21:35:18 +0000
ROA not before: Sun 01 Jan 2023 21:35:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204300
IP address blocks: 94.131.28.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:ad:c8:47:1e:d1:5c:ac:cf:01:0d:b0:8c:22:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Jan 1 21:35:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=63fa3155a31fae71e598a19c09d171b863edd6c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:e7:37:7e:e8:59:f4:9f:ec:31:37:82:12:d1:
a6:50:db:0d:c6:83:d7:1b:9d:31:35:23:c8:1a:d0:
9f:92:34:48:f2:6d:79:58:54:fe:05:13:b5:bc:67:
36:38:00:b1:49:15:47:89:a8:c7:13:a6:4a:70:36:
c1:a7:da:3b:93:fc:1a:ea:42:8f:a8:80:13:08:97:
87:58:1b:4e:56:49:b1:ca:dd:4b:9e:17:b1:0d:20:
8d:ab:48:37:e7:b4:04:0f:d9:09:a1:29:2d:2b:9b:
7f:84:19:cb:90:4f:5a:68:48:a7:a1:d2:a9:63:13:
bf:71:fc:1e:71:5d:38:08:cb:d1:1d:8b:3d:bb:ba:
d0:7f:df:1f:15:0e:4b:fc:9c:01:c8:8e:67:ff:b5:
ef:13:69:23:66:d1:e0:e3:1e:5c:69:e2:7a:41:4f:
29:2c:83:85:5a:e0:71:d7:c4:66:0d:33:99:c7:dd:
93:1e:e5:d7:fa:c4:95:41:6e:a6:8c:92:f3:49:90:
ef:57:d5:3f:f2:07:50:ff:f2:b6:8b:7f:05:b3:25:
e4:60:41:05:25:41:38:6c:f5:84:53:50:3c:39:8d:
18:27:e9:5f:07:19:b7:87:c4:e8:6c:55:34:7c:93:
f8:68:9a:82:af:1f:0f:af:94:be:88:3a:64:be:26:
cf:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:FA:31:55:A3:1F:AE:71:E5:98:A1:9C:09:D1:71:B8:63:ED:D6:C9
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/Y_oxVaMfrnHlmKGcCdFxuGPt1sk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.131.28.0/22
Signature Algorithm: sha256WithRSAEncryption
73:83:f3:6b:8c:7f:bd:46:c7:6d:ba:5d:76:85:c4:00:6c:56:
0e:ce:62:1e:2f:e2:30:0a:07:5d:23:03:3f:f3:5a:f4:e5:59:
cb:80:f1:77:6c:68:70:63:3a:33:d2:8e:4e:1e:d4:8f:c2:94:
a3:98:56:5f:d3:b0:43:95:bd:ec:ef:12:ff:b3:c7:25:24:f3:
42:f7:23:4f:82:21:c8:38:96:ed:29:f0:66:91:56:0b:c7:03:
40:c1:af:ba:4c:05:25:14:36:61:79:1e:28:de:b3:cf:51:43:
57:87:c6:8c:b4:d9:39:f9:ea:05:6d:54:89:63:21:35:b5:31:
c6:51:91:00:bd:2f:b1:14:1a:c4:c9:7e:44:03:53:b5:7c:40:
cb:74:4e:65:4e:ea:b8:0c:47:2b:00:ca:d0:06:95:bd:37:8d:
2c:20:bc:dd:1f:b8:4a:6b:4a:a6:cf:45:f6:2c:73:9e:07:ad:
f8:ac:81:39:c2:6f:03:fa:72:ed:95:e8:90:50:8c:3f:1e:29:
cf:9c:da:df:d8:1a:97:7f:d2:30:01:c9:d3:25:81:ad:51:5c:
46:1b:c6:05:85:f1:33:a4:6c:20:90:54:3d:13:64:10:63:01:
56:c5:21:a2:20:1f:03:00:03:a7:22:fb:e4:0e:72:53:2d:62:
73:fc:9b:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:58 2024 by rpki-client on console-fra.rpki-client.org