Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/y2pbTs2vJCWGD0dvn7s_Qdra5bg.roa
File: y2pbTs2vJCWGD0dvn7s_Qdra5bg.roa (raw, json)
Hash identifier: pJEQmnCu/miwrT5qN9GfEoVZfIIGaQTvJ7YAyY5eLDU=
Subject key identifier: CB:6A:5B:4E:CD:AF:24:25:86:0F:47:6F:9F:BB:3F:41:DA:DA:E5:B8
Certificate issuer: /CN=37fb004e397ddf04e7d05f3643a036f21836ff10
Certificate serial: 01856D6619AC83B87B50DB3709E9B0B06410
Authority key identifier: 37:FB:00:4E:39:7D:DF:04:E7:D0:5F:36:43:A0:36:F2:18:36:FF:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N_sATjl93wTn0F82Q6A28hg2_xA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/y2pbTs2vJCWGD0dvn7s_Qdra5bg.roa
Signing time: Sun 01 Jan 2023 12:54:45 +0000
ROA not before: Sun 01 Jan 2023 12:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51278
IP address blocks: 195.226.217.0/24 maxlen: 24
2001:67c:278::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:66:19:ac:83:b8:7b:50:db:37:09:e9:b0:b0:64:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37fb004e397ddf04e7d05f3643a036f21836ff10
Validity
Not Before: Jan 1 12:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb6a5b4ecdaf2425860f476f9fbb3f41dadae5b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:2a:e1:38:5b:64:15:87:d4:42:ac:45:68:4f:
bd:25:85:d8:95:19:39:c1:2d:9f:a7:f0:32:d9:55:
d4:09:d5:c0:af:93:f6:7a:0e:73:72:95:bb:5d:3a:
ce:b4:68:4a:6d:6f:8d:c0:ab:99:50:4f:94:6c:d8:
32:57:e0:1f:4f:b4:e6:52:6a:6e:83:df:be:78:00:
bf:33:8d:36:90:f5:d2:d2:c3:c0:7f:4d:19:f8:80:
eb:e9:1b:f9:82:e2:55:37:3b:23:a3:4e:4b:06:85:
64:b9:07:ad:24:d4:b9:c7:7d:f2:d0:a8:89:7a:21:
8e:90:3f:50:d0:ca:ca:18:74:63:0d:09:be:c3:d9:
e0:bd:ee:1d:50:25:f6:97:85:13:b0:c8:a7:3f:43:
d9:02:6a:52:19:0b:db:d0:05:a6:74:cd:c4:f9:38:
c2:c9:90:3c:9c:36:ea:11:9a:fc:53:35:0c:f7:e4:
ac:8e:4b:b1:08:b8:23:43:9a:b8:3f:ec:dc:77:f9:
40:16:c3:e0:a9:08:13:fe:e2:b1:4f:4d:22:ae:34:
52:59:91:be:93:c8:07:fd:0d:da:5a:94:55:2b:d4:
95:e5:06:70:52:e9:ad:0e:01:45:a5:cc:d0:cc:dd:
e4:6d:9d:9d:72:b1:f5:00:b4:a4:98:13:2c:27:b8:
ce:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:6A:5B:4E:CD:AF:24:25:86:0F:47:6F:9F:BB:3F:41:DA:DA:E5:B8
X509v3 Authority Key Identifier:
keyid:37:FB:00:4E:39:7D:DF:04:E7:D0:5F:36:43:A0:36:F2:18:36:FF:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N_sATjl93wTn0F82Q6A28hg2_xA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/y2pbTs2vJCWGD0dvn7s_Qdra5bg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/742299-f343-4321-b351-b53b64cf0d95/1/N_sATjl93wTn0F82Q6A28hg2_xA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.226.217.0/24
IPv6:
2001:67c:278::/48
Signature Algorithm: sha256WithRSAEncryption
20:09:9f:3e:24:95:28:ab:7c:9b:99:e4:e2:cd:4e:e9:7a:e0:
7d:66:5d:8c:f5:0d:fb:74:07:c3:34:c5:f5:34:eb:69:26:5c:
2c:00:e0:8f:85:94:0b:7f:bd:e8:7e:0a:10:d7:0a:ad:53:fa:
7f:95:dd:fd:4c:57:af:38:83:df:b2:4a:c7:7e:6b:4b:ef:8c:
fd:e0:c2:21:f2:44:53:5c:e7:4e:3c:d7:96:d0:fd:b9:d9:69:
c3:c1:e1:bd:76:6f:82:f0:28:98:83:42:1a:fb:9e:07:de:fd:
d2:10:42:9a:5c:e7:ba:42:f6:4b:49:8e:d9:60:f1:03:4d:dd:
80:cd:a0:23:5f:dc:f9:5e:f0:33:ae:5f:0f:0d:3b:6c:f2:0b:
15:80:d9:e4:74:27:ab:1c:f2:d8:9d:fd:19:36:f8:ac:82:89:
01:27:45:6f:50:f6:3e:21:ea:c1:d7:70:02:e5:2e:a9:40:cd:
d6:85:60:60:51:bc:79:8c:b9:58:22:7c:62:9e:30:7f:73:c6:
e3:4e:f2:f4:1b:3b:2e:87:c2:8e:2d:86:18:97:03:fd:62:76:
fd:f5:de:19:0c:02:c9:ba:70:8c:29:93:13:cb:0c:8e:80:cc:
a8:91:25:2e:7b:0d:51:2e:1d:6d:ec:e5:7d:29:ab:ae:b8:0f:
a2:c3:35:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:56 2024 by rpki-client on console-ams.rpki-client.org