Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/YPspuEp9OTEpf6UDftvvQ0HIGho.roa
File: YPspuEp9OTEpf6UDftvvQ0HIGho.roa (raw, json)
Hash identifier: 0VSMzflKAQkCawuNShol2OHX1I1bVN+aLv6d8B3SkR0=
Subject key identifier: 60:FB:29:B8:4A:7D:39:31:29:7F:A5:03:7E:DB:EF:43:41:C8:1A:1A
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 0186D01B455339FFDF6346D949BD3A66558D
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/YPspuEp9OTEpf6UDftvvQ0HIGho.roa
Signing time: Sat 11 Mar 2023 09:58:13 +0000
ROA not before: Sat 11 Mar 2023 09:58:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 185.199.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 14 Jul 2023 17:14:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:d0:1b:45:53:39:ff:df:63:46:d9:49:bd:3a:66:55:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Mar 11 09:58:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=60fb29b84a7d3931297fa5037edbef4341c81a1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:14:57:85:dc:27:ec:51:0c:b9:d9:06:1b:a0:
be:43:43:f9:5e:41:2d:32:9d:f9:56:fc:b5:ed:10:
8c:1f:e3:72:ce:c9:5f:3d:a4:06:6f:ee:c3:ec:8c:
25:a5:e6:ca:87:88:34:e5:4d:be:7d:13:3a:97:dc:
28:80:d9:0e:89:30:56:76:b2:eb:7c:0b:8b:15:34:
2e:22:09:3b:f1:12:7c:ac:df:47:2f:ab:6b:f7:46:
af:2b:07:d4:5c:af:87:e7:b6:3e:d0:8d:ef:83:03:
47:73:b1:44:15:d2:bc:11:74:59:37:30:b0:99:7e:
0f:5d:0f:61:ed:9c:c1:81:a2:f6:41:74:bc:9c:aa:
9b:ae:8f:80:db:cf:cc:c4:f1:fd:0f:62:14:ec:a3:
1d:38:4c:52:92:0e:ef:ac:77:20:38:8f:20:8a:a3:
e4:db:9f:cf:ef:6e:99:58:4d:9c:62:bb:3b:4e:e2:
4a:48:80:3a:df:7e:7e:15:ac:10:6e:0b:7e:3d:9c:
11:06:62:5e:44:90:6f:f3:70:82:d8:3b:9c:88:ed:
02:55:58:6e:9b:3a:0f:08:82:66:9e:ab:0b:b7:af:
bb:30:66:d3:8f:de:de:00:06:b2:30:34:31:c0:ca:
b6:dd:0a:03:d1:4e:46:dd:0d:1e:e7:6a:52:b8:d3:
11:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:FB:29:B8:4A:7D:39:31:29:7F:A5:03:7E:DB:EF:43:41:C8:1A:1A
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/YPspuEp9OTEpf6UDftvvQ0HIGho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.151.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:64:ba:22:e3:95:92:4f:75:b2:38:a0:9e:08:46:aa:ce:13:
39:48:16:4b:5b:a5:b6:70:af:29:74:91:85:ae:cc:fa:6d:2d:
3e:9f:9d:32:3a:db:23:65:0c:f6:6d:89:d9:be:d8:82:c4:e1:
3c:3c:4e:4c:9a:8f:ca:70:69:47:8d:1a:7b:c4:1f:d4:e4:f0:
57:c2:f4:9f:3b:d0:2c:b3:fd:9b:54:84:34:14:9b:cb:9f:2a:
e1:0c:75:bb:55:06:29:31:1e:bb:60:dd:da:e7:5d:29:39:28:
2e:76:f8:3b:57:ce:13:b0:1f:1d:a2:93:56:70:5a:60:a9:f3:
36:37:80:83:75:4d:84:cb:a1:2a:c8:5e:90:2c:31:50:6a:84:
2f:5a:63:32:5c:3b:d0:68:b9:66:9f:ad:00:c8:cd:88:4b:4f:
79:e2:d8:22:e4:c1:04:ac:56:f8:54:14:eb:8e:7f:ba:bf:dd:
73:e0:bc:d7:d7:37:a5:a6:9d:10:9e:c0:80:e5:a1:5f:ed:b8:
dc:8d:17:96:c9:a8:a0:53:21:ad:6e:ca:60:2c:1e:bd:ab:32:
e5:fa:f9:56:ea:b0:e5:11:df:05:4b:4b:60:6a:39:30:e5:da:
75:7d:30:93:d5:fe:f8:06:17:69:ea:ad:50:30:cd:7d:51:99:
54:4e:97:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:13 2024 by rpki-client on console-fra.rpki-client.org