Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/ySuYahMLwHuHmmZfJuBdHNZc9HY.roa
File: ySuYahMLwHuHmmZfJuBdHNZc9HY.roa (raw, json)
Hash identifier: qXeXPLQEvoG5hU0NJMA+4gIKTWi8zqlVEMVwwg49mUM=
Subject key identifier: C9:2B:98:6A:13:0B:C0:7B:87:9A:66:5F:26:E0:5D:1C:D6:5C:F4:76
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018D65BF12ECA2AE904B66769344FABDF104
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/ySuYahMLwHuHmmZfJuBdHNZc9HY.roa
Signing time: Thu 01 Feb 2024 17:37:17 +0000
ROA not before: Thu 01 Feb 2024 17:37:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210512
IP address blocks: 193.32.152.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 22 Feb 2024 17:41:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:65:bf:12:ec:a2:ae:90:4b:66:76:93:44:fa:bd:f1:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Feb 1 17:37:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c92b986a130bc07b879a665f26e05d1cd65cf476
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:65:c4:8a:db:b6:81:59:a1:b4:69:63:fd:80:
3d:4d:d6:53:4f:68:f4:24:21:13:73:09:63:cf:34:
75:cd:ab:9f:78:ea:25:3b:be:c8:44:c2:82:27:8c:
df:e8:f7:66:32:60:26:38:17:9c:37:af:66:ec:33:
cb:05:d3:0a:41:16:b9:f6:38:01:db:84:00:9d:a7:
eb:2a:b8:ac:4a:3b:61:8c:17:ac:08:4d:92:26:ef:
bf:a1:83:a2:b4:dc:9c:b1:11:43:83:f6:09:e2:71:
63:b5:27:98:85:9f:a7:ed:5c:95:8d:74:fe:0a:54:
73:d9:33:77:c7:9e:2b:d0:e2:a4:d8:c4:02:26:79:
33:1a:56:c4:93:fd:a9:4a:f2:78:a4:4e:ff:ca:a0:
e2:68:ee:ef:9a:21:c5:77:1a:07:69:88:d4:cf:ce:
d4:c2:11:6d:90:f5:88:ce:de:33:08:0c:0e:b1:b8:
86:74:c6:87:fd:66:86:90:33:e1:11:45:8a:da:42:
51:a2:3c:e5:f9:7c:d4:d6:2f:d9:b2:5b:15:f2:73:
21:bd:56:7a:14:c1:7c:fe:bf:40:83:f4:03:37:bd:
fb:9b:fd:43:18:30:04:90:51:a9:3c:88:b1:be:2b:
a4:4b:f2:c6:ed:f8:39:9d:1e:7b:60:f6:f1:7b:b0:
53:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:2B:98:6A:13:0B:C0:7B:87:9A:66:5F:26:E0:5D:1C:D6:5C:F4:76
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/ySuYahMLwHuHmmZfJuBdHNZc9HY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.32.152.0/22
Signature Algorithm: sha256WithRSAEncryption
1d:d3:4a:33:e7:e2:e6:91:61:5c:3e:e6:f5:9d:64:2b:06:83:
b0:99:5e:58:00:d9:20:9e:d5:eb:61:c8:62:a2:c4:8a:26:6c:
51:5c:02:b1:18:6c:84:7e:59:6e:3e:06:23:01:19:ba:9a:57:
39:73:ec:ac:7a:6b:97:4e:30:73:d1:55:ec:14:b9:5b:47:16:
d3:af:44:b2:27:d3:12:50:b4:76:88:37:62:4f:b4:ff:fb:20:
96:65:cc:40:27:e4:00:c4:f2:55:73:0f:d7:37:be:f4:4f:c8:
45:cb:8e:b3:4b:cd:0f:ce:21:c2:77:b8:39:36:db:72:8e:1f:
ec:0e:ab:6e:63:06:18:73:27:6e:04:23:a8:11:ae:4f:bf:5f:
86:a6:2c:c8:d2:45:36:27:c1:24:70:f4:44:ef:c5:41:f8:55:
20:14:08:db:e1:07:26:93:2e:4c:49:d8:1c:b8:18:f8:66:17:
07:d7:3d:ce:9d:46:d7:88:26:84:bd:fd:89:20:37:59:34:4a:
a5:5e:31:b1:ad:09:91:6c:f7:cc:80:c5:69:54:12:b0:9a:35:
60:25:4f:fe:c0:d0:42:71:a7:0c:cb:37:a7:1a:62:3d:4e:cd:
83:ac:76:a7:4f:26:ed:a2:4f:14:2a:45:57:f4:34:9a:0b:f9:
77:a2:5e:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:00 2024 by rpki-client on console-ams.rpki-client.org