Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/YuhbFwZmjT1vYsjZRmrK-5i8zDk.roa
File: YuhbFwZmjT1vYsjZRmrK-5i8zDk.roa (raw, json)
Hash identifier: caQa1KhVr4bg4Pav6Yf+KOo68TQf8JUUVEBAIRa0F2w=
Subject key identifier: 62:E8:5B:17:06:66:8D:3D:6F:62:C8:D9:46:6A:CA:FB:98:BC:CC:39
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 018571D7D8C11CEC4A0C56F27EE569D574BD
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/YuhbFwZmjT1vYsjZRmrK-5i8zDk.roa
Signing time: Mon 02 Jan 2023 09:37:29 +0000
ROA not before: Mon 02 Jan 2023 09:37:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60781
IP address blocks: 109.121.44.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:d8:c1:1c:ec:4a:0c:56:f2:7e:e5:69:d5:74:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Jan 2 09:37:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62e85b1706668d3d6f62c8d9466acafb98bccc39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:81:cf:d7:c3:c7:66:53:da:b9:30:03:d5:a8:
11:e1:fc:49:05:20:c0:75:6e:8d:32:97:6e:a9:6d:
58:75:d8:ec:76:a1:f7:e9:af:da:4d:5d:d7:37:7d:
29:cb:dc:6f:59:01:67:2e:75:7d:20:3f:2f:18:69:
94:8b:28:2e:2f:65:bb:72:cf:f0:ba:17:1e:8a:e2:
99:6b:fd:ef:63:40:f6:52:7d:6c:52:61:03:7f:94:
cc:cf:2b:09:2f:7c:e3:be:f4:78:6d:ba:27:09:8a:
9f:bf:f8:20:c0:f9:24:bf:03:2c:72:7e:ea:51:74:
12:24:56:e6:82:d1:89:b3:75:69:74:82:dc:79:1b:
e8:4d:a9:21:90:14:36:68:fa:56:29:62:f4:83:d1:
7f:41:4d:a5:b3:18:34:2f:78:4c:59:32:73:9e:92:
87:e2:b1:71:3a:7f:26:85:d4:22:da:7d:5b:16:c6:
ab:99:95:14:ed:ec:25:2c:0d:61:25:45:a1:e6:3d:
69:4a:2a:36:b5:97:3b:94:60:8d:5d:a0:78:bb:de:
68:9e:c9:bc:ab:2f:ed:50:c6:e9:60:45:ec:b2:c3:
ba:76:f8:f6:c8:e0:14:f0:f7:11:7c:79:ef:21:ed:
fd:8d:d4:e4:75:7d:cd:be:42:86:c3:64:16:b8:94:
f3:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:E8:5B:17:06:66:8D:3D:6F:62:C8:D9:46:6A:CA:FB:98:BC:CC:39
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/YuhbFwZmjT1vYsjZRmrK-5i8zDk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.121.44.0/24
Signature Algorithm: sha256WithRSAEncryption
67:94:aa:23:95:a3:cc:c0:ff:e4:90:d6:60:64:9f:e5:4a:07:
d3:5b:cf:3b:e2:98:9c:80:9f:4b:62:2c:30:3a:78:0a:a4:c1:
40:03:64:08:b7:f3:d1:94:10:8e:d1:f7:04:4d:6f:3a:7c:c7:
b5:1e:17:60:29:85:08:c9:17:ed:00:8d:24:b0:7f:e1:d3:43:
53:7a:29:76:60:71:16:4f:29:e4:d2:76:32:2e:fd:b6:45:05:
97:a8:91:bd:4c:95:86:c1:19:88:e3:25:57:11:e8:75:7a:07:
d5:11:01:d6:0e:12:d0:12:5d:24:62:33:fe:97:bc:4c:8f:0a:
a0:42:68:db:72:a9:91:33:04:03:59:f3:f5:77:45:d4:e1:78:
16:16:41:1e:80:f5:15:18:26:3c:83:89:a9:fe:70:9d:92:58:
5e:5e:a5:af:ac:ce:25:fe:c4:41:81:2a:2f:72:71:a3:6d:b1:
af:36:2e:56:1a:bd:be:f9:1d:a4:72:6f:62:5f:0b:00:37:c9:
aa:ca:32:2d:4a:d8:13:f7:c4:df:3a:b7:3b:ca:8d:6a:8a:75:
69:de:ad:1c:6c:e5:49:db:37:fd:91:3c:5a:cf:18:60:56:7f:
89:60:62:f8:c6:72:03:c1:82:e4:c4:56:ac:2b:79:d1:14:82:
0d:a5:4c:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:36 2024 by rpki-client on console-fra.rpki-client.org