Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/0910e6-c074-40d0-b789-a17804439895/1/YgJDyrb_3vKAyCDVQmZ4-mzU8gk.roa
File: YgJDyrb_3vKAyCDVQmZ4-mzU8gk.roa (raw, json)
Hash identifier: cmfRuy6L2ZnTof/7NcIxurJ4E22bugnSfmzk9u27fjc=
Subject key identifier: 62:02:43:CA:B6:FF:DE:F2:80:C8:20:D5:42:66:78:FA:6C:D4:F2:09
Certificate issuer: /CN=0c202663de852c7060fdea0298b490d5edcc0f24
Certificate serial: 01856D01C24EB817EEC24CCBF4E68E04A3D0
Authority key identifier: 0C:20:26:63:DE:85:2C:70:60:FD:EA:02:98:B4:90:D5:ED:CC:0F:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DCAmY96FLHBg_eoCmLSQ1e3MDyQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/0910e6-c074-40d0-b789-a17804439895/1/YgJDyrb_3vKAyCDVQmZ4-mzU8gk.roa
Signing time: Sun 01 Jan 2023 11:05:09 +0000
ROA not before: Sun 01 Jan 2023 11:05:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48504
IP address blocks: 194.32.168.0/22 maxlen: 24
176.125.224.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:01:c2:4e:b8:17:ee:c2:4c:cb:f4:e6:8e:04:a3:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c202663de852c7060fdea0298b490d5edcc0f24
Validity
Not Before: Jan 1 11:05:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=620243cab6ffdef280c820d5426678fa6cd4f209
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:5f:cd:ab:f7:6a:78:c0:01:25:c1:17:e1:e6:
1e:72:73:5a:cc:f7:97:0f:94:a9:71:cf:49:98:dc:
a2:2d:b8:b5:e3:b1:8f:b8:b7:c2:c0:f6:b9:c9:18:
4d:68:25:65:f8:d0:94:f0:2b:21:04:a0:f2:f2:7d:
a1:ef:85:be:10:fe:84:58:cb:0a:bd:ba:c7:c9:2b:
ac:fa:51:80:6a:45:47:bc:34:c5:f6:96:f7:dc:87:
39:51:95:20:94:86:24:f4:02:25:8b:e8:4a:9c:4b:
f6:f1:f2:d3:db:73:44:06:ab:ce:08:63:3f:d4:eb:
3a:f5:06:fb:e5:c4:b8:83:45:df:d3:df:25:9c:ab:
8e:7a:00:80:89:15:c6:56:a0:30:df:81:85:50:13:
37:66:86:35:30:7c:6e:8e:eb:fe:e6:69:ee:56:87:
3f:da:e7:a9:c1:af:91:09:71:4e:e1:b2:a4:d2:b2:
9a:1f:fb:96:c1:f9:63:bb:0a:27:c2:8c:76:c0:66:
64:ef:f7:01:0c:47:7c:ef:4e:67:fb:ed:63:cb:53:
b0:7c:dd:09:7a:d9:71:19:aa:98:81:e7:cc:c9:3b:
d5:3b:93:60:c5:65:a2:eb:66:75:cf:e0:41:b6:61:
fd:d2:0b:c1:d4:1f:bd:01:9d:9e:32:0d:f4:16:d1:
e8:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:02:43:CA:B6:FF:DE:F2:80:C8:20:D5:42:66:78:FA:6C:D4:F2:09
X509v3 Authority Key Identifier:
keyid:0C:20:26:63:DE:85:2C:70:60:FD:EA:02:98:B4:90:D5:ED:CC:0F:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DCAmY96FLHBg_eoCmLSQ1e3MDyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/0910e6-c074-40d0-b789-a17804439895/1/YgJDyrb_3vKAyCDVQmZ4-mzU8gk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/0910e6-c074-40d0-b789-a17804439895/1/DCAmY96FLHBg_eoCmLSQ1e3MDyQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.125.224.0/22
194.32.168.0/22
Signature Algorithm: sha256WithRSAEncryption
b8:d4:fc:bd:ed:81:c1:7a:8c:1b:9a:31:78:2f:b6:7c:ac:ab:
b1:59:b3:fd:d2:e5:6b:99:81:2e:82:f7:ef:82:af:41:71:53:
ae:73:54:40:34:32:ea:09:89:44:76:f5:ec:0b:72:b9:1d:7e:
74:71:ba:8b:8e:2b:39:60:21:ca:d9:40:1a:8a:f3:fb:fd:a0:
e1:0b:dc:90:1a:ee:39:80:22:fe:34:44:06:bb:cc:c5:31:5e:
0c:67:21:27:19:57:f5:5c:9b:70:58:b0:38:08:cf:3e:aa:41:
4d:28:1d:ae:1c:d7:0e:1a:f5:3a:2c:94:a9:04:38:dc:f1:95:
e7:19:23:ed:e9:20:59:b8:67:27:37:17:66:a3:0d:1a:4f:60:
dc:9b:55:5b:f9:b3:c8:d6:11:6b:4f:fe:b3:d5:f4:3c:90:a5:
a7:2e:d5:81:da:1a:7f:e2:d4:73:e9:39:86:08:cc:3b:87:9e:
f3:09:bf:37:49:ee:79:ec:85:90:67:3d:01:6d:12:0c:d5:61:
ac:cd:2a:34:bd:b1:a6:85:3a:02:0b:d1:50:e5:26:46:7b:ad:
35:f3:a0:66:ce:c1:21:80:7e:27:d4:0f:41:1c:96:4e:67:2e:
b7:0b:22:9b:6d:28:c8:ef:e8:22:d3:83:c6:00:1b:e3:19:d5:
fc:aa:9a:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:18 2024 by rpki-client on console-ams.rpki-client.org