Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/YFXLC82yvxXV5EYpuo06prC-Qmg.roa
File: YFXLC82yvxXV5EYpuo06prC-Qmg.roa (raw, json)
Hash identifier: BtuZ9oDCPqlVWUwwQOWe9Q8HvIj35aIoARtpMSYtmiQ=
Subject key identifier: 60:55:CB:0B:CD:B2:BF:15:D5:E4:46:29:BA:8D:3A:A6:B0:BE:42:68
Certificate issuer: /CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96
Certificate serial: 01918ED8409BA9151DADED7FAD1A3C1942AB
Authority key identifier: 08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/YFXLC82yvxXV5EYpuo06prC-Qmg.roa
Signing time: Mon 26 Aug 2024 13:20:22 +0000
ROA not before: Mon 26 Aug 2024 13:20:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 188.66.24.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 01 Sep 2024 16:41:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:8e:d8:40:9b:a9:15:1d:ad:ed:7f:ad:1a:3c:19:42:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96
Validity
Not Before: Aug 26 13:20:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6055cb0bcdb2bf15d5e44629ba8d3aa6b0be4268
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:95:7e:f1:12:dc:26:63:a2:aa:20:e0:80:84:
c0:89:2c:45:25:df:62:17:fa:5d:e0:f9:c4:8e:19:
85:84:3b:db:ff:83:ab:d6:bb:5b:ae:cb:a9:b2:79:
97:18:45:83:c4:ad:6e:3c:80:bd:4a:74:1d:36:5f:
6f:be:95:70:71:0d:df:8e:f5:93:7c:66:84:4b:78:
02:62:ad:f3:5e:2b:92:82:97:8a:df:82:b9:e3:4c:
e3:f4:71:52:5b:6e:98:49:d3:94:0e:a4:2e:8a:bf:
48:71:52:e5:f5:0f:d9:67:7f:a6:1d:85:34:a9:67:
e6:3e:80:d1:22:e8:60:e2:eb:32:dc:b3:31:63:cb:
15:8b:3c:62:9a:86:1d:cf:c5:4c:e1:c9:09:72:9e:
89:a8:af:f7:3f:f2:24:25:9c:e1:80:89:63:b7:7e:
80:cd:cc:ab:5f:50:74:0b:02:2a:24:c1:ed:a9:5a:
47:0f:8f:63:1a:48:9b:77:6d:c5:2f:67:8c:24:83:
ae:49:4a:c7:78:e0:c1:e0:66:be:cd:01:cd:f3:48:
1d:b2:9d:02:ec:fa:f6:e6:18:bd:2e:ea:6a:8a:30:
69:8b:ee:8f:b5:54:c6:ea:40:bc:b4:56:19:cc:3c:
ab:28:d9:fc:a0:9d:ca:eb:b6:c2:10:c2:a5:4f:b2:
25:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:55:CB:0B:CD:B2:BF:15:D5:E4:46:29:BA:8D:3A:A6:B0:BE:42:68
X509v3 Authority Key Identifier:
keyid:08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/YFXLC82yvxXV5EYpuo06prC-Qmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/CIRls3stTp9BOjHce35suioz25Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.66.24.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:f6:e3:16:bc:12:c5:38:39:8b:67:1f:34:6a:83:b7:a7:9e:
d7:7f:18:b0:71:61:49:ad:a3:2a:c4:2c:2f:5c:38:af:c3:60:
ed:40:a1:9f:a1:05:97:72:2e:3e:6c:dd:ad:20:5c:d1:99:76:
a5:4b:d6:ac:db:b7:d3:45:1f:fd:66:64:44:0a:f5:33:b6:a9:
7b:70:82:33:a6:d3:21:22:e9:24:12:bd:cf:f5:d9:20:11:f1:
6a:b9:be:6b:87:f6:a6:25:27:6c:79:3b:98:4a:4a:f1:be:3a:
c8:01:7a:56:8f:11:0b:3b:ee:54:8b:7d:60:7e:5e:f4:82:1d:
86:fc:04:b2:fe:97:a4:67:b7:b8:71:7f:c3:97:4d:6c:9a:0e:
47:10:7f:a0:2f:84:0e:3a:1a:3c:99:f4:dc:65:63:fd:96:b3:
99:33:02:a5:ff:8f:12:a3:a4:23:c1:d9:4e:c0:68:72:28:f1:
6c:7b:14:70:6d:e0:65:c5:fa:b6:b6:f4:d4:bf:33:24:e5:6d:
8a:f1:31:b1:a2:00:1b:0d:a5:ed:cc:e8:9d:59:89:cb:3a:5d:
d3:fb:3c:6f:d2:82:1f:0c:8e:b3:15:48:53:39:22:0f:80:66:
7b:cf:dc:ae:93:13:f0:6b:b7:55:08:c0:ca:f8:eb:de:d5:bb:
1a:0b:8b:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 1 18:04:15 2024 by rpki-client on console-fra.rpki-client.org