Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/yyyn6Xhsfr6Wna5Nv2Iyc5hIoGM.roa
File: yyyn6Xhsfr6Wna5Nv2Iyc5hIoGM.roa (raw, json)
Hash identifier: 5oEIsqsHPj/dE1DuUquAJY4TLqO7nqD1EJNXHseelys=
Subject key identifier: CB:2C:A7:E9:78:6C:7E:BE:96:9D:AE:4D:BF:62:32:73:98:48:A0:63
Certificate issuer: /CN=9cbb77bab438a93d34d9d5c0a8e0b9ef32ae5da0
Certificate serial: 018A077CF5F65DC95CA88B666D61467538F4
Authority key identifier: 9C:BB:77:BA:B4:38:A9:3D:34:D9:D5:C0:A8:E0:B9:EF:32:AE:5D:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nLt3urQ4qT002dXAqOC57zKuXaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/yyyn6Xhsfr6Wna5Nv2Iyc5hIoGM.roa
Signing time: Fri 18 Aug 2023 07:12:24 +0000
ROA not before: Fri 18 Aug 2023 07:12:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 196660
IP address blocks: 185.35.40.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Sep 2023 18:41:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:07:7c:f5:f6:5d:c9:5c:a8:8b:66:6d:61:46:75:38:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cbb77bab438a93d34d9d5c0a8e0b9ef32ae5da0
Validity
Not Before: Aug 18 07:12:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb2ca7e9786c7ebe969dae4dbf6232739848a063
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:79:7b:3c:23:4d:e2:4d:84:65:87:e4:1d:62:
9b:c4:1d:30:5a:9d:60:ae:f9:03:2c:1e:33:67:a7:
cd:8f:08:1d:fd:9b:16:c3:63:8b:fb:5c:cb:13:93:
42:09:33:fe:60:f6:12:2f:6b:b6:37:40:11:35:be:
af:51:38:a1:3c:6a:31:d0:74:df:f1:b2:59:05:04:
71:2e:16:c5:25:b2:9f:dc:68:e0:04:ec:bd:bd:68:
be:a6:e3:e0:f4:ea:38:e0:99:6e:ef:b1:71:92:db:
ea:77:d2:ca:40:31:f7:79:3c:7e:12:c3:86:34:d8:
6b:2b:77:bf:b8:4d:f7:7a:e7:42:9a:29:10:e0:59:
dc:cb:f5:d3:50:53:31:72:4b:dd:77:98:fa:d3:8b:
5e:3c:b6:1f:e6:9f:e6:3a:d7:25:4b:15:0f:c8:93:
6b:d6:a4:12:61:de:2b:a2:13:57:63:44:82:c5:d9:
87:01:6c:13:8b:15:fc:a4:22:fc:fa:8c:fb:a9:d2:
f6:90:e6:3a:2e:9b:59:a3:ca:e1:75:4f:28:23:4f:
1e:e2:0c:e8:b5:74:54:0c:0f:19:42:8c:a3:ba:81:
d6:d8:98:d2:26:bc:55:9f:4c:ff:88:86:4e:f8:58:
3e:a4:bd:5c:7a:f6:c6:b6:42:d6:5e:dd:33:03:4a:
05:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:2C:A7:E9:78:6C:7E:BE:96:9D:AE:4D:BF:62:32:73:98:48:A0:63
X509v3 Authority Key Identifier:
keyid:9C:BB:77:BA:B4:38:A9:3D:34:D9:D5:C0:A8:E0:B9:EF:32:AE:5D:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nLt3urQ4qT002dXAqOC57zKuXaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/yyyn6Xhsfr6Wna5Nv2Iyc5hIoGM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.35.40.0/23
Signature Algorithm: sha256WithRSAEncryption
3d:bf:81:7b:e9:27:c5:fb:d0:aa:08:ca:bf:6e:e0:88:da:f7:
c5:b3:bd:90:46:db:df:c5:db:03:d0:0b:ac:f3:7a:03:18:b6:
0f:1c:e3:35:3e:ee:0f:42:4a:c8:21:b2:f9:c9:c7:75:3f:9d:
81:80:a8:15:bf:99:9b:38:2f:9f:a6:74:56:e9:b4:68:cb:f2:
5c:70:a6:38:af:cc:ed:42:30:30:9c:9c:ec:c3:32:95:26:38:
53:2d:0b:06:3d:02:e1:c4:18:6d:f0:11:7a:af:e2:c9:12:f7:
c0:3d:41:dd:20:76:a2:f0:90:79:33:21:a0:65:67:9b:e5:8f:
f6:6b:ee:d5:50:0e:24:c4:e4:b8:e7:1e:30:8e:97:cf:ef:93:
7e:50:55:59:ae:13:49:93:73:1f:ab:66:57:a4:52:7f:4b:f9:
59:c2:c0:0b:97:a1:29:10:de:0f:52:86:46:ad:1c:10:3c:92:
e4:69:f7:59:30:ca:5d:84:43:7d:1f:46:42:c2:47:fd:25:e0:
45:a9:fe:0e:25:7f:a2:be:37:d4:39:fe:49:d4:4d:00:1d:37:
f7:24:eb:8d:ed:7b:ab:db:ba:dc:5c:bc:89:1c:36:d8:2e:6a:
1d:88:36:48:0f:18:48:ff:f9:44:22:8b:f0:33:73:ab:b2:f5:
df:b3:fa:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:29 2024 by rpki-client on console-fra.rpki-client.org