Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/e25ef5-67bf-463b-858b-a56dc50121dd/1/YzoJsLKus_yGjGSNgi6dfV-NCZQ.roa
File: YzoJsLKus_yGjGSNgi6dfV-NCZQ.roa (raw, json)
Hash identifier: Gs+t1Df75W212zhnSYuknmqRNTBnP2eU7u28u567VZE=
Subject key identifier: 63:3A:09:B0:B2:AE:B3:FC:86:8C:64:8D:82:2E:9D:7D:5F:8D:09:94
Certificate issuer: /CN=cc1557b2c3adfbb25d37ea2a2dfd19b2d4ea510e
Certificate serial: 01856D81A976492E689A2A629818EA50491B
Authority key identifier: CC:15:57:B2:C3:AD:FB:B2:5D:37:EA:2A:2D:FD:19:B2:D4:EA:51:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zBVXssOt-7JdN-oqLf0ZstTqUQ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/e25ef5-67bf-463b-858b-a56dc50121dd/1/YzoJsLKus_yGjGSNgi6dfV-NCZQ.roa
Signing time: Sun 01 Jan 2023 13:24:52 +0000
ROA not before: Sun 01 Jan 2023 13:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3303
IP address blocks: 145.250.128.0/17 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:a9:76:49:2e:68:9a:2a:62:98:18:ea:50:49:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc1557b2c3adfbb25d37ea2a2dfd19b2d4ea510e
Validity
Not Before: Jan 1 13:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=633a09b0b2aeb3fc868c648d822e9d7d5f8d0994
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:47:12:8f:72:3d:93:7b:76:fa:a3:37:47:49:
37:51:b4:2f:d9:dc:09:29:c4:9c:11:1d:39:ee:99:
1f:44:a3:c6:21:94:08:fa:68:27:5a:ce:a6:30:c8:
94:1e:50:d5:76:98:cb:22:53:40:b6:7c:a6:cf:10:
a7:5d:bb:1a:04:3d:d7:c2:23:28:29:7f:e4:53:2c:
ef:d0:4e:1e:8e:ac:82:e7:36:9c:81:93:dd:e1:a8:
d5:22:ea:a7:c9:30:eb:5c:6a:be:f6:eb:49:a9:8b:
c3:d5:14:ca:7d:0f:fc:9e:2c:37:8b:8e:af:e6:e6:
86:76:6a:74:c0:72:3f:5e:cb:7a:54:a9:21:e5:04:
2b:37:9e:e9:de:da:5c:04:9a:78:97:dc:e9:63:ae:
65:b8:f2:8f:fb:58:06:ed:cf:c3:3c:84:ab:9b:8e:
65:63:cb:e3:7f:87:cb:75:50:99:f0:9e:fa:07:de:
49:9f:0f:29:68:67:ed:42:b1:ad:59:fb:ac:5c:fe:
e0:62:5e:85:16:c5:5c:b7:c4:3c:2a:ae:a4:33:d3:
79:5a:4b:05:5b:48:0b:08:02:44:7b:0e:67:d3:72:
0c:18:ab:c7:cd:89:8f:af:b9:63:e0:4b:e2:c2:ea:
63:79:55:45:65:04:76:23:e7:19:7e:6c:39:5d:45:
24:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:3A:09:B0:B2:AE:B3:FC:86:8C:64:8D:82:2E:9D:7D:5F:8D:09:94
X509v3 Authority Key Identifier:
keyid:CC:15:57:B2:C3:AD:FB:B2:5D:37:EA:2A:2D:FD:19:B2:D4:EA:51:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zBVXssOt-7JdN-oqLf0ZstTqUQ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/e25ef5-67bf-463b-858b-a56dc50121dd/1/YzoJsLKus_yGjGSNgi6dfV-NCZQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/e25ef5-67bf-463b-858b-a56dc50121dd/1/zBVXssOt-7JdN-oqLf0ZstTqUQ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.250.128.0/17
Signature Algorithm: sha256WithRSAEncryption
1e:a8:60:87:c0:61:93:2b:30:29:ca:fe:00:8b:34:c1:c1:0e:
87:d6:03:e3:d7:55:11:67:02:f3:52:ea:54:57:66:34:c3:25:
9d:52:db:48:5f:89:a9:96:86:54:08:5d:b6:2e:7c:e6:14:32:
61:d3:8c:cd:44:ab:40:af:d0:91:c3:53:39:86:ee:02:de:fd:
b4:a9:87:bb:a4:70:99:4d:57:45:33:ed:62:89:54:a4:90:0a:
c4:ee:38:c2:dd:f3:44:7e:5d:15:32:8b:0c:b5:26:d7:4e:5e:
e3:96:2e:da:47:61:c6:7b:56:b7:b2:34:e7:72:ab:80:6e:02:
bc:42:b2:db:66:b9:a4:cd:08:ed:35:46:cb:d9:a9:76:77:31:
b6:51:10:53:b1:d5:2b:75:db:5e:10:c3:95:fc:89:e9:39:b7:
ed:9d:49:48:1d:46:c8:43:c3:d3:ce:63:3b:42:13:2f:02:89:
1e:a5:34:c7:c7:65:e1:6d:1b:38:77:87:75:2a:64:75:73:d0:
ca:0d:f7:34:60:a4:88:63:c2:00:36:26:0c:d0:b8:03:24:82:
4c:a0:00:48:99:c7:15:6a:cf:d5:ae:76:5c:fe:2d:50:30:22:
69:2e:7c:64:b9:07:8c:19:5f:ea:9a:d8:6b:36:17:04:85:1b:
1d:2f:15:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:15 2024 by rpki-client on console-fra.rpki-client.org