Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/RyOS_1hi-7I_J-_00YsYNzp5IIE.roa
File: RyOS_1hi-7I_J-_00YsYNzp5IIE.roa (raw, json)
Hash identifier: i/kpFXDWkcD9dvT2MNAjxYEVYut2hpwF5yTpDLfp+GM=
Subject key identifier: 47:23:92:FF:58:62:FB:B2:3F:27:EF:F4:D1:8B:18:37:3A:79:20:81
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 018D1D02FDE91DAC285EB3AF51B4A9543A91
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/RyOS_1hi-7I_J-_00YsYNzp5IIE.roa
Signing time: Thu 18 Jan 2024 14:39:11 +0000
ROA not before: Thu 18 Jan 2024 14:39:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44620
IP address blocks: 185.249.202.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 20 Jan 2024 18:39:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:1d:02:fd:e9:1d:ac:28:5e:b3:af:51:b4:a9:54:3a:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Jan 18 14:39:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=472392ff5862fbb23f27eff4d18b18373a792081
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:21:2d:0b:43:32:35:2d:73:86:ee:3d:e4:bc:
6d:35:cd:39:ef:d2:8a:af:a8:b3:95:96:f6:a0:36:
d0:40:ea:d4:7d:a2:ae:1d:df:f1:70:56:a9:8a:99:
d6:eb:be:14:91:78:7b:ed:69:b6:00:ea:d0:dd:a3:
8c:c1:fd:17:5c:f7:0c:c2:b4:c2:d7:84:16:5f:78:
57:4c:c1:70:f9:5c:28:95:48:3b:13:b0:a2:d3:cb:
6a:2b:9f:28:ef:3f:3d:a6:c7:ec:36:61:06:22:6d:
56:98:49:58:2d:ad:29:f1:89:dc:ce:35:b8:0a:32:
14:44:79:7c:8f:ae:c9:ea:35:87:b5:e6:64:5d:73:
27:c3:02:1e:23:6c:a2:ce:de:0e:57:6d:3c:51:c7:
45:9b:ea:d5:51:06:53:00:e8:e8:97:a2:3c:2b:ae:
ad:e8:3a:cc:fa:b9:39:9d:d2:0b:f1:11:2e:9b:fd:
2c:89:a6:0f:37:cb:54:34:02:94:73:d8:3c:34:08:
e5:8b:48:27:5c:87:c1:b4:7c:e7:42:cc:6e:96:48:
b6:9b:cd:86:31:d2:77:40:26:ed:87:e6:fb:b5:57:
a2:d5:91:c4:37:3d:ba:a3:03:22:de:08:0c:43:16:
e1:f8:77:66:3d:55:81:4a:43:26:d9:27:d1:e2:0d:
7d:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:23:92:FF:58:62:FB:B2:3F:27:EF:F4:D1:8B:18:37:3A:79:20:81
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/RyOS_1hi-7I_J-_00YsYNzp5IIE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.202.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:2b:ff:07:d1:96:c8:d8:35:9d:87:1a:ca:94:52:13:00:57:
71:bb:f5:5e:d0:b0:f9:6a:79:68:65:74:b0:23:1b:55:c9:70:
79:3d:e7:4e:8a:7c:71:b1:9e:f7:ca:73:0f:89:bb:24:65:39:
2d:9c:b1:91:23:ea:e7:a7:ec:ce:aa:32:18:85:43:11:83:f0:
35:03:12:b7:a0:cc:b5:bb:b8:dc:a2:d8:7c:7f:b0:bf:d2:47:
1c:b9:eb:02:93:9d:88:a8:16:ad:f2:ec:cf:aa:65:63:fb:31:
5a:33:05:12:9a:85:01:3b:7b:91:fa:af:a6:8b:00:40:8b:e9:
b0:49:64:3b:8e:ce:fa:fd:0a:2c:21:fa:6f:8f:9d:63:86:ad:
e2:58:a0:2b:7c:4f:2c:3f:cb:fd:25:bf:da:06:66:3f:99:b0:
b4:f0:d7:8d:d7:13:88:61:73:b4:68:38:47:61:c0:00:3d:43:
7e:95:c3:0c:c2:44:e7:be:b0:5b:eb:79:fe:fc:d4:bc:ff:21:
d3:84:3d:35:4a:ad:90:4f:23:59:0e:a9:0a:78:9d:71:ad:1a:
81:57:7e:ea:5f:be:dc:72:d8:38:10:51:7b:4f:fd:f4:cb:42:
86:fc:56:64:dc:3c:7b:6f:3b:65:73:3b:f5:80:b0:44:a5:40:
42:2c:af:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:24 2024 by rpki-client on console-ams.rpki-client.org