Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/c6d092-cc60-4a51-b010-0a6e6dfbd2e3/1/yG-b13lTC7Sa3Z9U6oW9PCRQ5oA.roa
File: yG-b13lTC7Sa3Z9U6oW9PCRQ5oA.roa (raw, json)
Hash identifier: 94cyXaIEkl8WiBOYjJ7hHlwVSNwlBtia3MHC0HtKLNk=
Subject key identifier: C8:6F:9B:D7:79:53:0B:B4:9A:DD:9F:54:EA:85:BD:3C:24:50:E6:80
Certificate issuer: /CN=454bf58119cfe99f1749bcd9bd124702ba9cb713
Certificate serial: 01856F26B82701692B73760D2C58785CC798
Authority key identifier: 45:4B:F5:81:19:CF:E9:9F:17:49:BC:D9:BD:12:47:02:BA:9C:B7:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RUv1gRnP6Z8XSbzZvRJHArqctxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/c6d092-cc60-4a51-b010-0a6e6dfbd2e3/1/yG-b13lTC7Sa3Z9U6oW9PCRQ5oA.roa
Signing time: Sun 01 Jan 2023 21:04:46 +0000
ROA not before: Sun 01 Jan 2023 21:04:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47952
IP address blocks: 185.225.167.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:b8:27:01:69:2b:73:76:0d:2c:58:78:5c:c7:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=454bf58119cfe99f1749bcd9bd124702ba9cb713
Validity
Not Before: Jan 1 21:04:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c86f9bd779530bb49add9f54ea85bd3c2450e680
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:64:66:89:f7:bd:52:c4:11:e7:2c:c9:85:09:
cc:9b:0c:2a:4c:0b:d5:8f:3e:47:6c:2f:34:1e:6e:
1f:54:d5:bb:d8:a2:a2:91:0c:18:82:95:62:75:7b:
51:b3:db:fc:05:16:3c:e0:5b:3c:87:4e:0e:26:55:
ff:c5:d8:c2:3b:60:12:86:97:dc:fb:9a:0e:f5:f6:
50:b3:72:e7:7f:b6:04:1f:4b:aa:cc:17:ba:2f:f3:
ea:07:8e:77:05:13:29:37:d1:f8:9e:a4:7f:33:63:
2d:6f:88:bb:fb:e1:c9:fb:33:c0:94:44:75:cf:24:
23:ff:72:e8:6b:4e:b3:37:ea:68:b5:62:3b:32:72:
78:14:a2:84:c7:b3:03:3f:be:86:2d:98:7f:90:74:
ff:18:cd:78:14:23:96:03:07:4f:ff:0a:23:e2:c8:
bb:8d:23:d0:b6:d0:82:77:ca:94:e1:f8:59:ef:6e:
c8:dc:5e:80:ff:49:79:7f:cd:02:9c:98:fa:2f:59:
95:0a:7b:13:bc:f6:af:9d:97:87:07:bf:a8:6d:83:
58:0e:10:29:08:6f:2c:d2:03:c4:72:fe:f9:5f:c3:
f6:1c:2d:ce:09:1c:9d:30:be:96:43:64:aa:21:3f:
49:74:a4:eb:fb:e7:3a:2f:e8:10:25:8b:8e:a7:79:
b1:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:6F:9B:D7:79:53:0B:B4:9A:DD:9F:54:EA:85:BD:3C:24:50:E6:80
X509v3 Authority Key Identifier:
keyid:45:4B:F5:81:19:CF:E9:9F:17:49:BC:D9:BD:12:47:02:BA:9C:B7:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RUv1gRnP6Z8XSbzZvRJHArqctxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/c6d092-cc60-4a51-b010-0a6e6dfbd2e3/1/yG-b13lTC7Sa3Z9U6oW9PCRQ5oA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/c6d092-cc60-4a51-b010-0a6e6dfbd2e3/1/RUv1gRnP6Z8XSbzZvRJHArqctxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.167.0/24
Signature Algorithm: sha256WithRSAEncryption
64:f0:dc:7b:fa:38:92:c3:89:0a:22:db:fa:47:f6:37:47:06:
85:75:19:6a:54:8c:1f:78:61:66:e1:ec:9b:62:27:8d:d9:7f:
6c:11:2c:57:c1:62:9d:cb:2e:3e:ed:9a:e0:35:ee:f5:a0:b7:
24:45:3b:88:11:80:47:b2:10:51:93:e5:b2:bd:7b:f2:76:8f:
dc:fa:3f:1a:1a:b8:80:30:2a:fc:8e:6d:60:f3:87:82:a8:9b:
9b:bc:b3:b1:53:24:ce:7d:6a:34:d9:7e:45:79:33:22:3f:22:
13:ab:9e:9f:83:51:a7:e7:ab:40:fb:30:36:c1:bc:00:3c:4e:
4a:c2:fc:2d:53:97:e1:eb:d8:ca:e8:13:ee:0c:c6:bb:b3:5c:
79:ba:17:56:20:71:f3:69:bd:05:a0:8a:96:e3:b4:34:9a:19:
43:00:7a:2d:c6:df:44:29:ec:4c:c6:0b:0b:35:7d:d0:41:e7:
a9:68:3c:2f:76:ce:6e:d8:21:f8:e9:a1:dc:9e:41:c8:05:80:
ab:ed:dc:85:5f:78:5d:22:e6:85:46:0a:1c:30:e5:32:2e:0c:
8e:33:b2:2c:f9:5e:b2:49:97:73:58:55:d3:5a:a8:1f:c4:44:
83:c5:d3:c6:46:54:e1:2b:6e:83:b1:3d:0e:19:37:30:11:55:
24:93:81:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:31:08 2024 by rpki-client on console-fra.rpki-client.org