Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/cbc50e-faef-43ec-bdba-fda470c61e09/1/YJND4Nn8u0KkzWbMXtueuwFED5o.roa
File: YJND4Nn8u0KkzWbMXtueuwFED5o.roa (raw, json)
Hash identifier: dPwlP5p4jZsTcqNqnF9uMxjxiyeb18zie/i6+b55ObU=
Subject key identifier: 60:93:43:E0:D9:FC:BB:42:A4:CD:66:CC:5E:DB:9E:BB:01:44:0F:9A
Certificate issuer: /CN=b312db95dfc3b31395e0ecb5ff26212d798de834
Certificate serial: 0185708CC0D5FF26451B04F70F211FB13CF3
Authority key identifier: B3:12:DB:95:DF:C3:B3:13:95:E0:EC:B5:FF:26:21:2D:79:8D:E8:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/cbc50e-faef-43ec-bdba-fda470c61e09/1/YJND4Nn8u0KkzWbMXtueuwFED5o.roa
Signing time: Mon 02 Jan 2023 03:35:50 +0000
ROA not before: Mon 02 Jan 2023 03:35:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42910
IP address blocks: 185.51.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:c0:d5:ff:26:45:1b:04:f7:0f:21:1f:b1:3c:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b312db95dfc3b31395e0ecb5ff26212d798de834
Validity
Not Before: Jan 2 03:35:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=609343e0d9fcbb42a4cd66cc5edb9ebb01440f9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:4a:40:b8:f2:33:7b:c6:d1:db:9a:1f:4f:80:
85:67:f7:eb:8a:27:ec:c5:47:65:da:87:38:29:d6:
9d:4b:d9:8a:50:54:4c:e7:21:9c:1f:58:aa:c3:f9:
83:5c:23:5f:14:2e:56:57:c1:6f:3e:31:17:34:c3:
97:c8:de:2f:4e:d2:a3:a5:46:9f:95:b1:f7:18:35:
de:45:ca:99:58:25:eb:c3:56:2a:ef:e6:62:41:c9:
72:ef:a3:8d:70:a7:3d:24:3e:e3:a3:df:74:3a:cb:
aa:fd:d5:7f:c6:1a:80:06:3d:e8:96:eb:b6:15:52:
d3:36:19:e3:09:10:b2:1a:36:54:6b:5c:df:29:49:
32:b8:a8:10:60:58:13:49:80:1c:2e:ab:e5:cd:7f:
01:c9:2b:43:50:4b:fd:60:de:bb:92:66:58:3e:b7:
7e:d5:a6:e3:82:1f:54:68:c5:1d:60:06:a7:ce:de:
28:38:db:04:39:e6:33:e9:9c:bf:a2:fe:cd:38:32:
2f:5b:74:57:c9:13:3d:77:0a:6e:94:71:f1:ea:8d:
29:ef:5b:d4:71:9e:64:d8:9a:b9:64:b0:db:68:2b:
3d:81:19:2b:89:3a:9e:a1:e0:a1:f3:8b:99:ae:03:
2d:dd:ca:80:90:4d:d0:58:f2:09:0d:43:64:75:c7:
f3:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:93:43:E0:D9:FC:BB:42:A4:CD:66:CC:5E:DB:9E:BB:01:44:0F:9A
X509v3 Authority Key Identifier:
keyid:B3:12:DB:95:DF:C3:B3:13:95:E0:EC:B5:FF:26:21:2D:79:8D:E8:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/cbc50e-faef-43ec-bdba-fda470c61e09/1/YJND4Nn8u0KkzWbMXtueuwFED5o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/cbc50e-faef-43ec-bdba-fda470c61e09/1/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.51.20.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:ca:d0:d0:f0:d7:07:c2:a1:32:c3:2d:5a:61:85:34:60:e7:
3b:b3:f2:90:2f:08:e2:a3:5e:90:2a:94:f2:89:55:a2:9c:29:
69:8f:b1:a2:8c:4f:ec:71:d1:88:58:a5:d7:9a:2c:d5:55:f0:
95:f4:37:be:83:bd:c1:d1:86:31:24:bd:38:a3:54:59:9b:7e:
83:aa:d2:a1:db:52:73:13:ef:b8:6b:d0:50:35:c6:da:66:4b:
1d:23:4d:75:df:dd:7b:ab:e5:98:15:cc:bc:5f:8c:d1:08:04:
9b:d4:b8:4b:dc:1a:20:ac:81:6d:20:2c:90:b8:3d:09:8e:bc:
e7:25:f0:8e:bf:b2:04:08:a8:8e:b2:7d:b7:ec:67:af:8b:38:
19:1f:77:d6:48:78:37:f4:07:b4:e5:cb:b1:0c:8b:d1:ec:33:
9e:c3:a6:84:b0:7a:a1:fd:1b:70:6f:88:ac:b6:93:97:de:eb:
48:ef:4f:97:91:83:64:78:85:fb:2c:6b:fa:d4:c3:41:19:f6:
55:72:bf:be:6d:6a:3c:3f:e6:20:f8:56:91:75:ff:3e:e7:88:
2f:0b:82:3e:c2:2f:16:c3:f7:b2:1c:b5:03:6a:3e:c3:e2:6e:
11:dc:96:62:40:80:9c:0c:ef:af:b5:3d:0c:85:0e:3d:30:58:
a4:3c:93:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:48 2024 by rpki-client on console-ams.rpki-client.org