Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/9def86-b1ac-40e6-83bd-947cc54ebe02/1/yKKAmOGSbKAAFrrQ5jZOemSpWLM.roa
File: yKKAmOGSbKAAFrrQ5jZOemSpWLM.roa (raw, json)
Hash identifier: 0kD4scmYbk1pVcX+NKLn2izWJZOUvOS5DRt0q2oE1Lg=
Subject key identifier: C8:A2:80:98:E1:92:6C:A0:00:16:BA:D0:E6:36:4E:7A:64:A9:58:B3
Certificate issuer: /CN=61b3e1cab8cbf5b3c6e0fbbe1491f48da60cae6c
Certificate serial: 018660129AE1E8E3EF48FC9E116D8E598B04
Authority key identifier: 61:B3:E1:CA:B8:CB:F5:B3:C6:E0:FB:BE:14:91:F4:8D:A6:0C:AE:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbPhyrjL9bPG4Pu-FJH0jaYMrmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/9def86-b1ac-40e6-83bd-947cc54ebe02/1/yKKAmOGSbKAAFrrQ5jZOemSpWLM.roa
Signing time: Fri 17 Feb 2023 15:51:17 +0000
ROA not before: Fri 17 Feb 2023 15:51:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209242
IP address blocks: 159.60.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 May 2023 08:40:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:60:12:9a:e1:e8:e3:ef:48:fc:9e:11:6d:8e:59:8b:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b3e1cab8cbf5b3c6e0fbbe1491f48da60cae6c
Validity
Not Before: Feb 17 15:51:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c8a28098e1926ca00016bad0e6364e7a64a958b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:34:00:4e:81:3e:b5:05:24:b2:69:92:12:49:
ae:d1:2c:dc:1d:5d:47:34:41:1a:62:0c:b5:51:92:
82:0e:08:e5:3d:5c:ed:b9:d2:66:6c:dd:4e:7a:12:
2a:f3:b7:ba:d9:14:fb:be:38:9e:61:b5:e1:65:82:
f2:35:86:7a:af:72:81:9c:ce:bb:0b:44:51:fa:2e:
97:43:a4:5e:11:b3:4a:5c:a2:f1:4b:bb:4f:bc:46:
c3:29:f1:f1:04:bb:73:13:8a:ad:8d:af:2e:4e:3a:
e3:f7:36:eb:f3:95:db:04:6e:19:57:08:62:9d:8d:
96:40:f5:ff:63:56:a3:86:60:a1:6d:26:28:a6:0f:
57:a4:fe:40:b6:ec:79:10:96:70:74:aa:95:9e:f2:
2b:e4:39:04:89:33:9d:82:f1:cf:17:d4:ff:43:d4:
b8:68:af:e4:d9:89:79:7c:52:12:5d:f2:71:3f:29:
87:d7:7b:12:54:ef:83:3e:bd:11:d6:5c:66:92:26:
63:8f:1b:23:58:de:d9:99:a0:06:68:f7:2d:9f:94:
63:94:51:93:bb:2c:dc:56:9c:13:d4:0f:d6:b4:fe:
3d:79:ee:18:43:9d:b2:b6:7e:c0:a8:0b:e9:73:9a:
8c:37:38:b8:8e:ac:32:0f:cb:1e:fc:ad:9c:0c:67:
52:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:A2:80:98:E1:92:6C:A0:00:16:BA:D0:E6:36:4E:7A:64:A9:58:B3
X509v3 Authority Key Identifier:
keyid:61:B3:E1:CA:B8:CB:F5:B3:C6:E0:FB:BE:14:91:F4:8D:A6:0C:AE:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbPhyrjL9bPG4Pu-FJH0jaYMrmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9def86-b1ac-40e6-83bd-947cc54ebe02/1/yKKAmOGSbKAAFrrQ5jZOemSpWLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9def86-b1ac-40e6-83bd-947cc54ebe02/1/YbPhyrjL9bPG4Pu-FJH0jaYMrmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.60.16.0/24
Signature Algorithm: sha256WithRSAEncryption
66:e7:bd:83:fb:58:0c:67:13:5e:95:82:3b:2d:f6:45:02:3f:
c8:3b:c4:05:5e:ea:36:b4:db:89:eb:05:fe:4b:fb:cf:8e:66:
85:bd:be:cc:8f:dc:42:1b:58:81:d0:e0:e0:b3:38:25:06:b8:
9c:f2:b5:4b:2c:94:59:30:e8:67:2c:aa:9e:ab:7b:00:47:7d:
38:63:f4:90:d7:f3:e6:a1:8d:70:37:ac:4b:ed:2f:5c:d6:d1:
6c:60:f4:6f:b6:0d:4d:d1:00:1d:3d:8d:18:3d:c1:83:67:8a:
f1:0c:39:0d:88:21:e5:af:a8:4b:3e:4e:73:97:6f:6d:e7:52:
9a:b4:32:ed:c8:2b:cd:5a:6e:41:bc:8e:22:f4:93:70:f7:03:
58:8b:bc:73:7e:0e:ee:29:e8:b2:1d:ab:71:8f:0b:50:0f:ed:
7f:3a:d9:e1:97:b6:55:03:05:65:94:0b:27:63:24:13:58:04:
98:36:47:1a:47:46:b1:e8:b3:82:f6:d8:66:5f:df:d5:3f:4d:
09:e0:4e:b6:5e:f6:a0:38:7b:fc:07:c2:cd:d6:6c:86:2a:14:
b2:9f:22:50:c2:46:8f:8c:16:b5:e5:14:b5:2d:35:2c:c8:cb:
eb:0f:d8:11:2f:c7:db:2a:70:a7:5c:d6:e9:07:49:52:9a:5b:
42:2f:4a:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:15 2024 by rpki-client on console-ams.rpki-client.org