Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/CaYctuBAOW80v1Wa83WX2fy2LaU.roa
File: CaYctuBAOW80v1Wa83WX2fy2LaU.roa (raw, json)
Hash identifier: VQWSYMHbvFihDaayBCRo5iWbBAR6tXCxRNC4bKuA534=
Subject key identifier: 09:A6:1C:B6:E0:40:39:6F:34:BF:55:9A:F3:75:97:D9:FC:B6:2D:A5
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 0185700293D9257552CD58C6384506AB3458
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/CaYctuBAOW80v1Wa83WX2fy2LaU.roa
Signing time: Mon 02 Jan 2023 01:04:55 +0000
ROA not before: Mon 02 Jan 2023 01:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207326
IP address blocks: 78.135.67.0/24 maxlen: 24
31.210.55.0/24 maxlen: 24
188.132.201.0/24 maxlen: 24
78.135.83.0/24 maxlen: 24
78.135.82.0/24 maxlen: 24
78.135.81.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Jan 2023 09:47:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:93:d9:25:75:52:cd:58:c6:38:45:06:ab:34:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 2 01:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=09a61cb6e040396f34bf559af37597d9fcb62da5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:e5:c0:91:80:80:91:29:ec:16:8a:1f:ae:af:
98:87:9d:61:15:c2:a3:e5:6d:ac:5e:5c:17:fe:40:
c1:1f:1e:7d:02:7b:37:31:08:4b:c3:30:1a:16:9e:
d3:06:24:c9:15:94:3f:1b:14:7b:dc:d7:1e:b3:67:
83:00:cd:e2:05:f9:28:0e:da:b8:29:d6:b0:fa:7e:
1c:7a:64:1e:82:32:f8:56:9a:35:23:0b:74:d5:db:
dd:b3:a4:d6:a6:39:8e:94:f2:4e:e9:50:10:f8:69:
b5:bb:76:71:f2:0e:d7:6d:37:4e:be:96:f9:cc:7e:
81:c4:92:fb:3b:c4:5a:7d:97:a4:bf:a9:8a:97:05:
20:3f:a4:f0:d6:a8:25:c5:ff:0e:98:98:a3:e3:90:
5d:82:8a:fb:f9:60:bc:52:7d:8c:4c:3e:c3:c2:6b:
1e:66:8a:ae:de:73:aa:84:f5:7b:83:7c:45:f5:a1:
20:d9:20:3f:ad:9b:e1:13:cd:2c:4c:d8:6f:f1:a2:
a8:6e:4a:5a:1b:c2:25:90:4d:d0:40:ce:07:d4:df:
a7:b7:21:94:99:9d:4f:84:b1:80:49:c2:ca:52:3f:
28:b1:0b:44:9c:c1:e1:47:af:e4:08:94:32:8f:c8:
30:8c:ad:85:6d:58:b2:43:67:66:d5:c4:88:28:18:
c8:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:A6:1C:B6:E0:40:39:6F:34:BF:55:9A:F3:75:97:D9:FC:B6:2D:A5
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/CaYctuBAOW80v1Wa83WX2fy2LaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.55.0/24
78.135.67.0/24
78.135.81.0-78.135.83.255
188.132.201.0/24
Signature Algorithm: sha256WithRSAEncryption
73:6e:fa:a3:dc:fc:c2:72:64:c2:98:de:d4:7f:f1:43:ea:49:
77:d1:81:c3:84:2e:85:61:23:bd:89:47:67:50:2d:61:6f:dd:
a1:2b:91:e8:d7:5a:14:15:f1:d2:d8:4f:21:00:27:56:6b:f3:
af:17:98:94:b5:b7:e8:30:66:5e:80:a7:d5:33:8d:b1:74:27:
cd:02:c3:13:76:28:0b:34:cd:c1:22:64:d6:89:ac:1b:c4:6d:
68:1e:21:62:b5:35:f6:b8:ea:1c:0c:0a:58:e4:8b:f1:f3:43:
99:91:13:e5:87:05:2f:e8:96:4b:cf:41:ca:fb:35:1e:5b:08:
a9:53:0c:4e:aa:5f:a1:28:93:2b:a9:11:6a:ce:ed:52:ec:1b:
d8:bc:53:d3:8f:fd:e0:a5:dc:2e:b7:55:27:2e:17:53:ce:4e:
8c:ac:ca:5a:2c:77:3e:86:b4:9d:6e:26:6c:5d:d6:37:6f:66:
87:8e:a9:9a:a4:9e:e4:c7:ad:f1:f0:6a:e4:b0:fe:33:34:5e:
76:68:fc:93:3a:7c:67:ad:61:3c:15:ff:08:06:49:e9:49:d9:
10:a9:9f:eb:d1:f0:1b:33:b9:aa:32:74:4f:23:d4:48:91:fe:
e7:95:a4:e9:0a:46:b4:59:ea:99:0c:26:c0:5c:1d:c4:3f:f3:
c6:8a:b3:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org