Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/yYEQ1p58kKQjvG8R2A8BHVd32FA.roa
File: yYEQ1p58kKQjvG8R2A8BHVd32FA.roa (raw, json)
Hash identifier: myrHW3U+QJ72oTWCMEP6uKJtq76R6GCfYQ05f1CHTrg=
Subject key identifier: C9:81:10:D6:9E:7C:90:A4:23:BC:6F:11:D8:0F:01:1D:57:77:D8:50
Certificate issuer: /CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Certificate serial: 018595A9F54E8E0CDB589C5369C67EAA8D4E
Authority key identifier: 54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/yYEQ1p58kKQjvG8R2A8BHVd32FA.roa
Signing time: Mon 09 Jan 2023 08:33:41 +0000
ROA not before: Mon 09 Jan 2023 08:33:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207279
IP address blocks: 185.101.170.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:95:a9:f5:4e:8e:0c:db:58:9c:53:69:c6:7e:aa:8d:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Validity
Not Before: Jan 9 08:33:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c98110d69e7c90a423bc6f11d80f011d5777d850
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:6d:77:37:bf:17:b2:0e:da:28:75:20:7f:89:
82:34:49:4b:f4:79:2d:36:a0:80:61:ad:63:e3:1b:
32:88:b5:62:72:55:c0:7e:29:c8:b2:e2:85:de:ef:
84:34:39:79:98:69:03:82:05:0c:39:2e:c5:b8:1e:
f8:4f:7c:87:d5:fa:50:35:57:47:88:f3:c2:38:88:
09:ad:9d:13:da:26:20:16:b5:e0:fa:52:0c:5e:66:
9e:71:ab:23:4f:bc:44:f1:b4:4a:bb:02:52:54:1c:
ac:96:59:12:51:2d:40:79:08:7c:e9:be:44:3d:8a:
54:6a:c8:89:99:b3:12:dd:18:c1:27:3b:94:1f:c1:
fa:92:d3:4f:43:98:e2:a7:f7:4c:73:96:b7:8e:a4:
ce:32:37:94:53:3d:11:58:c3:52:34:ac:aa:ba:15:
c2:d1:a6:79:73:bb:b7:f5:d2:2a:c2:58:8b:8c:c5:
cd:ca:12:6e:17:9f:90:4a:a5:14:d9:e5:53:71:c3:
a0:64:44:b5:ae:ac:02:f1:49:f0:a5:1b:23:68:db:
f4:ab:19:f1:1e:da:33:fb:33:1a:30:86:39:0f:e1:
d7:e1:dd:2e:dc:3c:58:2b:8b:38:7f:d6:8b:5b:7b:
c4:14:6e:02:84:78:03:17:34:3b:2f:c8:71:9f:89:
cb:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:81:10:D6:9E:7C:90:A4:23:BC:6F:11:D8:0F:01:1D:57:77:D8:50
X509v3 Authority Key Identifier:
keyid:54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/yYEQ1p58kKQjvG8R2A8BHVd32FA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/VB_cei8RpXZtOte99iXOXhGaj98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.170.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:f7:a2:ee:f4:f1:98:60:da:0a:df:56:ef:05:b9:d5:e6:8e:
63:fb:47:05:fc:c4:52:0d:2e:85:f5:11:67:ee:04:12:af:1d:
f4:40:91:33:98:98:46:c3:dd:ab:83:9d:f0:c2:6a:8f:e0:96:
a1:cb:02:65:8f:d3:db:f3:05:a3:80:6d:d3:d9:13:49:d5:f3:
21:a9:a5:c9:5c:3f:80:43:da:17:80:42:6b:1f:83:a1:11:ab:
f6:28:46:23:4a:99:87:df:c0:52:e3:bf:61:fa:e4:57:b0:41:
f4:96:68:f8:88:8e:ba:ef:ec:8d:17:12:b1:5e:7a:61:af:5f:
5d:b6:0c:3e:e9:0a:a9:11:ff:b4:90:b7:f2:1c:77:1d:67:d9:
dd:5c:60:5a:55:14:4e:8a:68:b0:02:aa:c4:6b:17:9b:26:18:
fa:f1:86:73:20:57:7f:8c:a3:98:50:63:36:0b:be:91:bc:e1:
6e:91:38:e9:dd:b1:3e:3e:25:29:46:1b:3a:eb:8e:1d:4e:17:
71:27:6e:8b:f6:e3:28:72:8f:7b:bb:f2:b6:df:c9:b2:85:cd:
97:8b:72:d0:08:c3:58:7c:e8:f1:1a:23:61:f0:fa:07:b0:51:
46:36:34:04:5d:a4:41:cb:e0:e2:2f:a1:fb:6d:0b:2d:52:9d:
4b:42:d6:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:57 2023 by rpki-client on console-fra.rpki-client.org