Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/y3ngFApQjBnwnR7m98N5a3dD1b4.roa
File: y3ngFApQjBnwnR7m98N5a3dD1b4.roa (raw, json)
Hash identifier: IGIc6IOZY6FLguo0aI32yYU2Ekcz939ma0eidODKT2w=
Subject key identifier: CB:79:E0:14:0A:50:8C:19:F0:9D:1E:E6:F7:C3:79:6B:77:43:D5:BE
Certificate issuer: /CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Certificate serial: 0187479317F10AEF46ED6B4B1B0DD6B41829
Authority key identifier: 94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/y3ngFApQjBnwnR7m98N5a3dD1b4.roa
Signing time: Mon 03 Apr 2023 14:43:54 +0000
ROA not before: Mon 03 Apr 2023 14:43:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 86.62.28.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:47:93:17:f1:0a:ef:46:ed:6b:4b:1b:0d:d6:b4:18:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Validity
Not Before: Apr 3 14:43:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb79e0140a508c19f09d1ee6f7c3796b7743d5be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:4c:42:5f:c0:f2:1c:46:a1:3e:f9:7d:96:d6:
df:b7:23:ea:95:dc:6b:ac:50:a6:69:7d:5a:9e:c6:
55:a9:ec:0a:78:87:32:73:48:72:8a:17:75:d3:b1:
93:8b:77:27:ad:1f:8d:4e:4c:27:35:fb:a1:38:82:
56:b1:8b:c5:11:14:8a:b3:d4:66:a2:58:5b:f1:f1:
e6:0b:43:ae:e1:12:59:6e:fa:77:c0:1c:78:31:b1:
f5:d9:c5:2b:05:e3:0f:2a:8a:88:80:c8:4c:ed:55:
09:83:02:43:25:1b:77:17:e4:d1:13:b9:94:54:d6:
d3:14:ef:e2:94:f7:1c:96:37:9b:7b:28:84:54:f9:
4c:bb:57:49:96:76:47:85:e3:68:c6:b9:d5:6a:51:
6b:5e:67:4c:7d:ee:07:74:5c:6b:81:48:41:be:47:
61:c4:96:2c:a8:84:7d:bd:79:d2:63:22:59:0e:10:
26:7e:3a:64:18:33:93:7b:a9:5d:20:cf:bb:ae:58:
10:a0:0b:78:bc:a6:c6:29:75:20:95:4d:75:fc:15:
17:59:32:04:00:ff:9f:40:20:a6:15:89:99:06:fc:
c6:f8:f3:4c:c2:80:22:36:38:7b:07:b5:d7:9e:f2:
fc:cd:e7:cf:12:6d:39:0b:27:bb:df:fc:c4:ed:5e:
82:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:79:E0:14:0A:50:8C:19:F0:9D:1E:E6:F7:C3:79:6B:77:43:D5:BE
X509v3 Authority Key Identifier:
keyid:94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/y3ngFApQjBnwnR7m98N5a3dD1b4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.62.28.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:4e:dd:00:62:28:bc:73:e6:e9:19:91:67:78:4c:a5:a8:78:
72:d6:24:56:9a:0a:25:ce:22:1b:28:c0:4e:89:79:5d:b4:00:
9b:56:b1:5b:a7:f5:bc:c8:81:cf:2c:9d:bc:75:0f:a4:17:67:
15:05:7f:be:10:22:91:48:d9:be:f1:43:67:5f:54:5c:b4:4e:
33:dc:77:60:ca:00:e1:dc:6b:33:f5:87:5b:10:21:c3:f5:b5:
2a:d6:b4:13:cc:7c:b6:cf:6f:ad:c0:05:dd:7c:f8:3e:7f:cf:
9b:5b:74:0c:7e:f4:08:ba:97:5d:22:1c:80:74:f0:4b:88:6d:
8b:18:8c:09:a7:8b:35:96:20:7d:23:f6:e1:80:b0:5e:34:68:
68:5b:d4:41:70:7d:5e:53:78:a0:c1:0d:7e:85:4d:ad:10:68:
fe:6f:63:b0:24:49:2e:b3:e3:18:59:a8:ff:57:d5:c0:f0:7a:
73:37:e9:95:c4:8d:dc:73:03:8f:ac:d7:88:91:c3:9d:18:85:
b0:10:d3:b5:cc:c0:c1:2a:fe:de:6c:3f:4d:13:66:6a:92:70:
a6:f6:ff:88:ee:57:fb:3e:76:4c:c2:35:3b:42:6c:5c:e6:a5:
a4:d6:b7:51:8d:71:a5:3c:44:cb:e5:e9:fd:71:65:38:74:6b:
3b:b5:01:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:50 2023 by rpki-client on console-ams.rpki-client.org