Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/7b1ef8-a377-4e59-a55c-19b2fbeaea4c/1/YhA7YHKDZbDWf8Vbqx933f1zkNU.roa
File: YhA7YHKDZbDWf8Vbqx933f1zkNU.roa (raw, json)
Hash identifier: MH/GE2KvgeHfh+XdxiopfAV5D6cf56EXScZpF/S44EQ=
Subject key identifier: 62:10:3B:60:72:83:65:B0:D6:7F:C5:5B:AB:1F:77:DD:FD:73:90:D5
Certificate issuer: /CN=283dc03f2c2e73903a503e77accf7d3c752be971
Certificate serial: 018573560D45841F6B82C8269A9B9F6DA9D5
Authority key identifier: 28:3D:C0:3F:2C:2E:73:90:3A:50:3E:77:AC:CF:7D:3C:75:2B:E9:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KD3APywuc5A6UD53rM99PHUr6XE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/7b1ef8-a377-4e59-a55c-19b2fbeaea4c/1/YhA7YHKDZbDWf8Vbqx933f1zkNU.roa
Signing time: Mon 02 Jan 2023 16:34:57 +0000
ROA not before: Mon 02 Jan 2023 16:34:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30742
IP address blocks: 193.176.72.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:56:0d:45:84:1f:6b:82:c8:26:9a:9b:9f:6d:a9:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=283dc03f2c2e73903a503e77accf7d3c752be971
Validity
Not Before: Jan 2 16:34:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62103b60728365b0d67fc55bab1f77ddfd7390d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:87:cd:70:1e:fe:0e:c2:e0:16:52:a2:96:7b:
f1:6c:1e:16:31:a7:03:c2:4d:ef:52:b2:8e:db:ea:
bc:cd:2a:10:6c:f6:49:c4:df:8d:63:8e:7b:96:99:
93:1e:b8:e7:58:e9:25:77:91:36:b5:4e:2b:98:bd:
be:2c:ed:ae:5f:e6:a0:6a:7f:f1:48:01:3e:fb:aa:
26:e5:81:00:ad:9c:b7:11:ec:64:8c:e8:e8:14:7b:
61:de:bd:01:06:1a:41:0c:7b:6b:49:4f:26:ef:c9:
3a:9d:98:cb:ea:50:6b:50:5f:4c:cd:20:b7:b3:cb:
ef:57:e9:96:62:69:53:97:31:e3:52:7b:fb:d5:dc:
c2:a9:d2:a9:87:b8:49:fd:ea:50:d7:b1:c7:7d:74:
01:ac:96:c3:69:9e:eb:8c:a8:4d:d7:64:77:37:9d:
bb:0b:de:2b:94:d3:ca:f2:a0:69:5b:ae:42:b3:95:
ee:d1:4d:c9:1b:04:8b:f4:a4:d0:de:35:7e:23:77:
a0:87:8c:4d:e8:15:cd:97:cf:6e:2c:0b:4e:a0:09:
cd:18:d7:cd:87:1b:c0:b3:24:ec:7d:96:1f:d6:17:
f2:9f:72:50:bc:9e:33:66:7d:f7:19:d7:8b:1f:aa:
6a:f8:8b:af:25:30:9b:67:1b:56:d7:64:59:77:e7:
a1:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:10:3B:60:72:83:65:B0:D6:7F:C5:5B:AB:1F:77:DD:FD:73:90:D5
X509v3 Authority Key Identifier:
keyid:28:3D:C0:3F:2C:2E:73:90:3A:50:3E:77:AC:CF:7D:3C:75:2B:E9:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KD3APywuc5A6UD53rM99PHUr6XE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/7b1ef8-a377-4e59-a55c-19b2fbeaea4c/1/YhA7YHKDZbDWf8Vbqx933f1zkNU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/7b1ef8-a377-4e59-a55c-19b2fbeaea4c/1/KD3APywuc5A6UD53rM99PHUr6XE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.176.72.0/22
Signature Algorithm: sha256WithRSAEncryption
80:d6:47:25:fc:bf:02:36:af:f0:b9:66:0a:b4:9d:a7:8f:39:
77:c9:75:76:92:39:72:4f:9e:07:3b:2a:ef:3f:f5:d7:b0:ba:
2a:ed:2f:48:42:30:ff:00:73:89:e9:ef:71:5a:12:b3:3b:e9:
2a:96:28:79:82:24:75:d4:28:b1:f1:a1:7c:de:f1:8b:8e:d7:
59:82:66:18:4b:b0:63:f7:ee:1e:08:1c:96:77:b0:86:ad:8f:
a8:75:71:89:bf:72:63:77:c5:e9:0e:3e:01:fa:1c:4c:4d:ee:
a0:55:ba:91:34:77:96:77:d3:2b:27:44:2a:85:39:d0:e7:83:
2c:fb:47:0d:bd:0f:c4:cd:b2:e0:69:6c:07:47:18:73:f7:67:
fe:7f:c7:97:db:dc:eb:f3:db:16:22:eb:57:69:df:00:d7:52:
ab:4c:27:dd:1a:da:6b:85:17:ab:18:14:61:20:16:4f:2e:76:
0c:66:54:19:77:e9:2d:a1:65:a9:c3:64:b3:c9:ed:fd:df:03:
57:ab:fd:cc:4a:bd:3e:86:bf:48:80:3a:6a:f1:7c:8d:9a:29:
2b:1f:13:87:87:cd:48:39:52:5a:3c:82:6b:01:3a:0d:1f:70:
41:a8:f1:6f:5b:5a:dc:e6:30:91:52:16:55:80:22:ec:68:55:
b5:b3:30:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:43 2024 by rpki-client on console-ams.rpki-client.org