Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/yyqCREqnp5ERMNzCBoc1v1x4CBA.roa
File: yyqCREqnp5ERMNzCBoc1v1x4CBA.roa (raw, json)
Hash identifier: Jsk9LllKOcp4Km53OqHLJxUSaCnRY9PlPf91U+qwYqo=
Subject key identifier: CB:2A:82:44:4A:A7:A7:91:11:30:DC:C2:06:87:35:BF:5C:78:08:10
Certificate issuer: /CN=95b30111b0b720a209f788c8b90f60380b465c2e
Certificate serial: 018CAB5E152239DCE933A1A7688BC7E0C28A
Authority key identifier: 95:B3:01:11:B0:B7:20:A2:09:F7:88:C8:B9:0F:60:38:0B:46:5C:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/yyqCREqnp5ERMNzCBoc1v1x4CBA.roa
Signing time: Wed 27 Dec 2023 13:01:58 +0000
ROA not before: Wed 27 Dec 2023 13:01:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207185
IP address blocks: 185.157.4.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ab:5e:15:22:39:dc:e9:33:a1:a7:68:8b:c7:e0:c2:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95b30111b0b720a209f788c8b90f60380b465c2e
Validity
Not Before: Dec 27 13:01:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb2a82444aa7a7911130dcc2068735bf5c780810
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:ec:70:b9:b0:2b:97:58:d3:0f:67:cf:d2:5f:
c3:11:96:d5:c1:d8:c2:c3:03:25:9e:7f:52:3c:f3:
90:6f:fb:46:6d:b2:b0:3f:4c:23:ff:ea:bb:1a:74:
06:33:fb:5a:a2:89:35:87:e3:06:10:69:c7:f3:0b:
77:a4:46:21:47:35:a0:93:aa:01:fb:bf:a7:64:65:
55:6a:b8:f1:73:0e:87:db:52:6f:d5:d1:77:b0:08:
5c:b4:dd:5e:05:38:e6:bc:a1:7c:cd:9d:9f:c8:b7:
7d:a8:d8:e3:d9:f3:93:11:75:b9:e5:44:19:82:4a:
80:db:fe:6c:db:60:dc:e7:ad:ff:5a:82:5d:6a:51:
57:f0:e3:66:d9:b4:4e:73:91:f0:bb:5b:ef:14:9d:
e9:49:07:71:6f:30:98:1f:d6:4b:b2:5b:b2:88:2d:
ba:bd:41:66:cb:ad:e1:c3:38:83:d9:58:3b:3f:0a:
82:f2:84:00:96:6b:0a:d5:0b:7f:a8:2b:37:23:c0:
ea:fa:f2:45:67:28:a2:eb:95:98:39:25:5a:73:a4:
8a:e5:0c:82:72:40:20:5c:2c:9a:0e:9a:26:97:47:
21:49:5a:9e:55:5e:f2:be:1c:68:60:f8:40:31:3f:
c9:83:98:12:ad:2b:4e:58:08:65:b7:12:4e:ac:cf:
81:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:2A:82:44:4A:A7:A7:91:11:30:DC:C2:06:87:35:BF:5C:78:08:10
X509v3 Authority Key Identifier:
keyid:95:B3:01:11:B0:B7:20:A2:09:F7:88:C8:B9:0F:60:38:0B:46:5C:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/yyqCREqnp5ERMNzCBoc1v1x4CBA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.157.4.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:d8:c6:65:80:12:4a:26:47:e2:1c:57:4a:82:d4:93:a9:fc:
51:e2:8f:ec:89:fe:d8:c7:ff:0b:e4:2d:e5:d0:ba:db:6f:74:
8b:1a:a0:23:cf:3d:00:b7:9c:65:e6:5c:01:4b:23:e5:af:a3:
14:8c:99:bc:68:ed:a9:a4:a7:da:0a:e8:05:a6:c2:56:41:c1:
99:f6:de:ac:07:72:f8:7a:68:99:7a:cc:4a:52:d5:56:73:5b:
97:8b:e4:51:74:94:e6:55:23:70:83:1d:69:4d:9d:79:57:4d:
d9:8a:7d:3e:63:a2:0c:b4:8f:69:f9:a3:e2:a2:da:0c:55:87:
b6:f2:8b:3c:bd:1b:9a:81:b9:9a:fa:1b:d8:fd:8b:52:a2:d5:
0f:3d:d6:84:bb:6e:a5:1b:46:52:00:a4:8e:b4:bc:8c:70:d5:
7b:07:c6:0b:eb:db:47:55:83:4c:bc:fa:09:23:5b:64:bf:1e:
7e:25:fc:20:49:db:66:31:02:7b:aa:de:8d:61:3c:d6:71:a6:
7b:05:68:22:49:00:e1:98:c2:a2:fc:bb:06:51:a4:bd:e7:29:
66:2e:48:80:f2:0d:97:f3:4a:11:c4:24:8b:58:6e:28:17:cf:
da:6b:c2:7e:13:00:d8:5e:36:7e:ab:15:b5:ce:2b:5f:51:9b:
f4:5b:03:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:15 2024 by rpki-client on console-fra.rpki-client.org