Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/YL5FH5RogoG9cnKmb9QypQD36Gs.roa
File: YL5FH5RogoG9cnKmb9QypQD36Gs.roa (raw, json)
Hash identifier: pC3/k1QJ/PHlOkUIhhhaAWBJ2G0Gyg9Xc9I51Uqe9pQ=
Subject key identifier: 60:BE:45:1F:94:68:82:81:BD:72:72:A6:6F:D4:32:A5:00:F7:E8:6B
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 018A408D09C7D2645B22364A321181F4DCB2
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/YL5FH5RogoG9cnKmb9QypQD36Gs.roa
Signing time: Tue 29 Aug 2023 09:08:19 +0000
ROA not before: Tue 29 Aug 2023 09:08:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 195.178.147.0/24 maxlen: 24
77.47.179.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Sep 2023 13:43:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:40:8d:09:c7:d2:64:5b:22:36:4a:32:11:81:f4:dc:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Aug 29 09:08:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=60be451f94688281bd7272a66fd432a500f7e86b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:bf:42:12:7b:86:d4:01:44:e9:dc:47:fc:d5:
b7:95:e3:27:9e:11:c3:34:7c:b2:a2:e7:5c:76:4f:
f4:e3:c5:9a:df:32:eb:26:46:03:33:94:34:72:6b:
44:9a:41:55:4f:1c:de:9d:d2:b1:a2:97:84:d0:09:
7e:79:42:dd:c7:23:7e:18:54:a1:7e:a9:2c:17:e9:
21:9f:ed:ab:00:30:cd:56:73:83:50:4e:c5:25:97:
ea:64:05:5c:e8:9f:fe:44:45:16:ef:56:f0:21:02:
17:22:39:90:6e:f5:f4:86:1a:e3:a2:52:d9:4f:1c:
66:b2:ac:c7:ef:b1:75:d0:07:bc:b0:d5:6b:f9:0b:
6c:18:e8:9a:7e:07:f4:b3:18:08:49:37:9d:87:ca:
60:59:6c:02:66:ed:05:ab:00:4b:31:79:ae:68:20:
17:6e:55:dc:c9:71:2d:22:d8:5b:80:19:4a:14:08:
00:89:f4:fd:a6:0a:c3:5a:47:05:ea:72:f5:07:66:
c8:13:b0:27:d1:3a:38:e2:52:cb:56:0a:50:42:f1:
fb:68:ea:48:02:48:7c:4b:e6:f2:6f:7c:00:33:b5:
29:12:71:f5:8e:20:8d:a3:6d:60:a5:3a:76:56:8a:
6e:7f:6d:6a:50:c8:75:9f:83:eb:33:62:00:e6:f4:
c0:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:BE:45:1F:94:68:82:81:BD:72:72:A6:6F:D4:32:A5:00:F7:E8:6B
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/YL5FH5RogoG9cnKmb9QypQD36Gs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.179.0/24
195.178.147.0/24
Signature Algorithm: sha256WithRSAEncryption
36:f9:17:39:36:fc:6a:67:7c:d0:da:24:3f:ed:18:89:89:8d:
5e:7f:ba:32:0d:30:b1:c7:7d:18:00:0e:86:94:56:21:17:9c:
0b:f3:b9:1a:7e:33:81:e1:40:2d:39:8b:0f:6c:1a:c1:12:53:
7e:7d:a9:5a:57:58:79:6a:90:12:8e:e1:2e:4b:a7:50:a8:ab:
17:ce:62:94:15:42:91:44:18:38:1b:77:29:10:0a:d4:07:7b:
cd:ef:66:4a:d9:87:c1:4f:3f:21:34:72:f2:e9:a1:64:6c:56:
ad:15:ac:f8:19:ee:9f:36:ab:fc:5c:d4:27:8e:3c:f2:08:00:
07:70:95:2f:fe:19:41:19:92:f8:d2:e6:fa:2f:fd:4e:ff:62:
f1:31:47:3f:61:43:27:fb:93:8b:65:9b:f0:8e:d8:cd:ec:27:
5d:c9:e6:b3:88:4b:df:c2:47:5e:cc:83:27:19:19:62:48:05:
e7:97:3b:5b:16:cd:ad:83:30:ac:90:f1:14:bb:38:df:91:7d:
22:6a:24:57:54:1d:e0:4b:83:52:98:08:7c:e9:32:a8:cc:be:
5a:12:4f:36:85:18:02:0a:31:3b:d1:af:bb:b0:b4:14:bb:52:
4f:95:4f:49:58:d1:49:09:a3:e1:18:60:97:8f:0e:68:6a:b5:
85:2f:09:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:42 2024 by rpki-client on console-fra.rpki-client.org