Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/YlnzadHwQk8W5JfB2nF6yj4xswc.roa
File: YlnzadHwQk8W5JfB2nF6yj4xswc.roa (raw, json)
Hash identifier: 9Ur7cfbPXEefSCXUREa7OrsElOgwmB56hxrD1jIcvR8=
Subject key identifier: 62:59:F3:69:D1:F0:42:4F:16:E4:97:C1:DA:71:7A:CA:3E:31:B3:07
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 018E48F69BDD29647A8D9946484AA0ADFC6D
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/YlnzadHwQk8W5JfB2nF6yj4xswc.roa
Signing time: Sat 16 Mar 2024 20:31:45 +0000
ROA not before: Sat 16 Mar 2024 20:31:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48147
IP address blocks: 188.212.98.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Mar 2024 17:19:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:48:f6:9b:dd:29:64:7a:8d:99:46:48:4a:a0:ad:fc:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Mar 16 20:31:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6259f369d1f0424f16e497c1da717aca3e31b307
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:6f:92:3f:d4:50:10:93:7a:27:fc:da:c0:35:
d8:ce:43:e3:f9:7b:21:58:de:90:04:5c:21:c0:6b:
c1:ee:cd:22:2f:07:98:ee:5c:20:78:1a:0b:90:3b:
6c:9b:7f:47:98:5e:3c:4d:52:e1:ea:3f:0a:60:fb:
60:58:e9:91:00:49:bf:8e:47:a9:42:c7:e5:89:58:
47:2a:1c:f5:bc:33:bf:00:55:56:0d:f4:8d:9a:7d:
8d:54:fc:62:2b:a6:da:25:11:df:9f:3b:8e:2a:fc:
37:74:2d:00:65:3c:6a:6a:f4:e2:db:5b:72:79:fc:
22:68:74:f0:c8:d4:b3:39:cc:c3:1c:96:75:4e:19:
68:f5:ab:b9:33:0e:77:9a:29:4b:11:a1:dd:f5:2a:
2c:19:91:6d:1e:40:a7:95:42:42:b8:bd:62:70:c1:
f2:c9:48:89:8d:0a:6e:58:60:d4:7a:0c:d7:c1:81:
93:2b:7f:bb:2a:f6:33:a0:4f:2d:c6:e2:44:03:04:
61:a5:08:c1:12:07:a6:18:61:51:44:2f:9e:d7:0c:
9a:00:5c:a6:65:d3:d0:39:ab:a3:52:f9:f2:5d:d0:
a2:58:31:ef:96:d3:3e:2a:86:57:ed:5f:29:2c:95:
74:f7:f7:c9:3f:73:26:d8:7e:f7:7b:08:23:b9:b0:
21:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:59:F3:69:D1:F0:42:4F:16:E4:97:C1:DA:71:7A:CA:3E:31:B3:07
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/YlnzadHwQk8W5JfB2nF6yj4xswc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.212.98.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:60:dc:6c:c9:d8:1b:41:dc:d6:4d:23:8e:6d:a5:8b:93:59:
1f:43:7f:14:2a:3e:4f:09:aa:12:df:0f:8c:65:0a:80:cd:92:
f0:cf:2c:33:0f:8c:18:06:a4:02:77:f3:8f:99:ce:97:84:23:
52:2a:23:fc:33:78:91:4f:84:d4:c3:d0:87:80:78:f5:7f:6e:
ce:bb:48:13:eb:b6:1d:fa:51:4c:ab:4a:95:04:71:5e:bd:e6:
1b:28:93:a2:f6:4f:42:24:b8:2b:a4:6e:92:5d:b1:12:2a:8d:
3b:f3:b2:12:3c:86:4a:de:90:ec:53:23:df:e2:45:81:69:d4:
cf:39:06:85:34:a7:10:5a:26:17:17:64:51:0f:b8:fa:c0:ed:
09:f8:73:e8:42:7d:94:05:44:a8:fb:0b:4c:e3:29:1f:61:f3:
03:d2:12:d1:a9:54:f6:1b:08:fe:0b:60:b6:61:be:07:5e:04:
10:8e:84:c1:5d:34:09:8d:b0:03:10:db:2e:a2:c6:7b:6d:d6:
c8:d0:19:b5:82:fb:a3:cb:a5:61:18:5e:5e:4e:de:4a:74:d9:
a3:2b:ad:bc:27:9d:77:6b:f4:03:c3:08:df:d6:fc:fd:51:d6:
45:8e:ac:32:9b:af:70:42:90:e9:5d:33:b6:93:43:73:1e:57:
92:02:c4:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 27 20:15:25 2024 by rpki-client on console-ams.rpki-client.org