Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/ycpRvvLirZrVuwLHAmGTfO0yo_I.roa
File: ycpRvvLirZrVuwLHAmGTfO0yo_I.roa (raw, json)
Hash identifier: J5ogKNTbECZeE3DtpvpjA7gQJgvYRBMW/89LN9slWMM=
Subject key identifier: C9:CA:51:BE:F2:E2:AD:9A:D5:BB:02:C7:02:61:93:7C:ED:32:A3:F2
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 018CF7757B8A49AE490AB1D28238FD2988DF
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/ycpRvvLirZrVuwLHAmGTfO0yo_I.roa
Signing time: Thu 11 Jan 2024 07:38:40 +0000
ROA not before: Thu 11 Jan 2024 07:38:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51431
IP address blocks: 188.212.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Jan 2024 18:25:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f7:75:7b:8a:49:ae:49:0a:b1:d2:82:38:fd:29:88:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Jan 11 07:38:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c9ca51bef2e2ad9ad5bb02c70261937ced32a3f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:4f:21:56:7f:1d:01:75:e3:79:5a:d1:d4:e0:
b0:ac:24:4f:02:0f:b0:60:77:6f:53:f0:25:5b:13:
96:b7:eb:1c:b3:00:17:c2:21:63:fb:76:02:13:38:
9d:6d:08:83:48:d8:af:02:c5:82:6b:5c:db:cc:00:
a9:10:fe:aa:08:44:3d:1c:1a:46:d1:61:a9:77:17:
3a:d7:60:16:2d:6a:c5:ae:ea:fa:87:9d:41:f7:5b:
fe:78:b0:72:27:bf:48:31:37:33:49:ad:bf:b3:1c:
da:5e:d1:83:e4:9e:dd:ad:04:04:d2:d7:cb:91:44:
fa:bd:5d:2b:1c:c4:2a:43:a1:2b:15:20:95:20:ca:
8c:9a:73:53:13:51:5c:81:cf:a5:78:32:4c:43:d4:
ee:3d:ee:3c:0e:4f:7b:01:a9:9d:89:13:cf:30:8c:
e1:7a:4c:1d:ff:a6:26:d0:66:5f:39:fd:c9:51:3e:
f4:d0:69:f6:1b:e4:d1:ac:23:7b:a4:5d:0f:0c:a2:
3e:2d:e5:7f:8f:25:c6:74:ae:0c:4d:f7:9a:23:d1:
0c:f7:f5:35:61:2f:44:60:53:30:ea:16:8d:c1:ef:
a4:eb:ea:63:94:b2:e0:db:7f:d9:91:08:20:ba:a0:
98:bb:4d:20:f6:79:38:0f:44:9c:48:3a:30:41:31:
de:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:CA:51:BE:F2:E2:AD:9A:D5:BB:02:C7:02:61:93:7C:ED:32:A3:F2
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/ycpRvvLirZrVuwLHAmGTfO0yo_I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.212.96.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:9e:5f:68:d8:f4:a5:20:bb:bd:93:c1:08:31:c6:39:96:8e:
61:fb:2a:32:9a:03:4b:e6:3f:08:c8:fd:68:83:2a:35:9b:73:
d5:21:6f:c3:8c:dd:b9:b3:86:18:ed:5b:fd:71:19:f8:9e:e0:
fc:dd:fd:0f:60:29:9b:d7:e0:0b:96:7f:82:5a:7b:ee:d0:41:
8b:3e:cf:3e:39:60:08:39:4c:1b:f3:08:db:be:b8:a0:a5:da:
cd:3c:7e:a4:b2:6e:13:a5:1c:2b:73:ee:ca:46:68:72:e0:7b:
e5:9e:16:a7:80:e2:6a:26:97:6f:81:5f:c9:fc:36:69:39:51:
df:c9:2e:db:ea:b3:b6:31:ba:2b:3f:4f:ee:9c:03:6e:b6:5e:
6f:f4:ee:e5:48:56:10:db:0f:8a:01:92:18:82:3c:f5:6f:1e:
d0:ce:b9:81:92:89:e2:5c:d0:33:f1:c7:77:fd:3d:e0:af:8e:
86:99:81:a3:a6:3a:eb:69:01:61:56:30:91:3c:ea:65:0a:8e:
ec:3c:10:e3:0f:ff:07:6e:73:56:56:17:96:c4:1a:9a:62:9a:
4f:09:1f:ff:91:28:34:bc:14:fe:1a:05:24:13:49:e4:90:61:
dd:ae:3f:c2:c3:d7:11:3c:f4:a5:f3:56:11:e2:b3:4e:23:0a:
6b:33:01:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 11 23:51:24 2024 by rpki-client on console-fra.rpki-client.org