Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/85f02e-f1ac-44fb-92eb-f05aa229d638/1/ynTIHRUxFXZqMtXy--zbnTmCMrk.roa
File: ynTIHRUxFXZqMtXy--zbnTmCMrk.roa (raw, json)
Hash identifier: QoKndI9czJA6ggnWoQhD2otozqWhePqyGb3pY/3/ErQ=
Subject key identifier: CA:74:C8:1D:15:31:15:76:6A:32:D5:F2:FB:EC:DB:9D:39:82:32:B9
Certificate issuer: /CN=d2622fdec8fadfca58e7575c29f10e73ae775715
Certificate serial: 01856F79A4D8405EA7BE448CA4A1F4AD00DE
Authority key identifier: D2:62:2F:DE:C8:FA:DF:CA:58:E7:57:5C:29:F1:0E:73:AE:77:57:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0mIv3sj638pY51dcKfEOc653VxU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/85f02e-f1ac-44fb-92eb-f05aa229d638/1/ynTIHRUxFXZqMtXy--zbnTmCMrk.roa
Signing time: Sun 01 Jan 2023 22:35:21 +0000
ROA not before: Sun 01 Jan 2023 22:35:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49740
IP address blocks: 85.187.160.0/20 maxlen: 20
85.187.176.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:a4:d8:40:5e:a7:be:44:8c:a4:a1:f4:ad:00:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2622fdec8fadfca58e7575c29f10e73ae775715
Validity
Not Before: Jan 1 22:35:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ca74c81d153115766a32d5f2fbecdb9d398232b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:b2:58:0f:74:16:f3:d2:7a:e6:9b:8e:7a:63:
0e:bc:d4:59:2d:84:8c:7c:84:10:79:63:e0:24:b0:
73:bf:05:77:df:ed:2c:fb:59:a8:38:6c:1b:80:83:
2b:d4:50:42:ac:b8:99:4a:b8:b8:52:00:3c:f3:86:
37:12:73:81:47:31:d4:01:82:14:32:3a:22:cf:ff:
df:a7:1a:9c:7b:3e:bf:fb:fa:19:45:b0:65:d3:1f:
d8:a4:ec:95:e4:3b:74:d9:33:2d:bb:01:bf:e5:c6:
73:a1:d6:ad:fa:2a:7c:fc:fc:22:b0:bc:de:b7:1b:
3c:86:20:b4:5c:41:de:08:c0:41:db:85:3b:0f:eb:
55:fe:e6:56:ba:f0:f3:30:a8:f6:74:c4:4a:27:be:
15:62:63:f9:9e:c7:d2:b2:32:ca:a8:5f:f7:eb:cd:
4e:5d:62:b5:76:e4:83:03:5d:10:d6:e2:e4:35:eb:
24:d1:b0:1f:31:b4:7f:f9:0c:34:c6:65:e9:61:11:
aa:ed:12:8d:df:b6:87:7c:4f:cd:65:2d:d4:d0:74:
cc:c8:53:09:5b:5f:bd:f2:a2:95:eb:5f:66:47:36:
6b:29:eb:63:64:f7:48:40:a8:ec:91:9f:23:74:08:
cb:96:42:f9:21:bb:2e:7a:3d:2b:13:a6:71:94:6e:
4f:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:74:C8:1D:15:31:15:76:6A:32:D5:F2:FB:EC:DB:9D:39:82:32:B9
X509v3 Authority Key Identifier:
keyid:D2:62:2F:DE:C8:FA:DF:CA:58:E7:57:5C:29:F1:0E:73:AE:77:57:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0mIv3sj638pY51dcKfEOc653VxU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/85f02e-f1ac-44fb-92eb-f05aa229d638/1/ynTIHRUxFXZqMtXy--zbnTmCMrk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/85f02e-f1ac-44fb-92eb-f05aa229d638/1/0mIv3sj638pY51dcKfEOc653VxU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.187.160.0-85.187.179.255
Signature Algorithm: sha256WithRSAEncryption
11:a1:af:4e:2e:4a:0d:88:42:77:2f:45:3e:37:ef:93:80:b2:
6a:a6:c8:05:19:84:a2:9f:03:cf:b1:79:cf:aa:87:45:4e:6e:
7e:d4:1e:36:ed:19:25:c7:17:46:fa:ad:b5:e2:ae:3f:c0:d2:
1d:57:70:d7:d8:ca:5d:8e:fe:c2:0e:2b:24:6b:51:55:f2:72:
99:87:f4:9a:d6:cb:53:76:c6:fe:5c:60:7d:64:f1:be:6a:cc:
b3:6f:02:6b:c1:0e:84:a7:bf:75:ab:21:ee:00:c4:96:94:65:
cd:c0:87:6c:a9:53:7f:5d:85:65:04:5f:68:86:fb:c5:9f:c1:
92:41:a6:74:e6:02:55:e4:7e:32:2f:38:3c:36:27:1f:ba:f5:
56:71:fa:98:65:f0:ad:6e:c0:af:4d:f3:6e:11:9a:60:84:c7:
02:8d:63:ed:21:67:c2:79:ab:f9:80:73:36:ec:bb:71:97:c8:
ac:51:51:35:86:11:45:b9:fa:7a:fd:3a:a9:66:af:25:99:e9:
e0:71:3d:ce:24:00:f6:17:fa:b5:04:c2:32:58:dc:a2:c1:66:
90:ec:c0:1b:c5:aa:cc:d5:b0:f4:1b:2c:0f:c4:ac:49:a4:79:
13:17:1e:1f:48:6e:09:a1:3b:6b:55:39:ec:8e:04:e0:65:a4:
64:c1:50:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 30 21:21:10 2023 by rpki-client on console-fra.rpki-client.org