Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/dbec1f-07c5-49f2-ba66-2b1fafccdd0b/1/yJwlWhLGy6aq2MFNJnfUMT7melU.roa
File: yJwlWhLGy6aq2MFNJnfUMT7melU.roa (raw, json)
Hash identifier: uHsI1A6ulgRnilc59Rlj0kvL51sNxlUgnj/Qsk8zZAo=
Subject key identifier: C8:9C:25:5A:12:C6:CB:A6:AA:D8:C1:4D:26:77:D4:31:3E:E6:7A:55
Certificate issuer: /CN=dfa7e00738d3f7b8de48de38627567768e2f89b6
Certificate serial: 018E707D045E7C22976CD88A119976B0C9E5
Authority key identifier: DF:A7:E0:07:38:D3:F7:B8:DE:48:DE:38:62:75:67:76:8E:2F:89:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/36fgBzjT97jeSN44YnVndo4vibY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/dbec1f-07c5-49f2-ba66-2b1fafccdd0b/1/yJwlWhLGy6aq2MFNJnfUMT7melU.roa
Signing time: Sun 24 Mar 2024 12:43:45 +0000
ROA not before: Sun 24 Mar 2024 12:43:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215284
IP address blocks: 185.40.34.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Mar 2024 12:07:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:70:7d:04:5e:7c:22:97:6c:d8:8a:11:99:76:b0:c9:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfa7e00738d3f7b8de48de38627567768e2f89b6
Validity
Not Before: Mar 24 12:43:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c89c255a12c6cba6aad8c14d2677d4313ee67a55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:fb:7b:fc:cf:64:47:87:bb:a0:79:3e:e1:a0:
54:9f:e4:35:17:3f:5f:93:23:df:3d:44:ef:2a:a8:
b5:45:c7:ea:d2:35:cd:5b:a3:70:40:95:44:b0:a1:
c4:d8:a2:ef:14:46:8d:ae:ef:03:96:58:f0:60:ef:
2e:13:a1:76:2c:de:70:02:60:9f:84:1b:fb:b8:b8:
94:b5:48:10:16:08:e8:91:31:fd:cd:a0:15:e4:c1:
ba:70:4a:5a:95:c1:49:c5:14:00:be:2c:c1:9c:28:
ec:04:c2:75:ee:c0:51:1c:fa:7f:0c:67:30:3d:31:
9c:31:87:d4:9f:43:c1:83:6e:07:f2:39:35:9c:6b:
3c:18:0b:b8:c2:7d:70:a8:1f:85:e4:96:98:07:f1:
97:5e:8f:eb:fb:0b:c9:2e:6f:15:8a:02:32:ee:30:
72:c9:49:b1:56:b1:e9:3e:69:31:bf:29:6e:48:a3:
b3:f7:41:23:75:30:fc:8c:28:00:40:1e:60:37:eb:
e2:62:8c:37:92:9c:2d:56:4a:72:f4:12:83:10:b3:
83:e3:77:29:5f:7e:53:07:ac:54:cc:41:fe:e1:5b:
9b:98:2b:e6:cc:58:b7:c2:bd:bc:dd:50:45:15:03:
13:d7:af:98:85:56:f8:d5:b4:16:40:cd:1b:d6:50:
42:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:9C:25:5A:12:C6:CB:A6:AA:D8:C1:4D:26:77:D4:31:3E:E6:7A:55
X509v3 Authority Key Identifier:
keyid:DF:A7:E0:07:38:D3:F7:B8:DE:48:DE:38:62:75:67:76:8E:2F:89:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/36fgBzjT97jeSN44YnVndo4vibY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/dbec1f-07c5-49f2-ba66-2b1fafccdd0b/1/yJwlWhLGy6aq2MFNJnfUMT7melU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/dbec1f-07c5-49f2-ba66-2b1fafccdd0b/1/36fgBzjT97jeSN44YnVndo4vibY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.40.34.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:d2:d5:cc:eb:5a:cd:12:18:61:8c:ac:b5:a1:cc:e5:dc:7f:
96:e1:8f:09:1f:fa:f6:31:62:04:a0:ee:14:03:7a:53:53:94:
df:c6:73:e4:98:87:f5:86:e3:d2:69:60:48:d1:ff:38:b3:94:
6b:ef:52:36:d3:23:80:88:8a:77:64:cf:6e:8d:59:44:9d:47:
88:07:32:c3:2d:23:d4:a1:69:44:0c:73:29:d4:e2:3a:a1:0c:
97:25:63:29:92:c9:fe:3a:a2:f5:5a:6e:82:8d:35:4c:1c:e9:
e1:90:24:17:6b:ae:8c:73:5a:c1:b9:72:cc:ef:9d:4f:ff:ec:
04:48:0c:ec:f4:14:8b:fe:78:b0:c4:d6:e5:09:ab:bf:0e:b3:
0a:48:1a:c1:ea:cf:27:5d:d5:6b:39:6d:d8:30:26:b9:f3:39:
cb:cc:f7:b8:51:2e:c7:71:7f:a6:73:c8:8b:4f:6d:87:51:ac:
8b:0c:50:43:f3:74:75:90:f3:52:7f:ab:a7:20:0c:7a:f0:44:
aa:7d:d7:b3:47:18:48:23:29:40:50:ac:de:56:94:f4:1d:29:
24:e1:5a:7e:49:8e:b9:77:e6:77:e8:d2:53:e3:8b:ea:8c:9e:
92:93:8a:3d:84:fb:7e:00:93:e6:13:80:46:48:a3:31:66:d8:
1b:de:53:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 26 17:17:05 2024 by rpki-client on console-ams.rpki-client.org