Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/dd981d-e1f5-4837-9027-c9bf55d9d1ba/1/YvE8Wxik3I4g7f9-5TPf8pBsMOQ.roa
File: YvE8Wxik3I4g7f9-5TPf8pBsMOQ.roa (raw, json)
Hash identifier: 3IA5KoockoD/15lLwa7bQfd+uFeuwOKOggL84fhwmSk=
Subject key identifier: 62:F1:3C:5B:18:A4:DC:8E:20:ED:FF:7E:E5:33:DF:F2:90:6C:30:E4
Certificate issuer: /CN=53c77312e0d2cec845a04613845f8a1be263c399
Certificate serial: 01856F8B9F7536457985421467068975E155
Authority key identifier: 53:C7:73:12:E0:D2:CE:C8:45:A0:46:13:84:5F:8A:1B:E2:63:C3:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8dzEuDSzshFoEYThF-KG-Jjw5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/dd981d-e1f5-4837-9027-c9bf55d9d1ba/1/YvE8Wxik3I4g7f9-5TPf8pBsMOQ.roa
Signing time: Sun 01 Jan 2023 22:54:59 +0000
ROA not before: Sun 01 Jan 2023 22:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209240
IP address blocks: 92.119.236.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:8b:9f:75:36:45:79:85:42:14:67:06:89:75:e1:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53c77312e0d2cec845a04613845f8a1be263c399
Validity
Not Before: Jan 1 22:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62f13c5b18a4dc8e20edff7ee533dff2906c30e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:9f:bf:a7:f4:5d:fb:3c:2f:f2:a4:91:3f:7b:
d5:13:4d:72:ba:ce:30:b7:f6:bf:52:a7:97:5e:18:
88:01:c9:89:dc:c1:3c:45:e8:90:17:8a:7e:06:1d:
30:e9:3e:88:02:e7:8b:a0:cc:3b:f8:dc:c5:67:c3:
d7:df:c8:9c:c8:b1:5f:76:b0:33:94:ed:67:c8:e8:
87:14:37:cc:a6:a4:38:4a:8e:bd:07:95:2f:a3:b4:
2f:86:05:07:89:91:b3:dd:0f:39:9b:d8:05:cb:7e:
6c:34:a1:41:77:41:ab:3b:9a:29:c3:0a:c9:6a:22:
fc:7d:b2:7d:dd:97:d0:ed:84:4f:36:37:d6:2d:c0:
c2:7e:7e:e9:04:77:76:96:df:d4:49:a1:08:e4:60:
c9:4c:2a:de:ee:eb:20:0b:88:0b:0d:15:42:48:9a:
45:a8:9d:04:0c:f0:aa:ff:15:40:80:40:9d:c5:f9:
a6:05:e6:77:ad:f9:15:15:00:c6:dd:d0:0a:fe:2a:
98:dd:a4:2a:bc:c4:6e:cb:8f:6d:88:bc:fd:22:36:
d2:9d:e3:01:99:74:79:b6:d9:c7:e6:31:47:a5:82:
d5:a1:1c:b9:fc:65:6d:bd:89:c8:e1:4f:ef:90:39:
79:6e:81:77:e2:03:61:5e:77:0d:6a:2d:e9:a1:e3:
c8:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:F1:3C:5B:18:A4:DC:8E:20:ED:FF:7E:E5:33:DF:F2:90:6C:30:E4
X509v3 Authority Key Identifier:
keyid:53:C7:73:12:E0:D2:CE:C8:45:A0:46:13:84:5F:8A:1B:E2:63:C3:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8dzEuDSzshFoEYThF-KG-Jjw5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/dd981d-e1f5-4837-9027-c9bf55d9d1ba/1/YvE8Wxik3I4g7f9-5TPf8pBsMOQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/dd981d-e1f5-4837-9027-c9bf55d9d1ba/1/U8dzEuDSzshFoEYThF-KG-Jjw5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.119.236.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:59:19:e0:76:89:f6:b5:65:8f:97:a1:77:32:cb:af:95:5c:
f3:e8:c5:00:82:a8:54:6c:36:32:eb:27:85:c5:57:e4:56:36:
64:fe:6b:0f:ae:01:8b:1f:16:0f:de:4c:5d:30:e4:0f:39:f3:
70:f8:a6:b1:68:cb:69:64:bf:f3:14:01:b4:b2:62:40:ce:dd:
2f:e3:60:25:d7:24:06:94:e1:55:61:73:db:43:be:41:57:e5:
8d:ff:87:10:a2:25:e8:5d:07:85:84:61:56:be:e0:a0:7f:44:
78:af:c7:04:e1:d1:28:b3:48:48:57:cb:be:90:58:d3:49:51:
0c:1f:95:e8:41:d8:f9:02:a9:b0:07:c8:21:db:33:06:bc:aa:
73:a0:15:19:65:5a:4f:cc:d7:11:a0:b5:dd:19:cd:de:6e:5f:
65:c1:83:65:59:c3:10:35:38:d4:86:a6:81:73:8b:b8:a0:bd:
5f:1c:2e:28:91:ed:54:26:90:6a:07:0e:52:cd:b1:0b:00:52:
c1:b7:60:54:c7:f8:4d:88:85:3f:f2:94:12:f2:6a:bf:76:c8:
c9:0b:5c:86:cb:cb:56:63:50:f6:f1:f9:f4:81:f3:d5:55:d3:
8d:fc:30:d6:41:96:23:66:4e:7d:83:36:6a:da:dd:bf:cd:e6:
4f:f3:a5:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:49 2024 by rpki-client on console-fra.rpki-client.org