Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/YmSAIvXcv4wtPE6bPXINvZ06T6U.roa
File: YmSAIvXcv4wtPE6bPXINvZ06T6U.roa (raw, json)
Hash identifier: Yshzu/8pRDILMyFMNak5TZdI8AJ2AsKVcrVWWQjL8kk=
Subject key identifier: 62:64:80:22:F5:DC:BF:8C:2D:3C:4E:9B:3D:72:0D:BD:9D:3A:4F:A5
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 018A836FBB41FA62A88AC086B304C1EC6C3F
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/YmSAIvXcv4wtPE6bPXINvZ06T6U.roa
Signing time: Mon 11 Sep 2023 08:50:52 +0000
ROA not before: Mon 11 Sep 2023 08:50:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34837
IP address blocks: 212.16.64.0/24 maxlen: 24
212.16.65.0/24 maxlen: 24
212.16.67.0/24 maxlen: 24
212.16.75.0/24 maxlen: 24
212.16.82.0/24 maxlen: 24
212.16.83.0/24 maxlen: 24
212.16.91.0/24 maxlen: 24
212.16.90.0/24 maxlen: 24
212.16.88.0/24 maxlen: 24
212.80.1.0/24 maxlen: 24
212.80.3.0/24 maxlen: 24
212.80.0.0/19 maxlen: 19
212.80.5.0/24 maxlen: 24
212.80.11.0/24 maxlen: 24
212.80.16.0/24 maxlen: 24
212.80.28.0/24 maxlen: 24
212.80.30.0/24 maxlen: 24
212.80.31.0/24 maxlen: 24
46.38.140.0/24 maxlen: 24
46.38.131.0/24 maxlen: 24
46.38.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:83:6f:bb:41:fa:62:a8:8a:c0:86:b3:04:c1:ec:6c:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Sep 11 08:50:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62648022f5dcbf8c2d3c4e9b3d720dbd9d3a4fa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:29:a0:4d:e5:87:ea:be:a8:24:7e:c6:99:f0:
03:3e:2c:e5:30:70:5f:38:7d:76:2c:fe:bc:1b:e0:
ea:5a:3d:81:9e:67:49:b8:04:ce:bb:2a:f8:5f:33:
e6:8d:90:1d:94:7d:bb:c6:65:3d:84:d9:cd:9c:a4:
fd:45:a9:03:9b:56:7a:ae:b2:db:93:fb:13:1f:cd:
37:c7:77:1b:38:b9:37:8d:63:dd:5e:7c:c4:c2:c7:
0f:21:d8:eb:97:14:39:ec:57:e8:87:b3:26:2a:2b:
c5:94:b2:90:3d:a0:08:32:2d:e8:09:d5:c6:9a:ff:
a1:fd:94:6f:45:be:fd:ca:fb:72:83:39:de:de:09:
a3:ed:1a:38:0d:9c:bb:1e:1b:58:bd:0d:c0:96:55:
58:18:92:d3:f9:f5:8a:ba:d5:82:f0:fd:ec:04:f9:
7c:d3:1f:bc:2f:51:f3:a8:6f:b0:4b:ea:8d:4b:d2:
4e:6a:73:e3:00:ac:b5:3c:2d:ee:ac:3a:3a:2d:97:
75:92:7d:f3:24:cd:b3:df:46:a4:a7:24:9d:c9:95:
9b:e0:ee:aa:50:35:81:19:2d:59:2b:e2:76:10:16:
13:c4:7d:27:b0:15:ea:3c:5e:cf:70:e4:53:4e:55:
4c:39:9f:c4:24:ee:0b:52:3c:e4:6a:9c:80:f5:09:
b2:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:64:80:22:F5:DC:BF:8C:2D:3C:4E:9B:3D:72:0D:BD:9D:3A:4F:A5
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/YmSAIvXcv4wtPE6bPXINvZ06T6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.129.0/24
46.38.131.0/24
46.38.140.0/24
212.16.64.0/23
212.16.67.0/24
212.16.75.0/24
212.16.82.0/23
212.16.88.0/24
212.16.90.0/23
212.80.0.0/19
Signature Algorithm: sha256WithRSAEncryption
58:36:03:09:81:fb:35:3d:9a:bc:4a:ec:98:94:1e:43:4b:6b:
a7:17:b5:af:3f:37:25:02:23:60:90:98:14:dd:1b:f2:f9:bc:
b2:06:b3:90:ab:2a:08:ba:5c:15:c7:7a:9a:ce:ae:d3:6d:05:
ef:31:bf:36:2b:34:86:2d:5b:21:ab:1b:78:03:81:bb:2a:d6:
9d:c7:1e:7a:a6:22:7b:38:0c:7f:18:17:85:57:5e:53:f3:c7:
22:ab:cc:da:3b:7d:e0:72:3b:b9:c7:95:4c:81:d0:0c:1a:5b:
ed:6f:63:f9:ff:94:b1:30:3d:e9:ea:5c:c4:e2:36:ff:cf:3b:
10:67:ca:6d:0e:a2:19:fb:b5:05:49:13:eb:74:4a:79:b2:3e:
bc:cc:1e:d4:05:a1:6f:0a:08:8a:25:cb:ca:77:9f:0c:57:96:
ea:38:7f:93:bf:d3:cb:f8:8e:f5:1b:c8:93:88:ed:cb:ce:f0:
d2:5e:1f:06:c8:fd:ab:e0:88:05:05:ad:6b:35:cc:7d:01:5d:
6b:66:63:86:1d:39:55:86:ac:08:e5:9f:1f:9d:3b:95:ec:f7:
7d:2c:98:5d:2e:4a:05:32:dc:1a:e1:e5:55:b5:0a:cf:90:c0:
1d:84:a6:0f:aa:21:80:ca:1f:23:7d:07:ae:2b:11:f9:e0:a8:
6c:b2:ee:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:06 2024 by rpki-client on console-ams.rpki-client.org