Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/YaY-Sr2jsqrjXU0IbeoTcDDMY8Y.roa
File: YaY-Sr2jsqrjXU0IbeoTcDDMY8Y.roa (raw, json)
Hash identifier: rrvKmqcC4hYBVhTWUdrJiGJVsTtbgKdMGSlm/a9f6e0=
Subject key identifier: 61:A6:3E:4A:BD:A3:B2:AA:E3:5D:4D:08:6D:EA:13:70:30:CC:63:C6
Certificate issuer: /CN=94166b704843d3d9754095c83a91b493828200a2
Certificate serial: 0186DF041D8090675ACA2D6B081E987D0395
Authority key identifier: 94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/YaY-Sr2jsqrjXU0IbeoTcDDMY8Y.roa
Signing time: Tue 14 Mar 2023 07:27:14 +0000
ROA not before: Tue 14 Mar 2023 07:27:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 95.111.128.0/20 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Mar 2023 17:42:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:df:04:1d:80:90:67:5a:ca:2d:6b:08:1e:98:7d:03:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94166b704843d3d9754095c83a91b493828200a2
Validity
Not Before: Mar 14 07:27:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=61a63e4abda3b2aae35d4d086dea137030cc63c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:e1:8e:68:22:0b:9c:d1:a0:13:ae:85:b8:63:
6c:2d:ef:4a:3f:14:72:3b:f1:7d:8b:ec:30:a0:82:
98:95:70:f7:59:b5:18:61:2d:69:02:da:ae:0d:45:
32:26:37:18:40:fc:3d:37:51:a1:af:8f:9f:23:a9:
ae:e6:10:0e:7d:29:0f:54:a8:2d:97:29:7b:ff:5d:
8a:57:af:a0:b9:dd:f4:e5:d1:1f:70:3a:2b:d2:8c:
0a:49:0d:cf:a1:f9:ed:7f:83:68:3f:8d:b7:b0:ab:
35:9b:74:af:59:30:3c:65:4a:2a:62:81:6d:81:0e:
2d:d7:5f:76:16:6f:a4:f7:b2:7f:bc:fd:ac:77:d3:
ca:06:82:9e:66:22:9d:0c:58:7e:96:37:2b:99:8e:
fc:31:ff:e0:b4:74:7c:7b:26:c9:3a:a1:0d:ea:e3:
20:7a:4f:08:41:1d:ba:52:ca:74:6c:1b:b9:b2:07:
69:77:81:9f:0a:78:4a:41:46:3e:1c:f7:37:c7:25:
2a:a2:a1:fa:6a:87:c1:7b:10:59:1a:15:40:35:67:
7f:83:57:a6:a0:78:59:fc:97:f3:70:d8:b4:c0:ce:
17:d4:1b:2d:f1:38:6b:2c:f4:7f:b6:94:6b:92:29:
4b:0e:66:74:1c:ba:97:dc:db:31:5c:f5:a3:0e:fe:
b1:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:A6:3E:4A:BD:A3:B2:AA:E3:5D:4D:08:6D:EA:13:70:30:CC:63:C6
X509v3 Authority Key Identifier:
keyid:94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/YaY-Sr2jsqrjXU0IbeoTcDDMY8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.111.128.0/20
Signature Algorithm: sha256WithRSAEncryption
68:96:f0:c9:b6:41:3c:8f:2d:6c:ed:0f:15:4a:b4:71:f4:1a:
a5:d6:4a:5a:24:b7:b7:43:d2:d5:8a:d7:6f:e6:dc:27:61:4a:
ef:93:fc:fa:10:1e:03:6a:da:11:18:b0:0f:11:03:37:02:fa:
fa:54:0b:67:9f:fc:5b:5d:45:a1:35:94:fe:f6:ee:54:47:cd:
74:2a:5e:36:ee:bb:19:72:fd:79:a9:bf:ec:cd:18:45:dd:43:
ef:88:91:3f:17:ba:ed:06:77:3d:a7:d6:70:88:13:a0:0e:5e:
10:8a:7b:03:fe:e5:71:70:86:2d:cf:f9:ce:2e:cd:3a:a5:70:
d8:24:50:40:60:b4:34:d1:8c:03:9c:03:30:67:3e:a7:bf:81:
b1:91:6c:32:ec:85:e7:68:fd:3e:a6:c9:14:d9:6f:9f:1f:01:
8d:c1:d9:82:57:6d:7f:3a:33:13:53:8f:23:80:be:26:3b:3b:
3a:12:06:be:3d:ac:a5:d2:d3:b6:80:77:49:2b:73:cb:5b:be:
a3:ac:48:17:eb:3e:d6:73:6d:f6:22:51:c4:c2:f2:d5:a2:c1:
0b:1a:82:73:5c:2c:6b:b9:71:eb:a8:58:19:55:f4:e8:86:92:
a2:58:63:3d:1b:74:55:73:5b:d6:1a:95:c3:7d:bc:87:38:67:
a4:6a:ea:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:25 2024 by rpki-client on console-ams.rpki-client.org