Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/ycb19SQmJTa8UNY-q43NSkJtFQs.roa
File: ycb19SQmJTa8UNY-q43NSkJtFQs.roa (raw, json)
Hash identifier: 5RqpPztOQJA0b8Ek/l1/HVUYb76OkwoHQTcej7pYYoI=
Subject key identifier: C9:C6:F5:F5:24:26:25:36:BC:50:D6:3E:AB:8D:CD:4A:42:6D:15:0B
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 01856DC1CF270E3DA3F08A817E6A20A77BD1
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/ycb19SQmJTa8UNY-q43NSkJtFQs.roa
Signing time: Sun 01 Jan 2023 14:34:55 +0000
ROA not before: Sun 01 Jan 2023 14:34:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51343
IP address blocks: 212.22.95.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:cf:27:0e:3d:a3:f0:8a:81:7e:6a:20:a7:7b:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Jan 1 14:34:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c9c6f5f524262536bc50d63eab8dcd4a426d150b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e8:a5:22:59:e3:96:83:eb:3c:81:bf:e4:89:
b2:d2:75:a6:78:6b:8e:89:01:92:5a:61:5d:bc:43:
7b:71:a2:3f:b8:87:c0:87:34:e4:e1:f9:ae:26:5f:
99:06:31:e1:0a:70:d4:8f:13:db:9a:cd:2e:dc:54:
96:91:e8:cf:89:fc:39:5d:bf:72:84:42:c7:6e:97:
4c:5d:a8:d4:66:49:69:bf:5e:a7:53:63:8c:a5:36:
77:fc:64:45:65:31:78:be:9a:2d:21:f2:28:f6:ce:
19:16:7f:71:e4:c7:6c:fe:74:1d:34:f9:55:8d:88:
5a:12:aa:71:6c:5e:6d:10:d5:66:de:fb:11:ad:6f:
78:5e:b7:58:5f:20:33:65:f9:aa:af:ce:ec:80:2b:
a0:40:57:71:31:51:b4:5c:30:2d:67:06:8a:cf:fe:
fb:bc:cb:a4:0f:ec:a4:74:9d:26:ac:92:0b:2b:8e:
4c:b2:06:99:df:97:96:e5:d8:12:7b:79:d7:7f:1b:
3a:f4:7b:7f:f3:04:6f:75:fe:97:aa:31:24:52:fc:
fd:69:0a:76:d9:b1:54:c1:ac:7f:3d:c1:1c:69:f4:
1f:6b:60:29:b1:75:b4:b4:7d:f8:9f:58:ef:f1:40:
ff:bb:36:a9:e1:fd:2f:b9:69:ad:0a:b9:17:27:43:
61:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:C6:F5:F5:24:26:25:36:BC:50:D6:3E:AB:8D:CD:4A:42:6D:15:0B
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/ycb19SQmJTa8UNY-q43NSkJtFQs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.22.95.0/24
Signature Algorithm: sha256WithRSAEncryption
07:14:71:87:cb:6b:04:ca:7b:92:cc:f9:6a:52:c2:bd:07:fb:
cd:af:61:e5:86:31:4e:84:23:12:06:0a:4b:bf:01:5c:a2:a2:
12:2b:a0:05:eb:62:5c:00:f2:40:83:63:ec:f2:99:b2:31:4d:
d5:27:e2:f6:b2:28:ea:59:ad:d8:cc:28:cf:5f:25:53:62:bf:
76:63:54:de:31:c6:82:2c:99:7e:4b:80:d5:e2:78:5c:2d:07:
f8:93:3b:69:3f:d9:63:d4:a7:60:2e:ec:fb:29:f7:b4:2f:b7:
b5:8b:4c:e9:0d:52:53:98:68:7f:43:e2:1c:4d:b9:7f:ad:fa:
cd:78:44:47:a0:6c:49:b4:86:41:95:46:f9:55:92:c8:5e:cd:
3e:32:ce:82:bc:29:b5:dd:5f:bc:95:a0:30:cb:cc:f7:7b:2a:
cb:ea:f4:c9:40:9f:f0:e4:1f:26:dc:37:ff:76:f0:a7:51:09:
7f:94:61:11:f6:b6:76:ce:fd:75:12:f3:c4:6c:c5:c7:2e:e4:
82:68:6d:44:86:19:8c:75:c8:12:a0:0b:6d:92:ad:b4:3b:15:
f7:59:f8:f2:ff:cb:13:73:9a:59:b5:2c:85:0e:44:a6:b0:98:
d0:9e:58:86:21:6d:ae:97:41:05:23:d1:48:15:81:b4:35:25:
33:8b:4e:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:02 2023 by rpki-client on console-fra.rpki-client.org