Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/ylx5DpcFe1NsaBouClmhukaT6rc.roa
File: ylx5DpcFe1NsaBouClmhukaT6rc.roa (raw, json)
Hash identifier: YS7dQzzNxvkIPZ+ve8ZkaR/ACw80P84s0vtWXNROjkI=
Subject key identifier: CA:5C:79:0E:97:05:7B:53:6C:68:1A:2E:0A:59:A1:BA:46:93:EA:B7
Certificate issuer: /CN=c44db8b0983acf97a3255152c2ea592adae7735b
Certificate serial: 01870870DD438A73781C22A16AC36BB81FA4
Authority key identifier: C4:4D:B8:B0:98:3A:CF:97:A3:25:51:52:C2:EA:59:2A:DA:E7:73:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xE24sJg6z5ejJVFSwupZKtrnc1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/ylx5DpcFe1NsaBouClmhukaT6rc.roa
Signing time: Wed 22 Mar 2023 08:30:27 +0000
ROA not before: Wed 22 Mar 2023 08:30:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207990
IP address blocks: 91.92.216.0/23 maxlen: 32
91.92.218.0/24 maxlen: 32
5.62.152.0/21 maxlen: 32
94.139.60.0/23 maxlen: 32
91.92.22.0/23 maxlen: 32
188.212.136.0/21 maxlen: 32
93.113.52.0/23 maxlen: 32
188.94.84.0/22 maxlen: 32
185.66.136.0/22 maxlen: 32
180.149.16.0/20 maxlen: 32
94.139.224.0/20 maxlen: 32
119.12.192.0/21 maxlen: 32
188.240.48.0/23 maxlen: 32
180.235.160.0/20 maxlen: 32
91.92.138.0/24 maxlen: 32
89.40.81.0/24 maxlen: 32
180.149.0.0/20 maxlen: 32
91.192.212.0/22 maxlen: 32
110.238.192.0/19 maxlen: 32
77.81.92.0/22 maxlen: 32
176.223.182.0/23 maxlen: 32
Validation: Failed, certificate revoked on Wed 22 Mar 2023 09:08:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:08:70:dd:43:8a:73:78:1c:22:a1:6a:c3:6b:b8:1f:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c44db8b0983acf97a3255152c2ea592adae7735b
Validity
Not Before: Mar 22 08:30:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ca5c790e97057b536c681a2e0a59a1ba4693eab7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:c6:d5:b5:7e:61:7b:0c:b1:1e:d2:10:95:e1:
21:2e:53:a7:f9:f1:7e:f4:c4:33:f2:b0:bb:d3:86:
05:20:b2:1a:6b:19:80:78:6b:35:43:3d:5d:7d:77:
a4:e8:59:0a:01:b9:0d:74:9e:58:37:3b:1f:4f:d9:
b2:cb:69:42:68:7f:3f:49:f1:ea:b3:27:46:27:f9:
29:36:2b:6b:03:7f:37:7c:2d:43:4b:9d:5d:df:bf:
7f:29:74:31:d1:32:73:a1:ef:9d:32:de:e4:36:67:
c2:a0:aa:7b:2c:40:48:6f:61:61:0e:a7:a4:d5:ea:
55:45:e3:80:4c:9a:6c:8d:c4:1d:5c:78:62:01:b7:
56:c5:58:6b:a8:db:e9:b8:f9:52:4c:0d:4a:93:3b:
82:3e:c3:d5:c9:79:41:40:6b:f0:6c:d4:05:53:47:
4b:f7:ae:40:db:b0:65:0b:32:80:0c:64:66:dc:ac:
87:e9:9f:1a:87:42:dd:06:ef:13:1a:e7:22:c8:4e:
df:26:1b:8e:f5:2a:40:f0:87:39:1c:11:36:b9:a3:
2c:93:7c:6f:f2:a2:92:b1:e9:7b:e4:8f:be:8f:69:
b7:38:7d:e5:90:5b:11:58:9a:92:b4:ee:fd:54:02:
2e:7d:a0:fe:d6:9e:07:10:bf:69:4b:7d:57:5f:eb:
38:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:5C:79:0E:97:05:7B:53:6C:68:1A:2E:0A:59:A1:BA:46:93:EA:B7
X509v3 Authority Key Identifier:
keyid:C4:4D:B8:B0:98:3A:CF:97:A3:25:51:52:C2:EA:59:2A:DA:E7:73:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xE24sJg6z5ejJVFSwupZKtrnc1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/ylx5DpcFe1NsaBouClmhukaT6rc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/437897-af58-4959-8e76-eedd94ec128c/1/xE24sJg6z5ejJVFSwupZKtrnc1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.62.152.0/21
77.81.92.0/22
89.40.81.0/24
91.92.22.0/23
91.92.138.0/24
91.92.216.0-91.92.218.255
91.192.212.0/22
93.113.52.0/23
94.139.60.0/23
94.139.224.0/20
110.238.192.0/19
119.12.192.0/21
176.223.182.0/23
180.149.0.0/19
180.235.160.0/20
185.66.136.0/22
188.94.84.0/22
188.212.136.0/21
188.240.48.0/23
Signature Algorithm: sha256WithRSAEncryption
8f:cd:8b:33:9e:00:b8:f1:aa:7b:d6:e6:0c:c0:05:d0:ab:d6:
42:89:4e:f1:86:e4:94:8f:1a:ca:5f:6b:8d:a9:eb:6a:2a:68:
f9:3c:af:4d:d6:93:d5:4b:a6:7f:4e:96:d8:0d:8c:4b:8b:27:
e7:81:2d:50:83:84:5b:c9:fa:07:a5:09:5c:b7:83:d0:4d:ee:
2d:5c:3f:80:ed:a1:de:e2:e2:6f:f4:b8:9a:63:8c:0d:65:56:
9c:db:e4:68:06:21:b8:b8:68:c4:77:64:fe:dd:ba:f7:e3:e7:
b6:a0:37:a9:21:bc:79:af:ab:ab:70:5c:d5:6f:a1:75:21:53:
1d:c4:9a:bd:65:1b:4f:47:05:70:2c:59:5d:b7:d0:49:02:65:
a2:51:0b:eb:ca:1c:20:86:3e:78:05:4d:b1:3c:84:6c:e4:56:
1f:b5:9b:dd:02:dd:ec:ae:5d:51:93:b6:66:2a:b1:76:dc:58:
59:ae:60:e2:99:d6:2c:b1:09:4e:14:3e:9b:b0:a2:52:2d:e2:
74:02:c9:e9:d0:bd:f5:34:5a:ee:f9:92:28:da:c5:b2:04:77:
c5:5c:3a:5c:fe:e0:4a:8d:f7:b6:fd:ad:51:49:a3:91:a6:11:
08:c3:88:b2:80:1c:51:69:e2:2d:f2:7d:d7:c5:e2:56:8f:ff:
8d:20:36:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:47 2024 by rpki-client on console-fra.rpki-client.org