Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/YN0K_kPWP6c-IfPFUasw4XTJF5g.roa
File: YN0K_kPWP6c-IfPFUasw4XTJF5g.roa (raw, json)
Hash identifier: SvmoXPxPBhtE5JvVi+ZBfRepr4LJVSokscbpiwFuF90=
Subject key identifier: 60:DD:0A:FE:43:D6:3F:A7:3E:21:F3:C5:51:AB:30:E1:74:C9:17:98
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018DE59C9C7D261A508228C8735D447824E2
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/YN0K_kPWP6c-IfPFUasw4XTJF5g.roa
Signing time: Mon 26 Feb 2024 13:31:02 +0000
ROA not before: Mon 26 Feb 2024 13:31:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 53616
IP address blocks: 188.64.142.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Mar 2024 13:12:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:e5:9c:9c:7d:26:1a:50:82:28:c8:73:5d:44:78:24:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Feb 26 13:31:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=60dd0afe43d63fa73e21f3c551ab30e174c91798
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:5e:53:f7:4e:d4:62:d4:97:51:09:e2:2c:6a:
16:f6:48:2e:90:e8:3a:1e:36:55:27:ac:0c:fe:03:
a6:4f:cc:e7:0c:af:4b:42:9b:17:13:85:cf:19:85:
e6:3d:c8:45:2f:56:7d:a8:3d:43:6f:19:b5:8b:31:
a3:d3:cb:31:1f:4b:04:9e:17:60:1f:fb:51:a0:d7:
af:0a:2c:8c:f3:5f:00:5c:25:a3:71:a0:ee:c6:a2:
90:e6:1c:1c:31:1b:f6:7f:22:b6:b1:93:80:9c:b9:
20:15:e3:bb:c0:d6:b7:5d:da:e3:df:3f:27:27:95:
14:f1:44:3d:9d:89:21:f3:68:11:bc:d8:47:e5:ef:
bf:f0:d1:f7:92:ae:17:a9:2a:98:b9:8c:90:d6:71:
8b:75:9d:87:21:d0:cd:a5:4e:4a:b1:c0:35:5c:2b:
f0:73:d2:9b:99:5a:04:9e:00:8c:05:2d:7b:c9:2e:
4c:04:80:9e:c0:88:6f:49:82:89:3a:78:1f:ea:60:
99:30:52:bd:c6:ad:ad:66:4b:1e:a6:34:7a:dd:34:
c9:42:44:d0:b0:b4:f1:4e:e3:13:67:18:68:df:c9:
4e:da:87:8f:86:36:15:fe:ff:74:a2:39:cd:3f:6a:
8e:a3:7f:9f:18:f7:2e:06:4e:cf:8d:45:bb:0c:b9:
5d:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:DD:0A:FE:43:D6:3F:A7:3E:21:F3:C5:51:AB:30:E1:74:C9:17:98
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/YN0K_kPWP6c-IfPFUasw4XTJF5g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.64.142.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:71:2c:f8:6b:62:77:a2:01:a7:6a:f1:f1:13:05:97:d1:e4:
41:ae:b5:98:2b:f7:f1:a0:7f:4c:b0:94:88:1d:4b:63:c7:02:
af:6e:20:f0:ff:60:96:12:b1:9d:59:57:3a:c7:c3:13:7b:e3:
bf:21:28:ab:04:4e:23:42:c5:83:2f:17:47:93:ca:7c:77:51:
a0:b4:74:12:4b:4b:85:70:72:8d:ca:98:9d:e0:5c:f1:6e:9c:
f7:61:3d:51:4c:3c:0d:9a:33:a5:3f:a3:52:59:29:8a:7b:95:
2f:7e:4d:16:78:d9:d7:77:bc:28:0d:b6:ff:23:3e:16:5f:0c:
84:f7:ed:c7:78:df:c0:30:69:a3:36:2e:84:7a:e6:b3:84:36:
29:4b:3e:b5:aa:a1:89:4e:4e:99:24:b1:9c:39:f5:c7:92:c0:
f6:60:58:63:43:fd:8e:59:d1:dd:2b:23:84:36:19:8a:a4:de:
bc:8e:6d:fd:3a:95:79:65:4c:55:39:02:23:ff:73:ba:97:d3:
af:ba:95:ce:b0:18:f7:5d:bd:0e:4f:6c:7e:e3:27:ca:6a:72:
d1:86:53:56:b7:ae:49:6f:11:d1:7f:77:ae:85:23:1d:34:22:
8a:5b:b1:63:ae:c4:ff:10:b1:53:95:9c:fa:8a:f8:ac:aa:3a:
af:18:b5:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:13 2024 by rpki-client on console-ams.rpki-client.org