Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/YtNvRdivrqKWbllKbRdD8fhiHQs.roa
File: YtNvRdivrqKWbllKbRdD8fhiHQs.roa (raw, json)
Hash identifier: p4GwoUaJ6YfNrGW2u0bmAVcoO2eAv7ZHI/Hyot/xxhg=
Subject key identifier: 62:D3:6F:45:D8:AF:AE:A2:96:6E:59:4A:6D:17:43:F1:F8:62:1D:0B
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018D5A62FF6B7FDC355088A686407D9F88BB
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/YtNvRdivrqKWbllKbRdD8fhiHQs.roa
Signing time: Tue 30 Jan 2024 12:40:53 +0000
ROA not before: Tue 30 Jan 2024 12:40:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60647
IP address blocks: 46.102.237.0/24 maxlen: 24
89.35.73.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Feb 2024 04:55:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5a:62:ff:6b:7f:dc:35:50:88:a6:86:40:7d:9f:88:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 30 12:40:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=62d36f45d8afaea2966e594a6d1743f1f8621d0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c1:16:48:6c:09:0c:8c:21:9c:0e:cc:85:ef:
bb:ef:82:d9:da:ed:d5:b3:1d:2f:4b:9d:ca:94:99:
b7:6a:b8:74:bb:ce:48:e3:ae:88:40:53:f2:34:c5:
f8:1e:5f:cf:6c:15:43:43:e7:8d:25:6d:08:95:9b:
dc:cc:a9:ea:c2:25:94:55:bc:28:45:0a:25:b2:75:
fa:d7:a8:ef:1a:ef:99:c5:0f:c2:12:37:b2:df:ef:
83:64:6e:18:33:e0:52:25:26:b3:74:af:ea:da:1f:
6c:33:10:df:f2:4a:09:3f:2d:6b:b5:20:16:16:59:
92:31:a4:7a:f7:15:9c:32:ab:01:21:63:c1:6e:38:
27:7c:e7:bb:50:32:19:0a:85:32:c9:98:49:03:bc:
60:20:9e:8a:d7:2f:5c:82:61:dc:1b:04:e7:1a:be:
c3:10:d0:2a:8b:51:25:3b:b1:7e:5e:06:48:f4:44:
dd:86:3d:f9:3b:80:4a:ee:83:08:b3:94:66:03:47:
cb:43:34:4f:c8:46:99:17:11:7c:af:cc:2a:1a:95:
e9:aa:a0:2d:da:94:96:d2:18:28:f6:fc:a0:1d:84:
65:0b:5a:34:70:92:56:b7:a0:65:c2:eb:19:1e:1e:
fa:5e:25:4d:ce:23:4e:b4:da:e6:7c:80:67:ad:8e:
cf:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:D3:6F:45:D8:AF:AE:A2:96:6E:59:4A:6D:17:43:F1:F8:62:1D:0B
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/YtNvRdivrqKWbllKbRdD8fhiHQs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.102.237.0/24
89.35.73.0/24
Signature Algorithm: sha256WithRSAEncryption
33:40:03:b2:0f:0a:f6:cf:bf:84:1c:ab:4e:71:61:ed:4d:a0:
6d:5b:d5:a6:9c:4c:dc:3c:ae:cc:25:2b:26:f5:94:fb:a9:68:
11:b9:f6:fb:42:65:4d:5e:47:a2:f1:18:46:0f:80:30:b0:8a:
1c:a3:f5:e6:72:2d:91:02:dc:54:ae:54:2c:5f:87:52:8b:28:
2a:f9:08:1a:4a:82:4d:c5:c1:be:23:2c:e1:82:c4:4a:88:9c:
da:5f:a6:12:1e:8e:db:46:a3:30:25:8a:6a:12:ec:f3:36:c2:
13:f4:41:00:cc:64:a9:0d:e0:cf:e9:dc:9a:c2:91:32:1b:1f:
3b:e5:9d:a5:03:9e:94:45:84:35:e7:94:fe:01:9b:dd:e4:25:
e0:a3:8a:4b:52:56:5c:65:7b:62:e3:75:6c:e0:7a:b9:69:11:
31:57:19:e2:a2:a9:91:cf:b4:ec:6f:f9:a0:1a:6b:31:34:3b:
04:5d:4a:a5:c2:c1:b0:8c:2e:f8:7d:86:4f:30:9b:ea:07:7e:
18:b0:df:a7:e3:64:1f:49:5a:32:ae:3c:e5:6b:b7:95:bb:4c:
0e:2c:80:f0:0f:87:7f:d4:64:a1:79:a0:a7:0e:4e:1d:e6:63:
58:40:af:02:61:d9:35:fb:a1:fa:3d:f3:2c:f0:5d:df:56:7e:
08:72:be:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:13 2024 by rpki-client on console-ams.rpki-client.org