Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/996cee-0acb-4eb8-a77a-27f90b8d85e6/1/YIv_N6tKPcttI-tkAUsO53L40v8.roa
File: YIv_N6tKPcttI-tkAUsO53L40v8.roa (raw, json)
Hash identifier: nKnbV3IltjkhKZAiw8wPSsZbQX0667BAyK3iP62Zcac=
Subject key identifier: 60:8B:FF:37:AB:4A:3D:CB:6D:23:EB:64:01:4B:0E:E7:72:F8:D2:FF
Certificate issuer: /CN=1dae474d79597db75d1f4d49901b52558bbf6af4
Certificate serial: 01856DDD3209B88244AB606D8F20E94EE825
Authority key identifier: 1D:AE:47:4D:79:59:7D:B7:5D:1F:4D:49:90:1B:52:55:8B:BF:6A:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ha5HTXlZfbddH01JkBtSVYu_avQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/996cee-0acb-4eb8-a77a-27f90b8d85e6/1/YIv_N6tKPcttI-tkAUsO53L40v8.roa
Signing time: Sun 01 Jan 2023 15:04:50 +0000
ROA not before: Sun 01 Jan 2023 15:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25091
IP address blocks: 79.110.235.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:dd:32:09:b8:82:44:ab:60:6d:8f:20:e9:4e:e8:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dae474d79597db75d1f4d49901b52558bbf6af4
Validity
Not Before: Jan 1 15:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=608bff37ab4a3dcb6d23eb64014b0ee772f8d2ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:6e:6c:d0:67:6e:f3:40:55:60:9e:d2:ee:6c:
7c:18:e2:a5:8f:81:f0:66:b4:b0:d6:25:f5:3d:82:
fa:61:dc:49:e2:31:0c:f3:30:84:4d:43:70:d0:1e:
7b:dd:29:a5:ff:1d:da:9c:0b:5c:41:fe:ae:fa:2c:
94:4d:03:57:2c:e9:4e:36:1b:f9:e7:f9:e1:d1:0b:
8c:5d:dc:2f:2d:13:b3:27:30:94:e6:91:36:cc:da:
e7:5f:75:72:6e:19:ad:6c:08:fa:2c:ef:a1:ff:de:
38:f7:c3:01:cc:96:23:e8:33:94:69:26:52:d6:f5:
4f:0a:e7:9e:af:06:b2:e9:bc:6d:b0:f8:30:f6:b1:
5b:13:e1:3c:3a:f2:55:b8:b8:4e:ef:76:99:8c:e3:
7b:94:db:75:11:de:ff:87:cb:97:13:13:a4:09:00:
0e:34:8d:db:a9:b3:24:bc:74:4c:9b:45:d7:b4:34:
f0:27:ea:86:4c:91:cf:35:73:fc:2e:5c:17:41:48:
5d:ae:67:bc:68:b8:c2:8d:87:6c:d5:d1:df:6e:84:
08:ad:02:cd:ec:b6:04:fe:3f:fc:62:c4:b8:74:9c:
8f:df:cf:37:fb:28:73:29:cb:98:40:37:b4:c2:ed:
4a:08:5b:7b:16:7d:fd:dd:4f:92:2f:dd:ae:81:91:
1c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:8B:FF:37:AB:4A:3D:CB:6D:23:EB:64:01:4B:0E:E7:72:F8:D2:FF
X509v3 Authority Key Identifier:
keyid:1D:AE:47:4D:79:59:7D:B7:5D:1F:4D:49:90:1B:52:55:8B:BF:6A:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ha5HTXlZfbddH01JkBtSVYu_avQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/996cee-0acb-4eb8-a77a-27f90b8d85e6/1/YIv_N6tKPcttI-tkAUsO53L40v8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/996cee-0acb-4eb8-a77a-27f90b8d85e6/1/Ha5HTXlZfbddH01JkBtSVYu_avQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.110.235.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:d1:2a:23:60:4f:2b:1f:4f:f8:b7:d6:4b:72:41:72:a3:6d:
c8:74:74:23:1f:41:cf:39:b7:55:9c:62:28:88:03:b3:02:22:
0f:7d:16:c2:cf:59:70:06:76:7a:24:11:0a:20:c4:eb:35:c6:
61:05:83:23:33:07:3c:b5:cb:9f:d0:23:bd:17:af:47:1c:f2:
a7:9f:88:37:ce:ea:e6:46:5d:06:36:9a:7b:0d:ba:7a:8f:b3:
ad:4c:c1:20:ab:00:b0:da:bf:53:77:cc:4a:f0:02:4f:1e:77:
c1:a2:0c:b0:1a:ed:3c:6b:58:77:95:ca:92:d0:12:68:95:8d:
43:51:20:ae:9a:28:a5:a6:50:01:73:e0:3c:de:24:ba:91:73:
9a:47:60:e1:4e:a0:69:e3:90:f1:e0:29:cc:78:a8:55:a3:21:
3c:4d:c0:2e:ae:be:7e:e4:c6:1f:7f:28:d8:5b:b2:c4:c5:b2:
e6:4d:bc:84:94:79:37:92:70:b8:02:65:2c:99:53:25:00:19:
f4:59:0d:b2:22:a5:36:fa:60:f9:8d:51:13:f9:66:7c:d7:e1:
23:c8:a1:8b:30:ba:ee:58:45:12:77:de:5c:8e:fe:e2:57:81:
f6:37:52:c5:14:8d:1c:a8:2e:01:82:dd:13:0a:7d:38:b4:8a:
16:4a:ec:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 18:21:43 2024 by rpki-client on console-ams.rpki-client.org