Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/b97294-2802-4d05-9155-1098d6d88de8/1/YmCL08CjG4-0oyHva-fB9d6T21g.roa
File: YmCL08CjG4-0oyHva-fB9d6T21g.roa (raw, json)
Hash identifier: gYU0EUxZ+Ud1K3IXuDCRTa/Oz3TuRGlsUBWC8xcmgco=
Subject key identifier: 62:60:8B:D3:C0:A3:1B:8F:B4:A3:21:EF:6B:E7:C1:F5:DE:93:DB:58
Certificate issuer: /CN=13ea78b28f054f72f5226ae3ec454980ed2a10c9
Certificate serial: 0185728C9B306012AC6110C4E8384E3751CA
Authority key identifier: 13:EA:78:B2:8F:05:4F:72:F5:22:6A:E3:EC:45:49:80:ED:2A:10:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E-p4so8FT3L1Imrj7EVJgO0qEMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/b97294-2802-4d05-9155-1098d6d88de8/1/YmCL08CjG4-0oyHva-fB9d6T21g.roa
Signing time: Mon 02 Jan 2023 12:54:55 +0000
ROA not before: Mon 02 Jan 2023 12:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8517
IP address blocks: 161.9.128.0/17 maxlen: 24
161.9.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:8c:9b:30:60:12:ac:61:10:c4:e8:38:4e:37:51:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13ea78b28f054f72f5226ae3ec454980ed2a10c9
Validity
Not Before: Jan 2 12:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=62608bd3c0a31b8fb4a321ef6be7c1f5de93db58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:8e:c1:5f:3f:30:df:9a:5c:e1:48:ee:0d:86:
a8:1a:b7:74:b7:b2:a0:d0:13:e7:29:c4:6f:cf:f3:
e7:06:e8:d7:35:19:5b:10:1f:6a:40:6c:54:96:7b:
3a:5b:5f:76:00:e1:6c:be:ab:15:f8:77:88:ea:bf:
9f:80:9b:ba:eb:97:51:6a:a8:85:be:42:fb:50:f4:
14:2f:78:2c:08:34:86:8e:2a:58:6b:cd:85:e0:16:
55:48:94:c8:5e:cc:00:44:22:75:55:f2:6f:60:e8:
71:fb:c9:fb:e8:aa:45:19:d9:d1:50:0f:29:28:15:
07:fa:ce:4d:05:c6:70:e6:bf:4b:02:81:2f:78:65:
63:02:58:ca:3c:9d:9b:f2:70:4b:14:db:30:e9:05:
00:0e:c9:16:c2:e3:24:b2:a0:8e:c1:cc:c3:89:1a:
a7:90:ae:9e:fb:23:63:13:61:df:f2:45:cd:0a:cc:
09:c2:15:cd:e7:7a:df:59:57:79:86:56:39:d8:42:
87:2a:7e:a2:85:b2:06:5d:e9:9f:57:bf:f5:43:ea:
27:bc:68:18:cc:42:88:67:f8:b5:2e:b5:e2:bc:9d:
38:f1:d0:0c:82:14:09:34:5d:be:3c:a2:66:54:e5:
65:b8:bf:73:f6:31:33:bc:89:ee:7b:28:d1:34:48:
81:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:60:8B:D3:C0:A3:1B:8F:B4:A3:21:EF:6B:E7:C1:F5:DE:93:DB:58
X509v3 Authority Key Identifier:
keyid:13:EA:78:B2:8F:05:4F:72:F5:22:6A:E3:EC:45:49:80:ED:2A:10:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E-p4so8FT3L1Imrj7EVJgO0qEMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/b97294-2802-4d05-9155-1098d6d88de8/1/YmCL08CjG4-0oyHva-fB9d6T21g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/b97294-2802-4d05-9155-1098d6d88de8/1/E-p4so8FT3L1Imrj7EVJgO0qEMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
161.9.128.0/17
Signature Algorithm: sha256WithRSAEncryption
1b:c7:7d:ec:1d:1a:00:6c:96:84:4d:95:1d:f6:36:00:cf:22:
54:f1:2c:96:c1:57:48:d4:ee:db:9d:d6:9f:16:51:37:fe:ad:
f8:d9:6a:43:4b:48:f0:47:7c:1b:24:3e:8b:11:68:1d:ce:ea:
82:f4:ad:e7:91:eb:74:e3:68:bd:80:44:37:1f:5b:4c:03:16:
63:df:69:8e:8c:f6:c7:20:b7:f5:2d:f0:c6:77:76:53:d7:0f:
42:19:3c:f4:07:b7:b1:9f:be:24:74:f7:ad:b5:2c:19:8b:eb:
6f:93:28:75:62:54:8a:b1:67:ea:b6:fc:b2:84:ce:1f:a4:34:
77:0a:19:74:35:be:bb:ad:00:79:a0:91:5e:ea:08:88:ac:14:
2a:1d:ca:2a:65:04:bd:17:81:0c:79:7f:03:fb:72:8e:7c:77:
64:be:08:8e:8c:f2:ad:18:2c:0e:f5:0c:ae:50:a8:fb:a3:2f:
05:7e:61:47:2b:c1:5a:ab:e7:ea:58:c1:2e:68:30:80:da:85:
4d:29:d6:a9:e9:51:e1:50:cb:55:dc:c0:4b:4b:0c:24:a2:20:
b2:99:f8:70:e8:1d:ba:5a:57:96:82:cc:8a:d2:4a:85:68:eb:
be:7e:fb:36:14:72:42:fa:7f:c4:85:41:2c:44:67:e6:35:dc:
a5:56:26:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:47 2024 by rpki-client on console-fra.rpki-client.org