Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/yy5ddvcMsJHSjVw9sfN58xtkkh4.roa
File: yy5ddvcMsJHSjVw9sfN58xtkkh4.roa (raw, json)
Hash identifier: oiPbOpWRglbVKQFTMdwqkyjmuTfLY6+o9NrPxylRT/Q=
Subject key identifier: CB:2E:5D:76:F7:0C:B0:91:D2:8D:5C:3D:B1:F3:79:F3:1B:64:92:1E
Certificate issuer: /CN=90dff31d1b0444d4204de1584d00ddf968d0b012
Certificate serial: 019108F0CE95681F26D66B55EDC84EA4FF17
Authority key identifier: 90:DF:F3:1D:1B:04:44:D4:20:4D:E1:58:4D:00:DD:F9:68:D0:B0:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kN_zHRsERNQgTeFYTQDd-WjQsBI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/yy5ddvcMsJHSjVw9sfN58xtkkh4.roa
Signing time: Wed 31 Jul 2024 13:18:04 +0000
ROA not before: Wed 31 Jul 2024 13:18:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205544
IP address blocks: 173.234.136.0/21 maxlen: 21
Validation: Failed, certificate revoked on Mon 05 Aug 2024 08:33:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:08:f0:ce:95:68:1f:26:d6:6b:55:ed:c8:4e:a4:ff:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90dff31d1b0444d4204de1584d00ddf968d0b012
Validity
Not Before: Jul 31 13:18:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cb2e5d76f70cb091d28d5c3db1f379f31b64921e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:6e:b1:ab:83:c2:ea:cb:94:5a:24:3b:67:b5:
6e:34:85:ef:60:2c:44:07:23:eb:86:28:4f:43:d1:
80:c7:60:44:54:ce:81:22:88:2f:41:2d:ac:df:b1:
0e:0a:0e:b5:c3:de:b1:9f:00:d4:5a:78:2c:30:97:
ec:9d:56:e1:45:9c:2c:ea:e5:09:b1:76:e2:66:95:
72:64:88:f6:79:43:c5:51:ae:0a:46:97:95:95:06:
58:89:94:34:f1:44:27:11:31:b4:d8:b7:9e:bf:21:
bc:68:23:35:d8:2c:ca:56:09:54:b7:a3:b6:93:07:
1c:dd:73:d8:94:98:4f:69:42:be:21:8d:76:9e:f2:
27:00:8b:24:f1:ea:a6:a6:70:8c:b4:58:da:98:ca:
d9:28:b4:0e:03:cf:57:c5:5c:32:50:1e:34:49:7c:
73:c1:96:46:f9:8f:ae:e0:b6:92:b6:ee:5e:10:81:
04:28:0b:30:bf:9f:ba:bc:4d:29:a5:80:d2:3c:9c:
b2:11:11:e0:bb:26:f2:f4:1e:bc:43:09:c1:1f:af:
77:22:b3:e6:df:01:31:dc:13:05:28:e5:be:9c:9a:
66:4c:85:32:7e:72:1d:c4:e2:3b:07:3f:f5:36:53:
c1:e7:88:e4:d6:7e:82:84:60:dc:b4:df:22:83:8a:
f8:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:2E:5D:76:F7:0C:B0:91:D2:8D:5C:3D:B1:F3:79:F3:1B:64:92:1E
X509v3 Authority Key Identifier:
keyid:90:DF:F3:1D:1B:04:44:D4:20:4D:E1:58:4D:00:DD:F9:68:D0:B0:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kN_zHRsERNQgTeFYTQDd-WjQsBI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/yy5ddvcMsJHSjVw9sfN58xtkkh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
173.234.136.0/21
Signature Algorithm: sha256WithRSAEncryption
a2:6b:7b:45:6d:80:fa:dd:7c:2a:af:70:f3:50:1d:9b:3a:a9:
f4:d7:16:17:12:6c:1a:96:2f:c5:d5:22:06:15:20:bb:ef:c5:
ad:e3:58:9d:7a:e1:00:91:0f:85:65:97:5c:75:4d:ce:a0:ef:
c0:e9:b8:cf:80:68:9a:95:25:d0:5c:e5:9b:de:01:8c:e5:c2:
ce:40:64:a1:4b:c8:a9:58:a8:1a:4d:1a:40:fa:6e:66:82:e6:
70:ca:6f:b5:52:92:58:dc:83:89:98:ea:76:4e:4e:fd:58:1f:
3e:4e:d3:7f:18:f0:dc:32:aa:59:33:c7:66:d1:80:13:c1:e5:
94:7e:e5:8f:8e:d8:9f:40:37:8d:9a:30:1f:5c:ed:e3:45:de:
5a:17:70:5a:f2:28:2a:61:b0:19:18:be:c1:75:1a:82:c8:68:
6d:4c:da:35:c5:6d:ac:3f:66:f8:aa:a3:e0:cb:25:71:e1:6b:
c5:e0:d8:d9:f1:c4:0b:9c:cc:d2:71:f8:49:50:0e:26:e6:d7:
8c:5b:6b:96:ed:2b:dc:a4:d8:ba:82:4b:32:7b:fe:fb:ab:6e:
5a:a6:77:6e:69:fb:69:ef:12:8e:cc:12:35:0a:24:fd:41:d8:
40:65:06:76:e5:f3:50:1a:c1:c0:f8:93:6c:b8:7d:9b:fe:a7:
5b:eb:16:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 5 11:00:26 2024 by rpki-client on console-fra.rpki-client.org