Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/cf8f99-e581-4f5f-875f-df4e8c7364fe/1/YDNaF-cdo5OqTLtLE6JxHbI86B4.roa
File: YDNaF-cdo5OqTLtLE6JxHbI86B4.roa (raw, json)
Hash identifier: FuelSSzOv3o7yBFAC5P0O8IZe+WxnTfJY0AQtQQshzk=
Subject key identifier: 60:33:5A:17:E7:1D:A3:93:AA:4C:BB:4B:13:A2:71:1D:B2:3C:E8:1E
Certificate issuer: /CN=3096d7afbb8a5e315a5c489acea7dcb75aa65d04
Certificate serial: 01856DE66FE204C6FC8C2037CB611A2D1492
Authority key identifier: 30:96:D7:AF:BB:8A:5E:31:5A:5C:48:9A:CE:A7:DC:B7:5A:A6:5D:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MJbXr7uKXjFaXEiazqfct1qmXQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/cf8f99-e581-4f5f-875f-df4e8c7364fe/1/YDNaF-cdo5OqTLtLE6JxHbI86B4.roa
Signing time: Sun 01 Jan 2023 15:14:56 +0000
ROA not before: Sun 01 Jan 2023 15:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16191
IP address blocks: 185.127.32.0/22 maxlen: 24
81.30.0.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:e6:6f:e2:04:c6:fc:8c:20:37:cb:61:1a:2d:14:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3096d7afbb8a5e315a5c489acea7dcb75aa65d04
Validity
Not Before: Jan 1 15:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=60335a17e71da393aa4cbb4b13a2711db23ce81e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:42:36:d4:0a:65:6d:b9:2e:23:ae:7b:9b:4b:
b4:b1:ee:9b:4b:93:f7:b5:50:cb:6f:cf:68:5c:c6:
86:66:d4:46:70:70:78:45:f7:2a:e5:ac:bb:83:6c:
a4:4c:49:38:59:be:54:47:90:fc:6c:ce:38:98:58:
52:b5:61:cf:8c:b3:0d:ff:ce:a3:4c:e5:9a:f6:18:
20:90:7c:05:4f:d8:36:cd:e2:c5:cc:f8:5c:58:9a:
95:6c:30:66:cb:7f:e5:99:e0:fe:ce:6a:50:b2:75:
c9:57:2d:87:63:5c:b0:e7:52:e8:c9:8f:64:14:33:
30:1c:6f:93:53:34:88:c7:da:59:16:a1:b1:75:c8:
18:f6:cf:24:58:46:72:ac:e5:2a:fb:f8:71:e1:e6:
9e:1c:19:92:40:d8:a9:ab:d0:ac:00:ac:ae:fc:ed:
32:49:4f:6e:44:e5:35:7b:f6:e4:9e:bc:83:c5:6f:
2c:78:47:01:92:3f:a1:f7:ab:93:7b:bb:e5:a0:03:
93:c7:f8:81:30:d0:99:0f:49:52:0e:a4:e5:c4:65:
44:52:63:3e:31:3e:74:de:67:02:c9:dd:17:51:e0:
47:2f:3e:c0:5e:b0:ae:05:9e:6b:2e:12:0b:41:fd:
ab:cf:06:e1:d9:08:6a:c3:5c:1b:9f:b2:e7:ce:6c:
91:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:33:5A:17:E7:1D:A3:93:AA:4C:BB:4B:13:A2:71:1D:B2:3C:E8:1E
X509v3 Authority Key Identifier:
keyid:30:96:D7:AF:BB:8A:5E:31:5A:5C:48:9A:CE:A7:DC:B7:5A:A6:5D:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MJbXr7uKXjFaXEiazqfct1qmXQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/cf8f99-e581-4f5f-875f-df4e8c7364fe/1/YDNaF-cdo5OqTLtLE6JxHbI86B4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/cf8f99-e581-4f5f-875f-df4e8c7364fe/1/MJbXr7uKXjFaXEiazqfct1qmXQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.30.0.0/20
185.127.32.0/22
Signature Algorithm: sha256WithRSAEncryption
70:5d:51:ef:38:bc:02:28:26:11:f1:90:a2:df:34:b5:58:bf:
aa:81:e5:8a:68:ef:39:e5:12:c3:bc:8d:df:0d:25:81:93:36:
38:2f:c6:e9:2f:1c:3c:ac:f4:f2:4e:d8:77:86:1f:b2:5d:d5:
e9:82:12:6e:cc:e7:e9:29:7a:a5:7c:1d:2f:b1:6f:5e:ce:dc:
dd:67:28:a4:a8:e5:3e:de:20:c1:2f:71:ab:05:1e:f8:d6:ef:
94:30:29:67:89:ed:2d:ac:f5:4a:66:b0:42:5b:35:53:38:42:
e8:42:ec:26:89:fb:42:3a:09:27:15:ac:e3:36:9e:79:a9:d5:
03:a4:c7:b8:a7:a8:2d:fc:2d:04:e8:01:b0:96:e5:da:a8:5f:
13:7c:0d:4c:18:4a:cb:15:c7:86:62:27:cc:cd:5f:cf:98:24:
da:ef:fa:1e:9a:e3:f2:7d:60:87:f4:ec:c2:65:83:8d:ba:50:
12:d0:e8:c4:3c:86:ec:d1:d7:f4:55:b2:f1:a1:97:b4:1f:b5:
2b:7e:61:e8:20:e9:50:72:ca:5e:9c:57:84:e9:52:0c:f5:fa:
43:e8:1b:c1:cc:06:26:75:ee:95:b2:db:03:b9:b7:59:4e:f6:
11:bb:cc:ac:4f:cd:8e:8e:9b:f2:3b:8a:aa:dd:32:24:dc:3e:
a6:e5:35:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:09 2024 by rpki-client on console-ams.rpki-client.org