Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/e9d9cc-2668-42fc-8315-7525d4d408b5/1/YTeDu1XlJZNtnU41nb2-_25t168.roa
File: YTeDu1XlJZNtnU41nb2-_25t168.roa (raw, json)
Hash identifier: /nqGJofXgQFuG/3Mwy+9bvfypi+zhd+UB0AyovGCnVk=
Subject key identifier: 61:37:83:BB:55:E5:25:93:6D:9D:4E:35:9D:BD:BE:FF:6E:6D:D7:AF
Certificate issuer: /CN=1ada225cb7f29416e7534695fbfb21762fee93c8
Certificate serial: 0185734CD79E1EF5DD9133E66A54B467FD05
Authority key identifier: 1A:DA:22:5C:B7:F2:94:16:E7:53:46:95:FB:FB:21:76:2F:EE:93:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GtoiXLfylBbnU0aV-_shdi_uk8g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/e9d9cc-2668-42fc-8315-7525d4d408b5/1/YTeDu1XlJZNtnU41nb2-_25t168.roa
Signing time: Mon 02 Jan 2023 16:24:53 +0000
ROA not before: Mon 02 Jan 2023 16:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1273
IP address blocks: 194.70.32.0/22 maxlen: 22
194.70.37.0/24 maxlen: 24
194.70.38.0/23 maxlen: 23
194.70.40.0/21 maxlen: 21
194.70.48.0/20 maxlen: 20
212.248.192.0/18 maxlen: 18
194.70.64.0/20 maxlen: 20
195.173.0.0/16 maxlen: 16
212.240.0.0/16 maxlen: 16
195.11.0.0/16 maxlen: 16
194.70.2.0/24 maxlen: 24
194.70.4.0/22 maxlen: 22
194.70.0.0/23 maxlen: 23
194.70.8.0/21 maxlen: 21
194.70.16.0/20 maxlen: 20
194.70.80.0/21 maxlen: 21
194.70.88.0/22 maxlen: 22
194.70.92.0/23 maxlen: 23
194.70.95.0/24 maxlen: 24
194.70.96.0/19 maxlen: 19
194.217.0.0/16 maxlen: 16
194.70.128.0/18 maxlen: 18
194.70.240.0/20 maxlen: 20
194.70.192.0/19 maxlen: 19
194.70.224.0/21 maxlen: 21
194.70.232.0/23 maxlen: 23
194.70.235.0/24 maxlen: 24
194.70.236.0/22 maxlen: 22
194.159.0.0/16 maxlen: 16
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:4c:d7:9e:1e:f5:dd:91:33:e6:6a:54:b4:67:fd:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ada225cb7f29416e7534695fbfb21762fee93c8
Validity
Not Before: Jan 2 16:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=613783bb55e525936d9d4e359dbdbeff6e6dd7af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f2:6e:27:e6:91:01:82:6a:e0:dd:43:24:cc:
98:df:53:b1:16:45:9b:08:7b:09:8c:f6:a6:54:8f:
8c:77:17:84:03:2c:96:66:16:45:5a:e8:32:e6:70:
15:cd:d5:15:ca:fb:00:85:36:50:ca:2e:e4:eb:04:
57:7b:03:23:8c:83:ac:81:16:3f:8d:c6:96:c9:6a:
7c:63:99:91:7a:58:79:50:22:8f:10:ec:5a:37:21:
02:7b:06:3b:49:8e:b0:62:51:32:10:08:f8:6a:c5:
16:f0:75:01:8a:74:64:0e:87:7b:87:53:4f:ac:00:
9b:93:06:b9:13:52:83:f1:81:55:6e:54:9e:7f:dc:
51:9f:d5:9a:3d:30:c6:39:e6:65:b7:a4:dd:9e:69:
b2:bb:31:03:0c:51:d9:c4:ed:39:37:2e:97:02:8c:
15:48:36:7e:c2:74:ef:6e:25:59:15:3a:cf:64:8f:
33:d6:8c:96:7b:48:15:bb:c5:44:6f:25:c5:af:6c:
91:db:0b:8d:ca:25:16:8c:74:68:8b:b0:bc:36:3a:
83:8c:c9:e2:fd:80:c4:b7:c7:24:45:3e:72:43:ad:
27:01:84:f7:0f:d2:16:f0:59:de:92:15:1d:35:68:
76:d1:32:6e:22:1a:b9:1a:4f:a1:21:15:96:7c:e1:
03:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:37:83:BB:55:E5:25:93:6D:9D:4E:35:9D:BD:BE:FF:6E:6D:D7:AF
X509v3 Authority Key Identifier:
keyid:1A:DA:22:5C:B7:F2:94:16:E7:53:46:95:FB:FB:21:76:2F:EE:93:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GtoiXLfylBbnU0aV-_shdi_uk8g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/e9d9cc-2668-42fc-8315-7525d4d408b5/1/YTeDu1XlJZNtnU41nb2-_25t168.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/e9d9cc-2668-42fc-8315-7525d4d408b5/1/GtoiXLfylBbnU0aV-_shdi_uk8g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.70.0.0-194.70.2.255
194.70.4.0-194.70.35.255
194.70.37.0-194.70.93.255
194.70.95.0-194.70.233.255
194.70.235.0-194.70.255.255
194.159.0.0/16
194.217.0.0/16
195.11.0.0/16
195.173.0.0/16
212.240.0.0/16
212.248.192.0/18
Signature Algorithm: sha256WithRSAEncryption
bc:ae:4c:bf:99:76:fb:53:0b:fe:2b:7c:30:95:fb:a3:f3:79:
b4:51:4c:08:dd:a8:4b:24:e6:41:b4:c9:d5:22:db:41:45:c9:
cf:ef:a1:4d:f8:f1:53:29:1a:6a:1d:bc:a1:55:66:0d:be:8c:
9e:a6:47:1e:f2:6e:d3:c3:40:8a:bd:16:12:cd:f7:07:22:92:
70:62:bc:14:12:2e:e6:87:dc:31:02:7e:5b:6d:2d:e9:8b:20:
ff:c1:7b:a5:48:77:66:5d:fb:27:0c:b8:de:9a:08:6d:fc:4e:
24:89:82:5e:37:ce:e2:06:5e:f6:d9:cb:f2:3f:f0:25:b7:e4:
e5:c0:e6:3e:3f:42:9e:5b:f3:f9:54:0c:ad:d2:99:b2:ee:77:
cb:e5:b4:b3:52:7f:05:6b:19:d7:dd:2b:0a:dc:dc:ef:0e:98:
c2:e7:f6:94:a6:40:8a:ce:f7:b8:bc:65:09:ad:01:c9:4f:4d:
10:11:c7:dd:a6:75:06:4c:64:e9:8f:76:85:1f:ea:14:4e:1d:
28:ba:1c:d9:14:fb:5b:05:db:bf:18:a5:78:e2:b6:02:4d:9e:
e4:e3:eb:17:b1:04:ae:df:c2:f3:87:da:49:c5:6b:e5:93:33:
60:00:59:57:51:9c:09:67:f3:a7:d5:85:fc:fe:26:f6:86:a5:
df:e7:0f:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 27 16:30:03 2023 by rpki-client on console-ams.rpki-client.org