Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/jYBbFDNuwtg99GmQhNvqpaVdK28.roa
File: jYBbFDNuwtg99GmQhNvqpaVdK28.roa (raw, json)
Hash identifier: b82iIuc+3tyH6YRDPFm+I1H8ZAmHdRqL3kd7e/0adcE=
Subject key identifier: 8D:80:5B:14:33:6E:C2:D8:3D:F4:69:90:84:DB:EA:A5:A5:5D:2B:6F
Certificate issuer: /CN=68da206c83d505e254b3ef3c7650f9fb93453435
Certificate serial: 018793556B37D57A82EE9EF02941993A20B6
Authority key identifier: 68:DA:20:6C:83:D5:05:E2:54:B3:EF:3C:76:50:F9:FB:93:45:34:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNogbIPVBeJUs-88dlD5-5NFNDU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/jYBbFDNuwtg99GmQhNvqpaVdK28.roa
Signing time: Tue 18 Apr 2023 07:47:41 +0000
ROA not before: Tue 18 Apr 2023 07:47:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60781
IP address blocks: 185.73.33.0/24 maxlen: 24
2a05:3f40::/30 maxlen: 30
2a05:3f44::/30 maxlen: 30
Validation: Failed, certificate revoked on Mon 05 Jun 2023 08:59:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:93:55:6b:37:d5:7a:82:ee:9e:f0:29:41:99:3a:20:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68da206c83d505e254b3ef3c7650f9fb93453435
Validity
Not Before: Apr 18 07:47:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8d805b14336ec2d83df4699084dbeaa5a55d2b6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:57:8e:17:5c:31:2e:a7:b2:92:fd:b7:60:4c:
9b:51:18:d3:cd:38:c5:77:25:63:52:34:e7:5d:a9:
e1:0e:51:59:29:e1:f7:d9:56:a9:d6:85:d2:56:74:
a0:d2:02:ac:8f:e6:3c:f5:a6:b3:b5:c7:9d:b8:3a:
d9:aa:e5:cf:14:aa:e9:b2:7b:be:f4:8a:c7:fc:09:
87:1a:1d:b0:32:37:e7:73:28:04:e6:c5:26:72:de:
b5:50:70:1c:68:11:03:60:3f:63:d8:f5:98:ee:d2:
de:36:41:0a:18:a7:74:8e:b7:1c:0c:d8:64:26:cc:
7f:15:50:f5:57:8f:5b:46:6f:c0:16:4e:aa:c8:d7:
55:d9:53:95:cb:8b:de:25:7b:5f:84:8f:d5:3d:d4:
db:1d:c8:67:56:a0:e1:c4:3a:07:95:46:66:7c:d5:
35:de:48:b8:51:74:fa:3d:14:ad:e9:61:30:1c:10:
fc:30:ea:46:f1:a3:23:b2:1a:f8:c8:99:b8:52:fb:
0f:68:bb:e3:88:d8:f2:0d:a2:96:18:2b:c1:c5:cb:
96:54:69:d8:0c:8b:a5:0e:8c:2f:40:cf:1d:16:14:
f0:1e:b4:1a:f4:70:ff:fa:d7:cd:c6:ef:98:a5:ca:
bc:e5:bc:44:04:d6:60:2e:46:31:e4:d6:aa:df:31:
77:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:80:5B:14:33:6E:C2:D8:3D:F4:69:90:84:DB:EA:A5:A5:5D:2B:6F
X509v3 Authority Key Identifier:
keyid:68:DA:20:6C:83:D5:05:E2:54:B3:EF:3C:76:50:F9:FB:93:45:34:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNogbIPVBeJUs-88dlD5-5NFNDU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/jYBbFDNuwtg99GmQhNvqpaVdK28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.73.33.0/24
IPv6:
2a05:3f40::/29
Signature Algorithm: sha256WithRSAEncryption
52:e8:09:64:b1:73:4b:ed:e0:f5:cf:35:f7:3f:ee:dd:c3:07:
0b:a9:c8:5d:cb:27:1f:71:67:2b:b6:2e:b0:24:e2:86:9e:1b:
7f:a2:5a:91:60:7c:36:2e:ce:08:0a:87:e4:a5:d3:29:bc:ca:
7a:bc:79:f6:ce:ca:da:8d:ae:9b:b6:72:f0:2f:16:88:a3:db:
fc:0b:54:9a:cc:81:b9:bb:b1:13:c5:e3:dd:ce:54:83:f2:a0:
5c:4a:6e:68:c1:32:01:80:30:fe:72:71:c8:75:47:99:97:9e:
da:4d:c4:af:e1:dc:07:8b:05:bf:2c:2e:2a:e0:40:95:3e:19:
e4:6e:10:10:ad:3a:32:2a:ca:3a:00:de:7f:2f:54:b5:5a:c0:
9d:86:fa:e9:64:21:78:44:6c:bd:31:2a:84:86:a6:ce:76:ec:
83:4c:d2:04:55:f3:b5:ae:11:4a:0a:7d:88:56:15:e8:16:b6:
e7:a5:11:b3:c2:b7:57:3f:59:57:5e:b6:16:cb:10:e5:9b:c7:
b0:5b:9b:1b:13:87:17:bb:0d:0f:74:25:9d:2e:81:d6:5f:5b:
2e:de:19:2f:06:6c:dd:39:5a:82:65:00:85:c3:e3:00:41:23:
9a:a8:0f:a6:5f:8e:96:9c:26:95:94:d9:f4:06:f8:f8:18:4d:
e7:de:31:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:19 2024 by rpki-client on console-ams.rpki-client.org