Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/d54e81-3317-4283-b45f-c81743b2cae6/1/y0Cxl7JstA5QHRlwfZhnBN53GQc.roa
File: y0Cxl7JstA5QHRlwfZhnBN53GQc.roa (raw, json)
Hash identifier: PYdARkB/z1j+jlG8eW6h+PrJTYC3VHqcXPurKVN5W1M=
Subject key identifier: CB:40:B1:97:B2:6C:B4:0E:50:1D:19:70:7D:98:67:04:DE:77:19:07
Certificate issuer: /CN=9b67c02de7fc8d11a1afe7ae62c5854d17767553
Certificate serial: 018F81234C0E4B5A0921E679DA9919322968
Authority key identifier: 9B:67:C0:2D:E7:FC:8D:11:A1:AF:E7:AE:62:C5:85:4D:17:76:75:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m2fALef8jRGhr-euYsWFTRd2dVM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/d54e81-3317-4283-b45f-c81743b2cae6/1/y0Cxl7JstA5QHRlwfZhnBN53GQc.roa
Signing time: Thu 16 May 2024 11:22:04 +0000
ROA not before: Thu 16 May 2024 11:22:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8075
IP address blocks: 193.8.42.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 16 May 2024 16:34:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:81:23:4c:0e:4b:5a:09:21:e6:79:da:99:19:32:29:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b67c02de7fc8d11a1afe7ae62c5854d17767553
Validity
Not Before: May 16 11:22:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cb40b197b26cb40e501d19707d986704de771907
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:a0:32:5f:07:7f:67:84:f6:09:ec:56:ca:c3:
9e:c6:56:d6:cd:fa:bd:59:5d:e4:52:c4:f4:72:93:
b2:ae:7e:64:a3:da:30:b1:36:65:a8:7b:94:13:98:
3c:4b:11:ce:e0:b6:60:ec:38:5d:88:5d:8a:16:a9:
78:9a:7b:a7:59:9c:69:25:3c:4f:3a:2a:76:b9:13:
11:d8:58:6d:4b:b5:19:9e:77:2f:24:de:dc:71:34:
06:d7:f2:37:a4:b1:46:27:c0:94:65:1a:ca:27:c2:
22:69:90:42:bd:2d:50:e2:90:58:5b:61:b6:38:85:
ed:9c:5a:d4:df:02:57:91:71:9f:0f:57:7b:dc:10:
2c:cf:c3:70:fd:44:0c:37:d2:1b:f6:30:49:94:ee:
97:fd:63:dd:8d:ba:9f:5f:c6:33:0b:fb:de:ea:a9:
8d:b5:a6:2e:af:f2:39:13:f6:77:9a:5f:f1:61:ec:
ab:a5:e4:4e:a2:a0:8c:7a:6c:d0:d4:45:78:60:15:
c4:15:5d:a9:de:db:d7:76:80:1e:6c:34:23:3e:97:
66:7d:73:ea:2b:70:bc:d9:36:73:76:94:61:1e:ca:
aa:2f:ee:b6:01:4d:5f:e2:df:51:0e:df:79:32:0a:
c2:09:b8:49:24:ed:09:bc:fa:9c:c7:99:a6:69:60:
39:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:40:B1:97:B2:6C:B4:0E:50:1D:19:70:7D:98:67:04:DE:77:19:07
X509v3 Authority Key Identifier:
keyid:9B:67:C0:2D:E7:FC:8D:11:A1:AF:E7:AE:62:C5:85:4D:17:76:75:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m2fALef8jRGhr-euYsWFTRd2dVM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/d54e81-3317-4283-b45f-c81743b2cae6/1/y0Cxl7JstA5QHRlwfZhnBN53GQc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/d54e81-3317-4283-b45f-c81743b2cae6/1/m2fALef8jRGhr-euYsWFTRd2dVM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.42.0/23
Signature Algorithm: sha256WithRSAEncryption
4c:48:b2:10:77:38:09:b0:69:d2:93:5c:12:40:a4:56:2f:c0:
a2:62:e3:25:97:c1:08:71:5b:6f:a0:5c:ae:92:40:d9:47:31:
d1:01:45:34:9d:35:dd:e0:7b:99:df:74:36:37:51:d5:fd:61:
ef:1d:23:a5:a8:8d:2a:1c:26:ad:e5:0a:6f:72:2a:4e:35:7a:
12:7f:e2:c7:2d:7e:fc:86:ba:0f:f8:54:f9:2b:79:dd:1b:54:
9e:82:33:99:00:9f:e4:b3:c0:31:59:4d:a4:68:a1:b5:f5:f6:
d3:97:a2:5d:84:af:82:d4:07:c1:91:d8:3c:d8:87:11:4e:25:
dd:4f:84:10:06:41:12:22:39:f4:ec:98:94:b4:42:b6:4c:30:
3a:2c:24:9b:e1:12:cf:3a:f8:d9:95:fc:f7:58:96:8c:24:62:
e9:40:a7:af:7b:7e:8c:41:96:c7:0d:7c:11:bc:22:98:3c:0c:
99:c6:13:95:f6:fa:5b:6c:5b:e6:8f:f1:9d:93:09:0d:7c:3b:
be:d0:0b:41:d9:c0:82:ae:63:aa:d5:42:d5:1f:7c:17:ff:86:
b7:53:26:f7:89:8f:0d:47:3b:8d:35:fe:f1:52:c4:39:e8:83:
74:26:b6:d3:fc:d0:d3:64:02:a8:4c:39:00:e6:18:95:27:3b:
3a:2c:69:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 16 19:18:53 2024 by rpki-client on console-ams.rpki-client.org