Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/5b36ce-d8dd-4561-8ebf-53e9ef6073c5/1/YXW76_JVJ7ol472p1mV91k6koEI.roa
File: YXW76_JVJ7ol472p1mV91k6koEI.roa (raw, json)
Hash identifier: 6TTgH4QA7Nry2pcWOCsFyrn5A6Oh/C7Cmv/XFmkQlNM=
Subject key identifier: 61:75:BB:EB:F2:55:27:BA:25:E3:BD:A9:D6:65:7D:D6:4E:A4:A0:42
Certificate issuer: /CN=97310ada6a1bbd7aa68e140223bf9c625a33be41
Certificate serial: 01857195468D499A0296E7F02707825A0507
Authority key identifier: 97:31:0A:DA:6A:1B:BD:7A:A6:8E:14:02:23:BF:9C:62:5A:33:BE:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lzEK2mobvXqmjhQCI7-cYlozvkE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/5b36ce-d8dd-4561-8ebf-53e9ef6073c5/1/YXW76_JVJ7ol472p1mV91k6koEI.roa
Signing time: Mon 02 Jan 2023 08:24:46 +0000
ROA not before: Mon 02 Jan 2023 08:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21105
IP address blocks: 80.89.4.0/22 maxlen: 22
80.89.0.0/22 maxlen: 22
80.89.8.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 15 May 2023 08:43:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:46:8d:49:9a:02:96:e7:f0:27:07:82:5a:05:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97310ada6a1bbd7aa68e140223bf9c625a33be41
Validity
Not Before: Jan 2 08:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6175bbebf25527ba25e3bda9d6657dd64ea4a042
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ed:bd:76:58:1a:2b:a4:30:2e:93:57:38:20:
e2:b1:bd:e6:61:a5:fa:b4:1a:46:af:ac:04:4c:37:
0b:2d:58:9f:01:7e:fe:5e:94:ed:c8:60:b1:ff:95:
d3:73:a2:29:ad:4b:c4:4d:16:d0:07:f2:d0:60:19:
08:e4:6c:bc:f0:71:5f:b0:15:2e:c7:c3:00:b7:99:
a5:cc:7f:e2:74:ad:88:29:3a:9f:10:85:59:20:bb:
af:45:fb:a1:38:4f:e1:49:cd:58:39:2e:ac:21:ce:
48:74:e6:2b:a4:a1:86:41:e9:ce:ab:4e:9d:97:96:
4d:13:c6:2e:b6:f1:08:44:5f:69:8f:91:38:8a:f2:
e9:d1:12:34:f4:67:8c:91:6f:71:8e:fa:46:3e:20:
80:55:89:7f:6c:9e:ca:57:e5:14:7b:1e:25:06:0a:
c4:79:9a:63:a4:86:4c:8e:d7:df:fa:c4:1c:02:d6:
71:88:2a:2f:0e:c0:d7:8d:d9:9c:54:7c:36:d6:4d:
29:31:c9:96:95:27:d8:72:55:06:09:a2:78:73:97:
b6:ea:f2:bc:f0:8f:6e:fd:ff:7b:f0:52:9c:16:f0:
54:58:13:d0:99:37:68:0c:9c:a7:9a:41:2c:c1:04:
c0:d3:64:c1:9a:a2:75:9d:8a:f7:8e:bc:0e:70:42:
50:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:75:BB:EB:F2:55:27:BA:25:E3:BD:A9:D6:65:7D:D6:4E:A4:A0:42
X509v3 Authority Key Identifier:
keyid:97:31:0A:DA:6A:1B:BD:7A:A6:8E:14:02:23:BF:9C:62:5A:33:BE:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lzEK2mobvXqmjhQCI7-cYlozvkE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/5b36ce-d8dd-4561-8ebf-53e9ef6073c5/1/YXW76_JVJ7ol472p1mV91k6koEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/5b36ce-d8dd-4561-8ebf-53e9ef6073c5/1/lzEK2mobvXqmjhQCI7-cYlozvkE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.89.0.0-80.89.11.255
Signature Algorithm: sha256WithRSAEncryption
40:47:6d:14:1b:68:80:d6:eb:d2:6b:44:b9:ad:18:d8:0d:fc:
85:18:7a:66:c2:6f:bd:54:2f:90:0c:b2:27:d7:3e:87:37:11:
81:da:40:23:b6:43:2e:cb:2a:a1:70:0b:06:c0:2c:6a:5b:92:
3c:fc:0c:68:e6:ac:6b:8b:64:e1:3f:a9:c5:08:52:33:50:ca:
99:16:3f:ed:44:3d:24:43:65:00:0f:0a:ee:c5:ef:65:db:81:
be:61:5a:fc:3b:98:aa:98:26:13:a9:45:62:4a:39:3d:7e:87:
fd:ac:e7:09:55:23:ef:fd:b2:84:32:44:0f:63:8f:a0:5c:f7:
75:45:0b:fd:ae:ba:ff:e9:d0:ab:e0:be:8a:d6:41:1f:d7:f0:
85:96:50:6d:8d:a3:5c:97:66:33:54:2d:1b:12:7f:ae:a5:5d:
ac:ff:fe:b9:19:ac:3f:5b:4c:66:ac:ed:99:52:77:0b:4e:72:
7e:be:93:78:0f:58:c0:3a:32:bf:d6:84:d3:5a:b0:93:40:20:
5e:1d:c8:6e:76:bb:52:02:ff:3b:7e:45:d4:87:64:c0:14:7e:
94:7e:e5:d2:20:f1:c8:76:f7:38:08:50:08:ce:4f:c9:35:8d:
8a:be:d1:bc:c4:f1:95:d9:f4:4a:18:f2:c1:78:ec:f8:19:ef:
7b:4f:3d:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:45 2024 by rpki-client on console-fra.rpki-client.org