Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/442e17-4198-435b-96f4-6467f44b43bf/1/YTW202cPCZBCKM8w9pwN_HlVO-A.roa
File: YTW202cPCZBCKM8w9pwN_HlVO-A.roa (raw, json)
Hash identifier: fP0a9NWYcMrgsYkqaysoBKzr/JlwHQyK9lVtdEZw8+A=
Subject key identifier: 61:35:B6:D3:67:0F:09:90:42:28:CF:30:F6:9C:0D:FC:79:55:3B:E0
Certificate issuer: /CN=df904155ee3acfe3fea8bbfee86e97c58c8991f4
Certificate serial: 018714B481A3EF269315665D7B8C54E04398
Authority key identifier: DF:90:41:55:EE:3A:CF:E3:FE:A8:BB:FE:E8:6E:97:C5:8C:89:91:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/35BBVe46z-P-qLv-6G6XxYyJkfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/442e17-4198-435b-96f4-6467f44b43bf/1/YTW202cPCZBCKM8w9pwN_HlVO-A.roa
Signing time: Fri 24 Mar 2023 17:39:46 +0000
ROA not before: Fri 24 Mar 2023 17:39:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60793
IP address blocks: 79.99.194.192/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:14:b4:81:a3:ef:26:93:15:66:5d:7b:8c:54:e0:43:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df904155ee3acfe3fea8bbfee86e97c58c8991f4
Validity
Not Before: Mar 24 17:39:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6135b6d3670f09904228cf30f69c0dfc79553be0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:c2:af:77:7d:47:71:6d:cb:84:a6:16:4b:aa:
63:88:a0:ec:68:91:ec:6e:53:a2:26:21:be:86:63:
16:a9:7a:50:15:24:c2:96:b4:0b:49:5a:fb:b1:bb:
9d:31:cd:a2:03:cf:b0:0e:0f:24:f1:ae:eb:e8:24:
11:74:4c:85:5c:7d:f0:45:81:e1:15:8d:81:2e:91:
b6:8b:a0:fd:97:44:9a:4c:6f:23:20:2c:57:68:90:
51:15:23:fc:7f:8a:d5:91:f2:62:26:cc:61:1d:0d:
19:42:a7:ce:fc:61:f2:1e:06:60:9e:98:d9:9d:0a:
01:7d:52:c0:ed:bb:3f:a2:31:53:8d:36:38:d2:74:
66:fe:11:9f:ed:17:4e:af:88:10:7f:c4:61:ee:68:
9b:9b:e5:80:b9:be:4e:30:32:8a:fb:b7:f9:ef:95:
85:85:19:c7:61:3c:dd:bd:98:2a:93:be:d9:93:0a:
64:18:b0:b2:87:54:36:92:8e:e7:67:88:f0:20:a3:
c2:10:15:ac:bf:10:46:85:a8:dd:ac:6d:cf:d2:aa:
42:66:a3:57:7b:1f:fb:70:02:ca:a5:27:34:d0:6d:
ea:9a:95:1e:bb:81:a4:bf:af:93:74:4a:80:ed:13:
03:8b:9c:0f:a2:a0:f5:6a:1f:fd:f4:6a:33:cd:d2:
37:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:35:B6:D3:67:0F:09:90:42:28:CF:30:F6:9C:0D:FC:79:55:3B:E0
X509v3 Authority Key Identifier:
keyid:DF:90:41:55:EE:3A:CF:E3:FE:A8:BB:FE:E8:6E:97:C5:8C:89:91:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/35BBVe46z-P-qLv-6G6XxYyJkfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/442e17-4198-435b-96f4-6467f44b43bf/1/YTW202cPCZBCKM8w9pwN_HlVO-A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/442e17-4198-435b-96f4-6467f44b43bf/1/35BBVe46z-P-qLv-6G6XxYyJkfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.99.194.192/29
Signature Algorithm: sha256WithRSAEncryption
89:85:c7:63:76:17:53:40:42:76:a1:ef:43:8a:79:41:df:a0:
d6:1b:72:8c:7c:da:77:1d:14:65:d6:e6:bc:fa:6f:91:d2:23:
d3:45:f6:a5:33:3e:9d:19:88:6f:95:bf:d6:00:33:39:c3:d0:
e9:42:06:0e:b9:3d:c8:f2:d6:15:55:5a:b5:94:9d:28:56:1a:
3d:bb:33:95:bd:9c:d5:47:05:15:3a:f1:95:9c:08:d8:d8:de:
66:77:06:bb:d7:a8:e1:3e:11:28:00:67:9d:9b:66:78:ba:2e:
16:79:ff:22:0c:ca:08:c6:06:5d:30:b9:80:49:ae:59:9d:71:
4b:d3:50:b0:69:76:13:1f:26:54:8a:67:55:64:6d:b2:9d:d6:
44:c8:88:aa:6d:4e:1f:73:cf:51:e9:b7:30:b9:e8:e0:1d:b9:
12:e1:02:da:d0:e7:05:af:ad:b0:3f:51:bb:5d:fa:99:db:50:
74:76:d6:52:ea:62:ee:c6:aa:10:e9:06:27:b2:55:a7:7c:f0:
85:22:47:7a:5f:33:e4:f4:5a:eb:88:2f:bf:3b:92:55:16:c7:
7f:d1:19:f1:ba:93:b5:91:1f:fc:78:c6:39:21:a3:ce:37:6e:
3f:13:e0:fb:d7:c1:47:5b:6b:2f:53:c4:2c:d9:5c:f3:88:0a:
14:dc:ae:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:40:56 2024 by rpki-client on console-ams.rpki-client.org