Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/ylUrgLT2ink8dgZywn494Pdfe4s.roa
File: ylUrgLT2ink8dgZywn494Pdfe4s.roa (raw, json)
Hash identifier: Cbw/JA2uuj+iNgw0ZDEdcqvBoAxxa0V21nP1KF1k5oE=
Subject key identifier: CA:55:2B:80:B4:F6:8A:79:3C:76:06:72:C2:7E:3D:E0:F7:5F:7B:8B
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 0186995F5080E2BA9460D867B718BF5FE94A
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/ylUrgLT2ink8dgZywn494Pdfe4s.roa
Signing time: Tue 28 Feb 2023 18:53:25 +0000
ROA not before: Tue 28 Feb 2023 18:53:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209372
IP address blocks: 185.112.56.0/23 maxlen: 24
185.95.102.0/23 maxlen: 24
185.95.100.0/23 maxlen: 24
185.96.83.0/24 maxlen: 24
185.81.174.0/24 maxlen: 24
185.81.174.0/23 maxlen: 24
185.81.173.0/24 maxlen: 24
185.81.186.0/23 maxlen: 24
185.81.184.0/23 maxlen: 24
185.97.1.0/24 maxlen: 24
185.97.3.0/24 maxlen: 24
185.89.108.0/22 maxlen: 24
185.110.130.0/24 maxlen: 24
89.19.57.0/24 maxlen: 24
89.19.58.0/24 maxlen: 24
185.175.225.0/24 maxlen: 24
185.175.224.0/24 maxlen: 24
89.19.59.0/24 maxlen: 24
185.68.245.0/24 maxlen: 24
213.170.223.0/24 maxlen: 24
185.81.172.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Apr 2023 06:09:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:99:5f:50:80:e2:ba:94:60:d8:67:b7:18:bf:5f:e9:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Feb 28 18:53:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ca552b80b4f68a793c760672c27e3de0f75f7b8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d1:a8:17:15:67:15:78:bf:19:0b:63:20:cc:
d9:30:01:94:1a:b8:4b:6f:5e:2c:b9:23:7a:66:0d:
30:9c:07:c9:fc:c4:aa:4c:37:e5:f9:ec:8c:7b:6b:
da:64:a7:30:46:70:7d:75:7c:3a:1d:a8:ee:c4:48:
38:1e:71:d7:27:8d:36:2a:0d:b6:94:b0:77:43:dd:
ea:eb:3a:bf:39:0f:39:d3:9e:78:1f:92:bf:b5:8f:
bf:bd:8f:1e:d7:7c:18:16:bf:b6:61:c1:25:a6:23:
aa:d4:0c:f7:51:a8:d5:2b:cf:aa:88:35:20:85:ac:
42:20:27:01:eb:57:69:2b:a1:5d:64:b5:6b:87:c8:
f7:05:7d:f5:cb:68:e1:44:39:84:d2:f8:b2:d2:31:
c9:da:1f:d4:02:4e:da:a0:90:21:3a:90:6f:12:08:
29:5f:d1:1d:59:da:5b:ea:d2:69:cc:0f:75:c7:45:
4b:88:41:03:81:7a:21:9c:da:7c:72:c5:53:b5:b6:
27:72:bd:aa:75:e5:85:61:d0:66:98:a6:e5:3d:ca:
c4:7c:23:9e:76:e9:ee:00:12:df:a8:d3:24:fb:6f:
30:b6:31:b1:69:d1:cc:87:82:36:8a:cd:d8:33:16:
9e:57:d8:dc:5e:8e:4b:a3:6e:f0:8b:b8:cf:dc:31:
9a:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:55:2B:80:B4:F6:8A:79:3C:76:06:72:C2:7E:3D:E0:F7:5F:7B:8B
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/ylUrgLT2ink8dgZywn494Pdfe4s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.19.57.0-89.19.59.255
185.68.245.0/24
185.81.172.0/22
185.81.184.0/22
185.89.108.0/22
185.95.100.0/22
185.96.83.0/24
185.97.1.0/24
185.97.3.0/24
185.110.130.0/24
185.112.56.0/23
185.175.224.0/23
213.170.223.0/24
Signature Algorithm: sha256WithRSAEncryption
68:82:41:a6:ba:3f:42:25:7c:60:44:65:05:26:58:a0:0b:3f:
5a:f2:81:0f:77:11:04:14:e6:87:45:2c:a0:f6:73:47:0f:79:
7b:e6:b7:dd:fb:cc:58:34:c3:14:e1:26:65:2d:0e:b8:34:4b:
97:b8:13:77:35:75:2c:57:bb:25:d5:d3:2b:cd:98:33:cd:f2:
09:2b:92:a4:12:b8:62:0e:63:26:ee:65:4c:da:59:cd:a4:8a:
d8:03:57:99:4f:82:03:55:95:e9:ec:ce:8f:52:c7:e4:79:4c:
b6:bd:4e:60:ee:75:f2:cc:6b:d2:65:eb:8a:b8:05:14:9c:09:
3f:33:d4:9f:9b:45:3b:8f:d2:f0:26:85:83:ad:8a:5f:f9:b0:
f1:f0:83:e6:c2:78:bc:dc:1b:2d:39:22:19:c6:69:9c:a3:30:
a2:88:2b:f4:a7:2c:a4:bd:72:2f:c5:99:09:11:fa:24:e3:98:
eb:73:b9:7e:6a:b4:08:74:1b:93:31:97:f1:d1:99:17:53:a0:
68:1f:4c:db:cb:5e:5b:d1:cf:b8:6a:ed:2b:cc:8f:44:49:b9:
dd:dc:88:25:7e:88:6b:29:ee:fc:7f:2d:aa:33:6c:51:00:49:
f6:2a:73:78:2e:35:dc:c0:bf:aa:ad:f5:54:2a:f3:3e:53:38:
cd:65:ae:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:18 2024 by rpki-client on console-ams.rpki-client.org