Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/hYja8poynx5pUS4ekEidiL-wA4s.roa
File: hYja8poynx5pUS4ekEidiL-wA4s.roa (raw, json)
Hash identifier: /Z7XUV18JGKaU5PVb03pTOR/H+9/htTirL2BKdgm5mA=
Subject key identifier: 85:88:DA:F2:9A:32:9F:1E:69:51:2E:1E:90:48:9D:88:BF:B0:03:8B
Certificate issuer: /CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Certificate serial: 0187DC195FFDF81A31431E80228C78C8AC8A
Authority key identifier: 62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/hYja8poynx5pUS4ekEidiL-wA4s.roa
Signing time: Tue 02 May 2023 10:54:23 +0000
ROA not before: Tue 02 May 2023 10:54:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 91.193.252.0/24 maxlen: 24
93.89.217.0/24 maxlen: 24
93.89.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 May 2023 08:26:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:dc:19:5f:fd:f8:1a:31:43:1e:80:22:8c:78:c8:ac:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Validity
Not Before: May 2 10:54:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8588daf29a329f1e69512e1e90489d88bfb0038b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:86:b6:56:c3:84:29:b0:59:3d:78:27:33:d9:
b0:51:fc:ec:77:4a:f7:7f:07:97:e7:34:2b:74:dd:
73:c7:e2:a0:52:9a:00:48:b3:67:df:71:ba:eb:cc:
a3:49:62:86:08:11:54:06:79:01:12:94:68:a1:34:
87:d4:3f:7c:71:29:ab:87:c7:b6:97:c1:2d:c3:71:
63:b7:76:69:d4:1a:2b:68:c3:9d:4c:70:65:34:a5:
49:3b:a6:57:f7:c7:4c:6f:ae:05:16:9e:c4:c7:44:
32:c7:77:d2:a8:58:62:ca:63:49:8c:25:ed:6b:57:
d0:bb:55:8b:63:10:27:43:d1:6d:8b:bf:4b:c6:11:
2a:d0:68:76:22:c7:5d:5a:06:55:73:b2:ee:f4:03:
1e:a0:9b:43:06:b5:ca:f3:71:3c:a0:1c:28:26:b8:
50:91:13:0b:be:74:e7:a9:9f:4d:d4:41:17:12:4d:
e3:4a:ab:68:45:0c:1f:10:a3:10:90:7a:50:3f:3e:
98:39:c2:5f:c6:4d:5d:79:97:10:29:6e:da:d7:34:
f4:32:98:1a:87:33:21:77:31:76:6e:25:c0:b5:91:
48:49:20:56:13:2f:80:2c:7d:61:48:08:f3:06:5b:
c6:d1:57:20:f3:df:b3:1e:d3:ff:e6:48:02:5d:d8:
84:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:88:DA:F2:9A:32:9F:1E:69:51:2E:1E:90:48:9D:88:BF:B0:03:8B
X509v3 Authority Key Identifier:
keyid:62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/hYja8poynx5pUS4ekEidiL-wA4s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.193.252.0/24
93.89.217.0/24
93.89.223.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:8e:50:2e:db:d7:0d:e7:bc:f5:d3:ef:16:27:8b:b4:27:40:
83:58:74:c2:d1:9a:07:1b:d8:7e:9b:d1:fa:6c:da:d3:9e:1e:
d7:be:50:f7:cf:e6:79:6e:74:7e:d7:81:11:ea:bc:00:4b:9b:
53:b7:45:37:93:7b:9a:0a:49:b2:59:68:bb:6a:bb:6c:c1:55:
94:e6:98:d1:c4:3e:87:74:d0:5a:9d:97:ce:58:5c:02:2b:39:
24:b7:e7:e1:db:d0:f4:75:3e:d2:c2:c3:d6:30:62:4c:d8:00:
fe:71:9c:25:80:17:99:ed:2f:d8:bf:81:26:05:7a:af:f2:96:
f3:60:af:5c:50:46:87:18:fb:9d:15:c1:25:f4:8d:a2:7d:91:
07:5c:0e:65:0a:a6:7f:ef:6a:8f:02:52:8d:69:c9:36:b8:bc:
30:6a:dc:17:1a:ad:0f:ab:f5:9c:88:49:89:bd:9d:16:bb:0c:
82:80:f9:97:77:a7:2e:f7:62:f4:c8:a9:b7:e3:02:c7:17:d7:
84:36:f0:f6:6c:d5:25:c0:13:8d:75:db:d0:99:c9:60:22:d7:
ef:68:4c:39:70:8b:fd:da:d8:ec:60:8f:fb:a4:d2:81:36:64:
14:3e:e1:21:05:7b:27:b5:a6:82:35:0f:50:88:f2:73:c4:fd:
6d:de:c0:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:25 2024 by rpki-client on console-ams.rpki-client.org