Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/91023c-2147-49b9-b267-62d4a1f1a50c/1/yva5AgX_Hq3mBHKo7UIhmnEblPU.roa
File: yva5AgX_Hq3mBHKo7UIhmnEblPU.roa (raw, json)
Hash identifier: sjTIe67cvZJIABCHWRli45nxJ1an4lUS0n4hfy6dim0=
Subject key identifier: CA:F6:B9:02:05:FF:1E:AD:E6:04:72:A8:ED:42:21:9A:71:1B:94:F5
Certificate issuer: /CN=cb2a49fba149e1a1b13139bd01601c86cd2958a5
Certificate serial: 01857227E2A9DCF53C0374D4B17348369311
Authority key identifier: CB:2A:49:FB:A1:49:E1:A1:B1:31:39:BD:01:60:1C:86:CD:29:58:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yypJ-6FJ4aGxMTm9AWAchs0pWKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/91023c-2147-49b9-b267-62d4a1f1a50c/1/yva5AgX_Hq3mBHKo7UIhmnEblPU.roa
Signing time: Mon 02 Jan 2023 11:04:54 +0000
ROA not before: Mon 02 Jan 2023 11:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208729
IP address blocks: 185.75.84.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:27:e2:a9:dc:f5:3c:03:74:d4:b1:73:48:36:93:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb2a49fba149e1a1b13139bd01601c86cd2958a5
Validity
Not Before: Jan 2 11:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=caf6b90205ff1eade60472a8ed42219a711b94f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:3d:6d:db:fc:84:87:c1:75:72:04:d5:34:81:
49:81:6c:ba:59:98:e3:c6:42:78:2c:dc:31:5c:04:
c1:f0:64:a0:14:44:b5:a6:ee:9a:4c:ff:04:9c:9a:
95:f1:29:b3:a8:60:ca:89:0c:c2:82:b8:bc:e1:eb:
16:ec:f2:5b:a2:fa:8e:53:a9:34:88:c2:39:0f:e5:
3d:f4:3b:92:58:ff:ca:09:7f:c5:1e:f2:0d:81:ff:
e4:1b:d3:8f:d0:c7:a3:62:bc:18:97:5a:12:fb:e2:
32:33:c3:cc:05:d5:34:4d:79:ed:99:bc:d6:fa:5d:
92:98:4a:a9:dc:94:01:1e:80:be:6a:92:10:42:31:
57:0e:aa:df:93:f2:03:9b:7a:3c:94:c3:87:e1:c6:
7a:67:14:08:26:43:b7:42:cb:de:eb:0a:8f:2d:1a:
49:b3:54:33:fd:4a:97:ca:53:7a:89:71:79:ec:cd:
ba:14:20:cb:46:2d:93:75:48:c9:24:07:5a:8a:1a:
b8:bc:af:23:a9:4f:21:e1:34:17:25:71:00:df:90:
a2:64:31:c5:65:3d:75:29:47:8d:57:21:af:9d:63:
27:11:49:d0:da:b3:e0:9c:b8:29:c5:39:07:b5:75:
23:81:10:43:61:8d:1c:18:42:ee:bd:27:fd:ae:47:
93:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:F6:B9:02:05:FF:1E:AD:E6:04:72:A8:ED:42:21:9A:71:1B:94:F5
X509v3 Authority Key Identifier:
keyid:CB:2A:49:FB:A1:49:E1:A1:B1:31:39:BD:01:60:1C:86:CD:29:58:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yypJ-6FJ4aGxMTm9AWAchs0pWKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/91023c-2147-49b9-b267-62d4a1f1a50c/1/yva5AgX_Hq3mBHKo7UIhmnEblPU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/91023c-2147-49b9-b267-62d4a1f1a50c/1/yypJ-6FJ4aGxMTm9AWAchs0pWKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.75.84.0/22
Signature Algorithm: sha256WithRSAEncryption
21:e1:88:f6:8f:db:eb:cf:a8:c1:1b:28:ea:0f:7b:1a:f4:f7:
44:94:d6:db:30:a5:7a:9d:01:c9:9c:2c:37:51:56:1d:84:27:
09:96:90:82:ad:91:6f:40:61:cd:b9:09:28:97:4a:88:13:6f:
d5:ef:7c:54:52:cc:fe:23:1f:8c:e8:9b:da:91:06:95:e1:ad:
71:22:13:63:2b:64:fc:8d:a9:b8:86:9a:d9:af:57:ce:78:6f:
4c:71:ff:c4:dc:eb:a1:b6:32:87:98:7e:a8:56:6e:67:37:23:
75:6d:5f:b4:bf:93:fb:b9:39:18:c7:d8:00:63:25:4f:5c:48:
67:39:77:14:27:01:ee:d0:78:f1:3f:8b:79:e4:e6:b4:ad:c3:
fe:8f:ba:bd:18:63:b1:8f:23:a4:9c:5d:f5:b9:42:e7:74:0a:
33:c1:eb:11:86:3f:ce:15:e3:b7:b5:eb:b6:17:4f:69:93:68:
23:22:86:bf:21:e2:ac:d1:a9:93:37:30:25:31:63:28:c2:14:
c3:33:b6:c5:c0:f7:2a:43:f7:3f:b8:8d:30:9d:b5:e5:3e:15:
92:2d:67:32:91:03:e1:16:af:20:fe:ca:18:6f:2a:a8:d4:7e:
a5:e4:00:1d:c1:74:15:29:a5:c4:09:0d:07:f2:f3:7e:65:0e:
97:59:ca:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 08:09:54 2024 by rpki-client on console-fra.rpki-client.org