Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/9bd098-3820-47ce-8674-7a80ed621781/1/yIyehbxUNI1LoUgfyhniLtvpLEA.roa
File: yIyehbxUNI1LoUgfyhniLtvpLEA.roa (raw, json)
Hash identifier: fY+cDQpwcFZfAK7069ktoRuE2wQzTPiN7ZvmPmcT42I=
Subject key identifier: C8:8C:9E:85:BC:54:34:8D:4B:A1:48:1F:CA:19:E2:2E:DB:E9:2C:40
Certificate issuer: /CN=1924008415ca185b8eddedc2dcdd8d09441a7794
Certificate serial: 0187BC35D334D92BFBDDE1F6C1AEFCDBBEDE
Authority key identifier: 19:24:00:84:15:CA:18:5B:8E:DD:ED:C2:DC:DD:8D:09:44:1A:77:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GSQAhBXKGFuO3e3C3N2NCUQad5Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/9bd098-3820-47ce-8674-7a80ed621781/1/yIyehbxUNI1LoUgfyhniLtvpLEA.roa
Signing time: Wed 26 Apr 2023 06:17:36 +0000
ROA not before: Wed 26 Apr 2023 06:17:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5607
IP address blocks: 185.110.178.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:bc:35:d3:34:d9:2b:fb:dd:e1:f6:c1:ae:fc:db:be:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1924008415ca185b8eddedc2dcdd8d09441a7794
Validity
Not Before: Apr 26 06:17:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c88c9e85bc54348d4ba1481fca19e22edbe92c40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:2c:66:cd:df:77:0c:5e:61:f9:af:ee:06:2b:
dc:4e:c7:2d:c1:b9:d2:6d:f6:ff:89:52:d1:b1:f5:
58:7b:28:0f:a2:6c:05:7f:05:20:2c:df:f5:63:d8:
52:e8:a1:c3:94:b4:43:14:d3:79:e9:85:f1:4f:c6:
90:69:b4:72:41:f6:9e:0d:1b:b6:1a:8b:f8:a8:a8:
c5:9c:60:a4:53:9d:e7:07:f8:32:fc:a8:48:d6:04:
97:aa:e6:b1:7e:3f:6d:3d:69:ff:b1:e4:a4:36:4b:
57:5e:86:de:61:40:92:16:f3:a9:73:37:87:ef:4a:
e2:9d:10:86:1f:64:d1:61:2c:21:1a:e5:71:b1:29:
7e:59:ca:ca:bb:3c:6f:3c:99:ef:ac:c5:c4:16:27:
79:5c:e3:e0:8c:16:7a:b4:c5:d5:76:67:6b:0d:ca:
6d:38:90:11:a0:4f:e0:0e:fb:41:a2:77:ae:8d:04:
03:e3:3c:f2:dc:78:92:71:8b:b9:9a:1b:5d:7a:3c:
53:10:69:ba:30:99:a1:71:af:5f:2e:f6:b6:69:66:
11:89:aa:a2:df:87:d9:c5:f5:1d:25:c5:64:e6:1f:
3d:b9:cb:79:ea:78:69:3d:56:bc:df:2a:4c:89:0b:
e5:d9:6e:00:3f:4a:f4:95:b4:05:8c:01:9b:77:6d:
d7:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:8C:9E:85:BC:54:34:8D:4B:A1:48:1F:CA:19:E2:2E:DB:E9:2C:40
X509v3 Authority Key Identifier:
keyid:19:24:00:84:15:CA:18:5B:8E:DD:ED:C2:DC:DD:8D:09:44:1A:77:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GSQAhBXKGFuO3e3C3N2NCUQad5Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9bd098-3820-47ce-8674-7a80ed621781/1/yIyehbxUNI1LoUgfyhniLtvpLEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/9bd098-3820-47ce-8674-7a80ed621781/1/GSQAhBXKGFuO3e3C3N2NCUQad5Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.110.178.0/23
Signature Algorithm: sha256WithRSAEncryption
94:af:b2:69:c8:98:8d:06:06:00:80:18:40:9b:d9:72:ad:7f:
70:30:cb:34:8a:67:57:9a:37:8b:11:15:7d:af:d1:7e:c6:8f:
dc:4b:3e:21:45:b5:67:e1:be:db:85:da:ee:b6:05:23:34:d9:
96:5b:5d:7d:e1:b8:bb:8f:57:1a:de:aa:03:ff:b4:8a:95:e0:
b4:e8:14:25:27:97:4f:be:ec:20:a9:30:a5:2e:57:c5:52:db:
85:d5:2f:77:a0:cd:b1:05:85:8a:a9:1c:74:d6:61:a0:19:c4:
a8:62:58:b7:21:2f:5f:a6:2f:48:1f:d8:e0:56:e5:85:93:e3:
65:11:ee:d6:a1:96:fd:ae:0a:f6:70:52:f6:c9:37:97:9a:bc:
62:c0:93:a1:9a:a1:60:e2:89:36:90:73:47:f1:6e:d9:94:0a:
4f:10:46:40:7a:a4:3c:67:a5:cd:ee:1f:7a:21:af:3d:f2:86:
a2:b8:cb:be:57:4f:29:83:b1:51:fa:b0:8d:ca:f9:0d:7b:9c:
7e:97:56:6a:38:9b:b7:26:5c:dc:5a:4c:8d:cf:7b:21:aa:0f:
b9:93:46:51:fa:57:6f:16:a5:13:d3:ed:e1:94:b4:72:c4:3b:
56:6e:a4:ba:9e:49:1e:5a:be:13:ec:de:5d:24:10:bb:90:15:
f0:d0:c1:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:01:08 2024 by rpki-client on console-ams.rpki-client.org